if (has_capability('moodle/legacy:guest', $context, NULL, false)) { // Are a guest now
$this->content->items[]='<a href="enrol.php?id='.$this->instance->pageid.'">'.get_string('enrolme', '', format_string($course->shortname)).'</a>';
$this->content->icons[]='<img src="'.$CFG->pixpath.'/i/user.gif" class="icon" alt="" />';
- } else if (has_capability('moodle/role:unassignself', $context, NULL, false)) { // Have some role
+ } else if (has_capability('moodle/role:unassignself', $context, NULL, false) and get_user_roles($context, $USER->id, false)) { // Have some role
$this->content->items[]='<a href="unenrol.php?id='.$this->instance->pageid.'">'.get_string('unenrolme', '', format_string($course->shortname)).'</a>';
$this->content->icons[]='<img src="'.$CFG->pixpath.'/i/user.gif" class="icon" alt="" />';
}
if ($userid) { // Unenrolling someone else
require_capability('moodle/role:assign', $context, NULL, false);
+
+ $roles = get_user_roles($context, $userid, false);
+
+ // verify user may unassign all roles at course context
+ foreach($roles as $role) {
+ if (!user_can_assign($context, $role->roleid)) {
+ error('Can not unassign this user from role id:'.$role->roleid);
+ }
+ }
+
} else { // Unenrol yourself
require_capability('moodle/role:unassignself', $context, NULL, false);
}
$contexts = ' ra.contextid = \''.$context->id.'\'';
}
- return get_records_sql('SELECT ra.*, r.name, r.shortname
- FROM '.$CFG->prefix.'role_assignments ra,
- '.$CFG->prefix.'role r,
- '.$CFG->prefix.'context c
- WHERE ra.userid = '.$userid.
- ' AND ra.roleid = r.id
- AND ra.contextid = c.id
- AND '.$contexts . $hiddensql .
- ' ORDER BY '.$order);
+ if (!$return = get_records_sql('SELECT ra.*, r.name, r.shortname
+ FROM '.$CFG->prefix.'role_assignments ra,
+ '.$CFG->prefix.'role r,
+ '.$CFG->prefix.'context c
+ WHERE ra.userid = '.$userid.'
+ AND ra.roleid = r.id
+ AND ra.contextid = c.id
+ AND '.$contexts . $hiddensql .'
+ ORDER BY '.$order)) {
+ $return = array();
+ }
+
+ return $return;
}
/**
if ($course->id != SITEID && empty($course->metacourse)) { // Mostly only useful at course level
- if (($user->id == $USER->id && // Myself
- has_capability('moodle/course:view', $coursecontext, NULL) && // Course participant
- has_capability('moodle/role:unassignself', $coursecontext, NULL, false)) // Can unassign myself
- ||
- (has_capability('moodle/role:assign', $coursecontext, NULL) && // I can assign roles
- get_user_roles($coursecontext, $user->id)) ) { // This user has roles
-
- echo '<form action="../course/unenrol.php" method="get">';
- echo "<div>";
+ $canunenrol = false;
+
+ if ($user->id == $USER->id) { // Myself
+ $canunenrol = has_capability('moodle/course:view', $coursecontext, NULL) && // Course participant
+ has_capability('moodle/role:unassignself', $coursecontext, NULL, false) && // Can unassign myself
+ get_user_roles($coursecontext, $user->id, false); // Must have role in course
+
+ } else if (has_capability('moodle/role:assign', $coursecontext, NULL)) { // I can assign roles
+ if ($roles = get_user_roles($coursecontext, $user->id, false)) {
+ $canunenrol = true;
+ foreach($roles as $role) {
+ if (!user_can_assign($coursecontext, $role->roleid)) {
+ $canunenrol = false; // I can not unassign all roles in this course :-(
+ break;
+ }
+ }
+ }
+ }
+
+ if ($canunenrol) {
+ echo '<form action="'.$CFG->wwwroot.'/course/unenrol.php" method="get">';
+ echo '<div>';
echo '<input type="hidden" name="id" value="'.$course->id.'" />';
echo '<input type="hidden" name="user" value="'.$user->id.'" />';
- echo '<input type="submit" value="'.get_string('unenrolme', '', $course->shortname).'" />';
- echo "</div>";
+ echo '<input type="submit" value="'.s(get_string('unenrolme', '', $course->shortname)).'" />';
+ echo '</div>';
echo '</form>';
}
}
if ($USER->id != $user->id && empty($USER->realuser) && has_capability('moodle/user:loginas', $coursecontext) &&
! has_capability('moodle/site:doanything', $coursecontext, $user->id, false)) {
echo '<form action="'.$CFG->wwwroot.'/course/loginas.php" method="get">';
- echo "<div>";
+ echo '<div>';
echo '<input type="hidden" name="id" value="'.$course->id.'" />';
echo '<input type="hidden" name="user" value="'.$user->id.'" />';
echo '<input type="hidden" name="sesskey" value="'.sesskey().'" />';
echo '<input type="submit" value="'.get_string('loginas').'" />';
- echo "</div>";
+ echo '</div>';
echo '</form>';
}
projects / moodle.git / commitdiff