calendar_set_referring_course(0);
}
else {
- // We don't check for membership anymore: if(isstudent($id, $USER->id) || isteacher($id, $USER->id)) {
if(get_record('course', 'id', $id) === false) {
// There is no such course
$SESSION->cal_courses_shown = array();
error("Could not find the course!");
}
- if (!isteacher($course->id)) {
- error("Only teachers can edit this!");
- }
-
+ require_capability('moodle/course:update', get_context_instance(CONTEXT_COURSE, $id));
/// If data submitted, then process and store.
}
}
-if (($marker >=0) and isteacher($course->id) and confirm_sesskey()) {
+$context = get_context_instance(CONTEXT_COURSE, $course->id);
+
+if (($marker >=0) and has_capability('moodle/course:setcurrentsection', $context) and confirm_sesskey()) {
$course->marker = $marker;
if (! set_field("course", "marker", $marker, "id", $course->id)) {
error("Could not mark that topic for this course");
}
}
- $showsection = (isteacher($course->id) or $thissection->visible or !$course->hiddensections);
+ $showsection = (has_capability('moodle/course:viewhiddensections', $context) or $thissection->visible or !$course->hiddensections);
if (!empty($displaysection) and $displaysection != $section) {
if ($showsection) {
echo '<td class="left side"> </td>';
echo '<td class="content">';
- if (!isteacher($course->id) and !$thissection->visible) { // Hidden for students
+ if (!has_capability('moodle/course:viewhiddensections', $context) and !$thissection->visible) { // Hidden for students
echo get_string('notavailable');
} else {
echo '<div class="summary">';
}
}
- if (($marker >=0) && isteacher($course->id) && confirm_sesskey()) {
+ $context = get_context_instance(CONTEXT_COURSE, $course->id);
+
+ if (($marker >=0) && has_capability('moodle/course:setcurrentsection', $context) && confirm_sesskey()) {
$course->marker = $marker;
if (! set_field("course", "marker", $marker, "id", $course->id)) {
error("Could not mark that topic for this course");
}
}
- $showsection = (isteacher($course->id) or $thissection->visible or !$course->hiddensections);
+ $showsection = (has_capability('moodle/course:viewhiddensections', $context) or $thissection->visible or !$course->hiddensections);
if (!empty($displaysection) and $displaysection != $section) {
if ($showsection) {
echo '<td class="left side">'.$section.'</td>';
echo '<td class="content">';
- if (!isteacher($course->id) and !$thissection->visible) { // Hidden for students
+ if (!has_capability('moodle/course:viewhiddensections', $context) and !$thissection->visible) { // Hidden for students
echo get_string('notavailable');
} else {
echo '<div class="summary">';
$strmovedown = get_string('movedown');
}
-
+ $context = get_context_instance(CONTEXT_COURSE, $course->id);
/// Layout the whole page as three big columns.
echo '<table id="layout-table" cellspacing="0"><tr>';
}
}
- $showsection = (isteacher($course->id) or $thissection->visible or !$course->hiddensections);
+ $showsection = (has_capability('moodle/course:viewhiddensections', $context) or $thissection->visible or !$course->hiddensections);
if (!empty($displaysection) and $displaysection != $section) { // Check this week is visible
if ($showsection) {
echo '<td class="left side"> </td>';
echo '<td class="content">';
- if (!isteacher($course->id) and !$thissection->visible) { // Hidden for students
+ if (!has_capability('moodle/course:viewhiddensections', $context) and !$thissection->visible) { // Hidden for students
echo '<div class="weekdates">'.$weekday.' - '.$endweekday.' ('.get_string('notavailable').')</div>';
} else {
$strmovedown = get_string('movedown');
}
-
+ $context = get_context_instance(CONTEXT_COURSE, $course->id);
/* Internet Explorer min-width fix. (See theme/standard/styles_layout.css: min-width for Firefox.)
Window width: 800px, Firefox 763px, IE 752px. (Window width: 640px, Firefox 602px, IE 588px.)
*/
}
}
- $showsection = (isteacher($course->id) or $thissection->visible or !$course->hiddensections);
+ $showsection = (has_capability('moodle/course:viewhiddensections', $context) or $thissection->visible or !$course->hiddensections);
if (!empty($displaysection) and $displaysection != $section) { // Check this week is visible
if ($showsection) {
echo '</div>';
echo '<div class="content">';
- if (!isteacher($course->id) and !$thissection->visible) { // Hidden for students
+ if (!has_capability('moodle/course:viewhiddensections', $context) and !$thissection->visible) { // Hidden for students
echo '<div class="weekdates">'.$weekday.' - '.$endweekday.' ('.get_string('notavailable').')</div>';
} else {
error("That's an invalid course id");
}
- if (!isteacher($course->id)) {
- error("You are not allowed to look at this page");
- }
+ require_capability('moodle/site:import', get_context_instance(CONTEXT_COURSE, $id));
/// Always we begin an import, we delete all backup/restore/import session structures
if (isset($SESSION->course_header)) {
if ($mod->mod == "label") {
continue;
}
- if (!$mod->visible and !$isteacher) {
+ if (!$mod->visible and !has_capability('moodle/course:viewhiddenactivities',get_context_instance(CONTEXT_MODULE, $mod->cm))) {
continue;
}
$groupmode = groupmode($course);
- if ($groupmode == VISIBLEGROUPS or ($groupmode and isteacheredit($course->id))) {
+ if ($groupmode == VISIBLEGROUPS or ($groupmode and has_capability('moodle/course:managegroups', get_context_instance(CONTEXT_COURSE, $course->id)))) {
if ($groups = get_records_menu("groups", "courseid", $course->id, "name ASC", "id,name")) {
echo '<td><b>';
if ($groupmode == VISIBLEGROUPS) {
/// If the group mode is separate, and this user does not have editing privileges,
/// then only the user's group can be viewed.
- if ($course->groupmode == SEPARATEGROUPS and !$isteacheredit) {
+ if ($course->groupmode == SEPARATEGROUPS and !has_capability('moodle/course:managegroups', get_context_instance(CONTEXT_COURSE, $course->id))) {
$groupid = get_current_group($course->id);
}
/// If this course doesn't have groups, no groupid can be specified.
}
$mods[$mod->id] = $mod;
$mods[$mod->id]->modfullname = $modnames[$mod->modname];
- if ($mod->visible or isteacher($courseid)) {
+ if ($mod->visible or has_capability('moodle/course:viewhiddenactivities', get_context_instance(CONTEXT_COURSE, $courseid))) {
$modnamesused[$mod->modname] = $modnames[$mod->modname];
}
}
}
$mod = $mods[$modnumber];
- if ($mod->visible or $isteacher) {
+ if ($mod->visible or has_capability('moodle/course:viewhiddenactivities', get_context_instance(CONTEXT_COURSE, $course->id))) {
echo '<li class="activity '.$mod->modname.'" id="module-'.$modnumber.'">'; // Unique ID
if ($ismoving) {
if ($mod->id == $USER->activitycopy) {
}
if ($usetracking && $mod->modname == 'forum') {
$groupmode = groupmode($course, $mod);
- $groupid = ($groupmode == SEPARATEGROUPS && !isteacheredit($course->id)) ?
+ $groupid = ($groupmode == SEPARATEGROUPS && !has_capability('moodle/course:managegroups', get_context_instance(CONTEXT_COURSE, $course->id))) ?
get_current_group($course->id) : false;
if (forum_tp_can_track_forums() && !isset($untracked[$mod->instance])) {
} else { // you chose a group of activities
- if (isteacher($course->id)) {
+ if (has_capability('moodle/course:viewhiddensections', get_context_instance(CONTEXT_COURSE, $course->id))) {
$hiddenfilter = "";
} else {
$hiddenfilter = " AND cs.visible = '1' ";
$activityfilter = "";
}
- if (isteacher($course->id)) {
+ if (has_capability('moodle/course:viewhiddensections', get_context_instance(CONTEXT_COURSE, $course->id))) {
$hiddenfilter = "";
} else {
$hiddenfilter = " AND cm.visible = '1' ";
$section = 0;
- if (isteacher($course->id)) {
+ if (has_capability('moodle/course:viewhiddensections', get_context_instance(CONTEXT_COURSE, $course->id))) {
$teacher = true;
} else {
$teacher = false;
error("That's an invalid course id");
}
- if (!isteacher($course->id)) {
- error("You are not allowed to look at this page");
- }
+ require_capability('moodle/site:viewreports', get_context_instance(CONTEXT_COURSE, $id));
$strreports = get_string('reports');
error("Course id is incorrect.");
}
- if (!isteacher($course->id)) {
- error("You are not allowed to look at this page");
- }
+ require_capability('moodle/site:viewreports', get_context_instance(CONTEXT_COURSE, $courseid));
add_to_log($course->id, "course", "report outline", "report/outline/index.php?id=$course->id", $course->id);
error("User ID is incorrect");
}
- if (! (isteacher($course->id) or ($course->showreports and $USER->id == $user->id))) {
+ $coursecontext = get_context_instance(CONTEXT_COURSE, $id);
+ $personalcontext = get_context_instance(CONTEXT_USERID, $user->id);
+
+ // if in either context, we can read report, then we can proceed
+ if (!(has_capability('moodle/site:viewreports', $coursecontext) or ($course->showreports and $USER->id == $user->id) or has_capability('moodle/user:viewuseractivitiesreport', $personalcontext))) {
error("You are not allowed to look at this page");
}
if (isset($sections[$i])) { // should always be true
$section = $sections[$i];
- $showsection = (isteacher($course->id) or $section->visible or !$course->hiddensections);
+ $showsection = (has_capability('moodle/course:viewhiddensections', $context) or $section->visible or !$course->hiddensections);
if ($showsection) { // prevent hidden sections in user activity. Thanks to Geoff Wilbert!
}
// security: only editing teachers can access backups
- if ((!isteacheredit($course->id))
+ if ((!has_capability('moodle/site:backup', get_context_instance(CONTEXT_COURSE, $course->id)))
and (count($args) >= 2)
and (strtolower($args[1]) == 'backupdata')) {
and (strtolower($args[2]) == 'assignment')) {
$lifetime = 0; // do not cache assignments, students may reupload them
- if ((!isteacher($course->id)) && (count($args) != 6 || $args[4] != $USER->id)) {
+ if ((!has_capability('mod/assignment:grade', get_context_instance(CONTEXT_COURSE, $course->id))) && (count($args) != 6 || $args[4] != $USER->id)) {
error('Access not allowed');
}
}
require_login($course->id);
- if (!isteacher($course->id)) {
- error(get_string('notteachererror', 'grades'));
- }
+ require_capability('moodle/course:managegrades', get_context_instance(CONTEXT_MODULE, $id));
$group = get_current_group($course->id);
'coursecreator' => CAP_ALLOW,
'admin' => CAP_ALLOW
)
+ ),
+
+ 'moodle/course:sectionvisibility' => array(
+ 'captype' => 'write',
+ 'contextlevel' => CONTEXT_COURSE,
+ 'legacy' => array(
+ 'guest' => CAP_PREVENT,
+ 'student' => CAP_PREVENT,
+ 'teacher' => CAP_PREVENT,
+ 'editingteacher' => CAP_ALLOW,
+ 'coursecreator' => CAP_ALLOW,
+ 'admin' => CAP_ALLOW
+ )
+ ),
+
+ 'moodle/course:viewhiddensections' => array(
+ 'captype' => 'write',
+ 'contextlevel' => CONTEXT_COURSE,
+ 'legacy' => array(
+ 'guest' => CAP_PREVENT,
+ 'student' => CAP_PREVENT,
+ 'teacher' => CAP_PREVENT,
+ 'editingteacher' => CAP_ALLOW,
+ 'coursecreator' => CAP_ALLOW,
+ 'admin' => CAP_ALLOW
+ )
+ ),
+
+ 'moodle/course:setcurrentsection' => array(
+ 'captype' => 'write',
+ 'contextlevel' => CONTEXT_COURSE,
+ 'legacy' => array(
+ 'guest' => CAP_PREVENT,
+ 'student' => CAP_PREVENT,
+ 'teacher' => CAP_PREVENT,
+ 'editingteacher' => CAP_ALLOW,
+ 'coursecreator' => CAP_ALLOW,
+ 'admin' => CAP_ALLOW
+ )
+ ),
+
+ 'moodle/course:viewcoursegrades' => array(
+ 'captype' => 'read',
+ 'contextlevel' => CONTEXT_COURSE,
+ 'legacy' => array(
+ 'guest' => CAP_PREVENT,
+ 'student' => CAP_PREVENT,
+ 'teacher' => CAP_ALLOW,
+ 'editingteacher' => CAP_ALLOW,
+ 'coursecreator' => CAP_ALLOW,
+ 'admin' => CAP_ALLOW
+ )
+ ),
+
+ 'moodle/course:managegrades' => array(
+ 'captype' => 'write',
+ 'contextlevel' => CONTEXT_COURSE,
+ 'legacy' => array(
+ 'guest' => CAP_PREVENT,
+ 'student' => CAP_PREVENT,
+ 'teacher' => CAP_PREVENT,
+ 'editingteacher' => CAP_ALLOW,
+ 'coursecreator' => CAP_ALLOW,
+ 'admin' => CAP_ALLOW
+ )
+ ),
+
+ 'moodle/user:viewusergrades' => array(
+ 'captype' => 'write',
+ 'contextlevel' => CONTEXT_COURSE,
+ 'legacy' => array(
+ 'guest' => CAP_PREVENT,
+ 'student' => CAP_ALLOW,
+ 'teacher' => CAP_ALLOW,
+ 'editingteacher' => CAP_ALLOW,
+ 'coursecreator' => CAP_ALLOW,
+ 'admin' => CAP_ALLOW
+ )
)
);
projects / moodle.git / commitdiff