}
$tool = intval($_REQUEST['id']);
if (isset($_POST['cancel'])) {
$msg->addFeedback('CANCELLED');
header('Location: ' . AT_BASE_HREF . 'mods/_standard/basiclti/index_admin.php');
exit;
} else {
if (isset($_POST['form_basiclti'], $tool)) {
if (at_form_validate($blti_admin_form, $msg)) {
$sql = "SELECT count(*) cnt FROM " . TABLE_PREFIX . "basiclti_tools WHERE toolid = '" . mysql_real_escape_string($_POST['toolid']) . "' AND id != {$tool};";
$result = mysql_query($sql, $db) or die(mysql_error());
$row = mysql_fetch_assoc($result);
if ($row["cnt"] != 0) {
$msg->addFeedback('NEED_UNIQUE_TOOLID');
} else {
$sql = at_form_update($_POST, $blti_admin_form);
$sql = 'UPDATE ' . TABLE_PREFIX . "basiclti_tools SET " . $sql . " WHERE id = {$tool};";
$result = mysql_query($sql, $db) or die(mysql_error());
write_to_log(AT_ADMIN_LOG_INSERT, 'basiclti_create', mysql_affected_rows($db), $sql);
$msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');
header('Location: ' . AT_BASE_HREF . 'mods/_standard/basiclti/index_admin.php');
exit;
}
}
}
}
$sql = "SELECT * FROM " . TABLE_PREFIX . "basiclti_tools WHERE id = " . $tool . ";";
$result = mysql_query($sql, $db) or die(mysql_error());
$toolrow = mysql_fetch_assoc($result);
if ($toolrow['id'] != $tool) {
$msg->addFeedback('COULD_NOT_LOAD_TOOL');
$gradebook_check = intval($_POST['gradebook_test_id']);
if (isset($_POST['gradebook_test_id']) && $gradebook_check > 0) {
$gradebook_test_id = $gradebook_check;
$sql = "SELECT g.gradebook_test_id AS id, g.title AS title\n FROM %sgradebook_tests AS g\n WHERE g.course_id = %d\n AND g.type = 'External' and g.grade_scale_id = 0\n AND gradebook_test_id = %d";
$rows_grades = queryDB($sql, array(TABLE_PREFIX, $_SESSION['course_id'], $gradebook_test_id));
if ($rows_grades == 0) {
$gradebook_test_id = 0;
} else {
if (strlen($placementsecret) < 1) {
$placementsecret = uniqid("bl", true);
}
}
}
// Override these fields (don't take from form)
$fields = array('toolid' => $toolid, 'gradebook_test_id' => $gradebook_test_id, 'placementsecret' => $placementsecret);
$sql = at_form_update($_POST, $blti_content_edit_form, $fields);
$sql = "UPDATE %sbasiclti_content SET " . $sql . " WHERE content_id=%d AND course_id=%d";
$result = queryDB($sql, array(TABLE_PREFIX, $_POST['cid'], $_SESSION['course_id']));
if ($result === false) {
$msg->addError('MYSQL_FAILED');
} else {
// $msg->addFeedback('BASICLTI_SAVED');
}
}
}
}
}
$cid = intval($_REQUEST['cid']);
global $framed, $popup;
if (isset($_REQUEST['popup']) && $_REQUEST['popup'] && (!isset($_REQUEST['framed']) || !$_REQUEST['framed'])) {
$popup = TRUE;
$tool = intval($_REQUEST['id']);
if (isset($_POST['cancel'])) {
$msg->addFeedback('CANCELLED');
header('Location: ' . AT_BASE_HREF . 'mods/_standard/basiclti/index_instructor.php');
exit;
} else {
if (isset($_POST['form_basiclti'], $tool)) {
if (at_form_validate($blti_instructor_form, $msg)) {
$sql = "SELECT count(*) cnt FROM " . TABLE_PREFIX . "basiclti_tools WHERE toolid = '" . mysql_real_escape_string($_POST['toolid']) . "' AND id != {$tool}" . " AND course_id = " . $_SESSION['course_id'];
$result = mysql_query($sql, $db) or die(mysql_error());
$row = mysql_fetch_assoc($result);
if ($row["cnt"] != 0) {
$msg->addFeedback('NEED_UNIQUE_TOOLID');
} else {
$fields = array('course_id' => $_SESSION['course_id']);
$sql = at_form_update($_POST, $blti_instructor_form, $fields);
$sql = 'UPDATE ' . TABLE_PREFIX . "basiclti_tools SET " . $sql . " WHERE id = {$tool}" . " AND course_id = " . $_SESSION['course_id'];
$result = mysql_query($sql, $db) or die(mysql_error());
write_to_log(AT_ADMIN_LOG_INSERT, 'basiclti_create', mysql_affected_rows($db), $sql);
$msg->addFeedback('ACTION_COMPLETED_SUCCESSFULLY');
header('Location: ' . AT_BASE_HREF . 'mods/_standard/basiclti/index_instructor.php');
exit;
}
}
}
}
$sql = "SELECT * FROM " . TABLE_PREFIX . "basiclti_tools WHERE id = " . $tool . " AND course_id = " . $_SESSION['course_id'];
$result = mysql_query($sql, $db) or die(mysql_error());
$toolrow = mysql_fetch_assoc($result);
if ($toolrow['id'] != $tool) {
$msg->addFeedback('COULD_NOT_LOAD_TOOL');
