. /** * Class handles conditional availability information for an activity. * * @package core_availability * @copyright 2014 The Open University * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later */ namespace core_availability; defined('MOODLE_INTERNAL') || die(); /** * Class handles conditional availability information for an activity. * * @package core_availability * @copyright 2014 The Open University * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later */ class info_module extends info { /** @var \cm_info Activity. */ protected $cm; /** * Constructs with item details. * * @param \cm_info $cm Course-module object */ public function __construct(\cm_info $cm) { parent::__construct($cm->get_course(), $cm->visible, $cm->availability); $this->cm = $cm; } protected function get_thing_name() { // We cannot access $cm->name as a property at this point, because this // code may itself run in response to the $cm->name property access, and // PHP magic function properties do not allow recursion (because PHP). return 'cm->id . '/>'; } protected function set_in_database($availability) { global $DB; $DB->set_field('course_modules', 'availability', $availability, array('id' => $this->cm->id)); } /** * Gets the course-module object. Intended for use by conditions. * * @return \cm_info Course module */ public function get_course_module() { return $this->cm; } public function get_context() { return \context_module::instance($this->cm->id); } /** * Tests against a user list. Users who cannot access the activity due to * availability restrictions will be removed from the list. * * Note this only includes availability restrictions (those handled within * this API) and not other ways of restricting access. * * This test ONLY includes conditions which are marked as being applied to * user lists. For example, group conditions are included but date * conditions are not included. * * When called on a module, this test DOES also include restrictions on the * section (if any). * * The function operates reasonably efficiently i.e. should not do per-user * database queries. It is however likely to be fairly slow. * * @param array $users Array of userid => object * @return array Filtered version of input array */ public function filter_user_list(array $users) { global $CFG; if (!$CFG->enableavailability) { return $users; } // Apply section filtering first. $section = $this->cm->get_modinfo()->get_section_info( $this->cm->sectionnum, MUST_EXIST); $sectioninfo = new info_section($section); $filtered = $sectioninfo->filter_user_list($users); // Now do base class (module) filtering on top. return parent::filter_user_list($filtered); } protected function get_view_hidden_capability() { return 'moodle/course:ignoreavailabilityrestrictions'; } public function get_user_list_sql($onlyactive = true) { global $CFG, $DB; if (!$CFG->enableavailability) { return array('', array()); } // Get query for section (if any) and module. $section = $this->cm->get_modinfo()->get_section_info( $this->cm->sectionnum, MUST_EXIST); $sectioninfo = new info_section($section); $sectionresult = $sectioninfo->get_user_list_sql($onlyactive); $moduleresult = parent::get_user_list_sql($onlyactive); if (!$sectionresult[0]) { return $moduleresult; } if (!$moduleresult[0]) { return $sectionresult; } return array($DB->sql_intersect(array($sectionresult[0], $moduleresult[0]), 'id'), array_merge($sectionresult[1], $moduleresult[1])); } /** * Checks if an activity is visible to the given user. * * Unlike other checks in the availability system, this check includes the * $cm->visible flag. It is equivalent to $cm->uservisible. * * If you have already checked (or do not care whether) the user has access * to the course, you can set $checkcourse to false to save it checking * course access. * * When checking for the current user, you should generally not call * this function. Instead, use get_fast_modinfo to get a cm_info object, * then simply check the $cm->uservisible flag. This function is intended * to obtain that information for a separate course-module object that * wasn't loaded with get_fast_modinfo, or for a different user. * * This function has a performance cost unless the availability system is * disabled, and you supply a $cm object with necessary fields, and you * don't check course access. * * @param int|\stdClass|\cm_info $cmorid Object or id representing activity * @param int $userid User id (0 = current user) * @param bool $checkcourse If true, checks whether the user has course access * @return bool True if the activity is visible to the specified user * @throws \moodle_exception If the cmid doesn't exist */ public static function is_user_visible($cmorid, $userid = 0, $checkcourse = true) { global $USER, $DB, $CFG; // Evaluate user id. if (!$userid) { $userid = $USER->id; } // If this happens to be already called with a cm_info for the right user // then just return uservisible. if (($cmorid instanceof \cm_info) && $cmorid->get_modinfo()->userid == $userid) { return $cmorid->uservisible; } // If the $cmorid isn't an object or doesn't have required fields, load it. if (is_object($cmorid) && isset($cmorid->course) && isset($cmorid->visible)) { $cm = $cmorid; } else { if (is_object($cmorid)) { $cmorid = $cmorid->id; } $cm = $DB->get_record('course_modules', array('id' => $cmorid)); if (!$cm) { // In some error cases, the course module may not exist. debugging('info_module::is_user_visible called with invalid cmid ' . $cmorid, DEBUG_DEVELOPER); return false; } } // If requested, check user can access the course. if ($checkcourse) { $coursecontext = \context_course::instance($cm->course); if (!is_enrolled($coursecontext, $userid, '', true) && !has_capability('moodle/course:view', $coursecontext, $userid)) { return false; } } // If availability is disabled, then all we need to do is check the visible flag. if (!$CFG->enableavailability && $cm->visible) { return true; } // When availability is enabled, access can depend on 3 things: // 1. $cm->visible // 2. $cm->availability // 3. $section->availability (for activity section and possibly for // parent sections) // As a result we cannot take short cuts any longer and must get // standard modinfo. $modinfo = get_fast_modinfo($cm->course, $userid); $cms = $modinfo->get_cms(); if (!isset($cms[$cm->id])) { // In some cases this might get called with a cmid that is no longer // available, for example when a module is hidden at system level. debugging('info_module::is_user_visible called with invalid cmid ' . $cm->id, DEBUG_DEVELOPER); return false; } return $cms[$cm->id]->uservisible; } }