FilesExpand file tree

 master

/

tool_consumer_outcome.php

Copy path

BlameMore file actions

BlameMore file actions

Latest commit

 

History

History

History

132 lines (112 loc) · 4.37 KB

 master

/

tool_consumer_outcome.php

Top

File metadata and controls

• Code
• Blame

132 lines (112 loc) · 4.37 KB

Raw

Copy raw file

Download raw file

Open symbols panel

Edit and raw actions

1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

<?php

if (version_compare(PHP_VERSION, '5.3.0') >= 0) {

error_reporting(E_ALL & ~E_NOTICE & ~E_DEPRECATED);

} else {

error_reporting(E_ALL & ~E_WARNING & ~E_NOTICE);

}

$old_error_handler = set_error_handler("myErrorHandler");

function myErrorHandler($errno, $errstr, $errfile, $errline)

{

// echo("YO ". $errorno . $errstr . "\n");

if ( strpos($errstr, 'deprecated') !== false ) return true;

return false;

}

ini_set("display_errors", 1);

if ( !isset ( $_REQUEST['b64'] ) ) {

die("Missing b64 parameter");

}

$b64 = $_REQUEST['b64'];

session_id(md5($b64));

session_start();

require_once("../util/lti_util.php");

// For my application, We only allow application/xml

$request_headers = OAuthUtil::get_headers();

$hct = $request_headers['Content-Type'];

if ( ! isset($hct) ) $hct = $request_headers['Content-type'];

if (strpos($hct,'application/xml') === false ) {

header('Content-Type: text/plain');

// print_r($request_headers);

die("Must be content type xml, found ".$hct);

}

header('Content-Type: application/xml; charset=utf-8');

// Get skeleton response

$response = getPOXResponse();

// Pull out the key and secret from the parameter

$b64dec = base64_decode($b64);

$b64 = explode(":::", $b64dec);

$oauth_consumer_key = $b64[0];

$oauth_consumer_secret = $b64[1];

if ( strlen($oauth_consumer_key) < 1 || strlen($oauth_consumer_secret) < 1 ) {

echo(sprintf($response,uniqid(),'failure', "Missing key/secret B64=$b64dec B64key=$oauth_consumer_key secret=$oauth_consumer_secret",$message_ref,""));

exit();

}

$header_key = getOAuthKeyFromHeaders();

if ( $header_key != $oauth_consumer_key ) {

echo(sprintf($response,uniqid(),'failure', "B64key=$oauth_consumer_key HDR=$header_key",$message_ref,""));

exit();

}

try {

$body = handleOAuthBodyPOST($oauth_consumer_key, $oauth_consumer_secret);

$xml = new SimpleXMLElement($body);

$imsx_header = $xml->imsx_POXHeader->children();

$parms = $imsx_header->children();

$message_ref = (string) $parms->imsx_messageIdentifier;

$imsx_body = $xml->imsx_POXBody->children();

$operation = $imsx_body->getName();

$parms = $imsx_body->children();

} catch (Exception $e) {

global $LastOAuthBodyBaseString;

global $LastOAuthBodyHashInfo;

$retval = sprintf($response,uniqid(),'failure', $e->getMessage().

" B64key=$oauth_consumer_key HDRkey=$header_key secret=$oauth_consumer_secret",uniqid(),"") .

"<!--\n".

"Base String:\n".$LastOAuthBodyBaseString."\n".

"Hash Info:\n".$LastOAuthBodyHashInfo."\n-->\n";

echo($retval);

exit();

}

$sourcedid = (string) $parms->resultRecord->sourcedGUID->sourcedId;

if ( !isset($sourcedid) && strlen($coursedid) > 0 ) {

echo(sprintf($response,uniqid(),'failure', "Missing required lis_result_sourcedid",$message_ref,""));

exit();

}

$gradebook = $_SESSION['cert_gradebook'];

if ( !isset($gradebook) ) $gradebook = Array();

$top_tag = str_replace("Request","Response",$operation);

$body_tag = "\n<".$top_tag."/>";

if ( $operation == "replaceResultRequest" ) {

$score = (string) $parms->resultRecord->result->resultScore->textString;

$fscore = (float) $score;

if ( ! is_numeric($score) ) {

echo(sprintf($response,uniqid(),'failure', "Score must be numeric",$message_ref,$body_tag));

exit();

}

$fscore = (float) $score;

if ( $fscore < 0.0 || $fscore > 1.0 ) {

echo(sprintf($response,uniqid(),'failure', "Score not between 0.0 and 1.0",$message_ref,$body_tag));

exit();

}

echo(sprintf($response,uniqid(),'success', "Score for $sourcedid is now $score",$message_ref,$body_tag));

$gradebook[$sourcedid] = $score;

} else if ( $operation == "readResultRequest" ) {

$score = $gradebook[$sourcedid];

$body = '

<readResultResponse>

<result>

<resultScore>

<language>en</language>

<textString>%s</textString>

</resultScore>

</result>

</readResultResponse>';

$body = sprintf($body,$score);

echo(sprintf($response,uniqid(),'success', "Score read successfully",$message_ref,$body));

} else if ( $operation == "deleteResultRequest" ) {

unset( $gradebook[$sourcedid]);

echo(sprintf($response,uniqid(),'success', "Score deleted",$message_ref,$body_tag));

} else {

echo(sprintf($response,uniqid(),'unsupported', "Operation not supported - $operation",$message_ref,""));

}

$_SESSION['cert_gradebook'] = $gradebook;

// print_r($gradebook);

?>