| 12 |
efrain |
1 |
<?php
|
|
|
2 |
header('Access-Control-Allow-Origin: *');
|
|
|
3 |
header('Access-Control-Allow-Methods: GET');
|
|
|
4 |
//POST, GET, DELETE, PUT, PATCH, OPTIONS
|
|
|
5 |
header('Access-Control-Allow-Headers: token, Content-Type');
|
|
|
6 |
header('Access-Control-Max-Age: 1728000');
|
|
|
7 |
|
|
|
8 |
|
|
|
9 |
header('Content-Type: application/json');
|
|
|
10 |
|
|
|
11 |
|
|
|
12 |
|
|
|
13 |
require_once(__DIR__ . '/config.php');
|
|
|
14 |
require_once(__DIR__ . '/../config.php');
|
|
|
15 |
global $DB, $PAGE, $CFG;
|
|
|
16 |
|
|
|
17 |
require_once($CFG->libdir.'/moodlelib.php');
|
|
|
18 |
require_once($CFG->libdir . '/externallib.php');
|
|
|
19 |
require_once($CFG->libdir.'/authlib.php');
|
|
|
20 |
require_once( $CFG->libdir . '/gdlib.php' );
|
|
|
21 |
|
|
|
22 |
require_once($CFG->dirroot.'/user/lib.php');
|
|
|
23 |
require_once __DIR__ . '/rsa.php';
|
|
|
24 |
require_once __DIR__ . '/lib.php';
|
|
|
25 |
|
|
|
26 |
|
|
|
27 |
$username = trim(isset($_SERVER['HTTP_USERNAME']) ? filter_var($_SERVER['HTTP_USERNAME'], FILTER_SANITIZE_STRING) : '');
|
|
|
28 |
$password = trim(isset($_SERVER['HTTP_PASSWORD']) ? filter_var($_SERVER['HTTP_PASSWORD'], FILTER_SANITIZE_STRING) : '');
|
|
|
29 |
$timestamp = trim(isset($_SERVER['HTTP_TIMESTAMP']) ? filter_var($_SERVER['HTTP_TIMESTAMP'], FILTER_SANITIZE_STRING) : '');
|
|
|
30 |
$rand = intval(isset($_SERVER['HTTP_RAND']) ? filter_var($_SERVER['HTTP_RAND'], FILTER_SANITIZE_NUMBER_INT) : 0,10);
|
|
|
31 |
|
|
|
32 |
|
|
|
33 |
|
|
|
34 |
if(empty($username) || empty($password) || empty($timestamp) || empty($rand) || !is_integer($rand)) {
|
|
|
35 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY1']) ;
|
|
|
36 |
exit;
|
|
|
37 |
}
|
|
|
38 |
|
|
|
39 |
if($username != LLWS_USERNAME) {
|
|
|
40 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY2']) ;
|
|
|
41 |
exit;
|
|
|
42 |
}
|
|
|
43 |
|
|
|
44 |
$dt = \DateTime::createFromFormat('Y-m-d\TH:i:s', $timestamp);
|
|
|
45 |
if(!$dt) {
|
|
|
46 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY3']) ;
|
|
|
47 |
exit;
|
|
|
48 |
}
|
|
|
49 |
|
|
|
50 |
$dt = \DateTimeImmutable::createFromFormat('Y-m-d\TH:i:s', gmdate('Y-m-d\TH:i:s'));
|
|
|
51 |
$dtMax = $dt->add(\DateInterval::createFromDateString('5 minutes'));
|
|
|
52 |
$dtMin = $dt->sub(\DateInterval::createFromDateString('5 minutes'));
|
|
|
53 |
|
|
|
54 |
|
|
|
55 |
$t0 = $dt->getTimestamp();
|
|
|
56 |
$t1 = $dtMin->getTimestamp();
|
|
|
57 |
$t2 = $dtMax->getTimestamp();
|
|
|
58 |
|
|
|
59 |
if($t0 < $t1 || $t0 > $t2) {
|
|
|
60 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY4']) ;
|
|
|
61 |
exit;
|
|
|
62 |
}
|
|
|
63 |
|
|
|
64 |
if(!password_verify( $username.'-'. LLWS_PASSWORD. '-' . $rand. '-' . $timestamp, $password)) {
|
|
|
65 |
echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY5']) ;
|
|
|
66 |
exit;
|
|
|
67 |
}
|
|
|
68 |
|
|
|
69 |
|
|
|
70 |
|
|
|
71 |
$response = [
|
|
|
72 |
'success' => true,
|
|
|
73 |
'data' => []
|
|
|
74 |
];
|
|
|
75 |
|
|
|
76 |
$enrolmethod = 'manual';
|
|
|
77 |
$url_noimage = $CFG->wwwroot . '/theme/' . $PAGE->theme->name . '/pix/coursenoimage.jpg';
|
|
|
78 |
|
|
|
79 |
//$courses_with_autoenrol = $DB->get_records('enrol', ['enrol' => 'manual', 'status' => 0]);
|
|
|
80 |
//print_r($courses_with_autoenrol); exit;
|
|
|
81 |
|
|
|
82 |
$enrol = enrol_get_plugin($enrolmethod);
|
|
|
83 |
if ($enrol) {
|
|
|
84 |
|
|
|
85 |
$courses = get_courses();
|
|
|
86 |
foreach($courses as $course)
|
|
|
87 |
{
|
|
|
88 |
|
|
|
89 |
|
|
|
90 |
$instances = enrol_get_instances($course->id, true);
|
|
|
91 |
|
|
|
92 |
$manualinstance = null;
|
|
|
93 |
foreach ($instances as $instance)
|
|
|
94 |
{
|
|
|
95 |
if ($instance->enrol == $enrolmethod) {
|
|
|
96 |
$manualinstance = $instance;
|
|
|
97 |
break;
|
|
|
98 |
}
|
|
|
99 |
}
|
|
|
100 |
|
|
|
101 |
|
|
|
102 |
if (!$manualinstance) {
|
|
|
103 |
continue;
|
|
|
104 |
}
|
|
|
105 |
|
|
|
106 |
if ($course instanceof stdClass) {
|
|
|
107 |
$coreCourseList = new core_course_list_element($course);
|
|
|
108 |
} else {
|
|
|
109 |
$coreCourseList = [];
|
|
|
110 |
}
|
|
|
111 |
|
|
|
112 |
$image = $url_noimage;
|
|
|
113 |
foreach ($coreCourseList->get_course_overviewfiles() as $file)
|
|
|
114 |
{
|
|
|
115 |
$isimage = $file->is_valid_image();
|
|
|
116 |
$image = file_encode_url("{$CFG->wwwroot}/pluginfile.php", '/' . $file->get_contextid() . '/' . $file->get_component() . '/' . $file->get_filearea() . $file->get_filepath() . $file->get_filename(), !$isimage);
|
|
|
117 |
if (!$isimage) {
|
|
|
118 |
$image = $url_noimage;
|
|
|
119 |
}
|
|
|
120 |
}
|
|
|
121 |
|
|
|
122 |
|
|
|
123 |
|
|
|
124 |
array_push($response['data'], [
|
|
|
125 |
'courseid' => $course->id,
|
|
|
126 |
'courseimage' => $image,
|
|
|
127 |
'enddate' => $course->enddate,
|
|
|
128 |
'fullname' => $course->fullname,
|
|
|
129 |
'idnumber' => $course->idnumber,
|
|
|
130 |
'shortname' => $course->shortname,
|
|
|
131 |
'startdate' => $course->startdate,
|
|
|
132 |
'summary' => $course->summary,
|
|
|
133 |
]);
|
|
|
134 |
|
|
|
135 |
}
|
|
|
136 |
}
|
|
|
137 |
|
|
|
138 |
echo json_encode($response) ;
|
|
|
139 |
|
|
|
140 |
|
|
|
141 |
|
|
|
142 |
|