* Page to be read in by the flex application.
* Outputs data for a visulasation in tab format.
*/
-
+
/// Get a session id from the URI request and make a cookie
/// for it temparaly. This is needed as the flex application will
/// not have the users oringal cookie and only the session information
require_once $CFG->dirroot.'/grade/lib.php';
require_once $CFG->dirroot.'/grade/report/visual/lib.php';
-$courseid = required_param('id');
-$visid = optional_param('visid');
+$courseid = required_param('id', PARAM_INT);
+$visid = optional_param('visid', '', PARAM_ACTION);
/// basic access checks
if (!$course = $DB->get_record('course', array('id' => $courseid))) {
- print_error('nocourseid');
+ print_error('nocourseid');
}
require_login($course);
$context = get_context_instance(CONTEXT_COURSE, $course->id);
require_once $CFG->dirroot.'/grade/lib.php';
require_once $CFG->dirroot.'/grade/report/visual/lib.php';
-$courseid = required_param('id');
-$visid = optional_param('visid');
+$courseid = required_param('id', PARAM_INT);
+$visid = optional_param('visid', '', PARAM_ACTION);
/// basic access checks
if (!$course = $DB->get_record('course', array('id' => $courseid))) {
- print_error('nocourseid');
+ print_error('nocourseid');
}
require_login($course);
$context = get_context_instance(CONTEXT_COURSE, $course->id);
/// Make sure they can even access this course
if (!$course = $DB->get_record('course', array('id' => $courseid))) {
- print_error('nocourseid');
+ print_error('nocourseid');
}
require_login($course);
require_once $CFG->dirroot.'/grade/report/visual/lib.php';
$courseid = required_param('id', PARAM_INT);
-$visid = optional_param('visid');
+$visid = optional_param('visid', '', PARAM_ACTION);
/// basic access checks
if (!$course = $DB->get_record('course', array('id' => $courseid))) {
require_once $CFG->dirroot.'/grade/report/visual/lib.php';
require_once $CFG->libdir.'/phpxml/xml.php';
-$visname = required_param('visid');
-$courseid = required_param('id');
+$visname = required_param('visid', PARAM_ACTION);
+$courseid = required_param('id', PARAM_INT);
/// basic access checks
if (!$course = $DB->get_record('course', array('id' => $courseid))) {
- print_error('nocourseid');
+ print_error('nocourseid');
}
require_login($course);
$context = get_context_instance(CONTEXT_COURSE, $course->id);