Search moodle.org's
Developer Documentation
Developer Documentation
- Bug fixes for general core bugs in 3.10.x will end 8 November 2021 (12 months).
- Bug fixes for security issues in 3.10.x will end 9 May 2022 (18 months).
- PHP version: minimum PHP 7.2.0 Note: minimum PHP version has increased since Moodle 3.8. PHP 7.3.x and 7.4.x are supported too.
/admin/tool/mobile/classes/ -> api.php (source)
Differences Between: [Versions 310 and 311] [Versions 310 and 400] [Versions 310 and 401] [Versions 310 and 402] [Versions 310 and 403] [Versions 39 and 310]
1 <?php 2 // This file is part of Moodle - http://moodle.org/ 3 // 4 // Moodle is free software: you can redistribute it and/or modify 5 // it under the terms of the GNU General Public License as published by 6 // the Free Software Foundation, either version 3 of the License, or 7 // (at your option) any later version. 8 // 9 // Moodle is distributed in the hope that it will be useful, 10 // but WITHOUT ANY WARRANTY; without even the implied warranty of 11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 12 // GNU General Public License for more details. 13 // 14 // You should have received a copy of the GNU General Public License 15 // along with Moodle. If not, see <http://www.gnu.org/licenses/>. 16 17 /** 18 * Class for Moodle Mobile tools. 19 * 20 * @package tool_mobile 21 * @copyright 2016 Juan Leyva 22 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later 23 * @since Moodle 3.1 24 */ 25 namespace tool_mobile; 26 27 use core_component; 28 use core_plugin_manager; 29 use context_system; 30 use moodle_url; 31 use moodle_exception; 32 use lang_string; 33 use curl; 34 use core_qrcode; 35 use stdClass; 36 37 /** 38 * API exposed by tool_mobile, to be used mostly by external functions and the plugin settings. 39 * 40 * @copyright 2016 Juan Leyva 41 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later 42 * @since Moodle 3.1 43 */ 44 class api { 45 46 /** @var int to identify the login via app. */ 47 const LOGIN_VIA_APP = 1; 48 /** @var int to identify the login via browser. */ 49 const LOGIN_VIA_BROWSER = 2; 50 /** @var int to identify the login via an embedded browser. */ 51 const LOGIN_VIA_EMBEDDED_BROWSER = 3; 52 /** @var int seconds an auto-login key will expire. */ 53 const LOGIN_KEY_TTL = 60; 54 /** @var string URL of the Moodle Apps Portal */ 55 const MOODLE_APPS_PORTAL_URL = 'https://apps.moodle.com'; 56 /** @var int seconds a QR login key will expire. */ 57 const LOGIN_QR_KEY_TTL = 600; 58 /** @var int QR code disabled value */ 59 const QR_CODE_DISABLED = 0; 60 /** @var int QR code type URL value */ 61 const QR_CODE_URL = 1; 62 /** @var int QR code type login value */ 63 const QR_CODE_LOGIN = 2; 64 /** @var string Default Android app id */ 65 const DEFAULT_ANDROID_APP_ID = 'com.moodle.moodlemobile'; 66 /** @var string Default iOS app id */ 67 const DEFAULT_IOS_APP_ID = '633359593'; 68 69 /** 70 * Returns a list of Moodle plugins supporting the mobile app. 71 * 72 * @return array an array of objects containing the plugin information 73 */ 74 public static function get_plugins_supporting_mobile() { 75 global $CFG; 76 require_once($CFG->libdir . '/adminlib.php'); 77 78 $cachekey = 'mobileplugins'; 79 if (!isloggedin()) { 80 $cachekey = 'authmobileplugins'; // Use a different cache for not logged users. 81 } 82 83 // Check if we can return this from cache. 84 $cache = \cache::make('tool_mobile', 'plugininfo'); 85 $pluginsinfo = $cache->get($cachekey); 86 if ($pluginsinfo !== false) { 87 return (array)$pluginsinfo; 88 } 89 90 $pluginsinfo = []; 91 // For not logged users return only auth plugins. 92 // This is to avoid anyone (not being a registered user) to obtain and download all the site remote add-ons. 93 if (!isloggedin()) { 94 $plugintypes = array('auth' => $CFG->dirroot.'/auth'); 95 } else { 96 $plugintypes = core_component::get_plugin_types(); 97 } 98 99 foreach ($plugintypes as $plugintype => $unused) { 100 // We need to include files here. 101 $pluginswithfile = core_component::get_plugin_list_with_file($plugintype, 'db' . DIRECTORY_SEPARATOR . 'mobile.php'); 102 foreach ($pluginswithfile as $plugin => $notused) { 103 $path = core_component::get_plugin_directory($plugintype, $plugin); 104 $component = $plugintype . '_' . $plugin; 105 $version = get_component_version($component); 106 107 require("$path/db/mobile.php"); 108 foreach ($addons as $addonname => $addoninfo) { 109 110 // Add handlers (for site add-ons). 111 $handlers = !empty($addoninfo['handlers']) ? $addoninfo['handlers'] : array(); 112 $handlers = json_encode($handlers); // JSON formatted, since it is a complex structure that may vary over time. 113 114 // Now language strings used by the app. 115 $lang = array(); 116 if (!empty($addoninfo['lang'])) { 117 $stringmanager = get_string_manager(); 118 $langs = $stringmanager->get_list_of_translations(true); 119 foreach ($langs as $langid => $langname) { 120 foreach ($addoninfo['lang'] as $stringinfo) { 121 $lang[$langid][$stringinfo[0]] = 122 $stringmanager->get_string($stringinfo[0], $stringinfo[1], null, $langid); 123 } 124 } 125 } 126 $lang = json_encode($lang); 127 128 $plugininfo = array( 129 'component' => $component, 130 'version' => $version, 131 'addon' => $addonname, 132 'dependencies' => !empty($addoninfo['dependencies']) ? $addoninfo['dependencies'] : array(), 133 'fileurl' => '', 134 'filehash' => '', 135 'filesize' => 0, 136 'handlers' => $handlers, 137 'lang' => $lang, 138 ); 139 140 // All the mobile packages must be under the plugin mobile directory. 141 $package = $path . '/mobile/' . $addonname . '.zip'; 142 if (file_exists($package)) { 143 $plugininfo['fileurl'] = $CFG->wwwroot . '' . str_replace($CFG->dirroot, '', $package); 144 $plugininfo['filehash'] = sha1_file($package); 145 $plugininfo['filesize'] = filesize($package); 146 } 147 $pluginsinfo[] = $plugininfo; 148 } 149 } 150 } 151 152 $cache->set($cachekey, $pluginsinfo); 153 154 return $pluginsinfo; 155 } 156 157 /** 158 * Returns a list of the site public settings, those not requiring authentication. 159 * 160 * @return array with the settings and warnings 161 */ 162 public static function get_public_config() { 163 global $CFG, $SITE, $PAGE, $OUTPUT; 164 require_once($CFG->libdir . '/authlib.php'); 165 166 $context = context_system::instance(); 167 // We need this to make work the format text functions. 168 $PAGE->set_context($context); 169 170 list($authinstructions, $notusedformat) = external_format_text($CFG->auth_instructions, FORMAT_MOODLE, $context->id); 171 list($maintenancemessage, $notusedformat) = external_format_text($CFG->maintenance_message, FORMAT_MOODLE, $context->id); 172 $settings = array( 173 'wwwroot' => $CFG->wwwroot, 174 'httpswwwroot' => $CFG->wwwroot, 175 'sitename' => external_format_string($SITE->fullname, $context->id, true), 176 'guestlogin' => $CFG->guestloginbutton, 177 'rememberusername' => $CFG->rememberusername, 178 'authloginviaemail' => $CFG->authloginviaemail, 179 'registerauth' => $CFG->registerauth, 180 'forgottenpasswordurl' => clean_param($CFG->forgottenpasswordurl, PARAM_URL), // We may expect a mailto: here. 181 'authinstructions' => $authinstructions, 182 'authnoneenabled' => (int) is_enabled_auth('none'), 183 'enablewebservices' => $CFG->enablewebservices, 184 'enablemobilewebservice' => $CFG->enablemobilewebservice, 185 'maintenanceenabled' => $CFG->maintenance_enabled, 186 'maintenancemessage' => $maintenancemessage, 187 'mobilecssurl' => !empty($CFG->mobilecssurl) ? $CFG->mobilecssurl : '', 188 'tool_mobile_disabledfeatures' => get_config('tool_mobile', 'disabledfeatures'), 189 'country' => clean_param($CFG->country, PARAM_NOTAGS), 190 'agedigitalconsentverification' => \core_auth\digital_consent::is_age_digital_consent_verification_enabled(), 191 'autolang' => $CFG->autolang, 192 'lang' => clean_param($CFG->lang, PARAM_LANG), // Avoid breaking WS because of incorrect package langs. 193 'langmenu' => $CFG->langmenu, 194 'langlist' => $CFG->langlist, 195 'locale' => $CFG->locale, 196 'tool_mobile_minimumversion' => get_config('tool_mobile', 'minimumversion'), 197 'tool_mobile_iosappid' => get_config('tool_mobile', 'iosappid'), 198 'tool_mobile_androidappid' => get_config('tool_mobile', 'androidappid'), 199 'tool_mobile_setuplink' => clean_param(get_config('tool_mobile', 'setuplink'), PARAM_URL), 200 ); 201 202 $typeoflogin = get_config('tool_mobile', 'typeoflogin'); 203 // Not found, edge case. 204 if ($typeoflogin === false) { 205 $typeoflogin = self::LOGIN_VIA_APP; // Defaults to via app. 206 } 207 $settings['typeoflogin'] = $typeoflogin; 208 209 // Check if the user can sign-up to return the launch URL in that case. 210 $cansignup = signup_is_enabled(); 211 212 $url = new moodle_url("/$CFG->admin/tool/mobile/launch.php"); 213 $settings['launchurl'] = $url->out(false); 214 215 // Check that we are receiving a moodle_url object, themes can override get_logo_url and may return incorrect values. 216 if (($logourl = $OUTPUT->get_logo_url()) && $logourl instanceof moodle_url) { 217 $settings['logourl'] = clean_param($logourl->out(false), PARAM_URL); 218 } 219 if (($compactlogourl = $OUTPUT->get_compact_logo_url()) && $compactlogourl instanceof moodle_url) { 220 $settings['compactlogourl'] = clean_param($compactlogourl->out(false), PARAM_URL); 221 } 222 223 // Identity providers. 224 $authsequence = get_enabled_auth_plugins(); 225 $identityproviders = \auth_plugin_base::get_identity_providers($authsequence); 226 $identityprovidersdata = \auth_plugin_base::prepare_identity_providers_for_output($identityproviders, $OUTPUT); 227 if (!empty($identityprovidersdata)) { 228 $settings['identityproviders'] = $identityprovidersdata; 229 // Clean URLs to avoid breaking Web Services. 230 // We can't do it in prepare_identity_providers_for_output() because it may break the web output. 231 foreach ($settings['identityproviders'] as &$ip) { 232 $ip['url'] = (!empty($ip['url'])) ? clean_param($ip['url'], PARAM_URL) : ''; 233 $ip['iconurl'] = (!empty($ip['iconurl'])) ? clean_param($ip['iconurl'], PARAM_URL) : ''; 234 } 235 } 236 237 // If age is verified, return also the admin contact details. 238 if ($settings['agedigitalconsentverification']) { 239 $settings['supportname'] = clean_param($CFG->supportname, PARAM_NOTAGS); 240 $settings['supportemail'] = clean_param($CFG->supportemail, PARAM_EMAIL); 241 } 242 243 return $settings; 244 } 245 246 /** 247 * Returns a list of site configurations, filtering by section. 248 * 249 * @param string $section section name 250 * @return stdClass object containing the settings 251 */ 252 public static function get_config($section) { 253 global $CFG, $SITE; 254 255 $settings = new \stdClass; 256 $context = context_system::instance(); 257 $isadmin = has_capability('moodle/site:config', $context); 258 259 if (empty($section) or $section == 'frontpagesettings') { 260 require_once($CFG->dirroot . '/course/format/lib.php'); 261 // First settings that anyone can deduce. 262 $settings->fullname = external_format_string($SITE->fullname, $context->id); 263 $settings->shortname = external_format_string($SITE->shortname, $context->id); 264 265 // Return to a var instead of directly to $settings object because of differences between 266 // list() in php5 and php7. {@link http://php.net/manual/en/function.list.php} 267 $formattedsummary = external_format_text($SITE->summary, $SITE->summaryformat, 268 $context->id); 269 $settings->summary = $formattedsummary[0]; 270 $settings->summaryformat = $formattedsummary[1]; 271 $settings->frontpage = $CFG->frontpage; 272 $settings->frontpageloggedin = $CFG->frontpageloggedin; 273 $settings->maxcategorydepth = $CFG->maxcategorydepth; 274 $settings->frontpagecourselimit = $CFG->frontpagecourselimit; 275 $settings->numsections = course_get_format($SITE)->get_last_section_number(); 276 $settings->newsitems = $SITE->newsitems; 277 $settings->commentsperpage = $CFG->commentsperpage; 278 279 // Now, admin settings. 280 if ($isadmin) { 281 $settings->defaultfrontpageroleid = $CFG->defaultfrontpageroleid; 282 } 283 } 284 285 if (empty($section) or $section == 'sitepolicies') { 286 $manager = new \core_privacy\local\sitepolicy\manager(); 287 $settings->sitepolicy = ($sitepolicy = $manager->get_embed_url()) ? $sitepolicy->out(false) : ''; 288 $settings->sitepolicyhandler = $CFG->sitepolicyhandler; 289 $settings->disableuserimages = $CFG->disableuserimages; 290 } 291 292 if (empty($section) or $section == 'gradessettings') { 293 require_once($CFG->dirroot . '/user/lib.php'); 294 $settings->mygradesurl = user_mygrades_url(); 295 // The previous function may return moodle_url instances or plain string URLs. 296 if ($settings->mygradesurl instanceof moodle_url) { 297 $settings->mygradesurl = $settings->mygradesurl->out(false); 298 } 299 } 300 301 if (empty($section) or $section == 'mobileapp') { 302 $settings->tool_mobile_forcelogout = get_config('tool_mobile', 'forcelogout'); 303 $settings->tool_mobile_customlangstrings = get_config('tool_mobile', 'customlangstrings'); 304 $settings->tool_mobile_disabledfeatures = get_config('tool_mobile', 'disabledfeatures'); 305 $settings->tool_mobile_filetypeexclusionlist = get_config('tool_mobile', 'filetypeexclusionlist'); 306 $settings->tool_mobile_custommenuitems = get_config('tool_mobile', 'custommenuitems'); 307 $settings->tool_mobile_apppolicy = get_config('tool_mobile', 'apppolicy'); 308 } 309 310 if (empty($section) or $section == 'calendar') { 311 $settings->calendartype = $CFG->calendartype; 312 $settings->calendar_site_timeformat = $CFG->calendar_site_timeformat; 313 $settings->calendar_startwday = $CFG->calendar_startwday; 314 $settings->calendar_adminseesall = $CFG->calendar_adminseesall; 315 $settings->calendar_lookahead = $CFG->calendar_lookahead; 316 $settings->calendar_maxevents = $CFG->calendar_maxevents; 317 } 318 319 if (empty($section) or $section == 'coursecolors') { 320 $colornumbers = range(1, 10); 321 foreach ($colornumbers as $number) { 322 $settings->{'core_admin_coursecolor' . $number} = get_config('core_admin', 'coursecolor' . $number); 323 } 324 } 325 326 if (empty($section) or $section == 'supportcontact') { 327 $settings->supportname = $CFG->supportname; 328 $settings->supportemail = $CFG->supportemail; 329 $settings->supportpage = $CFG->supportpage; 330 } 331 332 if (empty($section) || $section === 'graceperiodsettings') { 333 $settings->coursegraceperiodafter = $CFG->coursegraceperiodafter; 334 $settings->coursegraceperiodbefore = $CFG->coursegraceperiodbefore; 335 } 336 337 return $settings; 338 } 339 340 /* 341 * Check if all the required conditions are met to allow the auto-login process continue. 342 * 343 * @param int $userid current user id 344 * @since Moodle 3.2 345 * @throws moodle_exception 346 */ 347 public static function check_autologin_prerequisites($userid) { 348 global $CFG; 349 350 if (!$CFG->enablewebservices or !$CFG->enablemobilewebservice) { 351 throw new moodle_exception('enablewsdescription', 'webservice'); 352 } 353 354 if (!is_https()) { 355 throw new moodle_exception('httpsrequired', 'tool_mobile'); 356 } 357 358 if (has_capability('moodle/site:config', context_system::instance(), $userid) or is_siteadmin($userid)) { 359 throw new moodle_exception('autologinnotallowedtoadmins', 'tool_mobile'); 360 } 361 } 362 363 /** 364 * Creates an auto-login key for the current user, this key is restricted by time and ip address. 365 * This key is used for automatically login the user in the site when the Moodle app opens the site in a mobile browser. 366 * 367 * @return string the key 368 * @since Moodle 3.2 369 */ 370 public static function get_autologin_key() { 371 global $USER; 372 // Delete previous keys. 373 delete_user_key('tool_mobile', $USER->id); 374 375 // Create a new key. 376 $iprestriction = getremoteaddr(); 377 $validuntil = time() + self::LOGIN_KEY_TTL; 378 return create_user_key('tool_mobile', $USER->id, null, $iprestriction, $validuntil); 379 } 380 381 /** 382 * Creates a QR login key for the current user, this key is restricted by time and ip address. 383 * This key is used for automatically login the user in the site when the user scans a QR code in the Moodle app. 384 * 385 * @return string the key 386 * @since Moodle 3.9 387 */ 388 public static function get_qrlogin_key() { 389 global $USER; 390 // Delete previous keys. 391 delete_user_key('tool_mobile', $USER->id); 392 393 // Create a new key. 394 $iprestriction = getremoteaddr(null); 395 $validuntil = time() + self::LOGIN_QR_KEY_TTL; 396 return create_user_key('tool_mobile', $USER->id, null, $iprestriction, $validuntil); 397 } 398 399 /** 400 * Get a list of the Mobile app features. 401 * 402 * @return array array with the features grouped by theirs ubication in the app. 403 * @since Moodle 3.3 404 */ 405 public static function get_features_list() { 406 global $CFG; 407 require_once($CFG->libdir . '/authlib.php'); 408 409 $general = new lang_string('general'); 410 $mainmenu = new lang_string('mainmenu', 'tool_mobile'); 411 $course = new lang_string('course'); 412 $modules = new lang_string('managemodules'); 413 $blocks = new lang_string('blocks'); 414 $user = new lang_string('user'); 415 $files = new lang_string('files'); 416 $remoteaddons = new lang_string('remoteaddons', 'tool_mobile'); 417 $identityproviders = new lang_string('oauth2identityproviders', 'tool_mobile'); 418 419 $availablemods = core_plugin_manager::instance()->get_plugins_of_type('mod'); 420 $coursemodules = array(); 421 $appsupportedmodules = array( 422 'assign', 'book', 'chat', 'choice', 'data', 'feedback', 'folder', 'forum', 'glossary', 'h5pactivity', 'imscp', 423 'label', 'lesson', 'lti', 'page', 'quiz', 'resource', 'scorm', 'survey', 'url', 'wiki', 'workshop'); 424 425 foreach ($availablemods as $mod) { 426 if (in_array($mod->name, $appsupportedmodules)) { 427 $coursemodules['$mmCourseDelegate_mmaMod' . ucfirst($mod->name)] = $mod->displayname; 428 } 429 } 430 asort($coursemodules); 431 432 $remoteaddonslist = array(); 433 $mobileplugins = self::get_plugins_supporting_mobile(); 434 foreach ($mobileplugins as $plugin) { 435 $displayname = core_plugin_manager::instance()->plugin_name($plugin['component']) . " - " . $plugin['addon']; 436 $remoteaddonslist['sitePlugin_' . $plugin['component'] . '_' . $plugin['addon']] = $displayname; 437 438 } 439 440 // Display blocks. 441 $availableblocks = core_plugin_manager::instance()->get_plugins_of_type('block'); 442 $courseblocks = array(); 443 $appsupportedblocks = array( 444 'activity_modules' => 'CoreBlockDelegate_AddonBlockActivityModules', 445 'activity_results' => 'CoreBlockDelegate_AddonBlockActivityResults', 446 'site_main_menu' => 'CoreBlockDelegate_AddonBlockSiteMainMenu', 447 'myoverview' => 'CoreBlockDelegate_AddonBlockMyOverview', 448 'timeline' => 'CoreBlockDelegate_AddonBlockTimeline', 449 'recentlyaccessedcourses' => 'CoreBlockDelegate_AddonBlockRecentlyAccessedCourses', 450 'starredcourses' => 'CoreBlockDelegate_AddonBlockStarredCourses', 451 'recentlyaccesseditems' => 'CoreBlockDelegate_AddonBlockRecentlyAccessedItems', 452 'badges' => 'CoreBlockDelegate_AddonBlockBadges', 453 'blog_menu' => 'CoreBlockDelegate_AddonBlockBlogMenu', 454 'blog_recent' => 'CoreBlockDelegate_AddonBlockBlogRecent', 455 'blog_tags' => 'CoreBlockDelegate_AddonBlockBlogTags', 456 'calendar_month' => 'CoreBlockDelegate_AddonBlockCalendarMonth', 457 'calendar_upcoming' => 'CoreBlockDelegate_AddonBlockCalendarUpcoming', 458 'comments' => 'CoreBlockDelegate_AddonBlockComments', 459 'completionstatus' => 'CoreBlockDelegate_AddonBlockCompletionStatus', 460 'feedback' => 'CoreBlockDelegate_AddonBlockFeedback', 461 'glossary_random' => 'CoreBlockDelegate_AddonBlockGlossaryRandom', 462 'html' => 'CoreBlockDelegate_AddonBlockHtml', 463 'lp' => 'CoreBlockDelegate_AddonBlockLp', 464 'news_items' => 'CoreBlockDelegate_AddonBlockNewsItems', 465 'online_users' => 'CoreBlockDelegate_AddonBlockOnlineUsers', 466 'selfcompletion' => 'CoreBlockDelegate_AddonBlockSelfCompletion', 467 'tags' => 'CoreBlockDelegate_AddonBlockTags', 468 ); 469 470 foreach ($availableblocks as $block) { 471 if (isset($appsupportedblocks[$block->name])) { 472 $courseblocks[$appsupportedblocks[$block->name]] = $block->displayname; 473 } 474 } 475 asort($courseblocks); 476 477 $features = array( 478 "$general" => array( 479 'NoDelegate_CoreOffline' => new lang_string('offlineuse', 'tool_mobile'), 480 'NoDelegate_SiteBlocks' => new lang_string('blocks'), 481 'NoDelegate_CoreComments' => new lang_string('comments'), 482 'NoDelegate_CoreRating' => new lang_string('ratings', 'rating'), 483 'NoDelegate_CoreTag' => new lang_string('tags'), 484 '$mmLoginEmailSignup' => new lang_string('startsignup'), 485 'NoDelegate_ForgottenPassword' => new lang_string('forgotten'), 486 'NoDelegate_ResponsiveMainMenuItems' => new lang_string('responsivemainmenuitems', 'tool_mobile'), 487 'NoDelegate_H5POffline' => new lang_string('h5poffline', 'tool_mobile'), 488 'NoDelegate_DarkMode' => new lang_string('darkmode', 'tool_mobile'), 489 'CoreFilterDelegate' => new lang_string('type_filter_plural', 'plugin'), 490 ), 491 "$mainmenu" => array( 492 '$mmSideMenuDelegate_mmaFrontpage' => new lang_string('sitehome'), 493 '$mmSideMenuDelegate_mmCourses' => new lang_string('mycourses'), 494 'CoreMainMenuDelegate_CoreCoursesDashboard' => new lang_string('myhome'), 495 '$mmSideMenuDelegate_mmaCalendar' => new lang_string('calendar', 'calendar'), 496 '$mmSideMenuDelegate_mmaNotifications' => new lang_string('notifications', 'message'), 497 '$mmSideMenuDelegate_mmaMessages' => new lang_string('messages', 'message'), 498 '$mmSideMenuDelegate_mmaGrades' => new lang_string('grades', 'grades'), 499 '$mmSideMenuDelegate_mmaCompetency' => new lang_string('myplans', 'tool_lp'), 500 'CoreMainMenuDelegate_AddonBlog' => new lang_string('blog', 'blog'), 501 '$mmSideMenuDelegate_mmaFiles' => new lang_string('files'), 502 'CoreMainMenuDelegate_CoreTag' => new lang_string('tags'), 503 '$mmSideMenuDelegate_website' => new lang_string('webpage'), 504 '$mmSideMenuDelegate_help' => new lang_string('help'), 505 'CoreMainMenuDelegate_QrReader' => new lang_string('scanqrcode', 'tool_mobile'), 506 ), 507 "$course" => array( 508 'NoDelegate_CourseBlocks' => new lang_string('blocks'), 509 'CoreCourseOptionsDelegate_AddonBlog' => new lang_string('blog', 'blog'), 510 '$mmCoursesDelegate_search' => new lang_string('search'), 511 '$mmCoursesDelegate_mmaCompetency' => new lang_string('competencies', 'competency'), 512 '$mmCoursesDelegate_mmaParticipants' => new lang_string('participants'), 513 '$mmCoursesDelegate_mmaGrades' => new lang_string('grades', 'grades'), 514 '$mmCoursesDelegate_mmaCourseCompletion' => new lang_string('coursecompletion', 'completion'), 515 '$mmCoursesDelegate_mmaNotes' => new lang_string('notes', 'notes'), 516 'NoDelegate_CoreCourseDownload' => new lang_string('downloadcourse', 'tool_mobile'), 517 'NoDelegate_CoreCoursesDownload' => new lang_string('downloadcourses', 'tool_mobile'), 518 ), 519 "$user" => array( 520 'CoreUserDelegate_AddonBlog:blogs' => new lang_string('blog', 'blog'), 521 '$mmUserDelegate_mmaBadges' => new lang_string('badges', 'badges'), 522 '$mmUserDelegate_mmaCompetency:learningPlan' => new lang_string('competencies', 'competency'), 523 '$mmUserDelegate_mmaCourseCompletion:viewCompletion' => new lang_string('coursecompletion', 'completion'), 524 '$mmUserDelegate_mmaGrades:viewGrades' => new lang_string('grades', 'grades'), 525 '$mmUserDelegate_mmaMessages:sendMessage' => new lang_string('sendmessage', 'message'), 526 '$mmUserDelegate_mmaMessages:addContact' => new lang_string('addcontact', 'message'), 527 '$mmUserDelegate_mmaMessages:blockContact' => new lang_string('blockcontact', 'message'), 528 '$mmUserDelegate_mmaNotes:addNote' => new lang_string('addnewnote', 'notes'), 529 '$mmUserDelegate_picture' => new lang_string('userpic'), 530 ), 531 "$files" => array( 532 'files_privatefiles' => new lang_string('privatefiles'), 533 'files_sitefiles' => new lang_string('sitefiles'), 534 'files_upload' => new lang_string('upload'), 535 ), 536 "$modules" => $coursemodules, 537 "$blocks" => $courseblocks, 538 ); 539 540 if (!empty($remoteaddonslist)) { 541 $features["$remoteaddons"] = $remoteaddonslist; 542 } 543 544 if (!empty($availablemods['lti'])) { 545 $ltidisplayname = $availablemods['lti']->displayname; 546 $features["$ltidisplayname"]['CoreCourseModuleDelegate_AddonModLti:openInAppBrowser'] = 547 new lang_string('openusingembeddedbrowser', 'tool_mobile'); 548 } 549 550 // Display OAuth 2 identity providers. 551 if (is_enabled_auth('oauth2')) { 552 $identityproviderslist = array(); 553 $idps = \auth_plugin_base::get_identity_providers(['oauth2']); 554 555 foreach ($idps as $idp) { 556 // Only add identity providers that have an ID. 557 $id = isset($idp['url']) ? $idp['url']->get_param('id') : null; 558 if ($id != null) { 559 $identityproviderslist['NoDelegate_IdentityProvider_' . $id] = $idp['name']; 560 } 561 } 562 563 if (!empty($identityproviderslist)) { 564 $features["$identityproviders"] = array(); 565 566 if (count($identityproviderslist) > 1) { 567 // Include an option to disable them all. 568 $features["$identityproviders"]['NoDelegate_IdentityProviders'] = new lang_string('all'); 569 } 570 571 $features["$identityproviders"] = array_merge($features["$identityproviders"], $identityproviderslist); 572 } 573 } 574 575 return $features; 576 } 577 578 /** 579 * This function check the current site for potential configuration issues that may prevent the mobile app to work. 580 * 581 * @return array list of potential issues 582 * @since Moodle 3.4 583 */ 584 public static function get_potential_config_issues() { 585 global $CFG; 586 require_once($CFG->dirroot . "/lib/filelib.php"); 587 require_once($CFG->dirroot . '/message/lib.php'); 588 589 $warnings = array(); 590 591 $curl = new curl(); 592 // Return certificate information and verify the certificate. 593 $curl->setopt(array('CURLOPT_CERTINFO' => 1, 'CURLOPT_SSL_VERIFYPEER' => true)); 594 $httpswwwroot = str_replace('http:', 'https:', $CFG->wwwroot); // Force https url. 595 // Check https using a page not redirecting or returning exceptions. 596 $curl->head($httpswwwroot . "/$CFG->admin/tool/mobile/mobile.webmanifest.php"); 597 $info = $curl->get_info(); 598 599 // First of all, check the server certificate (if any). 600 if (empty($info['http_code']) or ($info['http_code'] >= 400)) { 601 $warnings[] = ['nohttpsformobilewarning', 'admin']; 602 } else { 603 // Check the certificate is not self-signed or has an untrusted-root. 604 // This may be weak in some scenarios (when the curl SSL verifier is outdated). 605 if (empty($info['certinfo'])) { 606 $warnings[] = ['selfsignedoruntrustedcertificatewarning', 'tool_mobile']; 607 } else { 608 $timenow = time(); 609 $expectedissuer = null; 610 foreach ($info['certinfo'] as $cert) { 611 612 // Due to a bug in certain curl/openssl versions the signature algorithm isn't always correctly parsed. 613 // See https://github.com/curl/curl/issues/3706 for reference. 614 if (!array_key_exists('Signature Algorithm', $cert)) { 615 // The malformed field that does contain the algorithm we're looking for looks like the following: 616 // <WHITESPACE>Signature Algorithm: <ALGORITHM><CRLF><ALGORITHM>. 617 preg_match('/\s+Signature Algorithm: (?<algorithm>[^\s]+)/', $cert['Public Key Algorithm'], $matches); 618 619 $signaturealgorithm = $matches['algorithm'] ?? ''; 620 } else { 621 $signaturealgorithm = $cert['Signature Algorithm']; 622 } 623 624 // Check if the signature algorithm is weak (Android won't work with SHA-1). 625 if ($signaturealgorithm == 'sha1WithRSAEncryption' || $signaturealgorithm == 'sha1WithRSA') { 626 $warnings[] = ['insecurealgorithmwarning', 'tool_mobile']; 627 } 628 // Check certificate start date. 629 if (strtotime($cert['Start date']) > $timenow) { 630 $warnings[] = ['invalidcertificatestartdatewarning', 'tool_mobile']; 631 } 632 // Check certificate end date. 633 if (strtotime($cert['Expire date']) < $timenow) { 634 $warnings[] = ['invalidcertificateexpiredatewarning', 'tool_mobile']; 635 } 636 // Check the chain. 637 if ($expectedissuer !== null) { 638 if ($expectedissuer !== $cert['Subject'] || $cert['Subject'] === $cert['Issuer']) { 639 $warnings[] = ['invalidcertificatechainwarning', 'tool_mobile']; 640 } 641 } 642 $expectedissuer = $cert['Issuer']; 643 } 644 } 645 } 646 // Now check typical configuration problems. 647 if ((int) $CFG->userquota === PHP_INT_MAX) { 648 // In old Moodle version was a text so was possible to have numeric values > PHP_INT_MAX. 649 $warnings[] = ['invaliduserquotawarning', 'tool_mobile']; 650 } 651 // Check ADOdb debug enabled. 652 if (get_config('auth_db', 'debugauthdb') || get_config('enrol_database', 'debugdb')) { 653 $warnings[] = ['adodbdebugwarning', 'tool_mobile']; 654 } 655 // Check display errors on. 656 if (!empty($CFG->debugdisplay)) { 657 $warnings[] = ['displayerrorswarning', 'tool_mobile']; 658 } 659 // Check mobile notifications. 660 $processors = get_message_processors(); 661 $enabled = false; 662 foreach ($processors as $processor => $status) { 663 if ($processor == 'airnotifier' && $status->enabled) { 664 $enabled = true; 665 } 666 } 667 if (!$enabled) { 668 $warnings[] = ['mobilenotificationsdisabledwarning', 'tool_mobile']; 669 } 670 671 return $warnings; 672 } 673 674 /** 675 * Generates a QR code with the site URL or for automatic login from the mobile app. 676 * 677 * @param stdClass $mobilesettings tool_mobile settings 678 * @return string base64 data image contents, null if qr disabled 679 */ 680 public static function generate_login_qrcode(stdClass $mobilesettings) { 681 global $CFG, $USER; 682 683 if ($mobilesettings->qrcodetype == static::QR_CODE_DISABLED) { 684 return null; 685 } 686 687 $urlscheme = !empty($mobilesettings->forcedurlscheme) ? $mobilesettings->forcedurlscheme : 'moodlemobile'; 688 $data = $urlscheme . '://' . $CFG->wwwroot; 689 690 if ($mobilesettings->qrcodetype == static::QR_CODE_LOGIN) { 691 $qrloginkey = static::get_qrlogin_key(); 692 $data .= '?qrlogin=' . $qrloginkey . '&userid=' . $USER->id; 693 } 694 695 $qrcode = new core_qrcode($data); 696 $imagedata = 'data:image/png;base64,' . base64_encode($qrcode->getBarcodePngData(5, 5)); 697 698 return $imagedata; 699 } 700 701 /** 702 * Gets Moodle app plan subscription information for the current site as it is returned by the Apps Portal. 703 * 704 * @return array Subscription information 705 */ 706 public static function get_subscription_information() : ?array { 707 global $CFG; 708 709 // Use session cache to prevent multiple requests. 710 $cache = \cache::make('tool_mobile', 'subscriptiondata'); 711 $subscriptiondata = $cache->get(0); 712 if ($subscriptiondata !== false) { 713 return $subscriptiondata; 714 } 715 716 $mobilesettings = get_config('tool_mobile'); 717 718 // To validate that the requests come from this site we need to send some private information that only is known by the 719 // Moodle Apps portal or the Sites registration database. 720 $credentials = []; 721 722 if (!empty($CFG->airnotifieraccesskey)) { 723 $credentials[] = ['type' => 'airnotifieraccesskey', 'value' => $CFG->airnotifieraccesskey]; 724 } 725 if (\core\hub\registration::is_registered()) { 726 $credentials[] = ['type' => 'siteid', 'value' => $CFG->siteidentifier]; 727 } 728 // Generate a hash key for validating that the request is coming from this site via WS. 729 $key = complex_random_string(32); 730 $sitesubscriptionkey = json_encode(['validuntil' => time() + 10 * MINSECS, 'key' => $key]); 731 set_config('sitesubscriptionkey', $sitesubscriptionkey, 'tool_mobile'); 732 $credentials[] = ['type' => 'sitesubscriptionkey', 'value' => $key]; 733 734 // Parameters for the WebService returning site information. 735 $androidappid = empty($mobilesettings->androidappid) ? static::DEFAULT_ANDROID_APP_ID : $mobilesettings->androidappid; 736 $iosappid = empty($mobilesettings->iosappid) ? static::DEFAULT_IOS_APP_ID : $mobilesettings->iosappid; 737 $fnparams = (object) [ 738 'siteurl' => $CFG->wwwroot, 739 'appids' => [$androidappid, $iosappid], 740 'credentials' => $credentials, 741 ]; 742 // Prepare the arguments for a request to the AJAX nologin endpoint. 743 $args = [ 744 (object) [ 745 'index' => 0, 746 'methodname' => 'local_apps_get_site_info', 747 'args' => $fnparams, 748 ] 749 ]; 750 751 // Ask the Moodle Apps Portal for the subscription information. 752 $curl = new curl(); 753 $curl->setopt(array('CURLOPT_TIMEOUT' => 10, 'CURLOPT_CONNECTTIMEOUT' => 10)); 754 755 $serverurl = static::MOODLE_APPS_PORTAL_URL . "/lib/ajax/service-nologin.php"; 756 $query = 'args=' . urlencode(json_encode($args)); 757 $wsresponse = @json_decode($curl->post($serverurl, $query), true); 758 759 $info = $curl->get_info(); 760 if ($curlerrno = $curl->get_errno()) { 761 // CURL connection error. 762 debugging("Unexpected response from the Moodle Apps Portal server, CURL error number: $curlerrno"); 763 return null; 764 } else if ($info['http_code'] != 200) { 765 // Unexpected error from server. 766 debugging('Unexpected response from the Moodle Apps Portal server, HTTP code:' . $info['httpcode']); 767 return null; 768 } else if (!empty($wsresponse[0]['error'])) { 769 // Unexpected error from Moodle Apps Portal. 770 debugging('Unexpected response from the Moodle Apps Portal server:' . json_encode($wsresponse[0])); 771 return null; 772 } else if (empty($wsresponse[0]['data'])) { 773 debugging('Unexpected response from the Moodle Apps Portal server:' . json_encode($wsresponse)); 774 return null; 775 } 776 777 $cache->set(0, $wsresponse[0]['data']); 778 779 return $wsresponse[0]['data']; 780 } 781 }
title
Description
Body
title
Description
Body
title
Description
Body
title
Body
