WIP: GDPR (#2606)

Admin: Add configuration setting 'enable_gdpr' to enable special privacy options to ease implementation of European GDPR. Add personal data info page, LegalRepository, personal data treatment types display and update getLastLogin() results including track_e_login for legacy users - refs #2568 #GDPR

Author: ywarnier

main/admin/legal_list.php

@@ -1,31 +1,41 @@
 <?php
 /* For licensing terms, see /license.txt */
 
+use Chamilo\CoreBundle\Entity\Repository\LegalRepository;
+
 /**
  * Sessions list script.
  *
  * @package chamilo.admin
  */
 $cidReset = true;
 require_once __DIR__.'/../inc/global.inc.php';
+
 $this_section = SECTION_PLATFORM_ADMIN;
 api_protect_admin_script();
-$interbreadcrumb[] = ["url" => 'index.php', "name" => get_lang('PlatformAdmin')];
+$interbreadcrumb[] = ['url' => 'index.php', 'name' => get_lang('PlatformAdmin')];
 $tool_name = get_lang('TermsAndConditions');
-Display :: display_header($tool_name);
+Display::display_header($tool_name);
 
 $parameters['sec_token'] = Security::get_token();
 
 // action menu
 echo '<div class="actions">';
 echo '<a href="'.api_get_path(WEB_CODE_PATH).'admin/legal_add.php">';
-echo Display::return_icon('edit.png', get_lang('EditTermsAndConditions')).get_lang('EditTermsAndConditions').'</a>&nbsp;&nbsp;';
+echo Display::return_icon(
+    'edit.png',
+    get_lang('EditTermsAndConditions')
+);
+echo get_lang('EditTermsAndConditions').'</a>&nbsp;&nbsp;';
 echo '</div>';
 
-$legal_count = LegalManager::count();
+$em = Database::getManager();
+/** @var LegalRepository $legalTermsRepo */
+$legalTermsRepo = $em->getRepository('ChamiloCoreBundle:Legal');
+$legalCount = $legalTermsRepo->countAllActiveLegalTerms();
 $languages = api_get_languages();
 $available_languages = count($languages['folder']);
-if ($legal_count != $available_languages) {
+if ($legalCount != $available_languages) {
     echo Display::return_message(get_lang('YouShouldCreateTermAndConditionsForAllAvailableLanguages'), 'warning');
 }
 

main/inc/lib/legal.lib.php

@@ -380,4 +380,28 @@ public static function deleteLegal($userId)
             $extraFieldValue->delete($value['id']);
         }
     }
+
+    /**
+     * @return array
+     */
+    public static function getTreatmentTypeList()
+    {
+        return  [
+            101 => 'collection',
+            102 => 'recording',
+            103 => 'organization',
+            104 => 'structure',
+            105 => 'conservation',
+            106 => 'adaptation',
+            107 => 'extraction',
+            108 => 'consultation',
+            109 => 'usage',
+            110 => 'communication',
+            111 => 'interconnection',
+            112 => 'limitation',
+            113 => 'deletion',
+            114 => 'destruction',
+            115 => 'profiling',
+        ];
+    }
 }

main/inc/lib/social.lib.php

@@ -925,6 +925,7 @@ public static function show_social_menu(
         $sharedProfileIcon = Display::return_icon('sn-profile.png', get_lang('ViewMySharedProfile'));
         $searchIcon = Display::return_icon('sn-search.png', get_lang('Search'), null, ICON_SIZE_SMALL);
         $portfolioIcon = Display::return_icon('wiki_task.png', get_lang('Portfolio'));
+        $personalDataIcon = Display::return_icon('database.png', get_lang('PersonalDataReport'));
 
         $html = '';
         $active = null;
@@ -1012,7 +1013,18 @@ public static function show_social_menu(
                     </li>
                 ';
             }
-            $links .= '</ul>';
+
+            if (api_get_configuration_value('enable_gdpr')) {
+                $active = $show == 'personal-data' ? 'active' : null;
+                $personalData = '
+                    <li class="personal-data-icon '.$active.'">
+                        <a href="'.api_get_path(WEB_CODE_PATH).'social/personal_data.php">
+                            '.$personalDataIcon.' '.get_lang('PersonalDataReport').'
+                        </a>
+                    </li>';
+                $links .= $personalData;
+                $links .= '</ul>';
+            }
 
             $html .= Display::panelCollapse(
                 get_lang('SocialNetwork'),

main/install/configuration.dist.php

@@ -931,6 +931,19 @@
 // ALTER TABLE usergroup ADD author_id INT DEFAULT NULL;
 //$_configuration['allow_teachers_to_classes'] = false;
 
+// GDPR: European's General Data Protection Rules activation option
+// Set to true to automatically enable a new personal data page inside the social network menu
+// $_configuration['enable_gdpr'] = false;
+
+// GDPR requires users to be informed of the Data Protection Officer name and contact point
+// These can only be defined here for now, but will be moved to web settings in the future.
+// Name of the person or organization that is responsible for the treatment of personal info
+//$_configuration['data_protection_officer_name'] = '';
+// A description of the role of the DP Officer in this context
+//$_configuration['data_protection_officer_role'] = '';
+// An e-mail address where to contact the data protection officer for queries
+//$_configuration['data_protection_officer_email'] = '';
+
 // Validate user login via a webservice, Chamilo will send a "login" and "password" parameters
 // to the "myWebServiceFunctionToLogin" function, the result should be "1" if the user have access.
 /*$_configuration['webservice_validation'] = [