. /** * Utility code for LTI service handling. * * @package mod * @subpackage lti * @copyright Copyright (c) 2011 Moodlerooms Inc. (http://www.moodlerooms.com) * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later * @author Chris Scribner */ defined('MOODLE_INTERNAL') || die; require_once($CFG->dirroot.'/mod/lti/OAuthBody.php'); // TODO: Switch to core oauthlib once implemented - MDL-30149 use moodle\mod\lti as lti; define('LTI_ITEM_TYPE', 'mod'); define('LTI_ITEM_MODULE', 'lti'); define('LTI_SOURCE', 'mod/lti'); function lti_get_response_xml($codemajor, $description, $messageref, $messagetype) { $xml = new SimpleXMLElement(''); $xml->addAttribute('xmlns', 'http://www.imsglobal.org/lis/oms1p0/pox'); $headerinfo = $xml->addChild('imsx_POXHeader')->addChild('imsx_POXResponseHeaderInfo'); $headerinfo->addChild('imsx_version', 'V1.0'); $headerinfo->addChild('imsx_messageIdentifier', (string)mt_rand()); $statusinfo = $headerinfo->addChild('imsx_statusInfo'); $statusinfo->addchild('imsx_codeMajor', $codemajor); $statusinfo->addChild('imsx_severity', 'status'); $statusinfo->addChild('imsx_description', $description); $statusinfo->addChild('imsx_messageRefIdentifier', $messageref); $xml->addChild('imsx_POXBody')->addChild($messagetype); return $xml; } function lti_parse_message_id($xml) { $node = $xml->imsx_POXHeader->imsx_POXRequestHeaderInfo->imsx_messageIdentifier; $messageid = (string)$node; return $messageid; } function lti_parse_grade_replace_message($xml) { $node = $xml->imsx_POXBody->replaceResultRequest->resultRecord->sourcedGUID->sourcedId; $resultjson = json_decode((string)$node); $node = $xml->imsx_POXBody->replaceResultRequest->resultRecord->result->resultScore->textString; $score = (string) $node; if ( ! is_numeric($score) ) { throw new Exception('Score must be numeric'); } $grade = floatval($score); if ( $grade < 0.0 || $grade > 1.0 ) { throw new Exception('Score not between 0.0 and 1.0'); } $parsed = new stdClass(); $parsed->gradeval = $grade * 100; $parsed->instanceid = $resultjson->data->instanceid; $parsed->userid = $resultjson->data->userid; $parsed->launchid = $resultjson->data->launchid; $parsed->sourcedidhash = $resultjson->hash; $parsed->messageid = lti_parse_message_id($xml); return $parsed; } function lti_parse_grade_read_message($xml) { $node = $xml->imsx_POXBody->readResultRequest->resultRecord->sourcedGUID->sourcedId; $resultjson = json_decode((string)$node); $parsed = new stdClass(); $parsed->instanceid = $resultjson->data->instanceid; $parsed->userid = $resultjson->data->userid; $parsed->launchid = $resultjson->data->launchid; $parsed->sourcedidhash = $resultjson->hash; $parsed->messageid = lti_parse_message_id($xml); return $parsed; } function lti_parse_grade_delete_message($xml) { $node = $xml->imsx_POXBody->deleteResultRequest->resultRecord->sourcedGUID->sourcedId; $resultjson = json_decode((string)$node); $parsed = new stdClass(); $parsed->instanceid = $resultjson->data->instanceid; $parsed->userid = $resultjson->data->userid; $parsed->launchid = $resultjson->data->launchid; $parsed->sourcedidhash = $resultjson->hash; $parsed->messageid = lti_parse_message_id($xml); return $parsed; } function lti_update_grade($ltiinstance, $userid, $launchid, $gradeval) { global $CFG, $DB; require_once($CFG->libdir . '/gradelib.php'); $params = array(); $params['itemname'] = $ltiinstance->name; $grade = new stdClass(); $grade->userid = $userid; $grade->rawgrade = $gradeval; $status = grade_update(LTI_SOURCE, $ltiinstance->course, LTI_ITEM_TYPE, LTI_ITEM_MODULE, $ltiinstance->id, 0, $grade, $params); $record = $DB->get_record('lti_submission', array('ltiid' => $ltiinstance->id, 'userid' => $userid, 'launchid' => $launchid), 'id'); if ($record) { $id = $record->id; } else { $id = null; } if (!empty($id)) { $DB->update_record('lti_submission', array( 'id' => $id, 'dateupdated' => time(), 'gradepercent' => $gradeval, 'state' => 2 )); } else { $DB->insert_record('lti_submission', array( 'ltiid' => $ltiinstance->id, 'userid' => $userid, 'datesubmitted' => time(), 'dateupdated' => time(), 'gradepercent' => $gradeval, 'originalgrade' => $gradeval, 'launchid' => $launchid, 'state' => 1 )); } return $status == GRADE_UPDATE_OK; } function lti_read_grade($ltiinstance, $userid) { global $CFG; require_once($CFG->libdir . '/gradelib.php'); $grades = grade_get_grades($ltiinstance->course, LTI_ITEM_TYPE, LTI_ITEM_MODULE, $ltiinstance->id, $userid); if (isset($grades) && isset($grades->items[0]) && is_array($grades->items[0]->grades)) { foreach ($grades->items[0]->grades as $agrade) { $grade = $agrade->grade; $grade = $grade / 100.0; break; } } if (isset($grade)) { return $grade; } } function lti_delete_grade($ltiinstance, $userid) { global $CFG; require_once($CFG->libdir . '/gradelib.php'); $grade = new stdClass(); $grade->userid = $userid; $grade->rawgrade = null; $status = grade_update(LTI_SOURCE, $ltiinstance->course, LTI_ITEM_TYPE, LTI_ITEM_MODULE, $ltiinstance->id, 0, $grade, array('deleted'=>1)); return $status == GRADE_UPDATE_OK || $status == GRADE_UPDATE_ITEM_DELETED; //grade_update seems to return ok now, but could reasonably return deleted in the future } function lti_verify_message($key, $sharedsecrets, $body, $headers = null) { foreach ($sharedsecrets as $secret) { $signaturefailed = false; try { // TODO: Switch to core oauthlib once implemented - MDL-30149 lti\handleOAuthBodyPOST($key, $secret, $body, $headers); } catch (Exception $e) { $signaturefailed = true; } if (!$signaturefailed) { return $secret;//Return the secret used to sign the message) } } return false; } function lti_verify_sourcedid($ltiinstance, $parsed) { $sourceid = lti_build_sourcedid($parsed->instanceid, $parsed->userid, $parsed->launchid, $ltiinstance->servicesalt); if ($sourceid->hash != $parsed->sourcedidhash) { throw new Exception('SourcedId hash not valid'); } }