3 # Copyright 2018 Rijksmuseum
5 # This file is part of Koha.
7 # Koha is free software; you can redistribute it and/or modify it
8 # under the terms of the GNU General Public License as published by
9 # the Free Software Foundation; either version 3 of the License, or
10 # (at your option) any later version.
12 # Koha is distributed in the hope that it will be useful, but
13 # WITHOUT ANY WARRANTY; without even the implied warranty of
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 # GNU General Public License for more details.
17 # You should have received a copy of the GNU General Public License
18 # along with Koha; if not, see <http://www.gnu.org/licenses>.
23 use C4::Auth qw( get_template_and_user );
24 use C4::Output qw( output_html_with_http_headers );
25 use Koha::DateUtils qw( dt_from_string );
26 use Koha::Patron::Consents;
29 use constant GDPR_PROCESSING => 'GDPR_PROCESSING';
32 my $op = $query->param('op') // q{};
33 my $gdpr_check = $query->param('gdpr_processing') // q{};
35 my ( $template, $borrowernumber, $cookie ) = get_template_and_user({
36 template_name => "opac-patron-consent.tt",
41 my $patron = Koha::Patrons->find($borrowernumber);
42 my $gdpr_proc_consent;
43 if( C4::Context->preference('GDPR_Policy') ) {
44 $gdpr_proc_consent = Koha::Patron::Consents->search({
45 borrowernumber => $borrowernumber,
46 type => GDPR_PROCESSING,
48 $gdpr_proc_consent //= Koha::Patron::Consent->new({
49 borrowernumber => $borrowernumber,
50 type => GDPR_PROCESSING,
55 if( $op eq 'gdpr_proc_save' && $gdpr_proc_consent ) {
56 if( $gdpr_check eq 'agreed' ) {
57 $gdpr_proc_consent->given_on( dt_from_string() );
58 $gdpr_proc_consent->refused_on( undef );
59 } elsif( $gdpr_check eq 'disagreed' ) {
60 $gdpr_proc_consent->given_on( undef );
61 $gdpr_proc_consent->refused_on( dt_from_string() );
63 $gdpr_proc_consent->store;
66 # If user refused GDPR consent and we enforce GDPR, logout (when saving)
67 if( $op =~ /save/ && C4::Context->preference('GDPR_Policy') eq 'Enforced' && $gdpr_proc_consent->refused_on )
69 print $query->redirect('/cgi-bin/koha/opac-main.pl?logout.x=1');
73 $template->param( patron => $patron );
74 if( $gdpr_proc_consent ) {
76 gdpr_proc_consent => $gdpr_proc_consent->given_on // q{},
77 gdpr_proc_refusal => $gdpr_proc_consent->refused_on // q{},
81 output_html_with_http_headers $query, $cookie, $template->output, undef, { force_no_caching => 1 };