| 12 |
efrain |
1 |
<?php
|
|
|
2 |
header('Access-Control-Allow-Origin: *');
|
|
|
3 |
header('Access-Control-Allow-Methods: GET');
|
|
|
4 |
//POST, GET, DELETE, PUT, PATCH, OPTIONS
|
|
|
5 |
header('Access-Control-Allow-Headers: token, Content-Type');
|
|
|
6 |
header('Access-Control-Max-Age: 1728000');
|
|
|
7 |
|
|
|
8 |
|
|
|
9 |
header('Content-Type: application/json');
|
|
|
10 |
|
|
|
11 |
|
|
|
12 |
|
|
|
13 |
require_once(__DIR__ . '/config.php');
|
|
|
14 |
require_once(__DIR__ . '/../config.php');
|
|
|
15 |
global $DB, $PAGE, $CFG;
|
|
|
16 |
|
|
|
17 |
require_once($CFG->libdir.'/moodlelib.php');
|
|
|
18 |
require_once($CFG->libdir . '/externallib.php');
|
|
|
19 |
require_once($CFG->libdir.'/authlib.php');
|
|
|
20 |
require_once( $CFG->libdir . '/gdlib.php' );
|
|
|
21 |
|
|
|
22 |
require_once($CFG->dirroot.'/user/lib.php');
|
|
|
23 |
require_once __DIR__ . '/rsa.php';
|
|
|
24 |
require_once __DIR__ . '/lib.php';
|
|
|
25 |
|
| 42 |
efrain |
26 |
header('Content-type: text/plain');
|
|
|
27 |
|
| 54 |
efrain |
28 |
|
| 12 |
efrain |
29 |
$username = trim(isset($_SERVER['HTTP_USERNAME']) ? filter_var($_SERVER['HTTP_USERNAME'], FILTER_SANITIZE_STRING) : '');
|
|
|
30 |
$password = trim(isset($_SERVER['HTTP_PASSWORD']) ? filter_var($_SERVER['HTTP_PASSWORD'], FILTER_SANITIZE_STRING) : '');
|
|
|
31 |
$timestamp = trim(isset($_SERVER['HTTP_TIMESTAMP']) ? filter_var($_SERVER['HTTP_TIMESTAMP'], FILTER_SANITIZE_STRING) : '');
|
|
|
32 |
$rand = intval(isset($_SERVER['HTTP_RAND']) ? filter_var($_SERVER['HTTP_RAND'], FILTER_SANITIZE_NUMBER_INT) : 0,10);
|
| 39 |
efrain |
33 |
$id = intval(isset($_GET['id']) ? filter_var($_GET['id'], FILTER_SANITIZE_NUMBER_INT) : 0,10);
|
| 12 |
efrain |
34 |
|
|
|
35 |
|
|
|
36 |
if(empty($username) || empty($password) || empty($timestamp) || empty($rand) || !is_integer($rand)) {
|
|
|
37 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY1']) ;
|
|
|
38 |
exit;
|
|
|
39 |
}
|
|
|
40 |
|
|
|
41 |
if($username != LLWS_USERNAME) {
|
|
|
42 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY2']) ;
|
|
|
43 |
exit;
|
|
|
44 |
}
|
|
|
45 |
|
|
|
46 |
$dt = \DateTime::createFromFormat('Y-m-d\TH:i:s', $timestamp);
|
|
|
47 |
if(!$dt) {
|
|
|
48 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY3']) ;
|
|
|
49 |
exit;
|
|
|
50 |
}
|
|
|
51 |
|
|
|
52 |
$dt = \DateTimeImmutable::createFromFormat('Y-m-d\TH:i:s', gmdate('Y-m-d\TH:i:s'));
|
|
|
53 |
$dtMax = $dt->add(\DateInterval::createFromDateString('5 minutes'));
|
|
|
54 |
$dtMin = $dt->sub(\DateInterval::createFromDateString('5 minutes'));
|
|
|
55 |
|
|
|
56 |
|
|
|
57 |
$t0 = $dt->getTimestamp();
|
|
|
58 |
$t1 = $dtMin->getTimestamp();
|
|
|
59 |
$t2 = $dtMax->getTimestamp();
|
|
|
60 |
|
|
|
61 |
if($t0 < $t1 || $t0 > $t2) {
|
|
|
62 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY4']) ;
|
|
|
63 |
exit;
|
|
|
64 |
}
|
|
|
65 |
|
|
|
66 |
if(!password_verify( $username.'-'. LLWS_PASSWORD. '-' . $rand. '-' . $timestamp, $password)) {
|
|
|
67 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY5']) ;
|
|
|
68 |
exit;
|
|
|
69 |
}
|
|
|
70 |
|
|
|
71 |
|
|
|
72 |
|
|
|
73 |
$course = get_course($id);
|
|
|
74 |
if(!$course) {
|
|
|
75 |
echo json_encode([
|
|
|
76 |
'success' => false,
|
|
|
77 |
'data' => 'El curso solicitado no existe'
|
|
|
78 |
]);
|
|
|
79 |
exit;
|
|
|
80 |
}
|
|
|
81 |
|
|
|
82 |
$enrolmethod = 'manual';
|
|
|
83 |
|
|
|
84 |
|
|
|
85 |
$enrol = enrol_get_plugin($enrolmethod);
|
|
|
86 |
if (!$enrol) {
|
|
|
87 |
echo json_encode([
|
|
|
88 |
'success' => false,
|
|
|
89 |
'data' => 'El Plugin de enrolamiento manual no esta disponible'
|
|
|
90 |
]);
|
|
|
91 |
exit;
|
|
|
92 |
}
|
|
|
93 |
|
|
|
94 |
$instances = enrol_get_instances($course->id, true);
|
|
|
95 |
$manualinstance = null;
|
|
|
96 |
foreach ($instances as $instance)
|
|
|
97 |
{
|
|
|
98 |
if ($instance->enrol == $enrolmethod) {
|
|
|
99 |
$manualinstance = $instance;
|
|
|
100 |
break;
|
|
|
101 |
}
|
|
|
102 |
}
|
|
|
103 |
|
| 44 |
efrain |
104 |
|
| 12 |
efrain |
105 |
|
|
|
106 |
if (!$manualinstance) {
|
|
|
107 |
echo json_encode([
|
|
|
108 |
'success' => false,
|
|
|
109 |
'data' => 'Este curso no soporta en enrolamiento manual'
|
|
|
110 |
]);
|
|
|
111 |
}
|
|
|
112 |
|
|
|
113 |
if ($course instanceof stdClass) {
|
|
|
114 |
$coreCourseList = new core_course_list_element($course);
|
|
|
115 |
} else {
|
|
|
116 |
$coreCourseList = [];
|
|
|
117 |
}
|
|
|
118 |
|
| 53 |
efrain |
119 |
$courseimage = null;
|
| 12 |
efrain |
120 |
foreach ($coreCourseList->get_course_overviewfiles() as $file)
|
|
|
121 |
{
|
|
|
122 |
$isimage = $file->is_valid_image();
|
| 40 |
efrain |
123 |
if($isimage) {
|
| 53 |
efrain |
124 |
|
| 46 |
efrain |
125 |
if($file) {
|
| 53 |
efrain |
126 |
$courseimage = [
|
|
|
127 |
'filename' => $file->get_filename(),
|
|
|
128 |
'filesize' => $file->get_filesize(),
|
|
|
129 |
'content' => base64_encode($file->get_content()),
|
|
|
130 |
];
|
|
|
131 |
|
| 46 |
efrain |
132 |
}
|
| 12 |
efrain |
133 |
}
|
| 40 |
efrain |
134 |
|
|
|
135 |
|
| 12 |
efrain |
136 |
}
|
| 40 |
efrain |
137 |
|
| 12 |
efrain |
138 |
|
|
|
139 |
echo json_encode([
|
|
|
140 |
'success' => true,
|
|
|
141 |
'data' =>
|
|
|
142 |
[
|
|
|
143 |
'courseid' => $course->id,
|
| 53 |
efrain |
144 |
'courseimage' => $courseimage,
|
| 12 |
efrain |
145 |
'enddate' => $course->enddate,
|
|
|
146 |
'fullname' => $course->fullname,
|
|
|
147 |
'idnumber' => $course->idnumber,
|
|
|
148 |
'shortname' => $course->shortname,
|
|
|
149 |
'startdate' => $course->startdate,
|
|
|
150 |
'summary' => $course->summary,
|
|
|
151 |
]
|
|
|
152 |
]);
|
|
|
153 |
|
|
|
154 |
|
|
|
155 |
|
|
|
156 |
|