89 lines
3.1 KiB
PHP
89 lines
3.1 KiB
PHP
|
<?php
|
||
|
// This file is part of Moodle - http://moodle.org/
|
||
|
//
|
||
|
// Moodle is free software: you can redistribute it and/or modify
|
||
|
// it under the terms of the GNU General Public License as published by
|
||
|
// the Free Software Foundation, either version 3 of the License, or
|
||
|
// (at your option) any later version.
|
||
|
//
|
||
|
// Moodle is distributed in the hope that it will be useful,
|
||
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
||
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
||
|
// GNU General Public License for more details.
|
||
|
//
|
||
|
// You should have received a copy of the GNU General Public License
|
||
|
// along with Moodle. If not, see <http://www.gnu.org/licenses/>.
|
||
|
|
||
|
/**
|
||
|
* Serves files for the mobile app.
|
||
|
*
|
||
|
* @package mod_customcert
|
||
|
* @copyright 2018 Mark Nelson <markn@moodle.com>
|
||
|
* @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
|
||
|
*/
|
||
|
|
||
|
/**
|
||
|
* AJAX_SCRIPT - exception will be converted into JSON.
|
||
|
*/
|
||
|
define('AJAX_SCRIPT', true);
|
||
|
|
||
|
/**
|
||
|
* NO_MOODLE_COOKIES - we don't want any cookie.
|
||
|
*/
|
||
|
define('NO_MOODLE_COOKIES', true);
|
||
|
|
||
|
require_once('../../../config.php');
|
||
|
require_once($CFG->libdir . '/filelib.php');
|
||
|
require_once($CFG->dirroot . '/webservice/lib.php');
|
||
|
|
||
|
// Allow CORS requests.
|
||
|
header('Access-Control-Allow-Origin: *');
|
||
|
|
||
|
// Authenticate the user.
|
||
|
$token = required_param('token', PARAM_ALPHANUM);
|
||
|
$certificateid = required_param('certificateid', PARAM_INT);
|
||
|
$userid = required_param('userid', PARAM_INT);
|
||
|
|
||
|
$webservicelib = new webservice();
|
||
|
$authenticationinfo = $webservicelib->authenticate_user($token);
|
||
|
|
||
|
// Check the service allows file download.
|
||
|
$enabledfiledownload = (int) ($authenticationinfo['service']->downloadfiles);
|
||
|
if (empty($enabledfiledownload)) {
|
||
|
throw new webservice_access_exception('Web service file downloading must be enabled in external service settings');
|
||
|
}
|
||
|
|
||
|
$cm = get_coursemodule_from_instance('customcert', $certificateid, 0, false, MUST_EXIST);
|
||
|
$certificate = $DB->get_record('customcert', ['id' => $certificateid], '*', MUST_EXIST);
|
||
|
$template = $DB->get_record('customcert_templates', ['id' => $certificate->templateid], '*', MUST_EXIST);
|
||
|
|
||
|
// Capabilities check.
|
||
|
require_capability('mod/customcert:view', \context_module::instance($cm->id));
|
||
|
if ($userid != $USER->id) {
|
||
|
require_capability('mod/customcert:viewreport', \context_module::instance($cm->id));
|
||
|
} else {
|
||
|
// Make sure the user has met the required time.
|
||
|
if ($certificate->requiredtime) {
|
||
|
if (\mod_customcert\certificate::get_course_time($certificate->course) < ($certificate->requiredtime * 60)) {
|
||
|
exit();
|
||
|
}
|
||
|
}
|
||
|
}
|
||
|
|
||
|
$issue = $DB->get_record('customcert_issues', ['customcertid' => $certificateid, 'userid' => $userid]);
|
||
|
|
||
|
// If we are doing it for the logged in user then we want to issue the certificate.
|
||
|
if (!$issue) {
|
||
|
// If the other user doesn't have an issue, then there is nothing to do.
|
||
|
if ($userid != $USER->id) {
|
||
|
exit();
|
||
|
}
|
||
|
|
||
|
\mod_customcert\certificate::issue_certificate($certificate->id, $USER->id);
|
||
|
}
|
||
|
|
||
|
// Now we want to generate the PDF.
|
||
|
$template = new \mod_customcert\template($template);
|
||
|
$template->generate_pdf(false, $userid);
|
||
|
exit();
|