PageRenderTime 27ms CodeModel.GetById 0ms RepoModel.GetById 0ms app.codeStats 1ms

/main/document/showinframesmin.php

https://bitbucket.org/hanutimes/hanutimes
PHP | 152 lines | 125 code | 13 blank | 14 comment | 11 complexity | 0b59bb25a1e1434e6b7c9bffa34b85b2 MD5 | raw file
    

  1. <?php
    2. 

  2. /* For licensing terms, see /license.txt */
    3. 

  3. /**
    4. 

  4.  *	@author Juan Carlos RaƱa Trabado (herodoto@telefonica.net)
    5. 

  5.  *
    6. 

  6.  *	@package chamilo.document
    7. 

  7.  */
    8. 

  8. /**
    9. 

  9.  * Code
    10. 

  10.  */
    11. 

  11. /*   INITIALIZATION */
    12. 

  12. 

  13. $language_file[] = 'document';
    14. 

  14. require_once '../inc/global.inc.php';
    15. 

  15. 

  16. // Protection
    17. 

  17. api_protect_course_script();
    18. 

  18. 

  19. $noPHP_SELF = true;
    20. 

  20. $header_file = Security::remove_XSS($_GET['file']);
    21. 

  21. $document_id = intval($_GET['id']);
    22. 

  22. 

  23. $course_info = api_get_course_info();
    24. 

  24. $course_code = api_get_course_id();
    25. 

  25. 

  26. if (empty($course_info)) {
    27. 

  27.     api_not_allowed(true);
    28. 

  28. }
    29. 

  29. 

  30. //Generate path
    31. 

  31. if (!$document_id) {
    32. 

  32.     $document_id = DocumentManager::get_document_id($course_info, $header_file);
    33. 

  33. }
    34. 

  34. $document_data = DocumentManager::get_document_data_by_id($document_id, $course_code);
    35. 

  35. 

  36. if (empty($document_data)) {
    37. 

  37.     api_not_allowed(true);
    38. 

  38. }
    39. 

  39. 

  40. $header_file  = $document_data['path'];
    41. 

  41. $name_to_show = Text::cut($header_file, 80);
    42. 

  42. 

  43. $path_array = explode('/', str_replace('\\', '/', $header_file));
    44. 

  44. $path_array = array_map('urldecode', $path_array);
    45. 

  45. $header_file = implode('/', $path_array);
    46. 

  46. 

  47. $file = Security::remove_XSS(urldecode($document_data['path']));
    48. 

  48. 

  49. $file_root = $course_info['path'].'/document'.str_replace('%2F', '/', $file);
    50. 

  50. $file_url_sys = api_get_path(SYS_COURSE_PATH).$file_root;
    51. 

  51. $file_url_web = api_get_path(WEB_COURSE_PATH).$file_root;
    52. 

  52. 

  53. if (!file_exists($file_url_sys)) {
    54. 

  54.     api_not_allowed(true);
    55. 

  55. }
    56. 

  56. 

  57. if (is_dir($file_url_sys)) {
    58. 

  58.     api_not_allowed(true);
    59. 

  59. }
    60. 

  60. //Check user visibility
    61. 

  61. //$is_visible = DocumentManager::is_visible_by_id($document_id, $course_info, api_get_session_id(), api_get_user_id());
    62. 

  62. $is_visible = DocumentManager::check_visibility_tree($document_id, api_get_course_id(), api_get_session_id(), api_get_user_id());
    63. 

  63. if (!api_is_allowed_to_edit() && !$is_visible) {
    64. 

  64.     api_not_allowed(true);
    65. 

  65. }
    66. 

  66. 

  67. //TODO:clean all code
    68. 

  68. 

  69. /*	Main section */
    70. 

  70. header('Expires: Wed, 01 Jan 1990 00:00:00 GMT');
    71. 

  71. //header('Last-Modified: '.gmdate('D, d M Y H:i:s').' GMT');
    72. 

  72. header('Last-Modified: Wed, 01 Jan 2100 00:00:00 GMT');
    73. 

  73. header('Cache-Control: no-cache, must-revalidate');
    74. 

  74. header('Pragma: no-cache');
    75. 

  75. $browser_display_title = 'Documents - '.Security::remove_XSS($_GET['cidReq']).' - '.$file;
    76. 

  76. 

  77. $js_glossary_in_documents = '';
    78. 

  78. if (api_get_setting('show_glossary_in_documents') == 'ismanual') {
    79. 

  79.     $js_glossary_in_documents = '	//	    $(document).ready(function() {
    80. 

  80.                                     $.frameReady(function() {
    81. 

  81.                                        //  $("<div>I am a div courses</div>").prependTo("body");
    82. 

  82.                                       }, "mainFrame",
    83. 

  83.                                       { load: [
    84. 

  84.                                               {type:"script", id:"_fr1", src:"'.api_get_path(WEB_LIBRARY_PATH).'javascript/jquery.min.js"},
    85. 

  85.                                             {type:"script", id:"_fr2", src:"'.api_get_path(WEB_LIBRARY_PATH).'javascript/jquery.highlight.js"},
    86. 

  86.                                             {type:"script", id:"_fr3", src:"'.api_get_path(WEB_LIBRARY_PATH).'fckeditor/editor/plugins/glossary/fck_glossary_manual.js"}
    87. 

  87.                                            ]
    88. 

  88.                                       }
    89. 

  89.                                       );
    90. 

  90.                                     //});';
    91. 

  91. } elseif (api_get_setting('show_glossary_in_documents') == 'isautomatic') {
    92. 

  92.     $js_glossary_in_documents =	'//    $(document).ready(function() {
    93. 

  93.                                       $.frameReady(function(){
    94. 

  94.                                        //  $("<div>I am a div courses</div>").prependTo("body");
    95. 

  95. 

  96.                                       }, "mainFrame",
    97. 

  97.                                       { load: [
    98. 

  98.                                               {type:"script", id:"_fr1", src:"'.api_get_path(WEB_LIBRARY_PATH).'javascript/jquery.min.js"},
    99. 

  99.                                             {type:"script", id:"_fr2", src:"'.api_get_path(WEB_LIBRARY_PATH).'javascript/jquery.highlight.js"},
    100. 

  100.                                             {type:"script", id:"_fr3", src:"'.api_get_path(WEB_LIBRARY_PATH).'fckeditor/editor/plugins/glossary/fck_glossary_automatic.js"}
    101. 

  101.                                            ]
    102. 

  102.                                       }
    103. 

  103.                                       );
    104. 

  104.                                 //   });';
    105. 

  105. }
    106. 

  106. 

  107. $htmlHeadXtra[] = '<script type="text/javascript">
    108. 

  108. <!--
    109. 

  109.     var jQueryFrameReadyConfigPath = \''.api_get_path(WEB_LIBRARY_PATH).'javascript/jquery.min.js\';
    110. 

  110. -->
    111. 

  111. </script>';
    112. 

  112. $htmlHeadXtra[] = '<script type="text/javascript" src="'.api_get_path(WEB_LIBRARY_PATH).'javascript/jquery.frameready.js"></script>';
    113. 

  113. $htmlHeadXtra[] = '
    114. 

  114. <script type="text/javascript">
    115. 

  115. <!--
    116. 

  116.     var updateContentHeight = function() {
    117. 

  117.         //HeaderHeight = document.getElementById("header").offsetHeight;
    118. 

  118.         //FooterHeight = document.getElementById("footer").offsetHeight;
    119. 

  119.         //document.getElementById("mainFrame").style.height = ((docHeight-(parseInt(HeaderHeight)+parseInt(FooterHeight)))+60)+"px";
    120. 

  120.         my_iframe           = document.getElementById("mainFrame");
    121. 

  121.         new_height          = my_iframe.contentWindow.document.body.scrollHeight;
    122. 

  122.         my_iframe.height    = my_iframe.contentWindow.document.body.scrollHeight + "px";
    123. 

  123.     };
    124. 

  124. 

  125.     // Fixes the content height of the frame
    126. 

  126.     window.onload = function() {
    127. 

  127.          updateContentHeight();
    128. 

  128.         '.$js_glossary_in_documents.'
    129. 

  129.     }
    130. 

  130. -->
    131. 

  131. </script>';
    132. 

    133. 

  133. Display::display_reduced_header();
    134. 

  134. echo '<div align="center">';
    135. 

  135. $file_url_web = api_get_path(WEB_COURSE_PATH).$_course['path'].'/document'.$header_file.'?'.api_get_cidreq();
    136. 

  136. 

  137. $pathinfo = pathinfo($header_file);
    138. 

  138. if ($pathinfo['extension']=='wav' && preg_match('/_chnano_.wav/i', $file_url_web) && api_get_setting('enable_nanogong') == 'true'){
    139. 

  139. 	echo '<div align="center">';
    140. 

  140. 		echo '<br/>';
    141. 

  141. 		echo '<applet id="applet" archive="../inc/lib/nanogong/nanogong.jar" code="gong.NanoGong" width="160" height="40" >';
    142. 

  142. 			echo '<param name="SoundFileURL" value="'.$file_url_web.'" />';
    143. 

  143. 			echo '<param name="ShowSaveButton" value="false" />';
    144. 

  144. 			echo '<param name="ShowTime" value="true" />';
    145. 

  145. 			echo '<param name="ShowRecordButton" value="false" />';
    146. 

  146. 		echo '</applet>';
    147. 

  147. 	echo '</div>';
    148. 

  148. } else {
    149. 

  149. 	if ($pathinfo['extension']=='swf'){ $width='83%'; $height='83%';} else {$width='100%'; $height='';}
    150. 

  150. 

  151. 	echo '<iframe border="0" frameborder="0" scrolling="no" style="width:'.$width.'; height:'.$height.';background-color:#ffffff;" id="mainFrame" name="mainFrame" src="'.$file_url_web.'&amp;rand='.mt_rand(1, 10000).'"></iframe>';
    152. 

  152. }
    153. 

  153.