Merge pull request #6287 from christianbeeznest/rna-22587-4

NicoDucou · web-flow · commit 3fd8617d4566 · 2025-05-13T08:18:07.000+02:00
Course: Hide tools if initial test not completed with Positioning plugin - refs BT#22587
diff --git a/public/main/inc/lib/api.lib.php b/public/main/inc/lib/api.lib.php
@@ -13,6 +13,7 @@
 use Chamilo\CoreBundle\Framework\Container;
 use Chamilo\CoreBundle\ServiceHelper\MailHelper;
 use Chamilo\CoreBundle\ServiceHelper\PermissionServiceHelper;
+use Chamilo\CoreBundle\ServiceHelper\PluginServiceHelper;
 use Chamilo\CoreBundle\ServiceHelper\ThemeHelper;
 use Chamilo\CourseBundle\Entity\CGroup;
 use Chamilo\CourseBundle\Entity\CLp;
@@ -994,39 +995,46 @@ function api_protect_course_script($print_headers = false, $allow_session_admins
         return false;
     }
 
-    if ($is_visible && 'true' === api_get_plugin_setting('positioning', 'tool_enable')) {
-        $plugin = Positioning::create();
-        $block = $plugin->get('block_course_if_initial_exercise_not_attempted');
-        if ('true' === $block) {
-            $currentPath = $_SERVER['PHP_SELF'];
-            // Allowed only this course paths.
-            $paths = [
-                '/plugin/Positioning/start.php',
-                '/plugin/Positioning/start_student.php',
-                '/main/course_home/course_home.php',
-                '/main/exercise/overview.php',
+    $pluginHelper = Container::$container->get(PluginServiceHelper::class);
+
+    if ($pluginHelper->isPluginEnabled('Positioning')) {
+        $plugin = $pluginHelper->loadLegacyPlugin('Positioning');
+
+        if ($plugin && $plugin->get('block_course_if_initial_exercise_not_attempted') === 'true') {
+            $currentPath = $_SERVER['REQUEST_URI'];
+
+            $allowedPatterns = [
+                '#^/course/\d+/home#',
+                '#^/plugin/Positioning/#',
+                '#^/main/course_home/#',
+                '#^/main/exercise/#',
+                '#^/main/inc/ajax/exercise.ajax.php#',
             ];
 
-            if (!in_array($currentPath, $paths, true)) {
-                // Check if entering an exercise.
-                // @todo remove global $current_course_tool
-                /*global $current_course_tool;
-                if ('quiz' !== $current_course_tool) {
-                    $initialData = $plugin->getInitialExercise($course_info['real_id'], $session_id);
-                    if ($initialData && isset($initialData['exercise_id'])) {
-                        $results = Event::getExerciseResultsByUser(
-                            api_get_user_id(),
-                            $initialData['exercise_id'],
-                            $course_info['real_id'],
-                            $session_id
-                        );
-                        if (empty($results)) {
-                            api_not_allowed($print_headers);
-
-                            return false;
-                        }
+            $isWhitelisted = false;
+            foreach ($allowedPatterns as $pattern) {
+                if (preg_match($pattern, $currentPath)) {
+                    $isWhitelisted = true;
+                    break;
+                }
+            }
+
+            if (!$isWhitelisted) {
+                $initialData = $plugin->getInitialExercise($course_info['real_id'], $session_id);
+
+                if (!empty($initialData['exercise_id'])) {
+                    $results = Event::getExerciseResultsByUser(
+                        api_get_user_id(),
+                        (int) $initialData['exercise_id'],
+                        $course_info['real_id'],
+                        $session_id
+                    );
+
+                    if (empty($results)) {
+                        api_not_allowed($print_headers);
+                        return false;
                     }
-                }*/
+                }
             }
         }
     }
diff --git a/public/plugin/Positioning/src/Positioning.php b/public/plugin/Positioning/src/Positioning.php
@@ -155,6 +155,28 @@ public function blockFinalExercise($userId, $exerciseId, $courseId, $sessionId)
         return true;
     }
 
+    public function shouldBlockUser(int $userId, int $courseId, ?int $sessionId): bool
+    {
+        if ($this->get('block_course_if_initial_exercise_not_attempted') !== 'true') {
+            return false;
+        }
+
+        $initialData = $this->getInitialExercise($courseId, $sessionId);
+
+        if (empty($initialData['exercise_id'])) {
+            return false;
+        }
+
+        $results = \Event::getExerciseResultsByUser(
+            $userId,
+            (int) $initialData['exercise_id'],
+            $courseId,
+            $sessionId
+        );
+
+        return empty($results);
+    }
+
     public function getInitialExercise($courseId, $sessionId)
     {
         return $this->getCourseExercise($courseId, $sessionId, true, false);
diff --git a/src/CoreBundle/Repository/AccessUrlRelPluginRepository.php b/src/CoreBundle/Repository/AccessUrlRelPluginRepository.php
@@ -19,4 +19,16 @@ public function __construct(ManagerRegistry $registry)
     {
         parent::__construct($registry, AccessUrlRelPlugin::class);
     }
+
+    public function findOneByPluginName(string $pluginTitle, int $accessUrlId): ?AccessUrlRelPlugin
+    {
+        return $this->createQueryBuilder('rel')
+            ->join('rel.plugin', 'p')
+            ->andWhere('p.title = :pluginTitle')
+            ->andWhere('rel.url = :accessUrlId')
+            ->setParameter('pluginTitle', $pluginTitle)
+            ->setParameter('accessUrlId', $accessUrlId)
+            ->getQuery()
+            ->getOneOrNullResult();
+    }
 }
diff --git a/src/CoreBundle/Resources/config/services.yml b/src/CoreBundle/Resources/config/services.yml
@@ -132,3 +132,9 @@ services:
       arguments:
         $registry: '@doctrine'
         $em: '@doctrine.orm.entity_manager'
+
+    Chamilo\CoreBundle\ServiceHelper\PluginServiceHelper:
+      arguments:
+        $parameterBag: '@parameter_bag'
+        $pluginRepo: '@Chamilo\CoreBundle\Repository\AccessUrlRelPluginRepository'
+        $accessUrlHelper: '@Chamilo\CoreBundle\ServiceHelper\AccessUrlHelper'
diff --git a/src/CoreBundle/ServiceHelper/PluginServiceHelper.php b/src/CoreBundle/ServiceHelper/PluginServiceHelper.php
@@ -0,0 +1,91 @@
+<?php
+
+/* For licensing terms, see /license.txt */
+
+declare(strict_types=1);
+
+namespace Chamilo\CoreBundle\ServiceHelper;
+
+use Chamilo\CoreBundle\Repository\AccessUrlRelPluginRepository;
+use Symfony\Component\DependencyInjection\ParameterBag\ParameterBagInterface;
+
+class PluginServiceHelper
+{
+    public function __construct(
+        private ParameterBagInterface $parameterBag,
+        private AccessUrlRelPluginRepository $pluginRepo,
+        private AccessUrlHelper $accessUrlHelper,
+    ) {}
+
+    public function loadLegacyPlugin(string $pluginName): ?object
+    {
+        $projectDir = $this->parameterBag->get('kernel.project_dir');
+        $pluginPath = $projectDir . '/public/plugin/' . $pluginName . '/src/' . $pluginName . '.php';
+        $pluginClass = $pluginName;
+
+        if (!file_exists($pluginPath)) {
+            return null;
+        }
+
+        if (!class_exists($pluginClass)) {
+            require_once $pluginPath;
+        }
+
+        if (class_exists($pluginClass) && method_exists($pluginClass, 'create')) {
+            return $pluginClass::create();
+        }
+
+        return null;
+    }
+
+    public function getPluginSetting(string $pluginName, string $settingKey): mixed
+    {
+        $plugin = $this->loadLegacyPlugin($pluginName);
+
+        if (!$plugin || !method_exists($plugin, 'get')) {
+            return null;
+        }
+
+        return $plugin->get($settingKey);
+    }
+
+    public function isPluginEnabled(string $pluginName): bool
+    {
+        $accessUrl = $this->accessUrlHelper->getCurrent();
+        if (null === $accessUrl) {
+            return false;
+        }
+
+        $pluginSetting = $this->pluginRepo->findOneByPluginName($pluginName, $accessUrl->getId());
+
+        return $pluginSetting && $pluginSetting->isActive();
+    }
+
+    public function shouldBlockAccessByPositioning(?int $userId, int $courseId, ?int $sessionId): bool
+    {
+        if (!$this->isPluginEnabled('Positioning') || !$userId) {
+            return false;
+        }
+
+        $plugin = $this->loadLegacyPlugin('Positioning');
+
+        if (!$plugin || $plugin->get('block_course_if_initial_exercise_not_attempted') !== 'true') {
+            return false;
+        }
+
+        $initialData = $plugin->getInitialExercise($courseId, $sessionId);
+
+        if (empty($initialData['exercise_id'])) {
+            return false;
+        }
+
+        $results = \Event::getExerciseResultsByUser(
+            $userId,
+            (int) $initialData['exercise_id'],
+            $courseId,
+            $sessionId
+        );
+
+        return empty($results);
+    }
+}
diff --git a/src/CoreBundle/State/CToolStateProvider.php b/src/CoreBundle/State/CToolStateProvider.php
@@ -13,7 +13,9 @@
 use Chamilo\CoreBundle\DataTransformer\CourseToolDataTranformer;
 use Chamilo\CoreBundle\Entity\ResourceLink;
 use Chamilo\CoreBundle\Entity\User;
+use Chamilo\CoreBundle\ServiceHelper\PluginServiceHelper;
 use Chamilo\CoreBundle\Settings\SettingsManager;
+use Chamilo\CoreBundle\Tool\AbstractPlugin;
 use Chamilo\CoreBundle\Tool\ToolChain;
 use Chamilo\CoreBundle\Traits\CourseFromRequestTrait;
 use Chamilo\CourseBundle\Entity\CTool;
@@ -37,6 +39,7 @@ public function __construct(
         private readonly Security $security,
         private readonly ToolChain $toolChain,
         protected RequestStack $requestStack,
+        private readonly PluginServiceHelper $pluginServiceHelper,
     ) {
         $this->transformer = new CourseToolDataTranformer(
             $this->requestStack,
@@ -51,23 +54,33 @@ public function provide(Operation $operation, array $uriVariables = [], array $c
         $result = $this->provider->provide($operation, $uriVariables, $context);
 
         $request = $this->requestStack->getMainRequest();
-
         $studentView = $request ? $request->getSession()->get('studentview') : 'studentview';
 
         /** @var User|null $user */
         $user = $this->security->getUser();
 
         $isAllowToEdit = $user && ($user->hasRole('ROLE_ADMIN') || $user->hasRole('ROLE_CURRENT_COURSE_TEACHER'));
-        $isAllowToEditBack = $user && ($user->hasRole('ROLE_ADMIN') || $user->hasRole('ROLE_CURRENT_COURSE_TEACHER'));
-        $isAllowToSessionEdit = $user && ($user->hasRole('ROLE_ADMIN') || $user->hasRole('ROLE_CURRENT_COURSE_TEACHER') || $user->hasRole('ROLE_CURRENT_COURSE_SESSION_TEACHER'));
+        $isAllowToEditBack = $isAllowToEdit;
+        $isAllowToSessionEdit = $user && (
+                $user->hasRole('ROLE_ADMIN') ||
+                $user->hasRole('ROLE_CURRENT_COURSE_TEACHER') ||
+                $user->hasRole('ROLE_CURRENT_COURSE_SESSION_TEACHER')
+            );
 
         $allowVisibilityInSession = $this->settingsManager->getSetting('course.allow_edit_tool_visibility_in_session');
         $session = $this->getSession();
+        $course = $this->getCourse();
+
+        [$restrictToPositioning, $allowedToolName] = $this->shouldRestrictToPositioningOnly($user, $course->getId(), $session?->getId());
 
         $results = [];
 
         /** @var CTool $cTool */
         foreach ($result as $cTool) {
+            if ($restrictToPositioning && $cTool->getTool()->getTitle() !== $allowedToolName) {
+                continue;
+            }
+
             $toolModel = $this->toolChain->getToolFromName(
                 $cTool->getTool()->getTitle()
             );
@@ -107,4 +120,46 @@ public function provide(Operation $operation, array $uriVariables = [], array $c
 
         return $results;
     }
+
+    private function shouldRestrictToPositioningOnly(?User $user, int $courseId, ?int $sessionId): array
+    {
+        if (!$user || !$user->hasRole('ROLE_STUDENT')) {
+            return [false, null];
+        }
+
+        $tool = $this->toolChain->getToolFromName('positioning');
+
+        if (!$tool instanceof AbstractPlugin) {
+            return [false, null];
+        }
+
+        if (!$this->pluginServiceHelper->isPluginEnabled('positioning')) {
+            return [false, null];
+        }
+
+        $pluginInstance = $this->pluginServiceHelper->loadLegacyPlugin('Positioning');
+
+        if (!$pluginInstance || 'true' !== $pluginInstance->get('block_course_if_initial_exercise_not_attempted')) {
+            return [false, null];
+        }
+
+        $initialData = $pluginInstance->getInitialExercise($courseId, $sessionId);
+
+        if (!isset($initialData['exercise_id'])) {
+            return [false, null];
+        }
+
+        $results = \Event::getExerciseResultsByUser(
+            $user->getId(),
+            (int) $initialData['exercise_id'],
+            $courseId,
+            $sessionId
+        );
+
+        if (empty($results)) {
+            return [true, 'positioning'];
+        }
+
+        return [false, null];
+    }
 }

Original file line number	Diff line number	Diff line change
`@@ -19,4 +19,16 @@ public function __construct(ManagerRegistry $registry)`
`19`	`19`	`{`
`20`	`20`	`parent::__construct($registry, AccessUrlRelPlugin::class);`
`21`	`21`	`}`
	`22`	`+`
	`23`	`+ public function findOneByPluginName(string $pluginTitle, int $accessUrlId): ?AccessUrlRelPlugin`
	`24`	`+ {`
	`25`	`+ return $this->createQueryBuilder('rel')`
	`26`	`+ ->join('rel.plugin', 'p')`
	`27`	`+ ->andWhere('p.title = :pluginTitle')`
	`28`	`+ ->andWhere('rel.url = :accessUrlId')`
	`29`	`+ ->setParameter('pluginTitle', $pluginTitle)`
	`30`	`+ ->setParameter('accessUrlId', $accessUrlId)`
	`31`	`+ ->getQuery()`
	`32`	`+ ->getOneOrNullResult();`
	`33`	`+ }`
`22`	`34`	`}`