| blob | 90c00a7363bcceb457de784e25e775b7af109af9 |
3 ///////////////////////////////////////////////////////////////////////////
4 // //
5 // NOTICE OF COPYRIGHT //
6 // //
7 // Moodle - Modular Object-Oriented Dynamic Learning Environment //
8 // http://moodle.org //
9 // //
10 // Copyright (C) 1999-2004 Martin Dougiamas http://dougiamas.com //
11 // //
12 // This program is free software; you can redistribute it and/or modify //
13 // it under the terms of the GNU General Public License as published by //
14 // the Free Software Foundation; either version 2 of the License, or //
15 // (at your option) any later version. //
16 // //
17 // This program is distributed in the hope that it will be useful, //
18 // but WITHOUT ANY WARRANTY; without even the implied warranty of //
19 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //
20 // GNU General Public License for more details: //
21 // //
22 // http://www.gnu.org/copyleft/gpl.html //
23 // //
24 ///////////////////////////////////////////////////////////////////////////
26 /**
27 * moodlelib.php - Moodle main library
28 *
29 * Main library file of miscellaneous general-purpose Moodle functions.
30 * Other main libraries:
31 * - weblib.php - functions that produce web output
32 * - datalib.php - functions that access the database
33 * @author Martin Dougiamas
34 * @version $Id$
35 * @license http://www.gnu.org/copyleft/gpl.html GNU Public License
36 * @package moodlecore
37 */
39 /// CONSTANTS (Encased in phpdoc proper comments)/////////////////////////
41 /**
42 * Used by some scripts to check they are being called by Moodle
43 */
46 /**
47 * No groups used?
48 */
51 /**
52 * Groups used?
53 */
56 /**
57 * Groups visible?
58 */
61 /// Date and time constants ///
62 /**
63 * Time constant - the number of seconds in a year
64 */
68 /**
69 * Time constant - the number of seconds in a week
70 */
73 /**
74 * Time constant - the number of seconds in a day
75 */
78 /**
79 * Time constant - the number of seconds in an hour
80 */
83 /**
84 * Time constant - the number of seconds in a minute
85 */
88 /**
89 * Time constant - the number of minutes in a day
90 */
93 /**
94 * Time constant - the number of minutes in an hour
95 */
98 /// Parameter constants - every call to optional_param(), required_param() ///
99 /// or clean_param() should have a specified type of parameter. //////////////
101 /**
102 * PARAM_RAW specifies a parameter that is not cleaned/processed in any way;
103 * originally was 0, but changed because we need to detect unknown
104 * parameter types and swiched order in clean_param().
105 */
108 /**
109 * PARAM_CLEAN - obsoleted, please try to use more specific type of parameter.
110 * It was one of the first types, that is why it is abused so much ;-)
111 */
114 /**
115 * PARAM_INT - integers only, use when expecting only numbers.
116 */
119 /**
120 * PARAM_INTEGER - an alias for PARAM_INT
121 */
124 /**
125 * PARAM_NUMBER - a real/floating point number.
126 */
129 /**
130 * PARAM_ALPHA - contains only english letters.
131 */
134 /**
135 * PARAM_ACTION - an alias for PARAM_ALPHA, use for various actions in formas and urls
136 * @TODO: should we alias it to PARAM_ALPHANUM ?
137 */
140 /**
141 * PARAM_FORMAT - an alias for PARAM_ALPHA, use for names of plugins, formats, etc.
142 * @TODO: should we alias it to PARAM_ALPHANUM ?
143 */
146 /**
147 * PARAM_NOTAGS - all html tags are stripped from the text. Do not abuse this type.
148 */
151 /**
152 * PARAM_MULTILANG - alias of PARAM_TEXT.
153 */
156 /**
157 * PARAM_TEXT - general plain text compatible with multilang filter, no other html tags.
158 */
161 /**
162 * PARAM_FILE - safe file name, all dangerous chars are stripped, protects against XSS, SQL injections and directory traversals
163 */
166 /**
167 * PARAM_PATH - safe relative path name, all dangerous chars are stripped, protects against XSS, SQL injections and directory traversals
168 * note: the leading slash is not removed, window drive letter is not allowed
169 */
172 /**
173 * PARAM_HOST - expected fully qualified domain name (FQDN) or an IPv4 dotted quad (IP address)
174 */
177 /**
178 * PARAM_URL - expected properly formatted URL.
179 */
182 /**
183 * PARAM_LOCALURL - expected properly formatted URL as well as one that refers to the local server itself. (NOT orthogonal to the others! Implies PARAM_URL!)
184 */
187 /**
188 * PARAM_CLEANFILE - safe file name, all dangerous and regional chars are removed,
189 * use when you want to store a new file submitted by students
190 */
193 /**
194 * PARAM_ALPHANUM - expected numbers and letters only.
195 */
198 /**
199 * PARAM_BOOL - converts input into 0 or 1, use for switches in forms and urls.
200 */
203 /**
204 * PARAM_CLEANHTML - cleans submitted HTML code and removes slashes
205 * note: do not forget to addslashes() before storing into database!
206 */
209 /**
210 * PARAM_ALPHAEXT the same contents as PARAM_ALPHA plus the chars in quotes: "/-_" allowed,
211 * suitable for include() and require()
212 * @TODO: should we rename this function to PARAM_SAFEDIRS??
213 */
216 /**
217 * PARAM_SAFEDIR - safe directory name, suitable for include() and require()
218 */
221 /**
222 * PARAM_SEQUENCE - expects a sequence of numbers like 8 to 1,5,6,4,6,8,9. Numbers and comma only.
223 */
226 /**
227 * PARAM_PEM - Privacy Enhanced Mail format
228 */
231 /**
232 * PARAM_BASE64 - Base 64 encoded format
233 */
237 /// Page types ///
238 /**
239 * PAGE_COURSE_VIEW is a definition of a page type. For more information on the page class see moodle/lib/pagelib.php.
240 */
243 /// Debug levels ///
244 /** no warnings at all */
246 /** E_ERROR | E_PARSE */
248 /** E_ERROR | E_PARSE | E_WARNING | E_NOTICE */
250 /** E_ALL without E_STRICT and E_RECOVERABLE_ERROR for now */
252 /** DEBUG_ALL with extra Moodle debug messages - (DEBUG_ALL | 32768) */
255 /**
256 * Blog access level constant declaration
257 */
266 /// PARAMETER HANDLING ////////////////////////////////////////////////////
268 /**
269 * Returns a particular value for the named variable, taken from
270 * POST or GET. If the parameter doesn't exist then an error is
271 * thrown because we require this variable.
272 *
273 * This function should be used to initialise all required values
274 * in a script that are based on parameters. Usually it will be
275 * used like this:
276 * $id = required_param('id');
277 *
278 * @param string $parname the name of the page parameter we want
279 * @param int $type expected type of parameter
280 * @return mixed
281 */
284 // detect_unchecked_vars addition
289 }
297 }
300 }
302 /**
303 * Returns a particular value for the named variable, taken from
304 * POST or GET, otherwise returning a given default.
305 *
306 * This function should be used to initialise all optional values
307 * in a script that are based on parameters. Usually it will be
308 * used like this:
309 * $name = optional_param('name', 'Fred');
310 *
311 * @param string $parname the name of the page parameter we want
312 * @param mixed $default the default value to return if nothing is found
313 * @param int $type expected type of parameter
314 * @return mixed
315 */
318 // detect_unchecked_vars addition
323 }
331 }
334 }
336 /**
337 * Used by {@link optional_param()} and {@link required_param()} to
338 * clean the variables and/or cast to specific types, based on
339 * an options field.
340 * <code>
341 * $course->format = clean_param($course->format, PARAM_ALPHA);
342 * $selectedgrade_item = clean_param($selectedgrade_item, PARAM_CLEAN);
343 * </code>
344 *
345 * @uses $CFG
346 * @uses PARAM_CLEAN
347 * @uses PARAM_INT
348 * @uses PARAM_INTEGER
349 * @uses PARAM_ALPHA
350 * @uses PARAM_ALPHANUM
351 * @uses PARAM_NOTAGS
352 * @uses PARAM_ALPHAEXT
353 * @uses PARAM_BOOL
354 * @uses PARAM_SAFEDIR
355 * @uses PARAM_CLEANFILE
356 * @uses PARAM_FILE
357 * @uses PARAM_PATH
358 * @uses PARAM_HOST
359 * @uses PARAM_URL
360 * @uses PARAM_LOCALURL
361 * @uses PARAM_CLEANHTML
362 * @uses PARAM_SEQUENCE
363 * @param mixed $param the variable we are cleaning
364 * @param int $type expected format of param after cleaning.
365 * @return mixed
366 */
375 }
377 }
386 }
422 }
442 }
456 // match ipv4 dotted quad
458 // confirm values are ok
463 // hmmm, what kind of dotted quad is this?
465 }
469 ) {
470 // all is ok - $param is respected
472 // all is not ok...
474 }
480 // all is ok, param is respected
483 }
490 // root-relative, ok!
492 // absolute, and matches our wwwroot
494 // relative - let's make sure there are no tricks
496 // looks ok.
499 }
500 }
501 }
505 // PEM formatted strings may contain letters/numbers and the symbols
506 // forward slash: /
507 // plus sign: +
508 // equal sign: =
509 // , surrounded by BEGIN and END CERTIFICATE prefix and suffixes
510 if (preg_match('/^-----BEGIN CERTIFICATE-----([\s\w\/\+=]+)-----END CERTIFICATE-----$/', trim($param), $matches)) {
518 }
519 }
523 // PEM formatted strings may contain letters/numbers and the symbols
524 // forward slash: /
525 // plus sign: +
526 // equal sign: =
529 }
531 // Each line of base64 encoded data must be 64 characters in
532 // length, except for the last line which may be less than (or
533 // equal to) 64 characters long.
538 }
540 }
544 }
545 }
549 }
552 }
553 }
557 /**
558 * Set a key in global configuration
559 *
560 * Set a key/value pair in both this session's {@link $CFG} global variable
561 * and in the 'config' database table for future sessions.
562 *
563 * Can also be used to update keys for plugin-scoped configs in config_plugin table.
564 * In that case it doesn't affect $CFG.
565 *
566 * @param string $name the key to set
567 * @param string $value the value to set (without magic quotes)
568 * @param string $plugin (optional) the plugin scope
569 * @uses $CFG
570 * @return bool
571 */
573 /// No need for get_config because they are usually always available in $CFG
587 }
597 }
598 }
599 }
601 /**
602 * Get configuration values from the global config table
603 * or the config_plugins table.
604 *
605 * If called with no parameters it will do the right thing
606 * generating $CFG safely from the database without overwriting
607 * existing values.
608 *
609 * If called with 2 parameters it will return a $string single
610 * value or false of the value is not found.
611 *
612 * @param string $plugin
613 * @param string $name
614 * @uses $CFG
615 * @return hash-like object or single value
616 *
617 */
627 }
628 }
630 // the user is after a recordset
637 }
641 }
643 // this was originally in setup.php
651 // complain if the DB has a different
652 // value than config.php does
653 error_log("\$CFG->{$config->name} in config.php ({$localcfg[$config->name]}) overrides database setting ({$config->value})");
654 }
655 }
656 }
661 // preserve $CFG if DB returns nothing or error
663 }
665 }
666 }
668 /**
669 * Removes a key from global configuration
670 *
671 * @param string $name the key to set
672 * @param string $plugin (optional) the plugin scope
673 * @uses $CFG
674 * @return bool
675 */
686 }
687 }
690 /**
691 * Refresh current $USER session global variable with all their current preferences.
692 * @uses $USER
693 */
698 //reset preference
702 // no pernament storage for not-logged-in user and guest
707 }
708 }
711 }
713 /**
714 * Sets a preference for the current user
715 * Optionally, can set a preference for a different user object
716 * @uses $USER
717 * @todo Add a better description and include usage examples. Add inline links to $USER and user functions in above line.
719 * @param string $name The key to set as preference for the specified user
720 * @param string $value The value to set forthe $name key in the specified user's record
721 * @param int $otheruserid A moodle user ID
722 * @return bool
723 */
730 }
734 }
741 }
746 }
748 }
752 // no pernament storage for not-logged-in user and guest
754 } else if ($preference = get_record('user_preferences', 'userid', $userid, 'name', addslashes($name))) {
755 if (!set_field('user_preferences', 'value', addslashes((string)$value), 'id', $preference->id)) {
757 }
766 }
767 }
769 // update value in USER session if needed
772 }
775 }
777 /**
778 * Unsets a preference completely by deleting it from the database
779 * Optionally, can set a preference for a different user id
780 * @uses $USER
781 * @param string $name The key to unset as preference for the specified user
782 * @param int $otheruserid A moodle user ID
783 */
790 }
796 }
798 //Delete the preference from $USER if needed
801 }
803 //Then from DB
805 }
808 /**
809 * Sets a whole array of preferences for the current user
810 * @param array $prefarray An array of key/value pairs to be set
811 * @param int $otheruserid A moodle user ID
812 * @return bool
813 */
818 }
822 // The order is important; test for return is done first
824 }
826 }
828 /**
829 * If no arguments are supplied this function will return
830 * all of the current user preferences as an array.
831 * If a name is specified then this function
832 * attempts to return that particular preference value. If
833 * none is found, then the optional value $default is returned,
834 * otherwise NULL.
835 * @param string $name Name of the key to use in finding a preference value
836 * @param string $default Value to be returned if the $name key is not set in the user preferences
837 * @param int $otheruserid A moodle user ID
838 * @uses $USER
839 * @return string
840 */
846 }
852 }
862 }
863 }
864 }
874 }
875 }
878 /// FUNCTIONS FOR HANDLING TIME ////////////////////////////////////////////
880 /**
881 * Given date parts in user time produce a GMT timestamp.
882 *
883 * @param int $year The year part to create timestamp of
884 * @param int $month The month part to create timestamp of
885 * @param int $day The day part to create timestamp of
886 * @param int $hour The hour part to create timestamp of
887 * @param int $minute The minute part to create timestamp of
888 * @param int $second The second part to create timestamp of
889 * @param float $timezone ?
890 * @param bool $applydst ?
891 * @return int timestamp
892 * @todo Finish documenting this function
893 */
894 function make_timestamp($year, $month=1, $day=1, $hour=0, $minute=0, $second=0, $timezone=99, $applydst=true) {
905 }
906 }
910 }
912 /**
913 * Given an amount of time in seconds, returns string
914 * formatted nicely as weeks, days, hours etc as needed
915 *
916 * @uses MINSECS
917 * @uses HOURSECS
918 * @uses DAYSECS
919 * @uses YEARSECS
920 * @param int $totalsecs ?
921 * @param array $str ?
922 * @return string
923 */
939 }
975 }
977 /**
978 * Returns a formatted string that represents a date in user time
979 * <b>WARNING: note that the format is for strftime(), not date().</b>
980 * Because of a bug in most Windows time libraries, we can't use
981 * the nicer %e, so we have to use %d which has leading zeroes.
982 * A lot of the fuss in the function is just getting rid of these leading
983 * zeroes as efficiently as possible.
984 *
985 * If parameter fixday = true (default), then take off leading
986 * zero from %d, else mantain it.
987 *
988 * @uses HOURSECS
989 * @param int $date timestamp in GMT
990 * @param string $format strftime format
991 * @param float $timezone
992 * @param bool $fixday If true (default) then the leading
993 * zero from %d is removed. If false then the leading zero is mantained.
994 * @return string
995 */
1002 }
1009 }
1022 }
1031 }
1032 }
1034 /// If we are running under Windows convert from windows encoding to UTF-8
1035 /// (because it's impossible to specify UTF-8 to fetch locale info in Win32)
1041 }
1042 }
1045 }
1047 /**
1048 * Given a $time timestamp in GMT (seconds since epoch),
1049 * returns an array that represents the date in user time
1050 *
1051 * @uses HOURSECS
1052 * @param int $time Timestamp in GMT
1053 * @param float $timezone ?
1054 * @return array An array that represents the date in user time
1055 * @todo Finish documenting this function
1056 */
1063 }
1065 // There is no gmgetdate so we use gmdate instead
1085 }
1087 /**
1088 * Given a GMT timestamp (seconds since epoch), offsets it by
1089 * the timezone. eg 3pm in India is 3pm GMT - 7 * 3600 seconds
1090 *
1091 * @uses HOURSECS
1092 * @param int $date Timestamp in GMT
1093 * @param float $timezone
1094 * @return int
1095 */
1102 }
1104 }
1106 /**
1107 * Given a time, return the GMT timestamp of the most recent midnight
1108 * for the current user.
1109 *
1110 * @param int $date Timestamp in GMT
1111 * @param float $timezone ?
1112 * @return ?
1113 */
1119 // Time of midnight of this user's day, in GMT
1120 return make_timestamp($userdate['year'], $userdate['mon'], $userdate['mday'], 0, 0, 0, $timezone);
1122 }
1124 /**
1125 * Returns a string that prints the user's timezone
1126 *
1127 * @param float $timezone The user's timezone
1128 * @return string
1129 */
1136 }
1140 }
1143 // Don't show .0 for whole hours
1145 }
1149 }
1152 }
1155 }
1157 }
1159 /**
1160 * Returns a float which represents the user's timezone difference from GMT in hours
1161 * Checks various settings and picks the most dominant of those which have a value
1162 *
1163 * @uses $CFG
1164 * @uses $USER
1165 * @param float $tz If this value is provided and not equal to 99, it will be returned as is and no other settings will be checked
1166 * @return int
1167 */
1180 }
1182 }
1183 }
1185 /**
1186 * Returns a float or a string which denotes the user's timezone
1187 * A float value means that a simple offset from GMT is used, while a string (it will be the name of a timezone in the database)
1188 * means that for this timezone there are also DST rules to be taken into account
1189 * Checks various settings and picks the most dominant of those which have a value
1190 *
1191 * @uses $USER
1192 * @uses $CFG
1193 * @param float $tz If this value is provided and not equal to 99, it will be returned as is and no other settings will be checked
1194 * @return mixed
1195 */
1204 );
1210 }
1213 }
1215 /**
1216 * ?
1217 *
1218 * @uses $CFG
1219 * @uses $db
1220 * @param string $timezonename ?
1221 * @return object
1222 */
1229 }
1233 }
1237 }
1239 /**
1240 * ?
1241 *
1242 * @uses $CFG
1243 * @uses $USER
1244 * @param ? $fromyear ?
1245 * @param ? $to_year ?
1246 * @return bool
1247 */
1254 // Trivial timezone, no DST
1256 }
1259 // We have precalculated values, but the user's effective TZ has changed in the meantime, so reset
1262 }
1265 // Repeat calls which do not request specific year ranges stop here, we have already calculated the table
1266 // This will be the return path most of the time, pretty light computationally
1268 }
1270 // Reaching here means we either need to extend our table or create it from scratch
1272 // Remember which TZ we calculated these changes for
1276 // If we 're creating from scratch, put the two guard elements in there
1278 }
1280 // If creating from scratch
1284 // Fill in the array with the extra years we need to process
1288 }
1290 // Take note of which years we have processed for future calls
1292 }
1294 // If needing to extend the table, do the same
1301 // Take note of which years we need to process and then note that we have processed them for future calls
1304 }
1306 }
1308 // Take note of which years we need to process and then note that we have processed them for future calls
1311 }
1313 }
1314 }
1317 // This means that there was a call requesting a SMALLER range than we have already calculated
1319 }
1321 // From now on, we know that the array has at least the two guard elements, and $yearstoprocess has the years we need
1322 // Also, the array is sorted in descending timestamp order!
1324 // Get DB data
1325 $presetrecords = get_records('timezone', 'name', $usertz, 'year DESC', 'year, gmtoff, dstoff, dst_month, dst_startday, dst_weekday, dst_skipweeks, dst_time, std_month, std_startday, std_weekday, std_skipweeks, std_time');
1328 }
1330 // Remove ending guard (first element of the array)
1334 // Add all required change timestamps
1336 // Find the record which is in effect for the year $y
1340 }
1341 }
1347 }
1350 }
1353 }
1354 }
1356 // Put in a guard element at the top
1358 $SESSION->dst_offsets[($maxtimestamp + DAYSECS)] = NULL; // DAYSECS is arbitrary, any "small" number will do
1360 // Sort again
1364 }
1368 if($timezone->dst_startday == 0 && $timezone->dst_weekday == 0 && $timezone->std_startday == 0 && $timezone->std_weekday == 0) {
1370 }
1372 $monthdaydst = find_day_in_month($timezone->dst_startday, $timezone->dst_weekday, $timezone->dst_month, $year);
1373 $monthdaystd = find_day_in_month($timezone->std_startday, $timezone->std_weekday, $timezone->std_month, $year);
1381 // Instead of putting hour and minute in make_timestamp(), we add them afterwards.
1382 // This has the advantage of being able to have negative values for hour, i.e. for timezones
1383 // where GMT time would be in the PREVIOUS day than the local one on which DST changes.
1389 }
1391 // $time must NOT be compensated at all, it has to be a pure timestamp
1397 }
1403 }
1404 }
1406 // This is the normal return path
1409 }
1411 // Reaching this point means we haven't calculated far enough, do it now:
1412 // Calculate extra DST changes if needed and recurse. The recursion always
1413 // moves toward the stopping condition, so will always end.
1416 // We need a year smaller than $SESSION->dst_range[0]
1419 }
1422 }
1424 // We need a year larger than $SESSION->dst_range[1]
1427 }
1430 }
1431 }
1438 // Don't care about weekday, so return:
1439 // abs($startday) if $startday != -1
1440 // $daysinmonth otherwise
1442 }
1444 // From now on we 're looking for a specific weekday
1446 // Give "end of month" its actual value, since we know it
1449 }
1451 // Starting from day $startday, the sign is the direction
1458 // This is the last such weekday of the month
1462 }
1464 // Find the first such weekday <= $startday
1467 }
1471 }
1479 }
1481 // This is the first such weekday of the month equal to or after $startday
1486 }
1487 }
1489 /**
1490 * Calculate the number of days in a given month
1491 *
1492 * @param int $month The month whose day count is sought
1493 * @param int $year The year of the month whose day count is sought
1494 * @return int
1495 */
1498 }
1500 /**
1501 * Calculate the position in the week of a specific calendar day
1502 *
1503 * @param int $day The day of the date whose position in the week is sought
1504 * @param int $month The month of the date whose position in the week is sought
1505 * @param int $year The year of the date whose position in the week is sought
1506 * @return int
1507 */
1509 // I wonder if this is any different from
1510 // strftime('%w', mktime(12, 0, 0, $month, $daysinmonth, $year, 0));
1512 }
1514 /// USER AUTHENTICATION AND LOGIN ////////////////////////////////////////
1516 /**
1517 * Makes sure that $USER->sesskey exists, if $USER itself exists. It sets a new sesskey
1518 * if one does not already exist, but does not overwrite existing sesskeys. Returns the
1519 * sesskey string if $USER exists, or boolean false if not.
1520 *
1521 * @uses $USER
1522 * @return string
1523 */
1529 }
1533 }
1536 }
1539 /**
1540 * For security purposes, this function will check that the currently
1541 * given sesskey (passed as a parameter to the script or this function)
1542 * matches that of the current user.
1543 *
1544 * @param string $sesskey optionally provided sesskey
1545 * @return bool
1546 */
1552 }
1556 }
1560 }
1563 }
1565 /**
1566 * Setup all global $CFG course variables, set locale and also themes
1567 * This function can be used on pages that do not require login instead of require_login()
1568 *
1569 * @param mixed $courseorid id of the course or course object
1570 */
1574 /// Redefine global $COURSE if needed
1576 // no change in global $COURSE - for backwards compatibiltiy
1577 // if require_rogin() used after require_login($courseid);
1589 }
1590 }
1591 }
1593 /// set locale and themes
1597 }
1599 /**
1600 * This function checks that the current user is logged in and has the
1601 * required privileges
1602 *
1603 * This function checks that the current user is logged in, and optionally
1604 * whether they are allowed to be in a particular course and view a particular
1605 * course module.
1606 * If they are not logged in, then it redirects them to the site login unless
1607 * $autologinguest is set and {@link $CFG}->autologinguests is set to 1 in which
1608 * case they are automatically logged in as guests.
1609 * If $courseid is given and the user is not enrolled in that course then the
1610 * user is redirected to the course enrolment page.
1611 * If $cm is given and the coursemodule is hidden and the user is not a teacher
1612 * in the course then the user is redirected to the course home page.
1613 *
1614 * @uses $CFG
1615 * @uses $SESSION
1616 * @uses $USER
1617 * @uses $FULLME
1618 * @uses SITEID
1619 * @uses $COURSE
1620 * @param mixed $courseorid id of the course or course object
1621 * @param bool $autologinguest
1622 * @param object $cm course module object
1623 */
1628 /// setup global $COURSE, themes, language and locale
1631 /// If the user is not even logged in yet then make sure they are
1633 //NOTE: $USER->site check was obsoleted by session test cookie,
1634 // $USER->confirmed test is in login/index.php
1638 }
1639 if ($autologinguest and !empty($CFG->guestloginbutton) and !empty($CFG->autologinguests) and ($COURSE->id == SITEID or $COURSE->guest) ) {
1643 }
1649 }
1651 }
1653 /// loginas as redirection if needed
1657 print_error('loginasonecourse', '', $CFG->wwwroot.'/course/view.php?id='.$USER->loginascontext->instanceid);
1658 }
1659 }
1660 }
1663 /// check whether the user should be changing password (but only if it is REALLY them)
1669 //use plugin custom url
1672 //use moodle internal method
1678 }
1679 }
1682 }
1683 }
1685 /// Check that the user account is properly set up
1689 }
1691 /// Make sure current IP matches the one for this session (if required)
1695 }
1696 }
1698 /// Make sure the USER has a sesskey set up. Used for checking script parameters.
1701 // Check that the user has agreed to a site policy if there is one
1706 }
1707 }
1709 /// If the site is currently under maintenance, then print a message
1714 }
1715 }
1719 /// We can eliminate hidden site activities straight away
1723 }
1727 /// Check if the user can be in a particular course
1730 }
1734 !has_capability('moodle/course:viewhiddencourses', get_context_instance(CONTEXT_COURSE, $COURSE->id)) ){
1737 }
1739 /// Non-guests who don't currently have access, check if they can be allowed in as a guest
1743 // Temporarily assign them guest role for this context, if it fails later user is asked to enrol
1747 }
1748 }
1750 /// If the user is a guest then treat them according to the course policy about guests
1758 notice(get_string('guestsnotallowed', '', format_string($COURSE->fullname)), "$CFG->wwwroot/login/index.php");
1759 }
1763 }
1772 }
1773 // otherwise drop through to logic below (--> enrol.php)
1779 notice(get_string('guestsnotallowed', '', format_string($COURSE->fullname)), "$CFG->wwwroot/login/index.php");
1785 }
1787 }
1789 /// For non-guests, check if they have course view access
1796 }
1797 }
1799 /// Make sure they can read this activity too, if specified
1801 if (!empty($cm) and !$cm->visible and !has_capability('moodle/course:viewhiddenactivities', $context)) {
1802 redirect($CFG->wwwroot.'/course/view.php?id='.$cm->course, get_string('activityiscurrentlyhidden'));
1803 }
1806 }
1809 /// Currently not enrolled in the course, so see if they want to enrol
1813 }
1814 }
1818 /**
1819 * This function just makes sure a user is logged out.
1820 *
1821 * @uses $CFG
1822 * @uses $USER
1823 */
1829 add_to_log(SITEID, "user", "logout", "view.php?id=$USER->id&course=".SITEID, $USER->id, 0, $USER->id);
1835 }
1836 }
1839 // This method is just to try to avoid silly warnings from PHP 4.3.0
1842 }
1844 // Initialize variable to pass-by-reference to headers_sent(&$file, &$line)
1850 setcookie('MoodleSessionTest'.$CFG->sessioncookie, '', time() - 3600, $CFG->sessioncookiepath);
1851 }
1859 }
1861 /**
1862 * This is a weaker version of {@link require_login()} which only requires login
1863 * when called from within a course rather than the site page, unless
1864 * the forcelogin option is turned on.
1865 *
1866 * @uses $CFG
1867 * @param mixed $courseorid The course object or id in question
1868 * @param bool $autologinguest Allow autologin guests if that is wanted
1869 * @param object $cm Course activity module if known
1870 */
1874 // login required for both SITE and courses
1878 // always login for hidden activities
1883 //login for SITE not required
1887 // course login always required
1889 }
1890 }
1892 /**
1893 * Modify the user table by setting the currently logged in user's
1894 * last login to now.
1895 *
1896 * @uses $USER
1897 * @return bool
1898 */
1909 }
1911 /**
1912 * Determines if a user has completed setting up their account.
1913 *
1914 * @param user $user A {@link $USER} object to test for the existance of a valid name and email
1915 * @return bool
1916 */
1918 return ($user->username != 'guest' and (empty($user->firstname) or empty($user->lastname) or empty($user->email) or over_bounce_threshold($user)));
1919 }
1927 }
1928 // set sensible defaults
1931 }
1934 }
1939 }
1942 }
1944 }
1946 /**
1947 * @param $user - object containing an id
1948 * @param $reset - will reset the count to 0
1949 */
1954 }
1956 // make a new one
1961 }
1962 }
1964 /**
1965 * @param $user - object containing an id
1966 * @param $reset - will reset the count to 0
1967 */
1972 }
1974 // make a new one
1979 }
1980 }
1982 /**
1983 * Keeps track of login attempts
1984 *
1985 * @uses $SESSION
1986 */
1997 }
2002 }
2003 }
2005 /**
2006 * Resets login attempts
2007 *
2008 * @uses $SESSION
2009 */
2014 }
2022 }
2026 }
2027 }
2029 /**
2030 * Goes through all enrolment records for the courses inside the metacourse and sync with them.
2031 *
2032 * @param mixed $course the metacourse to synch. Either the course object itself, or the courseid.
2033 */
2037 // Check the course is valid.
2041 }
2042 }
2044 // Check that we actually have a metacourse.
2047 }
2049 // Get a list of roles that should not be synced.
2054 }
2056 // Get the context of the metacourse.
2057 $context = get_context_instance(CONTEXT_COURSE, $course->id); // SITEID can not be a metacourse
2059 // We do not ever want to unassign the list of metacourse manager, so get a list of them.
2064 }
2066 // Get assignments of a user to a role that exist in a child course, but
2067 // not in the meta coure. That is, get a list of the assignments that need to be made.
2069 SELECT
2070 ra.id, ra.roleid, ra.userid
2071 FROM
2075 WHERE
2076 ra.contextid = con.id AND
2078 con.instanceid = cm.child_course AND
2080 $roleexclusions
2081 NOT EXISTS (
2082 SELECT 1 FROM
2084 WHERE
2085 ra2.userid = ra.userid AND
2086 ra2.roleid = ra.roleid AND
2088 )
2091 }
2093 // Get assignments of a user to a role that exist in the meta course, but
2094 // not in any child courses. That is, get a list of the unassignments that need to be made.
2096 SELECT
2097 ra.id, ra.roleid, ra.userid
2098 FROM
2100 WHERE
2102 $roleexclusions
2103 NOT EXISTS (
2104 SELECT 1 FROM
2108 WHERE
2109 ra2.userid = ra.userid AND
2110 ra2.roleid = ra.roleid AND
2111 ra2.contextid = con2.id AND
2113 con2.instanceid = cm.child_course AND
2115 )
2118 }
2122 // Make the unassignments, if they are not managers.
2125 $success = role_unassign($unassignment->roleid, $unassignment->userid, 0, $context->id) && $success;
2126 }
2127 }
2129 // Make the assignments.
2132 }
2136 // TODO: finish timeend and timestart
2137 // maybe we could rely on cron job to do the cleaning from time to time
2138 }
2140 /**
2141 * Adds a record to the metacourse table and calls sync_metacoures
2142 */
2147 }
2151 }
2153 if (!$record = get_record("course_meta","parent_course",$metacourseid,"child_course",$courseid)) {
2159 }
2161 }
2164 }
2166 /**
2167 * Removes the record from the metacourse table and calls sync_metacourse
2168 */
2173 }
2175 }
2178 /**
2179 * Determines if a user is currently logged in
2180 *
2181 * @uses $USER
2182 * @return bool
2183 */
2188 }
2190 /**
2191 * Determines if a user is logged in as real guest user with username 'guest'.
2192 * This function is similar to original isguest() in 1.6 and earlier.
2193 * Current isguest() is deprecated - do not use it anymore.
2194 *
2195 * @param $user mixed user object or id, $USER if not specified
2196 * @return bool true if user is the real guest user, false if not logged in or other user
2197 */
2204 }
2208 }
2211 }
2213 /**
2214 * Determines if the currently logged in user is in editing mode
2215 *
2216 * @uses $USER
2217 * @param int $courseid The id of the course being tested
2218 * @param user $user A {@link $USER} object. If null then the currently logged in user is used.
2219 * @return bool
2220 */
2225 }
2228 }
2237 // loop through all child context, see if user has moodle/course:manageactivities or moodle/site:manageblocks
2245 }
2246 }
2247 }
2248 }
2251 //return ($user->editing and has_capability('moodle/course:manageactivities', get_context_instance(CONTEXT_COURSE, $courseid)));
2252 }
2254 /**
2255 * Determines if the logged in user is currently moving an activity
2256 *
2257 * @uses $USER
2258 * @param int $courseid The id of the course being tested
2259 * @return bool
2260 */
2266 }
2268 }
2270 /**
2271 * Given an object containing firstname and lastname
2272 * values, this function returns a string with the
2273 * full name of the person.
2274 * The result may depend on system settings
2275 * or language. 'override' will force both names
2276 * to be used even if system settings specify one.
2277 *
2278 * @uses $CFG
2279 * @uses $SESSION
2280 * @param object $user A {@link $USER} object to get full name of
2281 * @param bool $override If true then the name will be first name followed by last name rather than adhering to fullnamedisplay setting.
2282 */
2289 }
2294 }
2297 }
2298 }
2302 }
2315 }
2316 }
2319 }
2321 /**
2322 * Sets a moodle cookie with an encrypted string
2323 *
2324 * @uses $CFG
2325 * @uses DAYSECS
2326 * @uses HOURSECS
2327 * @param string $thing The string to encrypt and place in a cookie
2328 */
2334 }
2343 }
2345 /**
2346 * Gets a moodle cookie with an encrypted string
2347 *
2348 * @uses $CFG
2349 * @return string
2350 */
2361 }
2362 }
2364 /**
2365 * Returns whether a given authentication plugin exists.
2366 *
2367 * @uses $CFG
2368 * @param string $auth Form of authentication to check for. Defaults to the
2369 * global setting in {@link $CFG}.
2370 * @return boolean Whether the plugin is available.
2371 */
2377 }
2379 }
2381 /**
2382 * Checks if a given plugin is in the list of enabled authentication plugins.
2383 *
2384 * @param string $auth Authentication plugin.
2385 * @return boolean Whether the plugin is enabled.
2386 */
2390 }
2395 }
2397 /**
2398 * Returns an authentication plugin instance.
2399 *
2400 * @uses $CFG
2401 * @param string $auth name of authentication plugin
2402 * @return object An instance of the required authentication plugin.
2403 */
2407 // check the plugin exists first
2410 }
2412 // return auth plugin instance
2416 }
2418 /**
2419 * Returns array of active auth plugins.
2420 *
2421 * @param bool $fix fix $CFG->auth if needed
2422 * @return array
2423 */
2433 }
2440 }
2441 }
2445 }
2446 }
2449 }
2451 /**
2452 * Returns true if an internal authentication method is being used.
2453 * if method not specified then, global default is assumed
2454 *
2455 * @uses $CFG
2456 * @param string $auth Form of authentication required
2457 * @return bool
2458 */
2462 }
2464 /**
2465 * Returns an array of user fields
2466 *
2467 * @uses $CFG
2468 * @uses $db
2469 * @return array User field/column names
2470 */
2479 }
2481 /**
2482 * Creates a bare-bones user record
2483 *
2484 * @uses $CFG
2485 * @param string $username New user's username to add to record
2486 * @param string $password New user's password to add to record
2487 * @param string $auth Form of authentication required
2488 * @return object A {@link $USER} object
2489 * @todo Outline auth types and provide code example
2490 */
2494 //just in case check text case
2503 }
2504 }
2509 }
2510 }
2515 // fix for MDL-8480
2516 // user CFG lang for user if $newuser->lang is empty
2517 // or $user->lang is not an installed language
2521 }
2531 }
2534 }
2536 }
2538 /**
2539 * Will update a local user record from an external source
2540 *
2541 * @uses $CFG
2542 * @param string $username New user's username to add to record
2543 * @return user A {@link $USER} object
2544 */
2559 }
2560 }
2561 }
2564 }
2567 /// will truncate userinfo as it comes from auth_get_userinfo (from external auth)
2568 /// which may have large fields
2570 // define the limits
2586 );
2588 // apply where needed
2592 }
2593 }
2596 }
2598 /**
2599 * Retrieve the guest user object
2600 *
2601 * @uses $CFG
2602 * @return user A {@link $USER} object
2603 */
2607 if ($newuser = get_record('user', 'username', 'guest', 'mnethostid', $CFG->mnet_localhost_id)) {
2611 }
2614 }
2616 /**
2617 * Given a username and password, this function looks them
2618 * up using the currently selected authentication mechanism,
2619 * and if the authentication is successful, it returns a
2620 * valid $user object from the 'user' table.
2621 *
2622 * Uses auth_ functions from the currently active auth module
2623 *
2624 * @uses $CFG
2625 * @param string $username User's username (with system magic quotes)
2626 * @param string $password User's password (with system magic quotes)
2627 * @return user|flase A {@link $USER} object or false if error
2628 */
2639 error_log('[client '.$_SERVER['REMOTE_ADDR']."] $CFG->wwwroot Disabled Login: $username ".$_SERVER['HTTP_USER_AGENT']);
2641 }
2644 error_log('[client '.$_SERVER['REMOTE_ADDR']."] $CFG->wwwroot Deleted Login: $username ".$_SERVER['HTTP_USER_AGENT']);
2646 }
2653 }
2658 // on auth fail fall through to the next plugin
2661 }
2663 // successful authentication
2668 }
2670 update_internal_user_password($user, $password); // just in case salt or encoding were changed (magic quotes too one day)
2674 }
2676 // if user not found, create him
2678 }
2685 }
2687 /// Log in to a second system if necessary
2688 /// NOTICE: /sso/ will be moved to auth and deprecated soon; use user_authenticated_hook() instead
2694 }
2695 }
2696 }
2700 }
2702 // failed if all the plugins have failed
2704 error_log('[client '.$_SERVER['REMOTE_ADDR']."] $CFG->wwwroot Failed Login: $username ".$_SERVER['HTTP_USER_AGENT']);
2706 }
2708 /**
2709 * Compare password against hash stored in internal user table.
2710 * If necessary it also updates the stored hash to new format.
2711 *
2712 * @param object user
2713 * @param string plain text password
2714 * @return bool is password valid?
2715 */
2721 }
2725 // get password original encoding in case it was not updated to unicode yet
2729 if ($user->password == md5($password.$CFG->passwordsaltmain) or $user->password == md5($password)
2730 or $user->password == md5($convpassword.$CFG->passwordsaltmain) or $user->password == md5($convpassword)) {
2736 if ($user->password == md5($password.$CFG->$alt) or $user->password == md5($convpassword.$CFG->$alt)) {
2739 }
2740 }
2741 }
2742 }
2745 // force update of password hash using latest main password salt and encoding if needed
2747 }
2750 }
2752 /**
2753 * Calculate hashed value from password using current hash mechanism.
2754 *
2755 * @param string password
2756 * @return string password hash
2757 */
2765 }
2766 }
2768 /**
2769 * Update pssword hash in user object.
2770 *
2771 * @param object user
2772 * @param string plain text password
2773 * @param bool store changes also in db, default true
2774 * @return true if hash changed
2775 */
2784 }
2787 }
2789 /**
2790 * Get a complete user record, which includes all the info
2791 * in the user record
2792 * Intended for setting as $USER session variable
2793 *
2794 * @uses $CFG
2795 * @uses SITEID
2796 * @param string $field The user field to be checked for a given value.
2797 * @param string $value The value to match for $field.
2798 * @return user A {@link $USER} object.
2799 */
2806 }
2808 /// Build the WHERE clause for an SQL query
2813 // if null, we restrict to local users
2814 // ** testing for local user can be done with
2815 // mnethostid = $CFG->mnet_localhost_id
2816 // or with
2817 // auth != 'mnet'
2818 // but the first one is FAST with our indexes
2820 }
2824 /// Get all the basic user data
2828 }
2830 /// Get various settings and preferences
2835 }
2836 }
2843 }
2844 }
2849 //change this to 2D array so we can put multiple groups in a course
2851 }
2852 }
2854 /// Rewrite some variables if necessary
2857 }
2862 }
2868 }
2870 /**
2871 * @uses $CFG
2872 * @param string $password the password to be checked agains the password policy
2873 * @param string $errmsg the error message to display when the password doesn't comply with the policy.
2874 * @return bool true if the password is valid according to the policy. false otherwise.
2875 */
2881 }
2897 } else if (preg_match_all('/[^[:upper:][:lower:][:digit:]]/u', $password, $matches) < $CFG->minpasswordnonalphanum) {
2902 }
2908 }
2909 }
2912 /**
2913 * When logging in, this function is run to set certain preferences
2914 * for the current SESSION
2915 */
2923 // Restore the calendar filters, if saved
2927 }
2928 }
2931 /**
2932 * Delete a course, including all related data from the database,
2933 * and any associated files from the moodledata folder.
2934 *
2935 * @param int $courseid The id of the course to delete.
2936 * @param bool $showfeedback Whether to display notifications of each action the function performs.
2937 * @return bool true if all the removals succeeded. false if there were any failures. If this
2938 * method returns false, some of the removals will probably have succeeded, and others
2939 * failed, but you have no way of knowing which.
2940 */
2948 }
2950 }
2955 }
2957 }
2962 }
2964 }
2969 }
2971 }
2974 }
2976 /**
2977 * Clear a course out completely, deleting all content
2978 * but don't delete the course itself
2979 *
2980 * @uses $CFG
2981 * @param int $courseid The id of the course that is being deleted
2982 * @param bool $showfeedback Whether to display notifications of each action the function performs.
2983 * @return bool true if all the removals succeeded. false if there were any failures. If this
2984 * method returns false, some of the removals will probably have succeeded, and others
2985 * failed, but you have no way of knowing which.
2986 */
2995 }
2999 /// First delete every instance of every module
3015 }
3020 notify('Could not delete '. $modname .' instance '. $instance->id .' ('. format_string($instance->name) .')');
3022 }
3023 }
3024 }
3028 }
3032 }
3033 }
3036 }
3037 }
3040 }
3042 /// Give local code a chance to delete its references to this course.
3046 /// Delete course blocks
3055 }
3060 // Block instances are rarely created. Since the block instance is gone from the above delete
3061 // statement, calling delete_context() will generate a warning as get_context_instance could
3062 // no longer create the context as the block is already gone.
3065 }
3067 // fix for MDL-7164
3068 // Get the block object and call instance_delete()
3072 }
3076 }
3077 // Return value ignored, in core mods this does not do anything, but just in case
3078 // third party blocks might have stuff to clean up
3079 // we execute this anyway
3081 }
3084 }
3085 }
3087 /// Delete any groups, removing members and grouping/course links first.
3088 //TODO: If groups or groupings are to be shared between courses, think again!
3094 }
3097 }
3098 /// Delete any associated context for this group ??
3104 }
3107 }
3108 }
3109 }
3110 /// Delete any groupings.
3114 }
3116 /// Delete all related records in other tables that may have a courseid
3117 /// This array stores the tables that need to be cleared, as
3118 /// table_name => column_name that contains the course id.
3132 );
3137 }
3140 }
3141 }
3144 /// Clean up metacourse stuff
3148 sync_metacourse($course->id); // have to do it here so the enrolments get nuked. sync_metacourses won't find it without the id.
3151 }
3155 remove_from_metacourse($parent->parent_course,$parent->child_course); // this will do the unenrolments as well.
3156 }
3159 }
3160 }
3161 }
3163 /// Delete questions and question categories
3167 /// Delete all roles and overiddes in the course context (but keep the course context)
3170 }
3172 // fix for MDL-9016
3173 // clear the cache because the course context is deleted, and
3174 // we don't want to write assignment, overrides and context_rel table
3175 // with this old context id!
3178 }
3181 /**
3182 * This function will empty a course of USER data as much as
3183 /// possible. It will retain the activities and the structure
3184 /// of the course.
3185 *
3186 * @uses $USER
3187 * @uses $SESSION
3188 * @uses $CFG
3189 * @param object $data an object containing all the boolean settings and courseid
3190 * @param bool $showfeedback if false then do it all silently
3191 * @return bool
3192 * @todo Finish documenting this function
3193 */
3202 // Look in every instance of every module for data to delete
3213 }
3214 }
3215 }
3218 }
3220 // Delete other stuff
3231 }
3234 }
3236 /// Delete group members (but keep the groups) TODO:check.
3242 }
3245 }
3246 }
3247 }
3248 }
3253 }
3256 }
3257 }
3258 }
3266 }
3269 }
3270 }
3271 }
3272 }
3278 }
3281 }
3282 }
3288 }
3291 }
3292 }
3294 // deletes all role assignments, and local override, these have no courseid in table and needs separate process
3299 }
3303 /*TODO: functions moved to /group/lib/legacylib.php
3305 ismember
3306 add_user_to_group
3307 mygroupid
3308 groupmode
3309 set_current_group
3310 ... */
3318 }
3322 }
3326 // the first char should be an unencoded letter. We'll take this as an action
3331 // check the half md5 of their email
3335 }
3336 // else maybe they've already changed it?
3337 }
3338 }
3340 // maybe more later?
3341 }
3342 }
3344 /// CORRESPONDENCE ////////////////////////////////////////////////
3346 /**
3347 * Send an email to a specified user
3348 *
3349 * @uses $CFG
3350 * @uses $FULLME
3351 * @uses SITEID
3352 * @param user $user A {@link $USER} object
3353 * @param user $from A {@link $USER} object
3354 * @param string $subject plain text subject line of the email
3355 * @param string $messagetext plain text version of the message
3356 * @param string $messagehtml complete html version of the message (optional)
3357 * @param string $attachment a file on the filesystem, relative to $CFG->dataroot
3358 * @param string $attachname the name of the file (extension indicates MIME)
3359 * @param bool $usetrueaddress determines whether $from email address should
3360 * be sent out. Will be overruled by user profile setting for maildisplay
3361 * @return bool|string Returns "true" if mail was sent OK, "emailstop" if email
3362 * was blocked by user and "false" if there was another sort of error.
3363 */
3364 function email_to_user($user, $from, $subject, $messagetext, $messagehtml='', $attachment='', $attachname='', $usetrueaddress=true, $replyto='', $replytoname='') {
3370 /// We are going to use textlib services here
3375 }
3377 // skip mail to suspended users
3380 }
3384 }
3389 }
3409 }
3416 }
3417 }
3421 // make up an email address for handling bounces
3425 }
3428 }
3441 }
3442 }
3446 }
3458 }
3461 }
3462 }
3466 }
3468 if ($messagehtml && $user->mailformat == 1) { // Don't ever send HTML to users who don't want it
3476 }
3481 $mail->AddStringAttachment('Error in attachment. User attempted to attach a filename with a unsafe name.', 'error.txt', '8bit', 'text/plain');
3486 }
3487 }
3491 /// If we are running under Unicode and sitemailcharset or allowusermailcharset are set, convert the email
3492 /// encoding to the specified one
3494 /// Set it to site mail charset
3496 /// Overwrite it with the user mail charset
3500 }
3501 }
3502 /// If it has changed, convert all the necessary strings
3506 /// Save the new mail charset
3508 /// And convert some strings
3512 }
3516 }
3519 }
3520 }
3527 }
3534 }
3536 }
3537 }
3539 /**
3540 * Sets specified user's password and send the new password to the user via email.
3541 *
3542 * @uses $CFG
3543 * @param user $user A {@link $USER} object
3544 * @return boolean|string Returns "true" if mail was sent OK, "emailstop" if email
3545 * was blocked by user and "false" if there was another sort of error.
3546 */
3559 }
3575 }
3577 /**
3578 * Resets specified user's password and send the new password to the user via email.
3579 *
3580 * @uses $CFG
3581 * @param user $user A {@link $USER} object
3582 * @return bool|string Returns "true" if mail was sent OK, "emailstop" if email
3583 * was blocked by user and "false" if there was another sort of error.
3584 */
3594 trigger_error("Attempt to reset user password for user $user->username with Auth $user->auth.");
3596 }
3602 }
3618 }
3620 /**
3621 * Send email to specified user with confirmation text and activation link.
3622 *
3623 * @uses $CFG
3624 * @param user $user A {@link $USER} object
3625 * @return bool|string Returns "true" if mail was sent OK, "emailstop" if email
3626 * was blocked by user and "false" if there was another sort of error.
3627 */
3642 $data->link = $CFG->wwwroot .'/login/confirm.php?data='. $user->secret .'/'. urlencode($user->username);
3650 }
3652 /**
3653 * send_password_change_confirmation_email.
3654 *
3655 * @uses $CFG
3656 * @param user $user A {@link $USER} object
3657 * @return bool|string Returns "true" if mail was sent OK, "emailstop" if email
3658 * was blocked by user and "false" if there was another sort of error.
3659 */
3670 $data->link = $CFG->httpswwwroot .'/login/forgot_password.php?p='. $user->secret .'&s='. urlencode($user->username);
3678 }
3680 /**
3681 * send_password_change_info.
3682 *
3683 * @uses $CFG
3684 * @param user $user A {@link $USER} object
3685 * @return bool|string Returns "true" if mail was sent OK, "emailstop" if email
3686 * was blocked by user and "false" if there was another sort of error.
3687 */
3707 }
3710 // we have some external url for password changing
3714 //no way to change password, sorry
3716 }
3718 if (!empty($data->link) and has_capability('moodle/user:changeownpassword', $systemcontext, $user->id)) {
3724 }
3728 }
3730 /**
3731 * Check that an email is allowed. It returns an error message if there
3732 * was a problem.
3733 *
3734 * @uses $CFG
3735 * @param string $email Content of email
3736 * @return string|false
3737 */
3748 }
3751 }
3752 }
3761 }
3764 }
3765 }
3766 }
3769 }
3777 }
3779 }
3786 //$message = get_string("welcometocoursetext", "", $a);
3791 }
3793 }
3794 }
3796 /// FILE HANDLING /////////////////////////////////////////////
3799 /**
3800 * Makes an upload directory for a particular module.
3801 *
3802 * @uses $CFG
3803 * @param int $courseid The id of the course in question - maps to id field of 'course' table.
3804 * @return string|false Returns full path to directory if successful, false if not
3805 */
3811 }
3816 copy($CFG->dirroot .'/lang/'. $CFG->lang .'/docs/module_files.txt', $moddata .'/'. $strreadme .'.txt');
3819 }
3821 }
3823 /**
3824 * Returns current name of file on disk if it exists.
3825 *
3826 * @param string $newfile File to be verified
3827 * @return string Current name of file on disk if true
3828 */
3832 }
3837 }
3838 }
3840 /**
3841 * Returns the maximum size for uploading files.
3842 *
3843 * There are seven possible upload limits:
3844 * 1. in Apache using LimitRequestBody (no way of checking or changing this)
3845 * 2. in php.ini for 'upload_max_filesize' (can not be changed inside PHP)
3846 * 3. in .htaccess for 'upload_max_filesize' (can not be changed inside PHP)
3847 * 4. in php.ini for 'post_max_size' (can not be changed inside PHP)
3848 * 5. by the Moodle admin in $CFG->maxbytes
3849 * 6. by the teacher in the current course $course->maxbytes
3850 * 7. by the teacher for the current module, eg $assignment->maxbytes
3851 *
3852 * These last two are passed to this function as arguments (in bytes).
3853 * Anything defined as 0 is ignored.
3854 * The smallest of all the non-zero numbers is returned.
3855 *
3856 * @param int $sizebytes ?
3857 * @param int $coursebytes Current course $course->maxbytes (in bytes)
3858 * @param int $modulebytes Current module ->maxbytes (in bytes)
3859 * @return int The maximum size for uploading files.
3860 * @todo Finish documenting this function
3861 */
3866 }
3873 }
3874 }
3878 }
3882 }
3886 }
3889 }
3891 /**
3892 * Related to {@link get_max_upload_file_size()} - this function returns an
3893 * array of possible sizes in an array, translated to the
3894 * local language.
3895 *
3896 * @uses SORT_NUMERIC
3897 * @param int $sizebytes ?
3898 * @param int $coursebytes Current course $course->maxbytes (in bytes)
3899 * @param int $modulebytes Current module ->maxbytes (in bytes)
3900 * @return int
3901 * @todo Finish documenting this function
3902 */
3908 }
3915 // Allow maxbytes to be selected if it falls outside the above boundaries
3918 }
3923 }
3924 }
3929 }
3931 /**
3932 * If there has been an error uploading a file, print the appropriate error message
3933 * Numerical constants used as constant definitions not added until PHP version 4.2.0
3934 *
3935 * $filearray is a 1-dimensional sub-array of the $_FILES array
3936 * eg $filearray = $_FILES['userfile1']
3937 * If left empty then the first element of the $_FILES array will be used
3938 *
3939 * @uses $_FILES
3940 * @param array $filearray A 1-dimensional sub-array of the $_FILES array
3941 * @param bool $returnerror If true then a string error message will be returned. Otherwise the user will be notified of the error in a notify() call.
3942 * @return bool|string
3943 */
3952 }
3961 }
3982 }
3989 }
3991 }
3993 /**
3994 * handy function to loop through an array of files and resolve any filename conflicts
3995 * both in the array of filenames and for what is already on disk.
3996 * not really compatible with the similar function in uploadlib.php
3997 * but this could be used for files/index.php for moving files around.
3998 */
4009 }
4010 }
4011 }
4012 }
4014 }
4016 /**
4017 * @used by resolve_filename_collisions
4018 */
4022 }
4025 }
4027 }
4030 /**
4031 * Returns an array with all the filenames in
4032 * all subdirectories, relative to the given rootdir.
4033 * If excludefile is defined, then that file/directory is ignored
4034 * If getdirs is true, then (sub)directories are included in the output
4035 * If getfiles is true, then files are included in the output
4036 * (at least one of these must be true!)
4037 *
4038 * @param string $rootdir ?
4039 * @param string $excludefile If defined then the specified file/directory is ignored
4040 * @param bool $descend ?
4041 * @param bool $getdirs If true then (sub)directories are included in the output
4042 * @param bool $getfiles If true then files are included in the output
4043 * @return array An array with all the filenames in
4044 * all subdirectories, relative to the given rootdir
4045 * @todo Finish documenting this function. Add examples of $excludefile usage.
4046 */
4047 function get_directory_list($rootdir, $excludefiles='', $descend=true, $getdirs=false, $getfiles=true) {
4053 }
4057 }
4061 }
4065 }
4071 }
4076 }
4081 }
4082 }
4085 }
4086 }
4092 }
4095 /**
4096 * Adds up all the files in a directory and works out the size.
4097 *
4098 * @param string $rootdir ?
4099 * @param string $excludefile ?
4100 * @return array
4101 * @todo Finish documenting this function
4102 */
4107 // do it this way if we can, it's much faster
4115 }
4116 }
4120 }
4124 }
4132 }
4138 }
4139 }
4143 }
4145 /**
4146 * Converts bytes into display form
4147 *
4148 * @param string $size ?
4149 * @return string
4150 * @staticvar string $gb Localized string for size in gigabytes
4151 * @staticvar string $mb Localized string for size in megabytes
4152 * @staticvar string $kb Localized string for size in kilobytes
4153 * @staticvar string $b Localized string for size in bytes
4154 * @todo Finish documenting this function. Verify return type.
4155 */
4165 }
4175 }
4177 }
4179 /**
4180 * Cleans a given filename by removing suspicious or troublesome characters
4181 * Only these are allowed: alphanumeric _ - .
4182 * Unicode characters can be enabled by setting $CFG->unicodecleanfilename = true in config.php
4183 *
4184 * WARNING: unicode characters may not be compatible with zip compression in backup/restore,
4185 * because native zip binaries do weird character conversions. Use PHP zipping instead.
4186 *
4187 * @param string $string file name
4188 * @return string cleaned file name
4189 */
4197 //clean only ascii range
4198 $string = preg_replace("/[\\000-\\x2c\\x2f\\x3a-\\x40\\x5b-\\x5e\\x60\\x7b-\\177]/s", '_', $string);
4199 }
4203 }
4206 /// STRING TRANSLATION ////////////////////////////////////////
4208 /**
4209 * Returns the code for the current language
4210 *
4211 * @uses $CFG
4212 * @param $USER
4213 * @param $SESSION
4214 * @return string
4215 */
4219 if (!empty($COURSE->id) and $COURSE->id != SITEID and !empty($COURSE->lang)) { // Course language can override all other settings for this page
4230 }
4234 }
4237 }
4239 /**
4240 * Prints out a translated string.
4241 *
4242 * Prints out a translated string using the return value from the {@link get_string()} function.
4243 *
4244 * Example usage of this function when the string is in the moodle.php file:<br/>
4245 * <code>
4246 * echo '<strong>';
4247 * print_string('wordforstudent');
4248 * echo '</strong>';
4249 * </code>
4250 *
4251 * Example usage of this function when the string is not in the moodle.php file:<br/>
4252 * <code>
4253 * echo '<h1>';
4254 * print_string('typecourse', 'calendar');
4255 * echo '</h1>';
4256 * </code>
4257 *
4258 * @param string $identifier The key identifier for the localized string
4259 * @param string $module The module where the key identifier is stored. If none is specified then moodle.php is used.
4260 * @param mixed $a An object, string or number that can be used
4261 * within translation strings
4262 */
4265 }
4267 /**
4268 * fix up the optional data in get_string()/print_string() etc
4269 * ensure possible sprintf() format characters are escaped correctly
4270 * needs to handle arbitrary strings and objects
4271 * @param mixed $a An object, string or number that can be used
4272 * @return mixed the supplied parameter 'cleaned'
4273 */
4277 }
4283 }
4285 }
4288 }
4289 }
4291 /**
4292 * @return array places to look for lang strings based on the prefix to the
4293 * module name. For example qtype_ in question/type. Used by get_string and
4294 * help.php.
4295 */
4312 );
4313 }
4315 /**
4316 * Returns a localized string.
4317 *
4318 * Returns the translated string specified by $identifier as
4319 * for $module. Uses the same format files as STphp.
4320 * $a is an object, string or number that can be used
4321 * within translation strings
4322 *
4323 * eg "hello \$a->firstname \$a->lastname"
4324 * or "hello \$a"
4325 *
4326 * If you would like to directly echo the localized string use
4327 * the function {@link print_string()}
4328 *
4329 * Example usage of this function involves finding the string you would
4330 * like a local equivalent of and using its identifier and module information
4331 * to retrive it.<br/>
4332 * If you open moodle/lang/en/moodle.php and look near line 1031
4333 * you will find a string to prompt a user for their word for student
4334 * <code>
4335 * $string['wordforstudent'] = 'Your word for Student';
4336 * </code>
4337 * So if you want to display the string 'Your word for student'
4338 * in any language that supports it on your site
4339 * you just need to use the identifier 'wordforstudent'
4340 * <code>
4341 * $mystring = '<strong>'. get_string('wordforstudent') .'</strong>';
4342 or
4343 * </code>
4344 * If the string you want is in another file you'd take a slightly
4345 * different approach. Looking in moodle/lang/en/calendar.php you find
4346 * around line 75:
4347 * <code>
4348 * $string['typecourse'] = 'Course event';
4349 * </code>
4350 * If you want to display the string "Course event" in any language
4351 * supported you would use the identifier 'typecourse' and the module 'calendar'
4352 * (because it is in the file calendar.php):
4353 * <code>
4354 * $mystring = '<h1>'. get_string('typecourse', 'calendar') .'</h1>';
4355 * </code>
4356 *
4357 * As a last resort, should the identifier fail to map to a string
4358 * the returned string will be [[ $identifier ]]
4359 *
4360 * @uses $CFG
4361 * @param string $identifier The key identifier for the localized string
4362 * @param string $module The module where the key identifier is stored. If none is specified then moodle.php is used.
4363 * @param mixed $a An object, string or number that can be used
4364 * within translation strings
4365 * @param array $extralocations An array of strings with other locations to look for string files
4366 * @return string The localized string.
4367 */
4372 /// originally these special strings were stored in moodle.php now we are only in langconfig.php
4384 }
4390 }
4392 // if $a happens to have % in it, double it so sprintf() doesn't break
4395 }
4397 /// Define the two or three major locations of language strings for this module
4407 }
4408 }
4413 $locations += array( $CFG->dirroot.'/install/lang/', $CFG->dataroot.'/lang/', $CFG->dirroot.'/lang/' );
4417 }
4419 /// Add extra places to look for strings for particular plugin types.
4432 }
4436 }
4437 }
4438 }
4440 /// First check all the normal locations for the string in the current language
4443 $locallangfile = $location.$lang.'_local'.'/'.$module.'.php'; //first, see if there's a local file
4448 }
4449 }
4450 //if local directory not found, or particular string does not exist in local direcotry
4456 }
4457 }
4458 }
4460 /// If the preferred language was English (utf8) we can abort now
4461 /// saving some checks beacuse it's the only "root" lang
4464 }
4466 /// Is a parent language defined? If so, try to find this string in a parent language file
4475 //first, see if there's a local file for parent
4481 }
4482 }
4484 //if local directory not found, or particular string does not exist in local direcotry
4490 }
4491 }
4492 }
4493 }
4494 }
4495 }
4497 /// Our only remaining option is to try English
4500 $locallangfile = $location.$defaultlang.'_local/'.$module.'.php'; //first, see if there's a local file
4505 }
4506 }
4508 //if local_en not found, or string not found in local_en
4515 }
4516 }
4517 }
4519 /// And, because under 1.6 en is defined as en_utf8 child, me must try
4520 /// if it hasn't been queried before.
4524 $locallangfile = $location.$defaultlang.'_local/'.$module.'.php'; //first, see if there's a local file
4529 }
4530 }
4532 //if local_en not found, or string not found in local_en
4539 }
4540 }
4541 }
4542 }
4545 }
4547 /**
4548 * This function is only used from {@link get_string()}.
4549 *
4550 * @internal Only used from get_string, not meant to be public API
4551 * @param string $identifier ?
4552 * @param string $langfile ?
4553 * @param string $destination ?
4554 * @return string|false ?
4555 * @staticvar array $strings Localized strings
4556 * @access private
4557 * @todo Finish documenting this function.
4558 */
4569 }
4573 }
4576 }
4578 /**
4579 * Converts an array of strings to their localized value.
4580 *
4581 * @param array $array An array of strings
4582 * @param string $module The language module that these strings can be found in.
4583 * @return string
4584 */
4590 }
4592 }
4594 /**
4595 * Returns a list of language codes and their full names
4596 * hides the _local files from everyone.
4597 * @param bool refreshcache force refreshing of lang cache
4598 * @param bool returnall ignore langlist, return all languages available
4599 * @return array An associative array with contents in the form of LanguageCode => LanguageName
4600 */
4609 if (!$refreshcache && !$returnall && !empty($CFG->langcache) && file_exists($CFG->dataroot .'/cache/languages')) {
4610 /// read available langs from cache
4617 }
4618 }
4621 }
4624 /// return only languages allowed in langlist admin setting
4627 // fix short lang names first - non existing langs are skipped anyway...
4631 }
4632 }
4633 // find existing langs from langlist
4638 }
4643 }
4644 /// Search under dirroot/lang
4649 }
4651 }
4652 /// And moodledata/lang
4657 }
4659 }
4660 }
4663 /// return all languages available in system
4664 /// Fetch langs from moodle/lang directory
4666 /// Fetch langs from moodledata/lang directory
4668 /// Merge both lists of langs
4670 /// Sort all
4672 /// Get some info from each lang (first from moodledata, then from moodle)
4676 }
4681 }
4682 /// Search under moodledata/lang
4687 }
4689 }
4690 /// And dirroot/lang
4695 }
4697 }
4698 }
4699 }
4703 // we have a list of all langs only, just delete old cache
4707 // store the list of allowed languages
4711 }
4713 }
4714 }
4715 }
4718 }
4720 /**
4721 * Returns a list of charset codes. It's hardcoded, so they should be added manually
4722 * (cheking that such charset is supported by the texlib library!)
4723 *
4724 * @return array And associative array with contents in the form of charset => charset
4725 */
4740 }
4742 /**
4743 * Returns a list of country names in the current language
4744 *
4745 * @uses $CFG
4746 * @uses $USER
4747 * @return array
4748 */
4762 }
4765 }
4766 }
4772 }
4776 }
4779 }
4781 /**
4782 * Returns a list of valid and compatible themes
4783 *
4784 * @uses $CFG
4785 * @return array
4786 */
4797 }
4802 }
4807 }
4809 }
4813 }
4816 /**
4817 * Returns a list of picture names in the current or specified language
4818 *
4819 * @uses $CFG
4820 * @return array
4821 */
4827 }
4842 } else if ($parentlang = get_string('parentlanguage') and $parentlang != '[[parentlanguage]]') {
4844 }
4849 }
4851 /**
4852 * Returns a list of timezones in the current language
4853 *
4854 * @uses $CFG
4855 * @return array
4856 */
4862 if ($rawtimezones = get_records_sql('SELECT MAX(id), name FROM '.$CFG->prefix.'timezone GROUP BY name')) {
4868 }
4869 }
4870 }
4871 }
4883 }
4884 }
4887 }
4889 /**
4890 * Returns a list of currencies in the current language
4891 *
4892 * @uses $CFG
4893 * @uses $USER
4894 * @return array
4895 */
4907 }
4910 }
4911 }
4917 }
4921 }
4924 }
4928 /**
4929 * Can include a given document file (depends on second
4930 * parameter) or just return info about it.
4931 *
4932 * @uses $CFG
4933 * @param string $file ?
4934 * @param bool $include ?
4935 * @return ?
4936 * @todo Finish documenting this function
4937 */
4945 }
4957 }
4959 }
4960 }
4963 }
4965 /// ENCRYPTION ////////////////////////////////////////////////
4967 /**
4968 * rc4encrypt
4969 *
4970 * @param string $data ?
4971 * @return string
4972 * @todo Finish documenting this function
4973 */
4977 }
4979 /**
4980 * rc4decrypt
4981 *
4982 * @param string $data ?
4983 * @return string
4984 * @todo Finish documenting this function
4985 */
4989 }
4991 /**
4992 * Based on a class by Mukul Sabharwal [mukulsabharwal @ yahoo.com]
4993 *
4994 * @param string $pwd ?
4995 * @param string $data ?
4996 * @param string $case ?
4997 * @return string
4998 * @todo Finish documenting this function
4999 */
5004 }
5016 }
5025 }
5045 }
5051 }
5054 }
5057 /// CALENDAR MANAGEMENT ////////////////////////////////////////////////////////////////
5060 /**
5061 * Call this function to add an event to the calendar table
5062 * and to call any calendar plugins
5063 *
5064 * @uses $CFG
5065 * @param array $event An associative array representing an event from the calendar table. The event will be identified by the id field. The object event should include the following:
5066 * <ul>
5067 * <li><b>$event->name</b> - Name for the event
5068 * <li><b>$event->description</b> - Description of the event (defaults to '')
5069 * <li><b>$event->format</b> - Format for the description (using formatting types defined at the top of weblib.php)
5070 * <li><b>$event->courseid</b> - The id of the course this event belongs to (0 = all courses)
5071 * <li><b>$event->groupid</b> - The id of the group this event belongs to (0 = no group)
5072 * <li><b>$event->userid</b> - The id of the user this event belongs to (0 = no user)
5073 * <li><b>$event->modulename</b> - Name of the module that creates this event
5074 * <li><b>$event->instance</b> - Instance of the module that owns this event
5075 * <li><b>$event->eventtype</b> - The type info together with the module info could
5076 * be used by calendar plugins to decide how to display event
5077 * <li><b>$event->timestart</b>- Timestamp for start of event
5078 * <li><b>$event->timeduration</b> - Duration (defaults to zero)
5079 * <li><b>$event->visible</b> - 0 if the event should be hidden (e.g. because the activity that created it is hidden)
5080 * </ul>
5081 * @return int The id number of the resulting record
5082 */
5091 }
5099 }
5100 }
5101 }
5104 }
5106 /**
5107 * Call this function to update an event in the calendar table
5108 * the event will be identified by the id field of the $event object.
5109 *
5110 * @uses $CFG
5111 * @param array $event An associative array representing an event from the calendar table. The event will be identified by the id field.
5112 * @return bool
5113 */
5126 }
5127 }
5128 }
5130 }
5132 /**
5133 * Call this function to delete the event with id $id from calendar table.
5134 *
5135 * @uses $CFG
5136 * @param int $id The id of an event from the 'calendar' table.
5137 * @return array An associative array with the results from the SQL call.
5138 * @todo Verify return type
5139 */
5150 }
5151 }
5152 }
5154 }
5156 /**
5157 * Call this function to hide an event in the calendar table
5158 * the event will be identified by the id field of the $event object.
5159 *
5160 * @uses $CFG
5161 * @param array $event An associative array representing an event from the calendar table. The event will be identified by the id field.
5162 * @return array An associative array with the results from the SQL call.
5163 * @todo Verify return type
5164 */
5174 }
5175 }
5176 }
5178 }
5180 /**
5181 * Call this function to unhide an event in the calendar table
5182 * the event will be identified by the id field of the $event object.
5183 *
5184 * @uses $CFG
5185 * @param array $event An associative array representing an event from the calendar table. The event will be identified by the id field.
5186 * @return array An associative array with the results from the SQL call.
5187 * @todo Verify return type
5188 */
5198 }
5199 }
5200 }
5202 }
5205 /// ENVIRONMENT CHECKING ////////////////////////////////////////////////////////////
5207 /**
5208 * Lists plugin directories within some directory
5209 *
5210 * @uses $CFG
5211 * @param string $plugin dir under we'll look for plugins (defaults to 'mod')
5212 * @param string $exclude dir name to exclude from the list (defaults to none)
5213 * @param string $basedir full path to the base dir where $plugin resides (defaults to $CFG->dirroot)
5214 * @return array of plugins found under the requested parameters
5215 */
5224 # This switch allows us to use the appropiate theme directory - and potentialy alternatives for other plugins
5232 }
5236 }
5244 }
5247 }
5249 }
5251 }
5254 }
5256 }
5258 /**
5259 * Returns true if the current version of PHP is greater that the specified one.
5260 *
5261 * @param string $version The version of php being tested.
5262 * @return bool
5263 */
5266 }
5269 /**
5270 * Checks to see if is a browser matches the specified
5271 * brand and is equal or better version.
5272 *
5273 * @uses $_SERVER
5274 * @param string $brand The browser identifier being tested
5275 * @param int $version The version of the browser
5276 * @return bool true if the given version is below that of the detected browser
5277 */
5281 }
5292 }
5293 }
5302 }
5303 }
5310 // MacOS X Camino support
5312 }
5314 // the proper string - Gecko/CCYYMMDD Vendor/Version
5315 // Faster version and work-a-round No IDN problem.
5319 }
5320 }
5328 }
5332 }
5336 }
5339 }
5347 }
5348 }
5352 // Look for AppleWebKit, excluding strings with OmniWeb, Shiira and SimbianOS
5359 }
5364 }
5365 }
5369 }
5372 }
5374 /**
5375 * This function makes the return value of ini_get consistent if you are
5376 * setting server directives through the .htaccess file in apache.
5377 * Current behavior for value set from php.ini On = 1, Off = [blank]
5378 * Current behavior for value set from .htaccess On = On, Off = Off
5379 * Contributed by jdell @ unr.edu
5380 *
5381 * @param string $ini_get_arg ?
5382 * @return bool
5383 * @todo Finish documenting this function
5384 */
5390 }
5392 }
5394 /**
5395 * Compatibility stub to provide backward compatibility
5396 *
5397 * Determines if the HTML editor is enabled.
5398 * @deprecated Use {@link can_use_html_editor()} instead.
5399 */
5402 }
5404 /**
5405 * Determines if the HTML editor is enabled.
5406 *
5407 * This depends on site and user
5408 * settings, as well as the current browser being used.
5409 *
5410 * @return string|false Returns false if editor is not being used, otherwise
5411 * returns 'MSIE' or 'Gecko'.
5412 */
5421 }
5422 }
5424 }
5426 /**
5427 * Hack to find out the GD version by parsing phpinfo output
5428 *
5429 * @return int GD version (1, 2, or 0)
5430 */
5440 }
5455 }
5459 }
5461 }
5462 }
5463 }
5466 }
5468 /**
5469 * Determine if moodle installation requires update
5470 *
5471 * Checks version numbers of main code and all modules to see
5472 * if there are any mismatches
5473 *
5474 * @uses $CFG
5475 * @return bool
5476 */
5485 }
5493 }
5498 }
5499 }
5500 }
5501 }
5504 }
5506 }
5509 /// MISCELLANEOUS ////////////////////////////////////////////////////////////////////
5511 /**
5512 * Notify admin users or admin user of any failed logins (since last notification).
5513 *
5514 * @uses $CFG
5515 * @uses $db
5516 * @uses HOURSECS
5517 */
5528 }
5532 }
5534 // we need to deal with the threshold stuff first.
5537 }
5539 $notifyipsrs = $db->Execute('SELECT ip FROM '. $CFG->prefix .'log WHERE time > '. $CFG->lastnotifyfailure .'
5540 AND module=\'login\' AND action=\'error\' GROUP BY ip HAVING count(*) > '. $CFG->notifyloginthreshold);
5542 $notifyusersrs = $db->Execute('SELECT info FROM '. $CFG->prefix .'log WHERE time > '. $CFG->lastnotifyfailure .'
5543 AND module=\'login\' AND action=\'error\' GROUP BY info HAVING count(*) > '. $CFG->notifyloginthreshold);
5549 }
5552 }
5557 }
5560 }
5564 $logs = get_logs('time > '. $CFG->lastnotifyfailure .' AND module=\'login\' AND action=\'error\' '
5565 .((strlen($ipstr) > 0 && strlen($userstr) > 0) ? ' AND ( ip IN ('. $ipstr .') OR info IN ('. $userstr .') ) '
5566 : ((strlen($ipstr) != 0) ? ' AND ip IN ('. $ipstr .') ' : ' AND info IN ('. $userstr .') ')), 'l.time DESC', '', '', $count);
5568 // if we haven't run in the last hour and we have something useful to report and we are actually supposed to be reporting to somebody
5580 }
5585 }
5593 }
5597 }
5598 }
5599 }
5600 }
5602 /**
5603 * moodle_setlocale
5604 *
5605 * @uses $CFG
5606 * @param string $locale ?
5607 * @todo Finish documenting this function
5608 */
5617 /// Fetch the correct locale based on ostype
5622 }
5624 /// the priority is the same as in get_string() - parameter, config, course, session, user, global language
5631 }
5633 /// do nothing if locale already set up
5636 }
5638 /// Due to some strange BUG we cannot set the LC_TIME directly, so we fetch current values,
5639 /// set LC_ALL and then set values again. Just wondering why we cannot set LC_ALL only??? - stronk7
5640 /// Some day, numeric, monetary and other categories should be set too, I think. :-/
5642 /// Get current values
5648 }
5649 /// Set locale to all
5651 /// Set old values
5656 }
5657 if ($currentlocale == 'tr_TR' or $currentlocale == 'tr_TR.UTF-8') { // To workaround a well-known PHP problem with Turkish letter Ii
5659 }
5660 }
5662 /**
5663 * Converts string to lowercase using most compatible function available.
5664 *
5665 * @param string $string The string to convert to all lowercase characters.
5666 * @param string $encoding The encoding on the string.
5667 * @return string
5668 * @todo Add examples of calling this function with/without encoding types
5669 * @deprecated Use textlib->strtolower($text) instead.
5670 */
5673 //If not specified use utf8
5676 }
5677 //Use text services
5681 }
5683 /**
5684 * Count words in a string.
5685 *
5686 * Words are defined as things between whitespace.
5687 *
5688 * @param string $string The text to be searched for words.
5689 * @return int The count of words in the specified string
5690 */
5694 }
5696 /** Count letters in a string.
5697 *
5698 * Letters are defined as chars not in tags and different from whitespace.
5699 *
5700 * @param string $string The text to be searched for letters.
5701 * @return int The count of letters in the specified text.
5702 */
5704 /// Loading the textlib singleton instance. We are going to need it.
5711 }
5713 /**
5714 * Generate and return a random string of the specified length.
5715 *
5716 * @param int $length The length of the string to be created.
5717 * @return string
5718 */
5728 }
5730 }
5732 /*
5733 * Given some text (which may contain HTML) and an ideal length,
5734 * this function truncates the text neatly on a word boundary if possible
5735 */
5750 }
5771 }
5772 }
5774 }
5776 }
5780 }
5781 }
5782 }
5786 }
5791 }
5794 /**
5795 * Given dates in seconds, how many weeks is the date from startdate
5796 * The first week is 1, the second 2 etc ...
5797 *
5798 * @uses WEEKSECS
5799 * @param ? $startdate ?
5800 * @param ? $thedate ?
5801 * @return string
5802 * @todo Finish documenting this function
5803 */
5807 }
5810 }
5812 /**
5813 * returns a randomly generated password of length $maxlen. inspired by
5814 * {@link http://www.phpbuilder.com/columns/jesus19990502.php3}
5815 *
5816 * @param int $maxlength The maximum size of the password being generated.
5817 * @return string
5818 */
5831 }
5833 /**
5834 * Given a float, prints it nicely
5835 *
5836 * @param float $num The float to print
5837 * @param int $places The number of decimal places to print.
5838 * @return string
5839 */
5842 }
5844 /**
5845 * Given a simple array, this shuffles it up just like shuffle()
5846 * Unlike PHP's shuffle() ihis function works on any machine.
5847 *
5848 * @param array $array The array to be rearranged
5849 * @return array
5850 */
5860 }
5862 }
5864 /**
5865 * Like {@link swapshuffle()}, but works on associative arrays
5866 *
5867 * @param array $array The associative array to be rearranged
5868 * @return array
5869 */
5871 ///
5876 }
5878 }
5880 /**
5881 * Given an arbitrary array, and a number of draws,
5882 * this function returns an array with that amount
5883 * of items. The indexes are retained.
5884 *
5885 * @param array $array ?
5886 * @param ? $draws ?
5887 * @return ?
5888 * @todo Finish documenting this function
5889 */
5899 }
5911 }
5914 }
5916 /**
5917 * microtime_diff
5918 *
5919 * @param string $a ?
5920 * @param string $b ?
5921 * @return string
5922 * @todo Finish documenting this function
5923 */
5928 }
5930 /**
5931 * Given a list (eg a,b,c,d,e) this function returns
5932 * an array of 1->a, 2->b, 3->c etc
5933 *
5934 * @param array $list ?
5935 * @param string $separator ?
5936 * @todo Finish documenting this function
5937 */
5943 }
5945 }
5947 /**
5948 * Creates an array that represents all the current grades that
5949 * can be chosen using the given grading type. Negative numbers
5950 * are scales, zero is no grade, and positive numbers are maximum
5951 * grades.
5952 *
5953 * @param int $gradingtype ?
5954 * return int
5955 * @todo Finish documenting this function
5956 */
5962 }
5966 }
5968 }
5970 }
5972 /**
5973 * This function returns the nummber of activities
5974 * using scaleid in a courseid
5975 *
5976 * @param int $courseid ?
5977 * @param int $scaleid ?
5978 * @return int
5979 * @todo Finish documenting this function
5980 */
5990 //Check cm->name/lib.php exists
5997 }
5998 }
5999 }
6000 }
6001 }
6002 }
6004 }
6006 /**
6007 * This function returns the nummber of activities
6008 * using scaleid in the entire site
6009 *
6010 * @param int $scaleid ?
6011 * @return int
6012 * @todo Finish documenting this function. Is return type correct?
6013 */
6022 }
6028 }
6029 }
6030 }
6032 }
6034 /**
6035 * make_unique_id_code
6036 *
6037 * @param string $extra ?
6038 * @return string
6039 * @todo Finish documenting this function
6040 */
6052 }
6062 }
6063 }
6066 /**
6067 * Function to check the passed address is within the passed subnet
6068 *
6069 * The parameter is a comma separated string of subnet definitions.
6070 * Subnet strings can be in one of three formats:
6071 * 1: xxx.xxx.xxx.xxx/xx
6072 * 2: xxx.xxx
6073 * 3: xxx.xxx.xxx.xxx-xxx //a range of IP addresses in the last group.
6074 * Code for type 1 modified from user posted comments by mediator at
6075 * {@link http://au.php.net/manual/en/function.ip2long.php}
6076 *
6077 * @param string $addr The address you are checking
6078 * @param string $subnetstr The string of subnet addresses
6079 * @return bool
6080 */
6101 }
6104 }
6108 }
6109 }
6111 }
6113 /**
6114 * This function sets the $HTTPSPAGEREQUIRED global
6115 * (used in some parts of moodle to change some links)
6116 * and calculate the proper wwwroot to be used
6117 *
6118 * By using this function properly, we can ensure 100% https-ized pages
6119 * at our entire discretion (login, forgot_password, change_password)
6120 */
6130 // change theme URLs to https
6136 }
6137 }
6139 /**
6140 * For outputting debugging info
6141 *
6142 * @uses STDOUT
6143 * @param string $string ?
6144 * @param string $eol ?
6145 * @todo Finish documenting this function
6146 */
6153 }
6157 //delay to keep message on user's screen in case of subsequent redirect
6160 }
6161 }
6163 //Replace 1 or more slashes or backslashes to 1 slash
6166 }
6169 //Zip an array of files/dirs to a destination zip file
6170 //Both parameters must be FULL paths to the files/dirs
6174 //Extract everything from destination
6180 //If no file, error
6183 }
6185 //If no extension, add it
6189 }
6191 //Check destination path exists
6194 }
6196 //Check destination path is writable. TODO!!
6198 //Clean destination filename
6201 //Now check and prepare every file
6206 //Check for every file
6208 //Calculate the base path for all files if it isn't set
6211 }
6212 //See if the file is readable
6215 }
6216 //See if the file/dir is in the same directory than the rest
6219 }
6220 //Add the file to the array
6222 }
6224 //Everything is ready:
6225 // -$origpath is the path where ALL the files to be compressed reside (dir).
6226 // -$destpath is the destination path where the zip file will go (dir).
6227 // -$files is an array of files/dirs to compress (fullpath)
6228 // -$destfilename is the name of the zip file (without path)
6230 //print_object($files); //Debug
6235 //rewrite filenames because the old method with PCLZIP_OPT_REMOVE_PATH does not work under win32
6243 }
6244 //create the archive
6249 }
6257 }
6258 //Construct the command
6263 //All converted to backslashes in WIN
6266 }
6268 }
6270 }
6273 //Unzip one zip file to a destination dir
6274 //Both parameters must be FULL paths
6275 //If destination isn't specified, it will be the
6276 //SAME directory where the zip file resides.
6280 //Extract everything from zipfile
6286 //If no file, error
6289 }
6291 //If no extension, error
6294 }
6296 //Clear $zipfile
6299 //Check zipfile exists
6302 }
6304 //If no destination, passed let's go with the same directory
6307 }
6309 //Clear $destination
6312 //Check destination path exists
6315 }
6317 //Check destination path is writable. TODO!!
6319 //Everything is ready:
6320 // -$zippath is the path where the zip file resides (dir)
6321 // -$zipfilename is the name of the zip file (without path)
6322 // -$destpath is the destination path where the zip file will uncompressed (dir)
6335 }
6346 //All converted to backslashes in WIN
6349 }
6351 }
6353 //Display some info about the unzip execution
6356 }
6359 }
6362 //This function is used as callback in unzip_file() function
6363 //to clean illegal characters for given platform and to prevent directory traversal.
6364 //Produces the same result as info-zip unzip.
6365 $p_header['filename'] = ereg_replace('[[:cntrl:]]', '', $p_header['filename']); //strip control chars first!
6366 $p_header['filename'] = ereg_replace('\.\.+', '', $p_header['filename']); //directory traversal protection
6368 $p_header['filename'] = ereg_replace('[:*"?<>|]', '_', $p_header['filename']); //replace illegal chars
6369 $p_header['filename'] = ereg_replace('^([a-zA-Z])_', '\1:', $p_header['filename']); //repair drive letter
6371 //Add filtering for other systems here
6372 // BSD: none (tested)
6373 // Linux: ??
6374 // MacosX: ??
6375 }
6376 $p_header['filename'] = cleardoubleslashes($p_header['filename']); //normalize the slashes/backslashes
6378 }
6381 //This function shows the results of the unzip execution
6382 //depending of the value of the $CFG->zip, results will be
6383 //text or an array of files.
6405 }
6410 }
6418 }
6421 }
6422 }
6424 /**
6425 * Returns most reliable client address
6426 *
6427 * @return string The remote IP address
6428 */
6432 }
6435 }
6438 }
6440 }
6442 /**
6443 * Cleans a remote address ready to put into the log table
6444 */
6448 // first get all things that look like IP addresses.
6451 }
6455 // print_r($match);
6456 // check to make sure it's not an internal address.
6457 // the following are reserved for private lans...
6458 // 10.0.0.0 - 10.255.255.255
6459 // 172.16.0.0 - 172.31.255.255
6460 // 192.168.0.0 - 192.168.255.255
6461 // 169.254.0.0 -169.254.255.255
6464 // weird, preg match shouldn't give us it.
6466 }
6473 }
6474 // finally, it's ok
6476 }
6478 // perhaps we have a lan match, it's probably better to return that.
6483 }
6484 }
6487 }
6488 error_log("NOTICE: cleanremoteaddr gives us something funny: $originaladdr had ".count($goodmatches)." matches");
6489 // we need to return something, so
6491 }
6493 /**
6494 * file_put_contents is only supported by php 5.0 and higher
6495 * so if it is not predefined, define it here
6496 *
6497 * @param $file full path of the file to write
6498 * @param $contents contents to be sent
6499 * @return number of bytes written (false on error)
6500 */
6507 }
6509 }
6510 }
6512 /**
6513 * The clone keyword is only supported from PHP 5 onwards.
6514 * The behaviour of $obj2 = $obj1 differs fundamentally
6515 * between PHP 4 and PHP 5. In PHP 4 a copy of $obj1 was
6516 * created, in PHP 5 $obj1 is referenced. To create a copy
6517 * in PHP 5 the clone keyword was introduced. This function
6518 * simulates this behaviour for PHP < 5.0.0.
6519 * See also: http://mjtsai.com/blog/2004/07/15/php-5-object-references/
6520 *
6521 * Modified 2005-09-29 by Eloy (from Julian Sedding proposal)
6522 * Found a better implementation (more checks and possibilities) from PEAR:
6523 * http://cvs.php.net/co.php/pear/PHP_Compat/Compat/Function/clone.php
6524 *
6525 * @param object $obj
6526 * @return object
6527 */
6529 // the eval is needed to prevent PHP 5 from getting a parse error!
6532 /// Sanity check
6535 return;
6536 }
6538 /// Use serialize/unserialize trick to deep copy the object
6541 /// If there is a __clone method call it on the "new" class
6544 }
6547 }
6549 // Supply the PHP5 function scandir() to older versions.
6555 }
6557 }
6559 }
6561 // Supply the PHP5 function array_combine() to older versions.
6564 return false;
6565 }
6571 }
6573 }
6575 }
6577 /**
6578 * This function will make a complete copy of anything it's given,
6579 * regardless of whether it's an object or not.
6580 * @param mixed $thing
6581 * @return mixed
6582 */
6585 }
6588 /*
6589 * This function expects to called during shutdown
6590 * should be set via register_shutdown_function()
6591 * in lib/setup.php .
6592 *
6593 * Right now we do it only if we are under apache, to
6594 * make sure apache children that hog too much mem are
6595 * killed.
6596 *
6597 */
6602 // initially, we are only ever called under apache
6603 // but check just in case
6609 }
6612 @apache_child_terminate();
6613 }
6614 }
6615 }
6617 /**
6618 * If new messages are waiting for the current user, then return
6619 * Javascript code to create a popup window
6620 *
6621 * @return string Javascript code
6622 */
6632 }
6635 if (count_records_select('message', 'useridto = \''.$USER->id.'\' AND timecreated > \''.$USER->message_lastpopup.'\'')) {
6637 return '<script type="text/javascript">'."\n//<![CDATA[\n openpopup('/message/index.php', 'message',
6638 'menubar=0,location=0,scrollbars,status,resizable,width=400,height=500', 0);\n//]]>\n</script>";
6639 }
6640 }
6641 }
6642 }
6643 }
6646 }
6648 // Used to make sure that $min <= $value <= $max
6652 }
6655 }
6657 }
6663 }
6664 }
6666 }
6668 /**
6669 *** get_performance_info() pairs up with init_performance_info()
6670 *** loaded in setup.php. Returns an array with 'html' and 'txt'
6671 *** values ready for use, and each of the individual stats provided
6672 *** separately as well.
6673 ***
6674 **/
6690 $info['html'] .= '<span class="memoryused">RAM: '.display_size($info['memory_total']).'</span> ';
6691 $info['txt'] .= 'memory_total: '.$info['memory_total'].'B (' . display_size($info['memory_total']).') memory_growth: '.$info['memory_growth'].'B ('.display_size($info['memory_growth']).') ';
6692 }
6695 //error_log(print_r($inc,1));
6704 }
6710 }
6714 $info['html'] .= '<span class="profilinginfo">'.Profiler::get_profiling(array('-R')).'</span>';
6715 }
6722 }
6723 $info['html'] .= "<span class=\"posixtimes\">ticks: $info[ticks] user: $info[utime] sys: $info[stime] cuser: $info[cutime] csys: $info[cstime]</span> ";
6724 $info['txt'] .= "ticks: $info[ticks] user: $info[utime] sys: $info[stime] cuser: $info[cutime] csys: $info[cstime] ";
6725 }
6726 }
6728 // Grab the load average for the last minute
6729 // /proc will only work under some linux configurations
6730 // while uptime is there under MacOSX/Darwin and other unices
6734 } else if ( function_exists('is_executable') && is_executable('/usr/bin/uptime') && $loadavg = `/usr/bin/uptime` ) {
6739 }
6740 }
6745 }
6754 }
6757 }
6761 }
6764 // if content_only=true then delete all but
6765 // the directory itself
6774 }
6775 }
6776 }
6780 }
6782 }
6784 /**
6785 * Function to check if a directory exists and optionally create it.
6786 *
6787 * @param string absolute directory path
6788 * @param boolean create directory if does not exist
6789 * @param boolean create directory recursively
6790 *
6791 * @return boolean true if directory exists or created
6792 */
6805 // PHP 5.0 has recursive mkdir parameter, but 4.x does not :-(
6812 }
6818 }
6819 }
6820 }
6823 }
6824 }
6825 }
6827 }
6834 }
6835 // Set up default theme and locale
6839 //clear session cookies
6841 setcookie('MoodleSessionTest'.$CFG->sessioncookie, '', time() - 3600, $CFG->sessioncookiepath);
6842 //increment database error counters
6847 }
6849 }
6852 /**
6853 * Detect if an object or a class contains a given property
6854 * will take an actual object or the name of a class
6855 * @param mix $obj Name of class or real object to test
6856 * @param string $property name of property to find
6857 * @return bool true if property exists
6858 */
6862 }
6865 }
6867 }
6870 /**
6871 * Detect a custom script replacement in the data directory that will
6872 * replace an existing moodle script
6873 * @param string $urlpath path to the original script
6874 * @return string full path name if a custom script exists
6875 * @return bool false if no custom script exists
6876 */
6880 // set default $urlpath, if necessary
6883 }
6885 // $urlpath is invalid if it is empty or does not start with the Moodle wwwroot
6888 }
6890 // replace wwwroot with the path to the customscripts folder and clean path
6891 $scriptpath = $CFG->customscripts . clean_param(substr($urlpath, strlen($CFG->wwwroot)), PARAM_PATH);
6893 // remove the query string, if any
6896 }
6898 // remove trailing slashes, if any
6901 // append index.php, if necessary
6904 }
6906 // check the custom script exists
6911 }
6912 }
6914 /**
6915 * Wrapper function to load necessary editor scripts
6916 * to $CFG->editorsrc array. Params can be coursei id
6917 * or associative array('courseid' => value, 'name' => 'editorname').
6918 * @uses $CFG
6919 * @param mixed $args Courseid or associative array.
6920 */
6925 }
6927 /**
6928 * Returns whether or not the user object is a remote MNET user. This function
6929 * is in moodlelib because it does not rely on loading any of the MNET code.
6930 *
6931 * @param object $user A valid user object
6932 * @return bool True if the user is from a remote Moodle.
6933 */
6942 }
6945 }
6947 /**
6948 * Checks if a given plugin is in the list of enabled enrolment plugins.
6949 *
6950 * @param string $auth Enrolment plugin.
6951 * @return boolean Whether the plugin is enabled.
6952 */
6956 // use the global default if not specified
6959 }
6961 }
6963 /**
6964 * This function will search for browser prefereed languages, setting Moodle
6965 * to use the best one available if $SESSION->lang is undefined
6966 */
6972 // Lang is defined in session or user profile, nothing to do
6974 }
6976 if (!isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])) { // There isn't list of browser langs, nothing to do
6978 }
6980 /// Extract and clean langs from headers
6995 }
6996 }
7001 /// Look for such langs under standard locations
7003 $lang = strtolower(clean_param($lang.'_utf8', PARAM_SAFEDIR)); // clean it properly for include
7006 }
7007 if (file_exists($CFG->dataroot .'/lang/'. $lang) or file_exists($CFG->dirroot .'/lang/'. $lang)) {
7010 }
7011 }
7013 }
7016 ////////////////////////////////////////////////////////////////////////////////
7017 /**
7018 * This function will build the navigation string to be used by print_header
7019 * and others
7020 * @uses $CFG
7021 * @uses $THEME
7022 * @param $extrabreadcrumbs - array of associative arrays, keys: name, link, type
7023 * @return $navigation as an object so it can be differentiated from old style
7024 * navigation strings.
7025 */
7031 //Site name
7033 $breadcrumbs[] = array('name' => format_string($site->shortname), 'link' => "$CFG->wwwroot/", 'type' => 'home');
7034 }
7039 //Course
7040 $breadcrumbs[] = array('name' => format_string($COURSE->shortname), 'link' => "$CFG->wwwroot/course/view.php?id=$COURSE->id",'type' => 'course');
7041 }
7042 }
7044 //Merge in extra bread crumbs
7047 //Construct an unordered list from $breadcrumbs
7048 //Accessibility: heading hidden from visual browsers by default.
7054 // Check the link type to see if this link should appear in the trail
7055 if ($breadcrumbs[$i]['type'] == 'activity' && $i+1 < $countcrumb && ($CFG->hideactivitytypecrumb == 2 || ($CFG->hideactivitytypecrumb == 1 && !has_capability('moodle/course:manageactivities', get_context_instance(CONTEXT_COURSE, $course->id))))) {
7057 }
7061 }
7063 $navigation .= "<a onclick=\"this.target='$CFG->framename'\" href=\"{$breadcrumbs[$i]['link']}\">";
7064 }
7068 }
7071 }
7076 }
7083 }
7084 }
7086 /**
7087 * Checks whether the given variable name is defined as a variable within the given object.
7088 * @note This will NOT work with stdClass objects, which have no class variables.
7089 * @param string $var The variable name
7090 * @param object $object The object to check
7091 * @return boolean
7092 */
7094 {
7098 }
7100 // vim:autoindent:expandtab:shiftwidth=4:tabstop=4:tw=140:
7101 ?>