PageRenderTime 63ms CodeModel.GetById 28ms RepoModel.GetById 0ms app.codeStats 1ms

/community/www/student.php

https://github.com/svn2github/efront-lms
PHP | 638 lines | 503 code | 22 blank | 113 comment | 219 complexity | 13ea4239e2a703a605707e9896ccdc2f MD5 | raw file
Possible License(s): BSD-3-Clause, MPL-2.0-no-copyleft-exception, LGPL-3.0 
    

  1. <?php
    2. 

  2. /**
    3. 

    4. 

  4. * Student main page
    5. 

    6. 

  6. *
    7. 

    8. 

  8. * This page performs all student function
    9. 

    10. 

  10. * @package eFront
    11. 

    12. 

  12. * @version 1.0
    13. 

    14. 

  14. */
    15. 

  15. session_cache_limiter('none'); //Initialize session
    16. 

  16. session_start();
    17. 

  17. $path = "../libraries/"; //Define default path
    18. 

  18. /** The configuration file.*/
    19. 

  19. require_once $path."configuration.php";
    20. 

  20. $benchmark = new EfrontBenchmark($debug_TimeStart);
    21. 

  21. $benchmark -> set('init');
    22. 

  22. //Set headers in order to eliminate browser cache (especially IE's)
    23. 

  23. header("Cache-Control: no-cache, must-revalidate"); // HTTP/1.1
    24. 

  24. header("Expires: Mon, 26 Jul 1997 05:00:00 GMT"); // Date in the past
    25. 

  25. //If the page is shown as a popup, make sure it remains in such mode
    26. 

  26. if (!isset($_GET['reset_popup']) && (isset($_GET['popup']) || isset($_POST['popup']) || (isset($_SERVER['HTTP_REFERER']) && strpos(strtolower($_SERVER['HTTP_REFERER']), 'popup') !== false && strpos(strtolower($_SERVER['HTTP_REFERER']), 'reset_popup') === false))) {
    27. 

  27.     output_add_rewrite_var('popup', 1);
    28. 

  28.     $smarty -> assign("T_POPUP_MODE", true);
    29. 

  29.     $popup = 1;
    30. 

  30. }
    31. 

  31. $search_message = $message = $message_type = ''; //Initialize messages, because if register_globals is turned on, some messages will be displayed twice
    32. 

  32. $load_editor = false;
    33. 

  33. $loadScripts = array();
    34. 

  34. 

  35. try {
    36. 

  36.  $currentUser = EfrontUser :: checkUserAccess(false, 'student');
    37. 

  37.  if ($currentUser -> user['user_type'] == 'administrator') {
    38. 

  38.   throw new Exception(_ADMINISTRATORCANNOTACCESSLESSONPAGE, EfrontUserException :: RESTRICTED_USER_TYPE);
    39. 

  39.  }
    40. 

  40.  $smarty -> assign("T_CURRENT_USER", $currentUser);
    41. 

  41. } catch (Exception $e) {
    42. 

  42.  if ($e -> getCode() == EfrontUserException :: USER_NOT_LOGGED_IN && !isset($_GET['ajax'])) {
    43. 

  43.   setcookie('c_request', htmlspecialchars_decode(basename($_SERVER['REQUEST_URI'])), time() + 300);
    44. 

  44.  }
    45. 

  45.  eF_redirect("index.php?ctg=expired");
    46. 

  46.  exit;
    47. 

  47. }
    48. 

  48. 

  49. if (isset($_SESSION['s_index_comply'])) {
    50. 

  50.  eF_redirect("index.php?ctg=".$_SESSION['s_index_comply']);
    51. 

  51.  exit;
    52. 

  52. } else if (isset($_SESSION['missing_fields']) && ($_GET['ctg'] != 'personal' || $_GET['user'] != $currentUser->user['login'] || $_GET['op'] != 'profile')) {
    53. 

  53.  eF_redirect(basename($_SERVER['PHP_SELF'])."?ctg=personal&user=".$currentUser->user['login']."&op=profile&message=".urlencode(_PLEASEFILLINMISSINGMANDATORYFIELDS)."&message_type=success");
    54. 

  54.  exit;
    55. 

  55. }
    56. 

  56. 

  57. if (!isset($_GET['ajax']) && !isset($_GET['postAjaxRequest']) && !isset($popup) && !isset($_GET['tabberajax'])) {
    58. 

  58.  $_SESSION['previousMainUrl'] = $_SERVER['REQUEST_URI'];
    59. 

  59. }
    60. 

  60. 

  61. if (isset($_COOKIE['c_request']) && $_COOKIE['c_request']) {
    62. 

  62.  setcookie('c_request', '', time() - 86400);
    63. 

  63.     if (mb_strpos($_COOKIE['c_request'], '.php') !== false) {
    64. 

  64.      $urlParts = parse_url($_COOKIE['c_request']);
    65. 

  65.      if (basename($urlParts['path']) == 'student.php') {
    66. 

  66.          eF_redirect($_COOKIE['c_request']);
    67. 

  67.      }
    68. 

  68.     } else {
    69. 

  69.         eF_redirect($_SESSION['s_type'].'.php?'.$_COOKIE['c_request']);
    70. 

  70.     }
    71. 

  71. }
    72. 

  72. 

  73. 

  74. 

  75. try {
    76. 

  76.  if (isset($_GET['view_unit']) || isset($_GET['package_ID'])) {
    77. 

  77.   if ($_GET['view_unit']) {
    78. 

  78.    $unit = new EfrontUnit($_GET['view_unit']);
    79. 

  79.   } elseif ($_GET['package_ID']) {
    80. 

  80.    $unit = new EfrontUnit($_GET['package_ID']);
    81. 

  81.   }
    82. 

  82.   if (!$unit['active'] && $_SESSION['s_lesson_user_type'] == "student") {
    83. 

  83.    $message = _YOUCANNOTACCESSTHISPAGE;
    84. 

  84.             eF_redirect("student.php?message=".urlencode($message)."&message_type=failure");
    85. 

  85.   }
    86. 

  86.   $currentLesson = new EfrontLesson($unit['lessons_ID']);
    87. 

  87.   $_SESSION['s_lessons_ID'] = $currentLesson -> lesson['id'];
    88. 

  88.   //$_SESSION['s_time_target'] = array($_SESSION['s_lessons_ID'] => 'lesson');
    89. 

  89.  }
    90. 

  90. } catch (Exception $e) {
    91. 

  91.  unset($_GET['view_unit']);
    92. 

  92.  $smarty -> assign("T_EXCEPTION_TRACE", $e -> getTraceAsString());
    93. 

  93.  $message = $e -> getMessage().' ('.$e -> getCode().') &nbsp;<a href = "javascript:void(0)" onclick = "eF_js_showDivPopup(\''._ERRORDETAILS.'\', 2, \'error_details\')">'._MOREINFO.'</a>';
    94. 

  94.  $message_type = 'failure';
    95. 

  95. }
    96. 

  96. 

  97. $roles = EfrontLessonUser :: getLessonsRoles();
    98. 

  98. $userLessons = $currentUser -> getLessons();
    99. 

  99. if ($_SESSION['s_lessons_ID'] && $_GET['ctg'] != 'lessons') {
    100. 

  100.  try {
    101. 

  101.   $currentLesson = new EfrontLesson($_SESSION['s_lessons_ID']); //Initialize lesson
    102. 

  102.         //$_SESSION['s_time_target'] = array($_SESSION['s_lessons_ID'] => 'lesson');
    103. 

  103.  } catch (Exception $e) {
    104. 

  104.   unset($_SESSION['s_lessons_ID']);
    105. 

  105.   $smarty -> assign("T_REFRESH_SIDE", "true");
    106. 

  106.  }
    107. 

  107. }
    108. 

  108. 

  109. /* This is used to allow users to enter directly internal lesson specific pages from external pages*/
    110. 

  110. if (isset($_GET['new_lessons_ID']) && eF_checkParameter($_GET['new_lessons_ID'], 'id')) {
    111. 

  111.   if ($_GET['new_lessons_ID'] != $_SESSION['s_lessons_ID']) {
    112. 

  112.   $_SESSION['s_lessons_ID'] = $_GET['new_lessons_ID'];
    113. 

  113.   if (isset($_GET['sbctg'])) {
    114. 

  114.   //	echo "swsta";
    115. 

  115.    $smarty -> assign("T_SPECIFIC_LESSON_CTG", $_GET['sbctg']);
    116. 

  116.   }
    117. 

  117.   $smarty -> assign("T_REFRESH_SIDE","true");
    118. 

  118.   } else if ($_GET['new_lessons_ID'] == $_SESSION['s_lessons_ID']) {
    119. 

  119. 

  120.         $smarty -> assign("T_SHOW_LOADED_LESSON_OPTIONS", 1);
    121. 

  121.     }
    122. 

  122. }
    123. 

  123. 

  124. /*This is the first time the professor enters this lesson, so register the lesson id to the session*/
    125. 

  125. if (isset($_GET['lessons_ID']) && eF_checkParameter($_GET['lessons_ID'], 'id')) {
    126. 

  126.  if (!isset($_SESSION['s_lessons_ID']) || $_GET['lessons_ID'] != $_SESSION['s_lessons_ID'] || (isset($_GET['from_course']) && $_GET['from_course'] != $_SESSION['s_courses_ID'])) {
    127. 

  127.      if (isset($_GET['course']) || isset($_GET['from_course'])) {
    128. 

  128.             if ($_GET['course']) {
    129. 

  129.           $course = new EfrontCourse($_GET['course']);
    130. 

  130.             } else {
    131. 

  131.              $course = new EfrontCourse($_GET['from_course']);
    132. 

  132.             }
    133. 

  133.             $eligibility = $course -> checkRules($_SESSION['s_login']);
    134. 

  134. 

  135.             if ($eligibility[$_GET['lessons_ID']] == 0){
    136. 

  136.                 unset($_GET['lessons_ID']);
    137. 

  137.                 $message = _YOUCANNOTACCESSTHISLESSONBECAUSEOFCOURSERULES;
    138. 

  138.                 eF_redirect("student.php?ctg=lessons&message=".urlencode($message)."&message_type=failure");
    139. 

  139.             }
    140. 

  140.             $_SESSION['s_courses_ID'] = $course -> course['id'];
    141. 

  141.         } else {
    142. 

  142.          unset($_SESSION['s_courses_ID']);
    143. 

  143.         }
    144. 

  144. 

  145.         if (in_array($_GET['lessons_ID'], array_keys($userLessons))) {
    146. 

  146.             $newLesson = new EfrontLesson($_GET['lessons_ID']);
    147. 

  147.             if (!isset($_GET['course']) && !isset($_GET['from_course']) && $roles[$userLessons[$_GET['lessons_ID']]] == 'student' && (($newLesson -> lesson['from_timestamp'] && $newLesson -> lesson['from_timestamp'] > time()) || ($newLesson -> lesson['to_timestamp'] && $newLesson -> lesson['to_timestamp'] < time()))) {
    148. 

  148.              eF_redirect("student.php?ctg=lessons&message=".urlencode(_YOUCANNOTACCESSTHISLESSONORITDOESNOTEXIST));
    149. 

  149.             }
    150. 

  150.          $_SESSION['s_lessons_ID'] = $_GET['lessons_ID'];
    151. 

  151.             $_SESSION['s_type'] = $roles[$userLessons[$_GET['lessons_ID']]];
    152. 

  152. 

  153.             //$justVisited = 1;   // used to trigger the event when the lesson info is available
    154. 

  154.                 // The justVisited flag is set to one during the first visit to this lesson
    155. 

  155.          //if ($justVisited) {
    156. 

  156.              //Trigger onLessonVisited event
    157. 

  157.          EfrontEvent::triggerEvent(array("type" => EfrontEvent::LESSON_VISITED, "users_LOGIN" => $currentUser -> user['login'], "users_name" => $currentUser -> user['name'], "users_surname" => $currentUser -> user['surname'], "lessons_ID" => $_SESSION['s_lessons_ID']));
    158. 

  158.          //}
    159. 

  159. 

  160.             $smarty -> assign("T_CHANGE_LESSON", "true");
    161. 

  161.             $smarty -> assign("T_REFRESH_SIDE", "true");
    162. 

  162.         } else {
    163. 

  163.             unset($_GET['lessons_ID']);
    164. 

  164.             $message = _YOUCANNOTACCESSTHISLESSONORITDOESNOTEXIST;
    165. 

  165.             $message_type = 'failure';
    166. 

  166.             $ctg = 'personal';
    167. 

  167. 

  168.         }
    169. 

  169.     } else if ($_GET['lessons_ID'] == $_SESSION['s_lessons_ID']) {
    170. 

  170.         $smarty -> assign("T_SHOW_LOADED_LESSON_OPTIONS", 1);
    171. 

  171.     }
    172. 

  172. }
    173. 

  173. 

  174. 

  175. if ($_SESSION['s_lessons_ID'] && $roles[$userLessons[$_SESSION['s_lessons_ID']]].'.php' != basename($_SERVER['PHP_SELF'])) {
    176. 

  176.     if ($_GET['ctg'] != 'lessons') {
    177. 

  177.         eF_redirect(''.$roles[$userLessons[$_SESSION['s_lessons_ID']]].'.php');
    178. 

  178.         exit;
    179. 

  179.     }
    180. 

  180. }
    181. 

  181. 

  182. if (isset($_SESSION['s_lessons_ID']) && $_SESSION['s_lessons_ID'] && $_GET['ctg'] != 'lessons') { //Check validity of current lesson
    183. 

  183.     $userLessons = $currentUser -> getLessons();
    184. 

  184.     if (!isset($userLessons[$_SESSION['s_lessons_ID']]) || $roles[$userLessons[$_SESSION['s_lessons_ID']]] != 'student') {
    185. 

  185.         eF_redirect("student.php?ctg=lessons"); //redirect to student's lessons page
    186. 

  186.         exit;
    187. 

  187.     }
    188. 

  188.     try {
    189. 

  189.         $currentUser -> applyRoleOptions($userLessons[$_SESSION['s_lessons_ID']]); //Initialize user's role options for this lesson
    190. 

  190.         $currentLesson = new EfrontLesson($_SESSION['s_lessons_ID']); //Initialize lesson
    191. 

  191.         $smarty -> assign("T_TITLE_BAR", $currentLesson -> lesson['name']);
    192. 

  192.         //$_SESSION['s_time_target'] = array($_SESSION['s_lessons_ID'] => 'lesson');
    193. 

  193.         $_SESSION['s_lesson_user_type'] = $roles[$userLessons[$_SESSION['s_lessons_ID']]]; //needed for outputfilter.eF_template_setInnerLinks
    194. 

  194.         $currentUser -> coreAccess['content'] != 'change' ? $currentLesson -> mode = 'browse' : $currentLesson -> mode = 'normal'; //If the user type's setting is other than 'change' from content, then set lesson mode to 'browse', which means that no unit completion or ' or whatever progress is recorded
    195. 

  195.     } catch (Exception $e) {
    196. 

  196.         unset($_SESSION['s_lessons_ID']);
    197. 

  197.         $message = $e -> getMessage().' ('.$e -> getCode().')';
    198. 

  198.         eF_redirect("".basename($_SERVER['PHP_SELF'])."?message=".urlencode($message)."&message_type=failure"); //redirect to user lessons page
    199. 

  199.     }
    200. 

  200. }
    201. 

  201. //@todo: remove package_ID from $_SESSION, beware package_ID is needed in lms_commit
    202. 

  202. if (isset($_SESSION['package_ID']) && !$_GET['commit_lms']) {
    203. 

  203.     unset($_SESSION['package_ID']);
    204. 

  204. }
    205. 

  205. 

  206. try {
    207. 

  207.     if (isset($_GET['view_unit']) && eF_checkParameter($_GET['view_unit'], 'id')) {
    208. 

  208.         $currentContent = new EfrontContentTree($currentLesson); //Initialize content
    209. 

  209.         $currentContent -> markSeenNodes($currentUser);
    210. 

  210. 

  211.         if ($currentLesson->lesson['access_limit']) {
    212. 

  212.          $result = eF_getTableData("users_to_lessons", "access_counter", "users_LOGIN='".$currentUser->user['login']."' and lessons_ID='".$currentLesson->lesson['id']."'");
    213. 

  213.          if ($result[0]['access_counter'] >= $currentLesson->lesson['access_limit']) {
    214. 

  214.           eF_redirect(basename($_SERVER['PHP_SELF'])."?ctg=lessons&message=".urlencode(_ACCESSDEPLETED)."&message_type=failure");
    215. 

  215.          } else {
    216. 

  216.           eF_updateTableData("users_to_lessons", array('access_counter' => $result[0]['access_counter']+1), "users_LOGIN='".$currentUser->user['login']."' and lessons_ID='".$currentLesson->lesson['id']."'");
    217. 

  217.          }
    218. 

  218.         }
    219. 

  219. 

  220.         if ($currentUser -> coreAccess['content'] == 'hidden') {
    221. 

  221.             eF_redirect("".basename($_SERVER['PHP_SELF'])."?ctg=control_panel&message=".urlencode(_UNAUTHORIZEDACCESS)."&message_type=failure");
    222. 

  222.         }
    223. 

  223.         if (!$currentLesson || !$currentContent) {
    224. 

  224.             eF_redirect("".basename($_SERVER['PHP_SELF']));
    225. 

  225.         }
    226. 

  226.         $currentUnit = $currentContent -> seekNode($_GET['view_unit']); //Initialize current unit
    227. 

  227.         //The content tree does not hold data, so assign this unit its data
    228. 

  228.         $unitData = new EfrontUnit($_GET['view_unit']);
    229. 

  229.         //$_SESSION['s_time_target'] = array($_GET['view_unit'] => 'unit');        
    230. 

  230.         $currentUnit['data'] = $unitData['data'];
    231. 

  231.         if (!$_GET['ctg']) {
    232. 

  232.             $_GET['ctg'] = 'content';
    233. 

  233.         }
    234. 

  234.     } elseif (isset($_GET['package_ID']) && $currentContent) {
    235. 

  235.         $_GET['ctg'] = 'content';
    236. 

  236.     }
    237. 

  237. } catch (Exception $e) {
    238. 

  238.     unset($_GET['view_unit']);
    239. 

  239.     $smarty -> assign("T_EXCEPTION_TRACE", $e -> getTraceAsString());
    240. 

  240.     $message = $e -> getMessage().' ('.$e -> getCode().') &nbsp;<a href = "javascript:void(0)" onclick = "eF_js_showDivPopup(\''._ERRORDETAILS.'\', 2, \'error_details\')">'._MOREINFO.'</a>';
    241. 

  241.     $message_type = 'failure';
    242. 

  242. }
    243. 

  243. $redirectPage = $GLOBALS['configuration']['login_redirect_page'];
    244. 

  244. if ($redirectPage == "user_dashboard" && $user_type != "administrator") {
    245. 

  245.  $location = "student.php?ctg=personal&user=".$_SESSION['s_login']."&op=dashboard";
    246. 

  246. } elseif (strpos($redirectPage, "module") !== false) {
    247. 

  247.  $location = "student.php?ctg=landing_page";
    248. 

  248. } else {
    249. 

  249.  $location = "student.php?ctg=lessons";
    250. 

  250. }
    251. 

  251. $smarty->assign("T_HOME_LINK", $location);
    252. 

  252. ///MODULE1: Import
    253. 

  253. try {
    254. 

  254.  $loadedModules = $currentUser -> getModules();
    255. 

  255.  $module_css_array = array();
    256. 

  256.  $module_js_array = array();
    257. 

  257.  // Include module languages
    258. 

  258.  foreach ($loadedModules as $module) {
    259. 

  259.   // The $setLanguage variable is defined in globals.php
    260. 

  260.   $mod_lang_file = $module -> getLanguageFile($setLanguage);
    261. 

  261.   if (is_file ($mod_lang_file)) {
    262. 

  262.    require_once $mod_lang_file;
    263. 

  263.   }
    264. 

  264.   // Get module css
    265. 

  265.   if($mod_css_file = $module -> getModuleCSS()) {
    266. 

  266.    if (is_file ($mod_css_file)) {
    267. 

  267.     // Get the relative path
    268. 

  268.     if ($position = strpos($mod_css_file, "modules")) {
    269. 

  269.      $mod_css_file = substr($mod_css_file, $position);
    270. 

  270.     }
    271. 

  271.     $module_css_array[] = $mod_css_file;
    272. 

  272.    }
    273. 

  273.   }
    274. 

  274.   // Get module js
    275. 

  275.   if($mod_js_file = $module -> getModuleJS()) {
    276. 

  276.    if (is_file($mod_js_file)) {
    277. 

  277.     // Get the relative path
    278. 

  278.     if ($position = strpos($mod_js_file, "modules")) {
    279. 

  279.      $mod_js_file = substr($mod_js_file, $position);
    280. 

  280.     }
    281. 

  281.     $module_js_array[] = $mod_js_file;
    282. 

  282.    }
    283. 

  283.   }
    284. 

  284.   // Run onNewPageLoad code of the module (if such is defined)
    285. 

  285.   $module -> onNewPageLoad();
    286. 

  286.  }
    287. 

  287. } catch (Exception $e) {
    288. 

  288.  handleNormalFlowExceptions($e);
    289. 

  289. }
    290. 

  290. /*Ajax call to enter group and get group lessons */
    291. 

  291. if (isset($_GET['ajax']) && isset($_GET['group_key'])) {
    292. 

  292.  try {
    293. 

  293.   if (!eF_checkParameter($_GET['group_key'], 'alnum_general')) {
    294. 

  294.    throw new Exception(_INVALIDDATA.': '.$_GET['group_key']);
    295. 

  295.   }
    296. 

  296.   $result = eF_getTableData("groups", "*", "unique_key = '" . $_GET['group_key'] . "'");
    297. 

  297.   if (sizeof($result) > 0) {
    298. 

  298.    $group = new EfrontGroup($result[0]);
    299. 

  299.    echo json_encode($group -> useKeyForUser($currentUser));
    300. 

  300.   } else {
    301. 

  301.    throw new Exception(_INVALIDKEY.': '.$_GET['group_key']);
    302. 

  302.   }
    303. 

  303.  } catch (Exception $e) {
    304. 

  304.   handleAjaxExceptions($e);
    305. 

  305.  }
    306. 

  306.  exit;
    307. 

  307. }
    308. 

  308. if (isset($_GET['bookmarks']) && $GLOBALS['configuration']['disable_bookmarks'] != 1) {
    309. 

  309.     try {
    310. 

  310.         $bookmarks = bookmarks :: getBookmarks($currentUser, $currentLesson);
    311. 

  311.         if ($_GET['bookmarks'] == 'remove' && in_array($_GET['id'], array_keys($bookmarks))) {
    312. 

  312.             $bookmark = new bookmarks($_GET['id']);
    313. 

  313.             $bookmark -> delete();
    314. 

  314.         } elseif ($_GET['bookmarks'] == 'add') {
    315. 

  315.             foreach ($bookmarks as $value) {
    316. 

  316.                 $urls[] = $value['url'];
    317. 

  317.             }
    318. 

  318.             if (!in_array($_SERVER['PHP_SELF']."?view_unit=".$currentUnit['id'], $urls)) {
    319. 

  319.              $fields = array('users_LOGIN' => $currentUser -> user['login'],
    320. 

  320.                           'lessons_ID' => $currentLesson -> lesson['id'],
    321. 

  321.                           'name' => $currentUnit['name'],
    322. 

  322.                           'url' => $_SERVER['PHP_SELF']."?view_unit=".$currentUnit['id']);
    323. 

  323.              bookmarks :: create($fields);
    324. 

  324.             }
    325. 

  325.         } else {
    326. 

  326.             echo json_encode($bookmarks);
    327. 

  327.         }
    328. 

  328.     } catch (Exception $e) {
    329. 

  329.      handleAjaxExceptions($e);
    330. 

  330.     }
    331. 

  331.     exit;
    332. 

  332. }
    333. 

  333. /*Added Session variable for search results*/
    334. 

  334. $_SESSION['referer'] = $_SERVER['REQUEST_URI'];
    335. 

  335. //$_SESSION['last_action_timestamp'] = time();		//Keep the last time something happened to the session
    336. 

  336. /*Horizontal menus*/
    337. 

  337. $onlineUsers = EfrontUser :: getUsersOnline($GLOBALS['configuration']['autologout_time'] * 60);
    338. 

  338. if ($GLOBALS['currentTheme'] -> options['sidebar_interface']) {
    339. 

  339.  $smarty -> assign("T_ONLINE_USERS_LIST", $onlineUsers);
    340. 

  340.  if ($accounts = unserialize($currentUser -> user['additional_accounts'])) {
    341. 

  341.   $result = eF_getTableData("users", "login, user_type", 'login in ("'.implode('","', array_values($accounts)).'")');
    342. 

  342.      $smarty -> assign("T_MAPPED_ACCOUNTS", $result);
    343. 

  343.  }
    344. 

  344. } else {
    345. 

  345.     $smarty -> assign("T_NO_HORIZONTAL_MENU", 1);
    346. 

  346. }
    347. 

  347. refreshLogin();//Important: It must be called AFTER EfrontUser :: getUsersOnline
    348. 

  348. !isset($_GET['ctg']) || !eF_checkParameter($_GET['ctg'], 'alnum_general') ? $ctg = "control_panel" : $ctg = $_GET['ctg'];
    349. 

  349. if (!$_SESSION['s_lessons_ID'] && $ctg != 'personal' && $ctg != 'statistics' && ($ctg == 'control_panel' && (!isset($_GET['op']) || $_GET['op'] != "search"))) { //If there is not a lesson in the session, then the user just logged into the system. Redirect him to lessons page, except for the case he is viewing his personal information 2007/07/27 added search control. It was a problem when user had not choose a lesson.
    350. 

  350.     $ctg = 'lessons';
    351. 

  351. }
    352. 

  352. $smarty -> assign("T_CTG", $ctg); //As soon as we derive the current ctg, assign it to smarty.
    353. 

  353. $smarty -> assign("T_OP", isset($_GET['op']) ? $_GET['op'] : false);
    354. 

  354. $smarty -> assign("T_FCT", isset($_GET['fct']) ? $_GET['fct'] : false);
    355. 

  355. //Create shorthands for user type, to avoid long variable names
    356. 

  356. $_student_ = $_professor_ = $_admin_ = 0;
    357. 

  357. if ((isset($_SESSION['s_lesson_user_type']) && $_SESSION['s_lesson_user_type'] == 'student') || (!isset($_SESSION['s_lesson_user_type']) && $_SESSION['s_type'] == 'student')) {
    358. 

  358.     $_student_ = 1;
    359. 

  359. } else if ((isset($_SESSION['s_lesson_user_type']) && $_SESSION['s_lesson_user_type'] == 'professor') || (!isset($_SESSION['s_lesson_user_type']) && $_SESSION['s_type'] == 'professor')) {
    360. 

  360.     $_professor_ = 1;
    361. 

  361. } else {
    362. 

  362.     $_admin_ = 1;
    363. 

  363. }
    364. 

  364. $smarty -> assign("_student_", $_student_);
    365. 

  365. $smarty -> assign("_professor_", $_professor_);
    366. 

  366. $smarty -> assign("_admin_", $_admin_);
    367. 

  367. try {
    368. 

  368.  if ($ctg == 'control_panel') {
    369. 

  369.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    370. 

  370.      /***/
    371. 

  371.      require_once("control_panel.php");
    372. 

  372.  }
    373. 

  373.  elseif ($ctg == 'landing_page') {
    374. 

  374.      /***/
    375. 

  375.      require_once ("landing_page.php");
    376. 

  376.  }
    377. 

  377.  elseif ($ctg == 'news') {
    378. 

  378.   //$_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));		//Commented out so that dashboard news links are working
    379. 

  379.      /***/
    380. 

  380.      require_once ("news.php");
    381. 

  381.  }
    382. 

  382.  elseif ($ctg == 'progress') {
    383. 

  383.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    384. 

  384.      /***/
    385. 

  385.      require_once("progress.php");
    386. 

  386.  }
    387. 

  387.  elseif ($ctg == 'comments') {
    388. 

  388.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    389. 

  389.      /***/
    390. 

  390.      require_once ("comments.php");
    391. 

  391.  }
    392. 

  392.  elseif ($ctg== 'lesson_information') {
    393. 

  393.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    394. 

  394.      /***/
    395. 

  395.      require_once("lesson_information.php");
    396. 

  396.  }
    397. 

  397.  elseif ($ctg== 'digital_library' && $currentLesson -> options['digital_library']) {
    398. 

  398.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    399. 

  399.      /***/
    400. 

  400.      require_once("digital_library.php");
    401. 

  401.  }
    402. 

  402.  elseif ($ctg == 'projects') {
    403. 

  403.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    404. 

  404.      /**The file that handles the projects*/
    405. 

  405.      require_once("projects.php");
    406. 

  406.  }
    407. 

  407.  elseif ($ctg == 'content') {
    408. 

  408.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    409. 

  409.      if (isset($_GET['commit_lms'])) {
    410. 

  410.          /***/
    411. 

  411.          require_once("lms_commit.php");
    412. 

  412.          exit;
    413. 

  413.      } else {
    414. 

  414.       /***/
    415. 

  415.       require_once("common_content.php");
    416. 

  416.      }
    417. 

  417.  }
    418. 

  418.  elseif ($ctg == 'tests') {
    419. 

  419.   //$_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    420. 

  420.      /***/
    421. 

  421.      require_once("module_tests.php");
    422. 

  422.  }
    423. 

  423.  elseif ($ctg == 'feedback') {
    424. 

  424.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    425. 

  425.      require_once("module_tests.php");
    426. 

  426.  }
    427. 

  427.  elseif ($ctg == 'lessons') {
    428. 

  428.      /***/
    429. 

  429.      require_once("includes/lessons_list.php");
    430. 

  430.  }
    431. 

  431.  elseif ($ctg == 'forum') {
    432. 

  432.      /***/
    433. 

  433.      require_once("includes/forum.php");
    434. 

  434.  }
    435. 

  435.  elseif ($ctg == 'messages') {
    436. 

  436.      /***/
    437. 

  437.      require_once("includes/messages.php");
    438. 

  438.  }
    439. 

  439.  elseif ($ctg == 'module') {
    440. 

  440.      /***/
    441. 

  441.      require_once("module.php");
    442. 

  442.  }
    443. 

  443.  elseif ($ctg == "social") {
    444. 

  444.      /***/
    445. 

  445.      require_once("social.php");
    446. 

  446.  }
    447. 

  447.  else if ($ctg == 'facebook') {
    448. 

  448.      /***/
    449. 

  449.      require_once "module_facebook.php";
    450. 

  450.  }
    451. 

  451.  elseif ($ctg == 'calendar') {
    452. 

  452.      if ($currentUser -> coreAccess['calendar'] != 'hidden' && $GLOBALS['configuration']['disable_calendar'] != 1) {
    453. 

  453.          require_once "calendar.php";
    454. 

  454.      } else {
    455. 

  455.          eF_redirect("".basename($_SERVER['PHP_SELF'])."?ctg=control_panel&message=".urlencode(_UNAUTHORIZEDACCESS)."&message_type=failure");
    456. 

  456.      }
    457. 

  457.  }
    458. 

  458.  elseif ($ctg == 'glossary') {
    459. 

  459.   $_SESSION['s_lessons_ID'] OR eF_redirect(basename($_SERVER['PHP_SELF']));
    460. 

  460.      /***/
    461. 

  461.      require_once("glossary.php");
    462. 

  462.  }
    463. 

  463.  elseif ($ctg == 'survey') {
    464. 

  464.      if ($currentUser -> coreAccess['surveys'] == 'hidden' || $GLOBALS['configuration']['disable_surveys'] == 1) {
    465. 

  465.          eF_redirect("".basename($_SERVER['PHP_SELF'])."?ctg=control_panel&message=".urlencode(_UNAUTHORIZEDACCESS)."&message_type=failure");
    466. 

  466.      }
    467. 

  467.      $load_editor=true;
    468. 

  468.      include_once "module_surveys.php";
    469. 

  469.  }
    470. 

  470.  elseif ($ctg == 'statistics') {
    471. 

  471.      if (isset($_GET['show_solved_test']) && eF_checkParameter($_GET['show_solved_test'], 'id') && isset($_GET['lesson']) && eF_checkParameter($_GET['lesson'], 'id')) {
    472. 

  472.          try {
    473. 

  473.              //pr($_GET['lesson']);pr($currentUser -> getLessons());
    474. 

  474.              if (in_array($_GET['lesson'], array_keys($currentUser -> getLessons()))) {
    475. 

  475.                  $result = eF_getTableData("done_tests, tests, content", "done_tests.tests_ID, done_tests.users_LOGIN", "content.id=tests.content_ID and content.lessons_ID=".$_GET['lesson']." and tests.id = done_tests.tests_ID and done_tests.users_LOGIN = '".$currentUser -> user['login']."' and done_tests.id=".$_GET['show_solved_test']);
    476. 

  476.                  if (sizeof($result) > 0) {
    477. 

  477.                      $showTest = new EfrontTest($result[0]['tests_ID']);
    478. 

  478.                      //Set "show answers" and "show given answers" to true, since if it is not the student that sees the test
    479. 

  479.                      if ($currentUser -> user['user_type'] != 'student') {
    480. 

  480.                          $showTest -> options['answers'] = 1;
    481. 

  481.                          $showTest -> options['given_answers'] = 1;
    482. 

  482.                      }
    483. 

  483.                      $showTest -> setDone($result[0]['users_LOGIN']);
    484. 

  484.                      $smarty -> assign("T_CURRENT_TEST", $showTest -> test);
    485. 

  485.                      $smarty -> assign("T_SOLVED_TEST_DATA", $showTest -> doneInfo);
    486. 

  486.                      $smarty -> assign("T_TEST_SOLVED", $showTest -> toHTMLQuickForm(new HTML_Quickform(), false, true));
    487. 

  487.                  } else {
    488. 

  488.                      $message = _USERHASNOTDONETEST;
    489. 

  489.                      $message_type = 'failure';
    490. 

  490.                  }
    491. 

  491.              } else {
    492. 

  492.                  $message = _USERHASNOTTHISLESSON;
    493. 

  493.                  $message_type = 'failure';
    494. 

  494.              }
    495. 

  495.          } catch (Exception $e) {
    496. 

  496.              $smarty -> assign("T_EXCEPTION_TRACE", $e -> getTraceAsString());
    497. 

  497.              $message = $e -> getMessage().' ('.$e -> getCode().') &nbsp;<a href = "javascript:void(0)" onclick = "eF_js_showDivPopup(\''._ERRORDETAILS.'\', 2, \'error_details\')">'._MOREINFO.'</a>';
    498. 

  498.              $message_type = 'failure';
    499. 

  499.          }
    500. 

  500.      } else {
    501. 

  501.          /**The statistics funtions*/
    502. 

  502.          if ($currentUser -> coreAccess['statistics'] != 'hidden') {
    503. 

  503.              require_once "statistics.php";
    504. 

  504.          } else {
    505. 

  505.              eF_redirect("".basename($_SERVER['PHP_SELF'])."?ctg=control_panel&message=".urlencode(_UNAUTHORIZEDACCESS)."&message_type=failure");
    506. 

  506.          }
    507. 

  507.      }
    508. 

  508.  }
    509. 

  509.  elseif ($ctg == 'personal') {
    510. 

  510.      /**This part is used to display the user's personal information*/
    511. 

  511.      include "includes/personal.php";
    512. 

  512.  }
    513. 

  513.  /*
    514. 

    515. 

  515. 	At this point, we apply module functionality
    516. 

    517. 

  517. 	*/
    518. 

  518.  elseif (sizeof($modules) > 0 && in_array($ctg, array_keys($module_ctgs))) {
    519. 

  519.      $module_mandatory = eF_getTableData("modules", "mandatory", "name = '".$ctg."'");
    520. 

  520.      if ($module_mandatory[0]['mandatory'] != 'false' || ($GLOBALS['currentLesson'] -> options[$ctg])) {
    521. 

  521.          include(G_MODULESPATH.$ctg.'/module.php');
    522. 

  522.          $smarty -> assign("T_CTG_MODULE", $module_ctgs[$ctg]);
    523. 

  523.      }
    524. 

  524.  }
    525. 

  525.  $fields_log = array ('users_LOGIN' => $_SESSION['s_login'], //This is the log entry array
    526. 

  526.                       'timestamp' => time(),
    527. 

  527.                       'session_ip' => eF_encodeIP($_SERVER['REMOTE_ADDR']));
    528. 

  528. /*
    529. 

    530. 

  530.     if (isset($log_comments)) {                                         //If there is a $log_comments variable, it indicates the current action (i.e. the unit that the user saw)
    531. 

    532. 

  532.         $fields_log['action']   = $ctg;
    533. 

    534. 

  534.         $fields_log['comments'] = $log_comments;
    535. 

    536. 

  536.         ($_SESSION['s_lessons_ID']) ? $fields_log['lessons_ID'] = $_SESSION['s_lessons_ID'] : $fields_log['lessons_ID'] = 0;
    537. 

    538. 

  538.         eF_insertTableData("logs", $fields_log);
    539. 

    540. 

  540.     } else {                                                            //Any other move, that has not set the $log_comments variable, is considered a 'lastmove' action
    541. 

    542. 

  542.         $fields_log['action']   = "lastmove";
    543. 

    544. 

  544.         $fields_log['comments'] = "";
    545. 

    546. 

  546.         ($_SESSION['s_lessons_ID']) ? $fields_log['lessons_ID'] = $_SESSION['s_lessons_ID'] : $fields_log['lessons_ID'] = 0;
    547. 

    548. 

  548.         eF_deleteTableData("logs", "users_LOGIN='".$_SESSION['s_login']."' AND action='lastmove'"); //Only one lastmove action interests us, so delete any other
    549. 

    550. 

  550.         eF_insertTableData("logs", $fields_log);
    551. 

    552. 

  552.     }
    553. 

    554. 

  554. */
    555. 

  555.  if (detectBrowser() == 'mobile') {
    556. 

  556.   $load_editor = false;
    557. 

  557.  }
    558. 

  558.     $smarty -> assign("T_HEADER_EDITOR", $load_editor); //Specify whether we need to load the editor
    559. 

  559.  /*
    560. 

    561. 

  561. 	 * Check if you should input the JS code to
    562. 

    563. 

  563. 	 * trigger sending the next notificatoin emails
    564. 

    565. 

  565. 	 * Since 3.6.0
    566. 

    567. 

  567. 	 */
    568. 

  568.  if (EfrontNotification::shouldSendNextNotifications()) {
    569. 

  569.   $smarty -> assign("T_TRIGGER_NEXT_NOTIFICATIONS_SEND", 1);
    570. 

  570.   $_SESSION['send_next_notifications_now'] = 0; // the msg that triggered the immediate send should be sent now
    571. 

  571.  }
    572. 

  572. } catch (Exception $e) {
    573. 

  573.     $smarty -> assign("T_EXCEPTION_TRACE", $e -> getTraceAsString());
    574. 

  574.     $message = $e -> getMessage().' ('.$e -> getCode().') &nbsp;<a href = "javascript:void(0)" onclick = "eF_js_showDivPopup(\''._ERRORDETAILS.'\', 2, \'error_details\')">'._MOREINFO.'</a>';
    575. 

  575.     $message_type = 'failure';
    576. 

  576. }
    577. 

  577. if (isset($_GET['refresh'])) {
    578. 

  578.     $smarty -> assign("T_REFRESH_SIDE","true");
    579. 

  579. }
    580. 

  580. $smarty -> assign("T_MODULE_CSS", $module_css_array);
    581. 

  581. $smarty -> assign("T_MODULE_JS", $module_js_array);
    582. 

  582. foreach ($loadedModules as $module) {
    583. 

  583.     $loadScripts = array_merge($loadScripts, $module -> addScripts());
    584. 

  584. }
    585. 

  585. //Main scripts, such as prototype
    586. 

  586. $mainScripts = getMainScripts();
    587. 

  587. $smarty -> assign("T_HEADER_MAIN_SCRIPTS", implode(",", $mainScripts));
    588. 

  588. //Operation/file specific scripts
    589. 

  589. $loadScripts = array_diff($loadScripts, $mainScripts); //Clear out duplicates
    590. 

  590. $smarty -> assign("T_HEADER_LOAD_SCRIPTS", implode(",", array_unique($loadScripts))); //array_unique, so it doesn't send duplicate entries
    591. 

  591. $smartyClosingFiles = array();
    592. 

  592. foreach ($loadedModules as $module) {
    593. 

  593.  if ($smartyClosingFile = $module -> onPageFinishLoadingSmartyTpl()) {
    594. 

  594.   $smartyClosingFiles[] = $smartyClosingFile;
    595. 

  595.  }
    596. 

  596. }
    597. 

  597. $smarty -> assign("T_PAGE_FINISH_MODULES", $smartyClosingFiles);
    598. 

  598. $smarty -> assign("T_CURRENT_CTG", $ctg);
    599. 

  599. $smarty -> assign("T_MENUCTG", $ctg);
    600. 

  600. //$smarty -> assign("T_MENU", eF_getMenu());
    601. 

  601. //$smarty -> assign("T_QUERIES", $numberOfQueries);
    602. 

  602. if ($_SESSION['s_message']) {
    603. 

  603.  $message .= urldecode($_SESSION['s_message']);
    604. 

  604.  $message_type = $_SESSION['s_message_type'];
    605. 

  605.  unset($_SESSION['s_message']);
    606. 

  606.  unset($_SESSION['s_message_type']);
    607. 

  607. }
    608. 

  608. $smarty -> assign("T_MESSAGE", $message);
    609. 

  609. $smarty -> assign("T_MESSAGE_TYPE", $message_type);
    610. 

  610. $smarty -> assign("T_SEARCH_MESSAGE", $search_message);
    611. 

  611. $smarty -> assign("T_CONFIGURATION", $configuration); //Assign global configuration values to smarty
    612. 

  612. $smarty -> assign("T_CURRENT_USER", $currentUser);
    613. 

  613. $smarty -> assign("T_CURRENT_LESSON", isset($currentLesson) ? $currentLesson : false);
    614. 

  614. if (isset($currentLesson)) {
    615. 

  615.  $directions = new EfrontDirectionsTree();
    616. 

  616.  $paths = $directions -> toPathString();
    617. 

  617.  $categoryPath = $paths[$currentLesson->lesson["directions_ID"]];
    618. 

  618.  //$categoryPath = str_replace("&rarr", "&raquo", $categoryPath);
    619. 

  619.  $smarty -> assign("T_CURRENT_CATEGORY_PATH", $categoryPath);
    620. 

  620.  if ($currentLesson -> lesson['course_only'] == 1 && $_SESSION['s_courses_ID']) {
    621. 

  621.   $currentCourse = new EfrontCourse($_SESSION['s_courses_ID']);
    622. 

  622.   $smarty -> assign("T_CURRENT_COURSE_NAME", htmlspecialchars($currentCourse->course['name'], ENT_QUOTES));
    623. 

  623.   $smarty -> assign("T_CURRENT_COURSE_ID", $currentCourse->course['id']);
    624. 

  624.  }
    625. 

  625. }
    626. 

  626. $smarty -> load_filter('output', 'eF_template_formatTimestamp');
    627. 

  627. $smarty -> load_filter('output', 'eF_template_formatLogins');
    628. 

  628. $smarty -> load_filter('output', 'eF_template_setInnerLinks');
    629. 

  629. $smarty -> load_filter('output', 'eF_template_setEditorOffset');
    630. 

  630. $benchmark -> set('script');
    631. 

  631. $smarty -> display('student.tpl');
    632. 

  632. $benchmark -> set('smarty');
    633. 

  633. $benchmark -> stop();
    634. 

  634. $output = $benchmark -> display();
    635. 

  635. if (G_DEBUG) {
    636. 

  636.  echo $output;
    637. 

  637. }
    638. 

  638. ?>
    639. 

  639.