mirror of
https://github.com/moodle/moodle.git
synced 2025-08-04 16:36:37 +02:00
90723839ca
Very big theme changes, standardold theme has been split into two themes base and standard. Base theme contains only CSS that is absolutly required (e.g. layout, white space rules, specific widths) and standard (which now looks like standardwhite) contains all the frills. The following noteable changes have also been made: * Plugin CSS has been pushed back into the plugin directories as styles.css files. * Install_print_header has been corrected. * Redundant or deprecated rules have been removed. * Several minor class changes throughout Moodle. * CSS is now single line rules not multiline indented. * Installs with theme=standardold automatically switch to standard. * body classes / id now have prefixes to make it clearer what they are and avoid conflicts. Also worth noting: * There is still alot of tweaking that is required to get everything looking as it is supposed to, please be patient or better yet help out. * I am currently working on the documentation for the themes system... it will be here soon.
214 lines
8.3 KiB
PHP
214 lines
8.3 KiB
PHP
<?php
|
|
/**
|
|
* For a given capability, show what permission it has for every role, and
|
|
* everywhere that it is overridden.
|
|
*
|
|
* @license http://www.gnu.org/copyleft/gpl.html GNU Public License
|
|
* @package roles
|
|
*/
|
|
|
|
/** */
|
|
require_once(dirname(__FILE__).'/../../../config.php');
|
|
require_once($CFG->libdir.'/adminlib.php');
|
|
|
|
// Check permissions.
|
|
require_login();
|
|
$systemcontext = get_context_instance(CONTEXT_SYSTEM);
|
|
require_capability('moodle/role:manage', $systemcontext);
|
|
|
|
// Get URL parameters.
|
|
$capability = optional_param('capability', '', PARAM_CAPABILITY);
|
|
$roleids = optional_param('roles', array('0'), PARAM_INTEGER);
|
|
|
|
// Clean the passed in list of role ids. If 'All' selected as an option, or
|
|
// if none were selected, do all roles.
|
|
$allroles = get_all_roles();
|
|
$cleanedroleids = array();
|
|
foreach ($roleids as $roleid) {
|
|
if ($roleid == 0) {
|
|
$cleanedroleids = array_keys($allroles);
|
|
break;
|
|
}
|
|
if (array_key_exists($roleid, $allroles)) {
|
|
$cleanedroleids[] = $roleid;
|
|
}
|
|
}
|
|
if (empty($cleanedroleids)) {
|
|
$cleanedroleids = array_keys($allroles);
|
|
}
|
|
|
|
// Include the required JavaScript.
|
|
$PAGE->requires->js_init_call('M.report_capability.init', array(get_string('search')));
|
|
|
|
// Log.
|
|
add_to_log(SITEID, "admin", "report capability", "report/capability/index.php?capability=$capability", $capability);
|
|
|
|
// Print the header.
|
|
admin_externalpage_setup('reportcapability');
|
|
admin_externalpage_print_header();
|
|
|
|
// Prepare the list of capabilites to choose from
|
|
$allcapabilities = fetch_context_capabilities($systemcontext);
|
|
$capabilitychoices = array();
|
|
foreach ($allcapabilities as $cap) {
|
|
$capabilitychoices[$cap->name] = $cap->name . ': ' . get_capability_string($cap->name);
|
|
}
|
|
|
|
// Prepare the list of roles to choose from
|
|
$rolechoices = array('0' => get_string('all'));
|
|
foreach ($allroles as $role) {
|
|
$rolechoices[$role->id] = $role->name;
|
|
}
|
|
if (count($cleanedroleids) == count($allroles)) {
|
|
// Select 'All', rather than each role individually.
|
|
$selectedroleids = array('0');
|
|
} else {
|
|
$selectedroleids = $cleanedroleids;
|
|
}
|
|
|
|
// Print the settings form.
|
|
echo $OUTPUT->box_start('generalbox boxwidthwide boxaligncenter');
|
|
echo '<form method="get" action="." id="settingsform"><div>';
|
|
echo $OUTPUT->heading(get_string('reportsettings', 'report_capability'));
|
|
echo '<p id="intro">', get_string('intro', 'report_capability') , '</p>';
|
|
echo '<p><label for="menucapability"> ' . get_string('capabilitylabel', 'report_capability') . '</label></p>';
|
|
echo html_writer::select($capabilitychoices, 'capability', $capability, array(''=>'choose'), array('size'=>10));
|
|
echo '<p><label for="menuroles"> ' . get_string('roleslabel', 'report_capability') . '</label></p>';
|
|
echo html_writer::select($rolechoices, 'roles[]', $selectedroleids, false, array('size'=>10, 'multiple'=>'multiple'));
|
|
echo '<p><input type="submit" id="settingssubmit" value="' . get_string('getreport', 'report_capability') . '" /></p>';
|
|
echo '</div></form>';
|
|
echo $OUTPUT->box_end();
|
|
|
|
// If we have a capability, generate the report.
|
|
if ($capability) {
|
|
|
|
// Work out the bits needed for the SQL WHERE clauses.
|
|
$params = array($capability);
|
|
$sqlroletest = '';
|
|
if (count($cleanedroleids) != count($allroles)) {
|
|
list($sqlroletest, $roleparams) = $DB->get_in_or_equal($cleanedroleids);
|
|
$params = array_merge($params, $roleparams);
|
|
$sqlroletest = 'AND roleid ' . $sqlroletest;
|
|
}
|
|
|
|
// Get all the role_capabilities rows for this capability - that is, all
|
|
// role definitions, and all role overrides.
|
|
$rolecaps = $DB->get_records_sql("
|
|
SELECT id, roleid, contextid, permission
|
|
FROM {role_capabilities}
|
|
WHERE capability = ? $sqlroletest", $params);
|
|
|
|
// In order to display a nice tree of contexts, we need to get all the
|
|
// ancestors of all the contexts in the query we just did.
|
|
$relevantpaths = $DB->get_records_sql_menu("
|
|
SELECT DISTINCT con.path, 1
|
|
FROM {context} con JOIN {role_capabilities} rc ON rc.contextid = con.id
|
|
WHERE capability = ? $sqlroletest", $params);
|
|
$requiredcontexts = array($systemcontext->id);
|
|
foreach ($relevantpaths as $path => $notused) {
|
|
$requiredcontexts = array_merge($requiredcontexts, explode('/', trim($path, '/')));
|
|
}
|
|
$requiredcontexts = array_unique($requiredcontexts);
|
|
|
|
// Now load those contexts.
|
|
list($sqlcontexttest, $contextparams) = $DB->get_in_or_equal($requiredcontexts);
|
|
$contexts = get_sorted_contexts('ctx.id ' . $sqlcontexttest, $contextparams);
|
|
|
|
// Prepare some empty arrays to hold the data we are about to compute.
|
|
foreach ($contexts as $conid => $con) {
|
|
$contexts[$conid]->children = array();
|
|
$contexts[$conid]->rolecapabilites = array();
|
|
}
|
|
|
|
// Put the contexts into a tree structure.
|
|
foreach ($contexts as $conid => $con) {
|
|
$parentcontextid = get_parent_contextid($con);
|
|
if ($parentcontextid) {
|
|
$contexts[$parentcontextid]->children[] = $conid;
|
|
}
|
|
}
|
|
|
|
// Put the role capabilites into the context tree.
|
|
foreach ($rolecaps as $rolecap) {
|
|
$contexts[$rolecap->contextid]->rolecapabilites[$rolecap->roleid] = $rolecap->permission;
|
|
}
|
|
|
|
// Fill in any missing rolecaps for the system context.
|
|
foreach ($cleanedroleids as $roleid) {
|
|
if (!isset($contexts[$systemcontext->id]->rolecapabilites[$roleid])) {
|
|
$contexts[$systemcontext->id]->rolecapabilites[$roleid] = CAP_INHERIT;
|
|
}
|
|
}
|
|
|
|
// Print the report heading.
|
|
echo $OUTPUT->heading(get_string('reportforcapability', 'report_capability', get_capability_string($capability)), 2, 'main', 'report');
|
|
if (count($cleanedroleids) != count($allroles)) {
|
|
$rolenames = array();
|
|
foreach ($cleanedroleids as $roleid) {
|
|
$rolenames[] = $allroles[$roleid]->name;
|
|
}
|
|
echo '<p>', get_string('forroles', 'report_capability', implode(', ', $rolenames)), '</p>';
|
|
}
|
|
|
|
// Now, recursively print the contexts, and the role information.
|
|
print_report_tree($systemcontext->id, $contexts, $allroles);
|
|
}
|
|
|
|
// Footer.
|
|
echo $OUTPUT->footer();
|
|
|
|
function print_report_tree($contextid, $contexts, $allroles) {
|
|
global $CFG;
|
|
|
|
// Array for holding lang strings.
|
|
static $strpermissions = null;
|
|
if (is_null($strpermissions)) {
|
|
$strpermissions = array(
|
|
CAP_INHERIT => get_string('notset','role'),
|
|
CAP_ALLOW => get_string('allow','role'),
|
|
CAP_PREVENT => get_string('prevent','role'),
|
|
CAP_PROHIBIT => get_string('prohibit','role')
|
|
);
|
|
}
|
|
|
|
// Start the list item, and print the context name as a link to the place to
|
|
// make changes.
|
|
if ($contextid == get_system_context()->id) {
|
|
$url = "$CFG->wwwroot/$CFG->admin/roles/manage.php";
|
|
$title = get_string('changeroles', 'report_capability');
|
|
} else {
|
|
$url = "$CFG->wwwroot/$CFG->admin/roles/override.php?contextid=$contextid";
|
|
$title = get_string('changeoverrides', 'report_capability');
|
|
}
|
|
echo '<h3><a href="' . $url . '" title="' . $title . '">', print_context_name($contexts[$contextid]), '</a></h3>';
|
|
|
|
// If there are any role overrides here, print them.
|
|
if (!empty($contexts[$contextid]->rolecapabilites)) {
|
|
$rowcounter = 0;
|
|
echo '<table class="generaltable rolecaps"><tbody>';
|
|
foreach ($allroles as $role) {
|
|
if (isset($contexts[$contextid]->rolecapabilites[$role->id])) {
|
|
$permission = $contexts[$contextid]->rolecapabilites[$role->id];
|
|
echo '<tr class="r' . ($rowcounter % 2) . '"><th class="cell">', $role->name,
|
|
'</th><td class="cell">' . $strpermissions[$permission] . '</td></tr>';
|
|
$rowcounter++;
|
|
}
|
|
}
|
|
echo '</tbody></table>';
|
|
}
|
|
|
|
// After we have done the site context, change the string for CAP_INHERIT
|
|
// from 'notset' to 'inherit'.
|
|
$strpermissions[CAP_INHERIT] = get_string('inherit','role');
|
|
|
|
// If there are any child contexts, print them recursively.
|
|
if (!empty($contexts[$contextid]->children)) {
|
|
echo '<ul>';
|
|
foreach ($contexts[$contextid]->children as $childcontextid) {
|
|
echo '<li>';
|
|
print_report_tree($childcontextid, $contexts, $allroles);
|
|
echo '</li>';
|
|
}
|
|
echo '</ul>';
|
|
}
|
|
}
|