| blob | d3291249c5175a5e2794ba2a529e59c9ccf7b226 |
3 ///////////////////////////////////////////////////////////////////////////
4 // //
5 // NOTICE OF COPYRIGHT //
6 // //
7 // Moodle - Modular Object-Oriented Dynamic Learning Environment //
8 // http://moodle.org //
9 // //
10 // Copyright (C) 1999-2004 Martin Dougiamas http://dougiamas.com //
11 // //
12 // This program is free software; you can redistribute it and/or modify //
13 // it under the terms of the GNU General Public License as published by //
14 // the Free Software Foundation; either version 2 of the License, or //
15 // (at your option) any later version. //
16 // //
17 // This program is distributed in the hope that it will be useful, //
18 // but WITHOUT ANY WARRANTY; without even the implied warranty of //
19 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //
20 // GNU General Public License for more details: //
21 // //
22 // http://www.gnu.org/copyleft/gpl.html //
23 // //
24 ///////////////////////////////////////////////////////////////////////////
26 /**
27 * Public API vs internals
28 * -----------------------
29 *
30 * General users probably only care about
31 *
32 * Context handling
33 * - get_context_instance()
34 * - get_context_instance_by_id()
35 * - get_parent_contexts()
36 * - get_child_contexts()
37 *
38 * Whether the user can do something...
39 * - has_capability()
40 * - require_capability()
41 * - require_login() (from moodlelib)
42 *
43 * What courses has this user access to?
44 * - get_user_courses_bycap()
45 *
46 * What users can do X in this course or context?
47 * - get_context_users_bycap()
48 * - get_context_users_byrole()
49 *
50 * Enrol/unenrol
51 * - enrol_into_course()
52 * - role_assign()/role_unassign()
53 *
54 *
55 * Advanced use
56 * - load_all_capabilities()
57 * - reload_all_capabilities()
58 * - $ACCESS global
59 * - has_capability_in_accessdata()
60 * - is_siteadmin()
61 * - get_user_access_sitewide()
62 * - get_user_access_bycontext()
63 * - get_role_access_bycontext()
64 *
65 * Name conventions
66 * ----------------
67 *
68 * - "ctx" means context
69 *
70 * accessdata
71 * ----------
72 *
73 * Access control data is held in the "accessdata" array
74 * which - for the logged-in user, will be in $USER->access
75 *
76 * For other users can be generated and passed around (but see
77 * the $ACCESS global).
78 *
79 * $accessdata is a multidimensional array, holding
80 * role assignments (RAs), role-capabilities-perm sets
81 * (role defs) and a list of courses we have loaded
82 * data for.
83 *
84 * Things are keyed on "contextpaths" (the path field of
85 * the context table) for fast walking up/down the tree.
86 *
87 * $accessdata[ra][$contextpath]= array($roleid)
88 * [$contextpath]= array($roleid)
89 * [$contextpath]= array($roleid)
90 *
91 * Role definitions are stored like this
92 * (no cap merge is done - so it's compact)
93 *
94 * $accessdata[rdef][$contextpath:$roleid][mod/forum:viewpost] = 1
95 * [mod/forum:editallpost] = -1
96 * [mod/forum:startdiscussion] = -1000
97 *
98 * See how has_capability_in_accessdata() walks up/down the tree.
99 *
100 * Normally - specially for the logged-in user, we only load
101 * rdef and ra down to the course level, but not below. This
102 * keeps accessdata small and compact. Below-the-course ra/rdef
103 * are loaded as needed. We keep track of which courses we
104 * have loaded ra/rdef in
105 *
106 * $accessdata[loaded] = array($contextpath, $contextpath)
107 *
108 * Stale accessdata
109 * ----------------
110 *
111 * For the logged-in user, accessdata is long-lived.
112 *
113 * On each pageload we load $DIRTYPATHS which lists
114 * context paths affected by changes. Any check at-or-below
115 * a dirty context will trigger a transparent reload of accessdata.
116 *
117 * Changes at the sytem level will force the reload for everyone.
118 *
119 * Default role caps
120 * -----------------
121 * The default role assignment is not in the DB, so we
122 * add it manually to accessdata.
123 *
124 * This means that functions that work directly off the
125 * DB need to ensure that the default role caps
126 * are dealt with appropriately.
127 *
128 */
132 // permission definitions
138 // context definitions
148 // capability risks - see http://docs.moodle.org/en/Hardening_new_Roles_system
157 $context_cache = array(); // Cache of all used context objects for performance (by level and instance)
162 //this is really slow!!!! - do not use above course context level!
166 // first emulate the parent context capabilities merging into context
170 if ($capabilities = get_records_select('role_capabilities', "roleid = $roleid AND contextid = $cid")) {
174 }
176 }
177 }
178 }
180 // now go through the contexts bellow given context
183 if ($capabilities = get_records_select('role_capabilities', "roleid = $roleid AND contextid = $cid")) {
187 }
189 }
190 }
191 }
194 }
196 /**
197 * Gets the accessdata for role "sitewide"
198 * (system down to course)
199 *
200 * @return array
201 */
206 /* Get it in 1 cheap DB query...
207 * - relevant role caps at the root and down
208 * to the course level - but not below
209 */
215 }
219 //
220 // Overrides for the role IN ANY CONTEXTS
221 // down to COURSE - not below -
222 //
224 rc.capability, rc.permission
227 ON rc.contextid=ctx.id
236 }
238 }
240 }
243 }
245 /**
246 * Gets the accessdata for role "sitewide"
247 * (system down to course)
248 *
249 * @return array
250 */
258 //
259 // Overrides for the role in any contexts related to the course
260 //
262 rc.capability, rc.permission
265 ON rc.contextid=ctx.id
276 }
278 }
280 }
283 }
286 /**
287 * Get the id for the not-logged-in role - or set it up if needed
288 * @return bool
289 */
299 }
302 }
305 }
307 /**
308 * Get the default guest role
309 * @return object role
310 */
322 }
327 //somebody is messing with guest roles, remove incorrect setting and try to find a new one
330 }
331 }
332 }
337 /// Make sure we know the current context
343 }
344 }
347 }
351 }
361 }
365 }
369 }
372 //
373 // In cron, some modules setup a 'fake' $USER,
374 // ensure we load the appropriate accessdata.
375 // Also: set $DIRTYCONTEXTS to empty
376 //
379 }
382 }
385 }
387 // Careful check for staleness...
390 // Load dirty contexts list
393 // Check basepath only once, when
394 // we load the dirty contexts...
396 // sitewide change, dirty
398 }
399 }
400 // Check for staleness in the whole parenthood
403 }
405 // reload all capabilities - preserving loginas, roleswitches, etc
406 // and then cleanup any marks of dirtyness... at least from our short
407 // term memory! :-)
411 }
413 // divulge how many times we are called
414 //// error_log("has_capability: id:{$context->id} path:{$context->path} userid:$userid cap:$capability");
417 //
418 // For the logged in user, we have $USER->access
419 // which will have all RAs and caps preloaded for
420 // course and above contexts.
421 //
422 // Contexts below courses && contexts that do not
423 // hang from courses are loaded into $USER->access
424 // on demand, and listed in $USER->access[loaded]
425 //
427 // Course and above are always preloaded
429 }
430 // Load accessdata for below-the-course contexts
432 error_log("loading access for context {$context->path} for $capability at {$context->contextlevel} {$context->id}");
433 // $bt = debug_backtrace();
434 // error_log("bt {$bt[0]['file']} {$bt[0]['line']}");
437 }
439 }
443 }
446 }
448 // Course and above are always preloaded
450 }
451 // Load accessdata for below-the-course contexts as needed
453 error_log("loading access for context {$context->path} for $capability at {$context->contextlevel} {$context->id}");
454 // $bt = debug_backtrace();
455 // error_log("bt {$bt[0]['file']} {$bt[0]['line']}");
458 }
460 }
462 /*
463 * Uses 1 DB query to answer whether a user is an admin at the sitelevel.
464 * It depends on DB schema >=1.7 but does not depend on the new datastructures
465 * in v1.9 (context.path, or $USER->access)
466 *
467 * Will return true if the userid has any of
468 * - moodle/site:config
469 * - moodle/legacy:admin
470 * - moodle/site:doanything
471 *
472 * @param int $userid
473 * @returns bool $isadmin
474 */
481 ON ctx.id=rc.contextid
483 ON ra.roleid=rc.roleid AND ra.contextid=ctx.id
484 WHERE ctx.contextlevel=10
486 AND rc.capability IN ('moodle/site:config', 'moodle/legacy:admin', 'moodle/site:doanything')
487 GROUP BY rc.capability
492 }
495 // assume that nothing is more than 1 course deep
498 }
500 }
504 // assume that contexts hang from sys or from a course
505 // this will only work well with stuff that hangs from a course
509 }
515 }
518 }
519 }
521 }
523 /*
524 * Walk the accessdata array and return true/false.
525 * Deals with prohibits, roleswitching, aggregating
526 * capabilities, etc.
527 *
528 * The main feature of here is being FAST and with no
529 * side effects.
530 *
531 * Notes:
532 *
533 * Switch Roles exits early
534 * -----------------------
535 * cap checks within a switchrole need to exit early
536 * in our bottom up processing so they don't "see" that
537 * there are real RAs that can do all sorts of things.
538 *
539 * Switch Role merges with default role
540 * ------------------------------------
541 * If you are a teacher in course X, you have at least
542 * teacher-in-X + defaultloggedinuser-sitewide. So in the
543 * course you'll have techer+defaultloggedinuser.
544 * We try to mimic that in switchrole.
545 *
546 * Local-most role definition and role-assignment wins
547 * ---------------------------------------------------
548 * So if the local context has said 'allow', it wins
549 * over a high-level context that says 'deny'.
550 * This is applied when walking rdefs, and RAs.
551 * Only at the same context the values are SUM()med.
552 *
553 * The exception is CAP_PROHIBIT.
554 *
555 * "Guest default role" exception
556 * ------------------------------
557 *
558 * See MDL-7513 and $ignoreguest below for details.
559 *
560 * The rule is that
561 *
562 * IF we are being asked about moodle/legacy:guest
563 * OR moodle/course:view
564 * FOR a real, logged-in user
565 * AND we reached the top of the path in ra and rdef
566 * AND that role has moodle/legacy:guest === 1...
567 * THEN we act as if we hadn't seen it.
568 *
569 *
570 * To Do:
571 *
572 * - Document how it works
573 * - Rewrite in ASM :-)
574 *
575 */
582 // build $contexts as a list of "paths" of the current
583 // contexts and parents with the order top-to-bottom
588 }
594 // At the base, ignore rdefs where moodle/legacy:guest
595 // is set
597 }
604 //
605 // role-switches loop
606 //
608 // check for isset() is fast
609 // empty() is slow...
613 }
614 // From the bottom up...
618 // Found a switchrole assignment
619 // check for that role _plus_ the default user role
623 // Walk the path for capabilities
624 // from the bottom up...
629 // The most local permission (first to set) wins
630 // the only exception is CAP_PROHIBIT
636 }
637 }
638 }
639 }
640 // As we are dealing with a switchrole,
641 // we return _here_, do _not_ walk up
642 // the hierarchy any further
645 // didn't find it as an explicit cap,
646 // but maybe the user candoanything in this context...
650 }
653 }
655 }
656 }
657 }
659 //
660 // Main loop for normal RAs
661 // From the bottom up...
662 //
666 // Found role assignments on this leaf
673 // Walk the path for capabilities
674 // from the bottom up...
677 // ignore some guest caps
678 // at base ra and rdef
685 }
688 // The most local permission (first to set) wins
689 // the only exception is CAP_PROHIBIT
695 }
696 }
697 }
698 // Permissions at the same
699 // ctxlevel are added together
701 }
702 // The most local RAs with a defined
703 // permission ($ctxcan) win, except
704 // for CAP_PROHIBIT
710 }
711 }
712 }
716 // didn't find it as an explicit cap,
717 // but maybe the user candoanything in this context...
721 }
724 }
726 }
732 // build $contexts as a list of "paths" of the current
733 // contexts and parents with the order top-to-bottom
738 }
743 // From the bottom up...
747 // Found assignments on this leaf
750 }
751 }
754 }
756 /**
757 * This is an easy to use function, combining has_capability() with require_course_login().
758 * And will call those where needed.
759 *
760 * It checks for a capability assertion being true. If it isn't
761 * then the page is terminated neatly with a standard error message.
762 *
763 * If the user is not logged in, or is using 'guest' access or other special "users,
764 * it provides a logon prompt.
765 *
766 * @param string $capability - name of the capability
767 * @param object $context - a context object (record from context table)
768 * @param integer $userid - a userid number
769 * @param bool $doanything - if false, ignore do anything
770 * @param string $errorstring - an errorstring
771 * @param string $stringfile - which stringfile to get it from
772 */
778 /// If the current user is not logged in, then make sure they are (if needed)
787 }
792 }
796 }
800 }
801 }
803 /// OK, if they still don't have the capability then print a nice error message
808 }
809 }
811 /*
812 * Get an array of courses (with magic extra bits)
813 * where the accessdata and in DB enrolments show
814 * that the cap requested is available.
815 *
816 * The main use is for get_my_courses().
817 *
818 * Notes
819 *
820 * - $fields is an array of fieldnames to ADD
821 * so name the fields you really need, which will
822 * be added and uniq'd
823 *
824 * - the course records have $c->context which is a fully
825 * valid context object. Saves you a query per course!
826 *
827 * - the course records have $c->categorypath to make
828 * category lookups cheap
829 *
830 * - current implementation is split in -
831 *
832 * - if the user has the cap systemwide, stupidly
833 * grab *every* course for a capcheck. This eats
834 * a TON of bandwidth, specially on large sites
835 * with separate DBs...
836 *
837 * - otherwise, fetch "likely" courses with a wide net
838 * that should get us _cheaply_ at least the courses we need, and some
839 * we won't - we get courses that...
840 * - are in a category where user has the cap
841 * - or where use has a role-assignment (any kind)
842 * - or where the course has an override on for this cap
843 *
844 * - walk the courses recordset checking the caps oneach one
845 * the checks are all in memory and quite fast
846 * (though we could implement a specialised variant of the
847 * has_capability_in_accessdata() code to speed it up)
848 *
849 * @param string $capability - name of the capability
850 * @param array $accessdata - accessdata session array
851 * @param bool $doanything - if false, ignore do anything
852 * @param string $sort - sorting fields - prefix each fieldname with "c."
853 * @param array $fields - additional fields you are interested in...
854 * @param int $limit - set if you want to limit the number of courses
855 * @return array $courses - ordered array of course objects - see notes above
856 *
857 */
858 function get_user_courses_bycap($userid, $cap, $accessdata, $doanything, $sort='c.sortorder ASC', $fields=NULL, $limit=0) {
862 // Slim base fields, let callers ask for what they need...
870 }
876 }
880 //
881 // Apparently the user has the cap sitewide, so walk *every* course
882 // (the cap checks are moderately fast, but this moves massive bandwidth w the db)
883 // Yuck.
884 //
886 ctx.id AS ctxid, ctx.path AS ctxpath,
887 ctx.depth AS ctxdepth, ctx.contextlevel AS ctxlevel,
888 cc.path AS categorypath
891 ON c.category=cc.id
897 //
898 // narrow down where we have the caps to a few contexts
899 // this will be a combination of
900 // - categories where we have the rights
901 // - courses where we have an explicit enrolment OR that have an override
902 //
914 }
915 }
916 }
923 }
925 }
931 }
932 //
933 // Note here that we *have* to have the compound clauses
934 // in the LEFT OUTER JOIN condition for them to return NULL
935 // appropriately and narrow things down...
936 //
938 ctx.id AS ctxid, ctx.path AS ctxpath,
939 ctx.depth AS ctxdepth, ctx.contextlevel AS ctxlevel,
940 cc.path AS categorypath
943 ON c.category=cc.id
950 WHERE ra.id IS NOT NULL
951 OR rc.id IS NOT NULL
952 $catclause
955 }
960 // build the context obj
967 }
968 }
969 }
970 }
973 }
975 /*
976 * Draft - use for the course participants list page
977 *
978 * Uses 1 DB query (cheap too - 2~7ms).
979 *
980 * TODO:
981 * - implement additional where clauses
982 * - sorting
983 * - get course participants list to use it!
984 *
985 * returns a users array, both sorted _and_ keyed
986 * on id (as get_my_courses() does)
987 *
988 * as a bonus, every user record comes with its own
989 * personal context, as our callers need it straight away
990 * {save 1 dbquery per user! yay!}
991 *
992 */
993 function get_context_users_byrole ($context, $roleid, $fields=NULL, $where=NULL, $sort=NULL, $limit=0) {
996 // Slim base fields, let callers ask for what they need...
1004 }
1011 ctx.id AS ctxid, ctx.path AS ctxpath,
1012 ctx.depth AS ctxdepth, ctx.contextlevel AS ctxlevel
1017 ON u.id = ra.userid
1027 // build the context obj
1033 }
1034 }
1035 }
1038 }
1040 /*
1041 * Draft - use for the course participants list page
1042 *
1043 * Uses 2 fast DB queries
1044 *
1045 * TODO:
1046 * - automagically exclude roles that can-doanything sitewide (See callers)
1047 * - perhaps also allow sitewide do-anything via flag
1048 * - implement additional where clauses
1049 * - sorting
1050 * - get course participants list to use it!
1051 *
1052 * returns a users array, both sorted _and_ keyed
1053 * on id (as get_my_courses() does)
1054 *
1055 * as a bonus, every user record comes with its own
1056 * personal context, as our callers need it straight away
1057 * {save 1 dbquery per user! yay!}
1058 *
1059 */
1060 function get_context_users_bycap ($context, $capability='moodle/course:view', $fields=NULL, $where=NULL, $sort=NULL, $limit=0) {
1063 // Plan
1064 //
1065 // - Get all the *interesting* roles -- those that
1066 // have some rolecap entry in our ctx.path contexts
1067 //
1068 // - Get all RAs for any of those roles in any of our
1069 // interesting contexts, with userid & perm data
1070 // in a nice (per user?) order
1071 //
1072 // - Walk the resultset, computing the permissions
1073 // - actually - this is all a SQL subselect
1074 //
1075 // - Fetch user records against the subselect
1076 //
1078 // Slim base fields, let callers ask for what they need...
1086 }
1101 }
1102 }
1106 //
1107 // User permissions subselect SQL
1108 //
1109 // - the open join condition to
1110 // role_capabilities
1111 //
1112 // - because both rc and ra entries are
1113 // _at or above_ our context, we don't care
1114 // about their depth, we just need to sum them
1115 //
1124 // Get users
1126 ctx.id AS ctxid, ctx.path AS ctxpath,
1127 ctx.depth AS ctxdepth, ctx.contextlevel AS ctxlevel
1132 ON u.id = up.userid
1141 // build the context obj
1147 }
1148 }
1149 }
1152 }
1154 /**
1155 * It will return a nested array showing role assignments
1156 * all relevant role capabilities for the user at
1157 * site/metacourse/course_category/course levels
1158 *
1159 * We do _not_ delve deeper than courses because the number of
1160 * overrides at the module/block levels is HUGE.
1161 *
1162 * [ra] => [/path/] = array(roleid, roleid)
1163 * [rdef] => [/path/:roleid][capability]=permission
1164 * [loaded] => array('/path', '/path')
1165 *
1166 * @param $userid integer - the id of the user
1167 *
1168 */
1173 // this flag has not been set!
1174 // (not clean install, or upgraded successfully to 1.7 and up)
1177 }
1179 /* Get in 3 cheap DB queries...
1180 * - role assignments - with role_caps
1181 * - relevant role caps
1182 * - above this user's RAs
1183 * - below this user's RAs - limited to course level
1184 */
1194 //
1195 // Role assignments - and any rolecaps directly linked
1196 // because it's cheap to read rolecaps here over many
1197 // RAs
1198 //
1202 ON ra.contextid=ctx.id
1204 ON (rc.roleid=ra.roleid AND rc.contextid=ra.contextid)
1208 //
1209 // raparents collects paths & roles we need to walk up
1210 // the parenthood to build the rdef
1211 //
1212 // the array will bulk up a bit with dups
1213 // which we'll later clear up
1214 //
1219 // RAs leafs are arrays to support multi
1220 // role assignments...
1223 }
1224 // only add if is not a repeat caused
1225 // by capability join...
1226 // (this check is cheaper than in_array())
1239 }
1240 }
1241 // Always add the roleded
1245 }
1246 }
1248 }
1251 // Walk up the tree to grab all the roledefs
1252 // of interest to our user...
1253 // NOTE: we use a series of IN clauses here - which
1254 // might explode on huge sites with very convoluted nesting of
1255 // categories... - extremely unlikely that the number of categories
1256 // and roletypes is so large that we hit the limits of IN()
1262 }
1263 }
1269 ON rc.contextid=ctx.id
1280 }
1282 }
1284 }
1286 //
1287 // Overrides for the role assignments IN SUBCONTEXTS
1288 // (though we still do _not_ go below the course level.
1289 //
1290 // NOTE that the JOIN w sctx is with 3-way triangulation to
1291 // catch overrides to the applicable role in any subcontext, based
1292 // on the path field of the parent.
1293 //
1295 ctx.path AS parentpath,
1296 rco.capability, rco.permission
1299 ON ra.contextid=ctx.id
1303 ON (rco.roleid=ra.roleid AND rco.contextid=sctx.id)
1313 }
1315 }
1319 }
1321 /**
1322 * It add to the access ctrl array the data
1323 * needed by a user for a given context
1324 *
1325 * @param $userid integer - the id of the user
1326 * @param $context context obj - needs path!
1327 * @param $accessdata array accessdata array
1328 *
1329 */
1336 /* Get the additional RAs and relevant rolecaps
1337 * - role assignments - with role_caps
1338 * - relevant role caps
1339 * - above this user's RAs
1340 * - below this user's RAs - limited to course level
1341 */
1343 // Roles already in use in this context
1349 }
1353 //
1354 // Replace $context with the target context we will
1355 // load. Normally, this will be a course context, but
1356 // may be a different top-level context.
1357 //
1358 // We have 3 cases
1359 //
1360 // - Course
1361 // - BLOCK/PERSON/USER/COURSE(sitecourse) hanging from SYSTEM
1362 // - BLOCK/MODULE/GROUP hanging from a course
1363 //
1364 // For course contexts, we _already_ have the RAs
1365 // but the cost of re-fetching is minimal so we don't care.
1366 //
1369 // Case BLOCK/MODULE/GROUP hanging from a course
1370 // Assumption: the course _must_ be our parent
1371 // If we ever see stuff nested further this needs to
1372 // change to do 1 query over the exploded path to
1373 // find out which one is the course
1377 }
1379 //
1380 // Role assignments in the context and below
1381 //
1385 ON ra.contextid=ctx.id
1391 //
1392 // Read in the RAs
1393 //
1399 }
1402 }
1403 }
1406 //
1407 // Walk up and down the tree to grab all the roledefs
1408 // of interest to our user...
1409 //
1410 // NOTES
1411 // - we use IN() but the number of roles is very limited.
1412 //
1415 // Do we have any interesting "local" roles?
1419 // Role defs for local roles in 'higher' contexts...
1425 }
1427 // We will want overrides for all of them
1431 }
1435 ON rc.contextid=ctx.id
1438 $wherelocalroles
1446 }
1447 }
1451 }
1453 // TODO: compact capsets?
1459 }
1461 /**
1462 * It add to the access ctrl array the data
1463 * needed by a role for a given context.
1464 *
1465 * The data is added in the rdef key.
1466 *
1467 * This role-centric function is useful for role_switching
1468 * and to get an overview of what a role gets under a
1469 * given context and below...
1470 *
1471 * @param $roleid integer - the id of the user
1472 * @param $context context obj - needs path!
1473 * @param $accessdata accessdata array
1474 *
1475 */
1480 /* Get the relevant rolecaps into rdef
1481 * - relevant role caps
1482 * - at ctx and above
1483 * - below this ctx
1484 */
1491 }
1496 //
1497 // Walk up and down the tree to grab all the roledefs
1498 // of interest to our role...
1499 //
1500 // NOTE: we use an IN clauses here - which
1501 // might explode on huge sites with very convoluted nesting of
1502 // categories... - extremely unlikely that the number of nested
1503 // categories is so large that we hit the limits of IN()
1504 //
1508 ON rc.contextid=ctx.id
1519 }
1520 }
1524 }
1526 /*
1527 * Load accessdata for a user
1528 * into the $ACCESS global
1529 *
1530 * Used by has_capability() - but feel free
1531 * to call it if you are about to run a BIG
1532 * cron run across a bazillion users.
1533 *
1534 * TODO: share rdef tree to save mem
1535 *
1536 */
1542 }
1547 //
1548 // provide "default role" & set 'dr'
1549 //
1555 }
1558 //
1559 // provide "default frontpage role"
1560 //
1568 }
1569 }
1572 }
1574 /**
1575 * A convenience function to completely load all the capabilities
1576 * for the current user. This is what gets called from login, for example.
1577 */
1586 // Load the rdefs
1588 // Put the ghost enrolment in place...
1598 //
1599 // provide "default role" & set 'dr'
1600 //
1606 }
1611 //
1612 // provide "default frontpage role"
1613 //
1622 }
1623 }
1630 }
1631 }
1633 // Timestamp to read
1634 // dirty context timestamps
1637 // Clear to force a refresh
1639 }
1641 /**
1642 * A convenience function to completely reload all the capabilities
1643 * for the current user when roles have been updated in a relevant
1644 * context -- but PRESERVING switchroles and loginas.
1645 *
1646 * That is - completely transparent to the user.
1647 *
1648 * Note: rewrites $USER->access completely.
1649 *
1650 */
1655 // copy switchroles
1660 }
1670 }
1672 }
1674 /*
1675 * Adds a temp role to an accessdata array.
1676 *
1677 * Useful for the "temporary guest" access
1678 * we grant to logged-in users.
1679 *
1680 * Note - assumes a course context!
1681 *
1682 */
1687 //
1688 // Load rdefs for the role in -
1689 // - this context
1690 // - all the parents
1691 // - and below - IOWs overrides...
1692 //
1694 // turn the path into a list of context ids
1699 rc.capability, rc.permission
1702 ON rc.contextid=ctx.id
1712 }
1713 }
1716 //
1717 // Say we loaded everything for the course context
1718 // - which we just did - if the user gets a proper
1719 // RA in this session, this data will need to be reloaded,
1720 // but that is handled by the complete accessdata reload
1721 //
1724 //
1725 // Add the ghost RA
1726 //
1731 }
1734 }
1737 /**
1738 * Check all the login enrolment information for the given user object
1739 * by querying the enrolment plugins
1740 */
1748 }
1756 }
1760 if (method_exists($enrol, 'setup_enrolments')) { /// Plugin supports Roles (Moodle 1.7 and later)
1765 }
1768 }
1770 /// deal with $user->students and $user->teachers stuff
1773 }
1775 }
1778 }
1780 /**
1781 * A print form function. This should either grab all the capabilities from
1782 * files or a central table for that particular module instance, then present
1783 * them in check boxes. Only relevant capabilities should print for known
1784 * context.
1785 * @param $mod - module id of the mod
1786 */
1793 // We are in a module specific context.
1795 // Get the mod's name.
1796 // Call the function that grabs the file and parse.
1801 // Print all capabilities.
1803 // Prints the check box component.
1804 }
1805 }
1806 }
1809 /**
1810 * Installs the roles system.
1811 * This function runs on a fresh install as well as on an upgrade from the old
1812 * hard-coded student/teacher/admin etc. roles to the new roles system.
1813 */
1818 /// Create a system wide context for assignemnt.
1822 /// Create default/legacy roles and capabilities.
1823 /// (1 legacy capability per legacy role at system level).
1829 $editteacherrole = create_role(addslashes(get_string('defaultcourseteacher')), 'editingteacher',
1840 /// Now is the correct moment to install capabilities - after creation of legacy roles, but before assigning of roles
1844 }
1847 }
1849 /// Look inside user_admin, user_creator, user_teachers, user_students and
1850 /// assign above new roles. If a user has both teacher and student role,
1851 /// only teacher role is assigned. The assignment should be system level.
1855 /// Set up the progress bar
1863 }
1864 }
1868 /// Upgrade the admins.
1869 /// Sort using id ASC, first one is primary admin.
1877 }
1879 }
1881 // This is a fresh install.
1882 }
1885 /// Upgrade course creators.
1892 }
1894 }
1895 }
1898 /// Upgrade editting teachers and non-editting teachers.
1903 // removed code here to ignore site level assignments
1904 // since the contexts are separated now
1906 // populate the user_lastaccess table
1913 // assign the default student role
1915 // hidden teacher
1920 }
1925 role_assign($noneditteacherrole, $teacher->userid, 0, $coursecontext->id, 0, 0, $hiddenteacher);
1926 }
1929 }
1931 }
1932 }
1935 /// Upgrade students.
1940 // populate the user_lastaccess table
1947 // assign the default student role
1952 }
1954 }
1955 }
1958 /// Upgrade guest (only 1 entry).
1961 }
1965 /// Insert the correct records for legacy roles
1982 /// Set up default permissions for overrides
1992 /// Delete the old user tables when we are done
1999 }
2001 /**
2002 * Returns array of all legacy roles.
2003 */
2013 );
2014 }
2024 //choose first selected legacy capability - reset the rest
2029 }
2030 }
2031 }
2034 }
2036 /**
2037 * Assign the defaults found in this capabality definition to roles that have
2038 * the corresponding legacy capabilities assigned to them.
2039 * @param $legacyperms - an array in the format (example):
2040 * 'guest' => CAP_PREVENT,
2041 * 'student' => CAP_ALLOW,
2042 * 'teacher' => CAP_ALLOW,
2043 * 'editingteacher' => CAP_ALLOW,
2044 * 'coursecreator' => CAP_ALLOW,
2045 * 'admin' => CAP_ALLOW
2046 * @return boolean - success or failure.
2047 */
2058 }
2062 // Assign a site level capability.
2065 }
2066 }
2067 }
2068 }
2070 }
2073 /**
2074 * Checks to see if a capability is a legacy capability.
2075 * @param $capabilityname
2076 * @return boolean
2077 */
2083 }
2084 }
2088 /**********************************
2089 * Context Manipulation functions *
2090 **********************************/
2092 /**
2093 * Create a new context record for use by all roles-related stuff
2094 * assumes that the caller has done the homework.
2095 *
2096 * @param $level
2097 * @param $instanceid
2098 *
2099 * @return object newly created context
2100 */
2107 }
2113 // Define $context->path based on the parent
2114 // context. In other words... Who is your daddy?
2128 }
2140 }
2155 // Only non-pinned & course-page based
2164 }
2167 // default to basepath
2170 // default to basepath
2172 }
2177 // can't set the path till we know the id!
2187 }
2188 }
2190 /**
2191 * This hacky function is needed because we can not change system context instanceid using normal upgrade routine.
2192 */
2195 // we are going to change instanceid of system context to 0 now
2198 //context rel not affected
2210 }
2211 }
2212 }
2213 /**
2214 * Remove a context record and any dependent entries
2215 * @param $level
2216 * @param $instanceid
2217 *
2218 * @return bool properly deleted
2219 */
2226 }
2228 }
2230 /**
2231 * Remove stale context records
2232 *
2233 * @return bool
2234 */
2239 c.instanceid AS instanceid
2242 ON c.instanceid = t.id
2244 UNION
2246 c.instanceid AS instanceid
2249 ON c.instanceid = t.id
2251 UNION
2253 c.instanceid AS instanceid
2256 ON c.instanceid = t.id
2258 UNION
2260 c.instanceid AS instanceid
2263 ON c.instanceid = t.id
2265 UNION
2267 c.instanceid AS instanceid
2270 ON c.instanceid = t.id
2272 UNION
2274 c.instanceid AS instanceid
2277 ON c.instanceid = t.id
2286 }
2291 }
2294 }
2296 }
2298 /**
2299 * Get the context instance as an object. This function will create the
2300 * context instance if it does not exist yet.
2301 * @param integer $level The context level, for example CONTEXT_COURSE, or CONTEXT_MODULE.
2302 * @param integer $instance The instance id. For $level = CONTEXT_COURSE, this would be $course->id,
2303 * for $level = CONTEXT_MODULE, this would be $cm->id. And so on.
2304 * @return object The context object.
2305 */
2309 static $allowed_contexts = array(CONTEXT_SYSTEM, CONTEXT_PERSONAL, CONTEXT_USER, CONTEXT_COURSECAT, CONTEXT_COURSE, CONTEXT_GROUP, CONTEXT_MODULE, CONTEXT_BLOCK);
2312 // TODO: Remove for v2.0
2313 // No longer needed, but we'll catch it to avoid erroring out on custom code.
2314 // This used to be a fix for MDL-9016
2315 // "Restoring into existing course, deleting first
2316 // deletes context and doesn't recreate it"
2318 }
2320 /// If no level is supplied then return the current global context if there is one
2323 //fatal error, code must be fixed
2327 }
2328 }
2330 /// Backwards compatibility with obsoleted (CONTEXT_SYSTEM, SITEID)
2333 }
2335 /// check allowed context levels
2337 // fatal error, code must be fixed - probably typo or switched parameters
2338 error('Error: get_context_instance() called with incorrect context level "'.s($contextlevel).'"');
2339 }
2341 /// Check the cache
2344 }
2346 /// Get it from the database, or create it
2347 if (!$context = get_record('context', 'contextlevel', $contextlevel, 'instanceid', $instance)) {
2350 }
2352 /// Only add to cache if context isn't empty.
2356 }
2359 }
2362 /**
2363 * Get a context instance as an object, from a given context id.
2364 * @param $id a context id.
2365 * @return object The context object.
2366 */
2373 }
2379 }
2382 }
2385 /**
2386 * Get the local override (if any) for a given capability in a role in a context
2387 * @param $roleid
2388 * @param $contextid
2389 * @param $capability
2390 */
2392 return get_record('role_capabilities', 'roleid', $roleid, 'capability', $capability, 'contextid', $contextid);
2393 }
2397 /************************************
2398 * DB TABLE RELATED FUNCTIONS *
2399 ************************************/
2401 /**
2402 * function that creates a role
2403 * @param name - role name
2404 * @param shortname - role short name
2405 * @param description - role description
2406 * @param legacy - optional legacy capability
2407 * @return id or false
2408 */
2411 // check for duplicate role name
2415 }
2419 }
2426 //find free sortorder number
2430 }
2434 }
2439 }
2441 /// By default, users with role:manage at site level
2442 /// should be able to assign users to this new role, and override this new role's capabilities
2444 // find all admin roles
2446 // foreach admin role
2448 // write allow_assign and allow_overrid
2451 }
2452 }
2457 }
2459 }
2461 /**
2462 * function that deletes a role and cleanups up after it
2463 * @param roleid - id of role to delete
2464 * @return success
2465 */
2470 // mdl 10149, check if this is the last active admin role
2471 // if we make the admin role not deletable then this part can go
2476 if (record_exists('role_capabilities', 'contextid', $systemcontext->id, 'roleid', $roleid, 'capability', 'moodle/site:doanything')) {
2477 // deleting an admin role
2479 if ($adminroles = get_roles_with_capability('moodle/site:doanything', CAP_ALLOW, $systemcontext)) {
2482 // some other admin role
2483 if (record_exists('role_assignments', 'roleid', $adminrole->id, 'contextid', $systemcontext->id)) {
2484 // found another admin role with at least 1 user assigned
2487 }
2488 }
2489 }
2490 }
2492 error ('You can not delete this role because there is no other admin roles with users assigned');
2493 }
2494 }
2495 }
2497 // first unssign all users
2501 }
2503 // cleanup all references to this role, ignore errors
2506 // MDL-10679 find all contexts where this role has an override
2518 }
2520 // finally delete the role itself
2524 }
2527 }
2529 /**
2530 * Function to write context specific overrides, or default capabilities.
2531 * @param module - string name
2532 * @param capability - string name
2533 * @param contextid - context id
2534 * @param roleid - role id
2535 * @param permission - int 1,-1 or -1000
2536 * should not be writing if permission is 0
2537 */
2545 }
2547 $existing = get_record('role_capabilities', 'contextid', $contextid, 'roleid', $roleid, 'capability', $capability);
2551 }
2567 }
2568 }
2570 /**
2571 * Unassign a capability from a role.
2572 * @param $roleid - the role id
2573 * @param $capability - the name of the capability
2574 * @return boolean - success or failure
2575 */
2579 // delete from context rel, if this is the last override in this context
2585 }
2587 }
2590 /**
2591 * Get the roles that have a given capability assigned to it. This function
2592 * does not resolve the actual permission of the capability. It just checks
2593 * for assignment only.
2594 * @param $capability - capability name (string)
2595 * @param $permission - optional, the permission defined for this capability
2596 * either CAP_ALLOW, CAP_PREVENT or CAP_PROHIBIT
2597 * @return array or role objects
2598 */
2609 }
2613 }
2623 }
2625 }
2628 /**
2629 * This function makes a role-assignment (a role for a user or group in a particular context)
2630 * @param $roleid - the role of the id
2631 * @param $userid - userid
2632 * @param $groupid - group id
2633 * @param $contextid - id of the context
2634 * @param $timestart - time this assignment becomes effective
2635 * @param $timeend - time this assignemnt ceases to be effective
2636 * @uses $USER
2637 * @return id - new id of the assigment
2638 */
2639 function role_assign($roleid, $userid, $groupid, $contextid, $timestart=0, $timeend=0, $hidden=0, $enrol='manual',$timemodified='') {
2644 /// Do some data validation
2649 }
2654 }
2659 }
2664 }
2669 }
2674 }
2678 }
2680 /// Check for existing entry
2682 $ra = get_record('role_assignments', 'roleid', $roleid, 'contextid', $context->id, 'userid', $userid);
2684 $ra = get_record('role_assignments', 'roleid', $roleid, 'contextid', $context->id, 'groupid', $groupid);
2685 }
2696 /// Always round timestart downto 100 secs to help DBs to use their own caching algorithms
2697 /// by repeating queries with the same exact parameters in a 100 secs time window
2710 /// Always round timestart downto 100 secs to help DBs to use their own caching algorithms
2711 /// by repeating queries with the same exact parameters in a 100 secs time window
2718 }
2722 /// If the user is the current user, then reload the capabilities too.
2725 }
2727 /// Ask all the modules if anything needs to be done for this user
2734 }
2735 }
2736 }
2737 }
2739 /// now handle metacourse role assignments if in course context
2744 }
2745 }
2746 }
2749 }
2752 /**
2753 * Deletes one or more role assignments. You must specify at least one parameter.
2754 * @param $roleid
2755 * @param $userid
2756 * @param $groupid
2757 * @param $contextid
2758 * @param $enrol unassign only if enrolment type matches, NULL means anything
2759 * @return boolean - success or failure
2760 */
2772 }
2773 }
2776 }
2782 /// infinite loop protection when deleting recursively
2785 }
2788 /// If the user is the current user, then reload the capabilities too.
2791 }
2794 /// Ask all the modules if anything needs to be done for this user
2799 $functionname($ra->userid, $context); // watch out, $context might be NULL if something goes wrong
2800 }
2801 }
2803 /// now handle metacourse role unassigment and removing from goups if in course context
2806 // cleanup leftover course groups/subscriptions etc when user has
2807 // no capability to view course
2808 // this may be slow, but this is the proper way of doing it
2810 // remove from groups
2814 }
2815 }
2817 // delete lastaccess records
2819 }
2821 //unassign roles in metacourses if needed
2825 }
2826 }
2827 }
2828 }
2829 }
2830 }
2833 }
2835 /**
2836 * A convenience function to take care of the common case where you
2837 * just want to enrol someone using the default role into a course
2838 *
2839 * @param object $course
2840 * @param object $user
2841 * @param string $enrol - the plugin used to do this enrolment
2842 */
2846 // remove time part from the timestamp and keep only the date part
2847 $timestart = make_timestamp(date('Y', $timestart), date('m', $timestart), date('d', $timestart), 0, 0, 0);
2852 }
2860 }
2862 // force accessdata refresh for users visiting this context...
2870 }
2873 }
2875 /**
2876 * Loads the capability definitions for the component (from file). If no
2877 * capabilities are defined for the component, we simply return an empty array.
2878 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
2879 * @return array of capabilities
2880 */
2891 // Blocks are an exception. Blocks directory is 'blocks', and not
2892 // 'block'. So we need to jump through hoops.
2898 // Similar to the above, course formats are 'format' while they
2899 // are stored in 'course/format'.
2918 }
2919 }
2925 }
2927 }
2930 /**
2931 * Gets the capabilities that have been cached in the database for this
2932 * component.
2933 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
2934 * @return array of capabilities
2935 */
2943 }
2945 }
2947 /**
2948 * Returns default capabilities for given legacy role type.
2949 *
2950 * @param string legacy role name
2951 * @return array
2952 */
2956 }
2964 }
2965 }
2969 }
2970 }
2972 //some exceptions
2976 }
2978 }
2980 /**
2981 * Reset role capabilitites to default according to selected legacy capability.
2982 * If several legacy caps selected, use the first from get_default_capabilities.
2983 * If no legacy selected, removes all capabilities.
2984 *
2985 * @param int @roleid
2986 */
2995 //choose first selected legacy capability
2998 }
2999 }
3005 }
3006 }
3007 }
3009 /**
3010 * Updates the capabilities table with the component capability definitions.
3011 * If no parameters are given, the function updates the core moodle
3012 * capabilities.
3013 *
3014 * Note that the absence of the db/access.php capabilities definition file
3015 * will cause any stored capabilities for the component to be removed from
3016 * the database.
3017 *
3018 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
3019 * @return boolean
3020 */
3030 // update risk bitmasks and context levels in existing capabilities if needed
3034 }
3041 }
3042 }
3046 }
3053 }
3054 }
3055 }
3056 }
3057 }
3059 // Are there new capabilities in the file definition?
3067 }
3069 }
3070 }
3071 // Add new capabilities to the stored definition.
3082 }
3085 if (isset($capdef['clonepermissionsfrom']) && in_array($capdef['clonepermissionsfrom'], $storedcaps)){
3086 if ($rolecapabilities = get_records('role_capabilities', 'capability', $capdef['clonepermissionsfrom'])){
3088 //assign_capability will update rather than insert if capability exists
3092 }
3093 }
3094 }
3095 // Do we need to assign the new capabilities to roles that have the
3096 // legacy capabilities moodle/legacy:* as well?
3097 // we ignore legacy key if we have cloned permissions
3101 }
3102 }
3103 // Are there any capabilities that have been removed from the file
3104 // definition that we need to delete from the stored capabilities and
3105 // role assignments?
3109 }
3112 /**
3113 * Deletes cached capabilities that are no longer needed by the component.
3114 * Also unassigns these capabilities from any roles that have them.
3115 * @param $component - examples: 'moodle', 'mod/forum', 'block/quiz_results'
3116 * @param $newcapdef - array of the new capability definitions that will be
3117 * compared with the cached capabilities
3118 * @return int - number of deprecated capabilities that have been removed
3119 */
3129 // Remove from capabilities cache.
3134 }
3135 // Delete from roles.
3141 }
3142 }
3143 }
3145 }
3146 }
3148 }
3152 /****************
3153 * UI FUNCTIONS *
3154 ****************/
3157 /**
3158 * prints human readable context identifier.
3159 */
3177 }
3179 }
3186 }
3188 }
3198 }
3199 }
3204 }
3206 }
3213 }
3214 }
3223 }
3225 }
3226 }
3227 }
3240 }
3242 }
3243 }
3244 }
3251 }
3253 }
3256 /**
3257 * Extracts the relevant capabilities given a contextid.
3258 * All case based, example an instance of forum context.
3259 * Will fetch all forum related capabilities, while course contexts
3260 * Will fetch all capabilities
3261 * @param object context
3262 * @return array();
3263 *
3264 * capabilities
3265 * `name` varchar(150) NOT NULL,
3266 * `captype` varchar(50) NOT NULL,
3267 * `contextlevel` int(10) NOT NULL,
3268 * `component` varchar(100) NOT NULL,
3269 */
3321 }
3325 }
3327 /// the rest of code is a bit hacky, think twice before modifying it :-(
3329 // special sorting of core system capabiltites and enrollments
3330 if (in_array($context->contextlevel, array(CONTEXT_SYSTEM, CONTEXT_COURSECAT, CONTEXT_COURSE))) {
3338 }
3339 }
3342 }
3346 }
3350 }
3353 /**
3354 * Gets the context-independent capabilities that should be overrridable in
3355 * any context.
3356 * @return array of capability records from the capabilities table.
3357 */
3360 //only CONTEXT_SYSTEM capabilities here or it will break the hack in fetch_context_capabilities()
3362 'moodle/site:accessallgroups'
3363 );
3370 }
3372 }
3375 /**
3376 * This function pulls out all the resolved capabilities (overrides and
3377 * defaults) of a role used in capability overrides in contexts at a given
3378 * context.
3379 * @param obj $context
3380 * @param int $roleid
3381 * @param bool self - if set to true, resolve till this level, else stop at immediate parent level
3382 * @return array
3383 */
3395 }
3403 ORDER BY c.contextlevel DESC,
3409 // We are traversing via reverse order.
3411 // If not set yet (i.e. inherit or not set at all), or currently we have a prohibit
3414 }
3415 }
3416 }
3418 }
3420 /**
3421 * Recursive function which, given a context, find all parent context ids,
3422 * and return the array in reverse order, i.e. parent first, then grand
3423 * parent, etc.
3424 *
3425 * @param object $context
3426 * @return array()
3427 */
3432 }
3439 }
3442 /**
3443 * Recursive function which, given a context, find all its children context ids.
3444 *
3445 * When called for a course context, it will return the modules and blocks
3446 * displayed in the course page.
3447 *
3448 * For course category contexts it will return categories and courses. It will
3449 * NOT recurse into courses - if you want to do that, call it on the returned
3450 * courses.
3451 *
3452 * If called on a course context it _will_ populate the cache with the appropriate
3453 * contexts ;-)
3454 *
3455 * @param object $context.
3456 * @return array of child records
3457 */
3462 // We *MUST* populate the context_cache as the callers
3463 // will probably ask for the full record anyway soon after
3464 // soon after calling us ;-)
3469 // No children.
3474 // No children.
3479 // No children.
3484 // Find
3485 // - module instances - easy
3486 // - groups
3487 // - blocks assigned to the course-view page explicitly - easy
3488 // - blocks pinned (note! we get all of them here, regardless of vis)
3493 UNION
3494 SELECT ctx.*
3499 UNION
3500 SELECT ctx.*
3504 WHERE b.pagetype='course-view'
3512 }
3513 }
3519 // Find
3520 // - categories
3521 // - courses
3533 }
3534 }
3540 // No children.
3545 // No children.
3550 // Just get all the contexts except for CONTEXT_SYSTEM level
3551 // and hope we don't OOM in the process - don't cache
3562 }
3563 }
3566 /**
3567 * Gets a string for sql calls, searching for stuff in this context or above
3568 * @param object $context
3569 * @return string
3570 */
3576 }
3577 }
3579 /**
3580 * Returns the human-readable, translated version of the capability.
3581 * Basically a big switch statement.
3582 * @param $capabilityname - e.g. mod/choice:readresponses
3583 */
3586 // Typical capabilityname is mod/choice:readresponses
3630 }
3632 }
3635 /**
3636 * This gets the mod/block/course/core etc strings.
3637 * @param $component
3638 * @param $contextlevel
3639 */
3653 }
3675 }
3691 }
3695 error ('This is an unknown context $contextlevel (' . $contextlevel . ') in get_component_string!');
3698 }
3700 }
3702 /**
3703 * Gets the list of roles assigned to this context and up (parents)
3704 * @param object $context
3705 * @param view - set to true when roles are pulled for display only
3706 * this is so that we can filter roles with no visible
3707 * assignment, for example, you might want to "hide" all
3708 * course creators when browsing the course participants
3709 * list.
3710 * @return array
3711 */
3716 // filter for roles with all hidden assignments
3717 // no need to return when only pulling roles for reviewing
3718 // e.g. participants page.
3719 $hiddensql = ($view && !has_capability('moodle/role:viewhiddenassigns', $context))? ' AND ra.hidden = 0 ':'';
3723 r.name,
3724 r.shortname,
3725 r.sortorder
3728 WHERE r.id = ra.roleid
3730 $hiddensql
3734 }
3736 /** this function is used to print roles column in user profile page.
3737 * @param int userid
3738 * @param int contextid
3739 * @return string
3740 */
3745 $SQL = 'select * from '.$CFG->prefix.'role_assignments ra, '.$CFG->prefix.'role r where ra.userid='.$userid.' and ra.contextid='.$contextid.' and ra.roleid = r.id';
3748 $rolestring .= '<a href="'.$CFG->wwwroot.'/user/index.php?contextid='.$userrole->contextid.'&roleid='.$userrole->roleid.'">'.$userrole->name.'</a>, ';
3749 }
3751 }
3753 }
3756 /**
3757 * Checks if a user can override capabilities of a particular role in this context
3758 * @param object $context
3759 * @param int targetroleid - the id of the role you want to override
3760 * @return boolean
3761 */
3763 // first check if user has override capability
3764 // if not return false;
3767 }
3768 // pull out all active roles of this user from this context(or above)
3771 // if any in the role_allow_override table, then it's ok
3772 if (get_record('role_allow_override', 'roleid', $userrole->roleid, 'allowoverride', $targetroleid)) {
3774 }
3775 }
3776 }
3780 }
3782 /**
3783 * Checks if a user can assign users to a particular role in this context
3784 * @param object $context
3785 * @param int targetroleid - the id of the role you want to assign users to
3786 * @return boolean
3787 */
3790 // first check if user has override capability
3791 // if not return false;
3794 }
3795 // pull out all active roles of this user from this context(or above)
3798 // if any in the role_allow_override table, then it's ok
3799 if (get_record('role_allow_assign', 'roleid', $userrole->roleid, 'allowassign', $targetroleid)) {
3801 }
3802 }
3803 }
3806 }
3808 /** Returns all site roles in correct sort order.
3809 *
3810 */
3813 }
3815 /**
3816 * gets all the user roles assigned in this context, or higher contexts
3817 * this is mainly used when checking if a user can assign a role, or overriding a role
3818 * i.e. we need to know what this user holds, in order to verify against allow_assign and
3819 * allow_override tables
3820 * @param object $context
3821 * @param int $userid
3822 * @param view - set to true when roles are pulled for display only
3823 * this is so that we can filter roles with no visible
3824 * assignment, for example, you might want to "hide" all
3825 * course creators when browsing the course participants
3826 * list.
3827 * @return array
3828 */
3829 function get_user_roles($context, $userid=0, $checkparentcontexts=true, $order='c.contextlevel DESC, r.sortorder ASC', $view=false) {
3836 }
3838 }
3839 // set up hidden sql
3840 $hiddensql = ($view && !has_capability('moodle/role:viewhiddenassigns', $context))? ' AND ra.hidden = 0 ':'';
3846 }
3853 ' AND ra.roleid = r.id
3854 AND ra.contextid = c.id
3857 }
3859 /**
3860 * Creates a record in the allow_override table
3861 * @param int sroleid - source roleid
3862 * @param int troleid - target roleid
3863 * @return int - id or false
3864 */
3870 }
3872 /**
3873 * Creates a record in the allow_assign table
3874 * @param int sroleid - source roleid
3875 * @param int troleid - target roleid
3876 * @return int - id or false
3877 */
3883 }
3885 /**
3886 * Gets a list of roles that this user can assign in this context
3887 * @param object $context
3888 * @param string $field
3889 * @return array
3890 */
3895 // this users RAs
3900 }
3905 }
3909 // The subselect scopes the DISTINCT down to
3910 // the role ids - a DISTINCT over the whole of
3911 // the role table is much more expensive on some DBs
3914 JOIN ( SELECT DISTINCT allowassign as allowedrole
3917 ON r.id=ar.allowedrole
3925 }
3926 }
3928 }
3930 /**
3931 * Gets a list of roles that this user can override in this context
3932 * @param object $context
3933 * @return array
3934 */
3943 }
3944 }
3945 }
3948 }
3950 /**
3951 * Returns a role object that is the default role for new enrolments
3952 * in a given course
3953 *
3954 * @param object $course
3955 * @return object $role
3956 */
3960 /// First let's take the default role the course may have
3964 }
3965 }
3967 /// Otherwise the site setting should tell us
3971 }
3972 }
3974 /// It's unlikely we'll get here, but just in case, try and find a student role
3977 }
3980 }
3983 /**
3984 * who has this capability in this context
3985 * does not handling user level resolving!!!
3986 * (!)pleaes note if $fields is empty this function attempts to get u.*
3987 * which can get rather large.
3988 * i.e 1 person has 2 roles 1 allow, 1 prevent, this will not work properly
3989 * @param $context - object
3990 * @param $capability - string capability
3991 * @param $fields - fields to be pulled
3992 * @param $sort - the sort order
3993 * @param $limitfrom - number of records to skip (offset)
3994 * @param $limitnum - number of records to fetch
3995 * @param $groups - single group or array of groups - only return
3996 * users who are in one of these group(s).
3997 * @param $exceptions - list of users to exclude
3998 * @param view - set to true when roles are pulled for display only
3999 * this is so that we can filter roles with no visible
4000 * assignment, for example, you might want to "hide" all
4001 * course creators when browsing the course participants
4002 * list.
4003 * @param boolean $useviewallgroups if $groups is set the return users who
4004 * have capability both $capability and moodle/site:accessallgroups
4005 * in this context, as well as users who have $capability and who are
4006 * in $groups.
4007 */
4013 /// check for front page course, and see if default front page role has the required capability
4016 if ($CFG->defaultfrontpageroleid && ($context->id == $frontpagectx->id || strstr($context->path, '/'.$frontpagectx->id.'/'))) {
4019 return get_records_sql("SELECT $fields FROM {$CFG->prefix}user ORDER BY $sort, $limitfrom, $limitnum");
4020 }
4021 }
4023 /// Sorting out groups
4029 }
4040 }
4043 }
4045 /// Sorting out exceptions
4048 /// Set up default fields
4051 }
4053 /// Set up default sort
4056 }
4059 /// Set up hidden sql
4060 $hiddensql = ($view && !has_capability('moodle/role:viewhiddenassigns', $context))? ' AND ra.hidden = 0 ':'';
4062 /// If context is a course, then construct sql for ul
4068 }
4070 /// Sorting out roles with this capability set
4075 }
4076 $doanythingroles = get_roles_with_capability('moodle/site:doanything', CAP_ALLOW, $sitecontext);
4077 }
4084 }
4085 }
4086 if ($caps = role_context_capabilities($possiblerole->id, $context, $capability)) { // resolved list
4089 }
4090 }
4091 }
4094 }
4098 }
4100 /// Construct the main SQL
4107 AND u.deleted = 0
4109 $exceptionsql
4110 $groupsql
4114 }
4116 /**
4117 * gets all the users assigned this role in this context or higher
4118 * @param int roleid (can also be an array of ints!)
4119 * @param int contextid
4120 * @param bool parent if true, get list of users assigned in higher context too
4121 * @param string fields - fields from user (u.) , role assignment (ra) or role (r.)
4122 * @param string sort - sort from user (u.) , role assignment (ra) or role (r.)
4123 * @param bool gethidden - whether to fetch hidden enrolments too
4124 * @return array()
4125 */
4126 function get_role_users($roleid, $context, $parent=false, $fields='', $sort='u.lastname ASC', $gethidden=true, $group='') {
4134 }
4136 // whether this assignment is hidden
4145 }
4146 }
4154 }
4163 }
4168 ON u.id = ra.userid
4170 ON ra.roleid = r.id
4171 $groupjoin
4173 $roleselect
4174 $groupselect
4175 $hiddensql
4179 }
4181 /**
4182 * Counts all the users assigned this role in this context or higher
4183 * @param int roleid
4184 * @param int contextid
4185 * @param bool parent if true, get list of users assigned in higher context too
4186 * @return array()
4187 */
4196 }
4199 }
4207 }
4209 /**
4210 * This function gets the list of courses that this user has a particular capability in.
4211 * It is still not very efficient.
4212 * @param string $capability Capability in question
4213 * @param int $userid User ID or null for current user
4214 * @param bool $doanything True if 'doanything' is permitted (default)
4215 * @param string $fieldsexceptid Leave blank if you only need 'id' in the course records;
4216 * otherwise use a comma-separated list of the fields you require, not including id
4217 * @param string $orderby If set, use a comma-separated list of fields from course
4218 * table with sql modifiers (DESC) if needed
4219 * @return array Array of courses, may have zero entries. Or false if query failed.
4220 */
4221 function get_user_capability_course($capability, $userid=NULL,$doanything=true,$fieldsexceptid='',$orderby='') {
4222 // Convert fields list and ordering
4228 }
4229 }
4236 }
4238 }
4240 }
4242 // Obtain a list of everything relevant about all courses including context.
4243 // Note the result can be used directly as a context (we are going to), the course
4244 // fields are just appended.
4247 SELECT
4249 FROM
4252 $orderby
4256 }
4258 // Check capability for each course in turn
4262 // We've got the capability. Make the record look like a course record
4263 // and store it
4269 }
4270 }
4272 }
4274 /** This function finds the roles assigned directly to this context only
4275 * i.e. no parents role
4276 * @param object $context
4277 * @return array
4278 */
4286 WHERE ra.roleid = r.id
4289 }
4291 /**
4292 * Switches the current user to another role for the current session and only
4293 * in the given context.
4294 *
4295 * The caller *must* check
4296 * - that this op is allowed
4297 * - that the requested role can be assigned in this ctx
4298 * (hint, use get_assignable_roles())
4299 * - that the requested role is NOT $CFG->defaultuserroleid
4300 *
4301 * To "unswitch" pass 0 as the roleid.
4302 *
4303 * This function *will* modify $USER->access - beware
4304 *
4305 * @param integer $roleid
4306 * @param object $context
4307 * @return bool
4308 */
4312 //
4313 // Plan of action
4314 //
4315 // - Add the ghost RA to $USER->access
4316 // as $USER->access['rsw'][$path] = $roleid
4317 //
4318 // - Make sure $USER->access['rdef'] has the roledefs
4319 // it needs to honour the switcheroo
4320 //
4321 // Roledefs will get loaded "deep" here - down to the last child
4322 // context. Note that
4323 //
4324 // - When visiting subcontexts, our selective accessdata loading
4325 // will still work fine - though those ra/rdefs will be ignored
4326 // appropriately while the switch is in place
4327 //
4328 // - If a switcheroo happens at a category with tons of courses
4329 // (that have many overrides for switched-to role), the session
4330 // will get... quite large. Sometimes you just can't win.
4331 //
4332 // To un-switch just unset($USER->access['rsw'][$path])
4333 //
4335 // Add the switch RA
4338 }
4344 }
4346 }
4350 // Load roledefs
4354 /* DO WE NEED THIS AT ALL???
4355 // Add some permissions we are really going
4356 // to always need, even if the role doesn't have them!
4358 $USER->capabilities[$context->id]['moodle/course:view'] = CAP_ALLOW;
4359 */
4362 }
4365 // get any role that has an override on exact context
4373 WHERE rc.roleid = r.id
4375 }
4377 // get all capabilities for this role on this context (overrids)
4386 }
4388 // find out which roles has assignment on this context
4396 WHERE ra.roleid = r.id
4398 }
4402 /**
4403 * Find all user assignemnt of users for this role, on this context
4404 */
4413 }
4415 /**
4416 * Simple function returning a boolean true if roles exist, otherwise false
4417 */
4421 return record_exists('role_assignments', 'userid', $userid, 'roleid', $roleid, 'contextid', $contextid);
4424 }
4425 }
4427 // gets the custom name of the role in course
4428 // TODO: proper documentation
4435 }
4436 }
4438 /**
4439 * This function helps admin/roles/manage.php etc to detect if a new line should be printed
4440 * when we read in a new capability
4441 * most of the time, if the 2 components are different we should print a new line, (e.g. course system->rss client)
4442 * but when we are in grade, all reports/import/export capabilites should be together
4443 * @param string a - component string a
4444 * @param string b - component string b
4445 * @return bool - whether 2 component are in different "sections"
4446 */
4451 }
4459 // we are in gradebook, still
4460 if (($compsa[0] == 'gradeexport' || $compsa[0] == 'gradeimport' || $compsa[0] == 'gradereport') &&
4463 }
4464 }
4467 }
4469 /**
4470 * Populate context.path and context.depth where missing.
4471 *
4472 * Use $force=true to force a complete rebuild of
4473 * the path and depth fields.
4474 *
4475 */
4480 // Site
4488 }
4490 // Sitecourse
4502 }
4510 }
4512 /* MDL-11347:
4513 * - mysql does not allow to use FROM in UPDATE statements
4514 * - using two tables after UPDATE works in mysql, but might give unexpected
4515 * results in pg 8 (depends on configuration)
4516 * - using table alias in UPDATE does not work in pg < 8.2
4517 */
4520 SET ct.path = temp.path,
4521 ct.depth = temp.depth
4525 SET (ct.path, ct.depth) =
4526 (SELECT temp.path, temp.depth
4528 WHERE temp.id=ct.id)
4529 WHERE EXISTS (SELECT 'x'
4534 SET path = temp.path,
4535 depth = temp.depth
4538 }
4542 // Top level categories
4546 AND EXISTS (SELECT 'x'
4549 AND cc.depth=1)
4556 // Deeper categories - one query per depthlevel
4568 AND NOT EXISTS (SELECT 'x'
4570 WHERE temp.id = ctx.id)
4573 }
4578 // Courses -- except sitecourse
4587 AND NOT EXISTS (SELECT 'x'
4589 WHERE temp.id = ctx.id)
4596 // Module instances
4604 AND NOT EXISTS (SELECT 'x'
4606 WHERE temp.id = ctx.id)
4613 // Blocks - non-pinned course-view only
4621 AND bi.pagetype='course-view'
4622 AND NOT EXISTS (SELECT 'x'
4624 WHERE temp.id = ctx.id)
4631 // Blocks - others
4635 AND EXISTS (SELECT 'x'
4638 AND bi.pagetype!='course-view')
4642 // User
4646 AND EXISTS (SELECT 'x'
4652 // Personal TODO
4654 //TODO: fix group contexts
4655 }
4657 /**
4658 * Update the path field of the context and
4659 * all the dependent subcontexts that follow
4660 * the move.
4661 *
4662 * The most important thing here is to be as
4663 * DB efficient as possible. This op can have a
4664 * massive impact in the DB.
4665 *
4666 * @param obj current context obj
4667 * @param obj newparent new parent obj
4668 *
4669 */
4679 }
4682 $setdepth
4689 $setdepth
4695 }
4698 /**
4699 * Turn the ctx* fields in an objectlike record
4700 * into a context subobject. This allows
4701 * us to SELECT from major tables JOINing with
4702 * context at no cost, saving a ton of context
4703 * lookups...
4704 */
4715 }
4717 /*
4718 * Fetch recent dirty contexts to know cheaply whether our $USER->access
4719 * is stale and needs to be reloaded.
4720 *
4721 * Uses config_plugins.
4722 *
4723 */
4729 WHERE plugin='accesslib/dirtycontexts'
4733 }
4735 }
4737 /*
4738 * Mark a context as dirty (with timestamp)
4739 * so as to force reloading of the context.
4740 *
4741 */
4744 // only if it is a non-empty string
4747 }
4748 }
4750 /*
4751 * Cleanup all the old/stale dirty contexts.
4752 * Any context exceeding our session
4753 * timeout is stale. We only keep these for ongoing
4754 * sessions.
4755 *
4756 */
4763 }
4765 /*
4766 * Will walk the contextpath to answer whether
4767 * the contextpath is clean
4768 *
4769 * NOTE: it will *NOT* test the base path
4770 * as it assumes that the caller has checked
4771 * that beforehand.
4772 *
4773 * @param string path
4774 * @param obj/array dirty from get_dirty_contexts()
4775 *
4776 */
4781 // all clean, no dirt!
4784 }
4786 // is _this_ context dirty?
4789 }
4793 // we don't test basepath
4794 // assume caller did it already
4796 }
4799 }
4800 }
4802 }
4804 ?>