| blob | d22c8dad008322aef187132b1e899f4627e5f0a1 |
1 <?php
2 // This file is part of Moodle - http://moodle.org/
3 //
4 // Moodle is free software: you can redistribute it and/or modify
5 // it under the terms of the GNU General Public License as published by
6 // the Free Software Foundation, either version 3 of the License, or
7 // (at your option) any later version.
8 //
9 // Moodle is distributed in the hope that it will be useful,
10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 // GNU General Public License for more details.
13 //
14 // You should have received a copy of the GNU General Public License
15 // along with Moodle. If not, see <http://www.gnu.org/licenses/>.
17 /**
18 * moodlelib.php - Moodle main library
19 *
20 * Main library file of miscellaneous general-purpose Moodle functions.
21 * Other main libraries:
22 * - weblib.php - functions that produce web output
23 * - datalib.php - functions that access the database
24 *
25 * @package core
26 * @subpackage lib
27 * @copyright 1999 onwards Martin Dougiamas http://dougiamas.com
28 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
29 */
33 // CONSTANTS (Encased in phpdoc proper comments).
35 // Date and time constants.
36 /**
37 * Time constant - the number of seconds in a year
38 */
41 /**
42 * Time constant - the number of seconds in a week
43 */
46 /**
47 * Time constant - the number of seconds in a day
48 */
51 /**
52 * Time constant - the number of seconds in an hour
53 */
56 /**
57 * Time constant - the number of seconds in a minute
58 */
61 /**
62 * Time constant - the number of minutes in a day
63 */
66 /**
67 * Time constant - the number of minutes in an hour
68 */
71 // Parameter constants - every call to optional_param(), required_param()
72 // or clean_param() should have a specified type of parameter.
74 /**
75 * PARAM_ALPHA - contains only English ascii letters [a-zA-Z].
76 */
79 /**
80 * PARAM_ALPHAEXT the same contents as PARAM_ALPHA (English ascii letters [a-zA-Z]) plus the chars in quotes: "_-" allowed
81 * NOTE: originally this allowed "/" too, please use PARAM_SAFEPATH if "/" needed
82 */
85 /**
86 * PARAM_ALPHANUM - expected numbers 0-9 and English ascii letters [a-zA-Z] only.
87 */
90 /**
91 * PARAM_ALPHANUMEXT - expected numbers 0-9, letters (English ascii letters [a-zA-Z]) and _- only.
92 */
95 /**
96 * PARAM_AUTH - actually checks to make sure the string is a valid auth plugin
97 */
100 /**
101 * PARAM_BASE64 - Base 64 encoded format
102 */
105 /**
106 * PARAM_BOOL - converts input into 0 or 1, use for switches in forms and urls.
107 */
110 /**
111 * PARAM_CAPABILITY - A capability name, like 'moodle/role:manage'. Actually
112 * checked against the list of capabilities in the database.
113 */
116 /**
117 * PARAM_CLEANHTML - cleans submitted HTML code. Note that you almost never want
118 * to use this. The normal mode of operation is to use PARAM_RAW when receiving
119 * the input (required/optional_param or formslib) and then sanitise the HTML
120 * using format_text on output. This is for the rare cases when you want to
121 * sanitise the HTML on input. This cleaning may also fix xhtml strictness.
122 */
125 /**
126 * PARAM_EMAIL - an email address following the RFC
127 */
130 /**
131 * PARAM_FILE - safe file name, all dangerous chars are stripped, protects against XSS, SQL injections and directory traversals
132 */
135 /**
136 * PARAM_FLOAT - a real/floating point number.
137 *
138 * Note that you should not use PARAM_FLOAT for numbers typed in by the user.
139 * It does not work for languages that use , as a decimal separator.
140 * Use PARAM_LOCALISEDFLOAT instead.
141 */
144 /**
145 * PARAM_LOCALISEDFLOAT - a localised real/floating point number.
146 * This is preferred over PARAM_FLOAT for numbers typed in by the user.
147 * Cleans localised numbers to computer readable numbers; false for invalid numbers.
148 */
151 /**
152 * PARAM_HOST - expected fully qualified domain name (FQDN) or an IPv4 dotted quad (IP address)
153 */
156 /**
157 * PARAM_INT - integers only, use when expecting only numbers.
158 */
161 /**
162 * PARAM_LANG - checks to see if the string is a valid installed language in the current site.
163 */
166 /**
167 * PARAM_LOCALURL - expected properly formatted URL as well as one that refers to the local server itself. (NOT orthogonal to the
168 * others! Implies PARAM_URL!)
169 */
172 /**
173 * PARAM_NOTAGS - all html tags are stripped from the text. Do not abuse this type.
174 */
177 /**
178 * PARAM_PATH - safe relative path name, all dangerous chars are stripped, protects against XSS, SQL injections and directory
179 * traversals note: the leading slash is not removed, window drive letter is not allowed
180 */
183 /**
184 * PARAM_PEM - Privacy Enhanced Mail format
185 */
188 /**
189 * PARAM_PERMISSION - A permission, one of CAP_INHERIT, CAP_ALLOW, CAP_PREVENT or CAP_PROHIBIT.
190 */
193 /**
194 * PARAM_RAW specifies a parameter that is not cleaned/processed in any way except the discarding of the invalid utf-8 characters
195 */
198 /**
199 * PARAM_RAW_TRIMMED like PARAM_RAW but leading and trailing whitespace is stripped.
200 */
203 /**
204 * PARAM_SAFEDIR - safe directory name, suitable for include() and require()
205 */
208 /**
209 * PARAM_SAFEPATH - several PARAM_SAFEDIR joined by "/", suitable for include() and require(), plugin paths
210 * and other references to Moodle code files.
211 *
212 * This is NOT intended to be used for absolute paths or any user uploaded files.
213 */
216 /**
217 * PARAM_SEQUENCE - expects a sequence of numbers like 8 to 1,5,6,4,6,8,9. Numbers and comma only.
218 */
221 /**
222 * PARAM_TAG - one tag (interests, blogs, etc.) - mostly international characters and space, <> not supported
223 */
226 /**
227 * PARAM_TAGLIST - list of tags separated by commas (interests, blogs, etc.)
228 */
231 /**
232 * PARAM_TEXT - general plain text compatible with multilang filter, no other html tags. Please note '<', or '>' are allowed here.
233 */
236 /**
237 * PARAM_THEME - Checks to see if the string is a valid theme name in the current site
238 */
241 /**
242 * PARAM_URL - expected properly formatted URL. Please note that domain part is required, http://localhost/ is not accepted but
243 * http://localhost.localdomain/ is ok.
244 */
247 /**
248 * PARAM_USERNAME - Clean username to only contains allowed characters. This is to be used ONLY when manually creating user
249 * accounts, do NOT use when syncing with external systems!!
250 */
253 /**
254 * PARAM_STRINGID - used to check if the given string is valid string identifier for get_string()
255 */
258 // DEPRECATED PARAM TYPES OR ALIASES - DO NOT USE FOR NEW CODE.
259 /**
260 * PARAM_CLEAN - obsoleted, please use a more specific type of parameter.
261 * It was one of the first types, that is why it is abused so much ;-)
262 * @deprecated since 2.0
263 */
266 /**
267 * PARAM_INTEGER - deprecated alias for PARAM_INT
268 * @deprecated since 2.0
269 */
272 /**
273 * PARAM_NUMBER - deprecated alias of PARAM_FLOAT
274 * @deprecated since 2.0
275 */
278 /**
279 * PARAM_ACTION - deprecated alias for PARAM_ALPHANUMEXT, use for various actions in forms and urls
280 * NOTE: originally alias for PARAM_APLHA
281 * @deprecated since 2.0
282 */
285 /**
286 * PARAM_FORMAT - deprecated alias for PARAM_ALPHANUMEXT, use for names of plugins, formats, etc.
287 * NOTE: originally alias for PARAM_APLHA
288 * @deprecated since 2.0
289 */
292 /**
293 * PARAM_MULTILANG - deprecated alias of PARAM_TEXT.
294 * @deprecated since 2.0
295 */
298 /**
299 * PARAM_TIMEZONE - expected timezone. Timezone can be int +-(0-13) or float +-(0.5-12.5) or
300 * string separated by '/' and can have '-' &/ '_' (eg. America/North_Dakota/New_Salem
301 * America/Port-au-Prince)
302 */
305 /**
306 * PARAM_CLEANFILE - deprecated alias of PARAM_FILE; originally was removing regional chars too
307 */
310 /**
311 * PARAM_COMPONENT is used for full component names (aka frankenstyle) such as 'mod_forum', 'core_rating', 'auth_ldap'.
312 * Short legacy subsystem names and module names are accepted too ex: 'forum', 'rating', 'user'.
313 * Only lowercase ascii letters, numbers and underscores are allowed, it has to start with a letter.
314 * NOTE: numbers and underscores are strongly discouraged in plugin names!
315 */
318 /**
319 * PARAM_AREA is a name of area used when addressing files, comments, ratings, etc.
320 * It is usually used together with context id and component.
321 * Only lowercase ascii letters, numbers and underscores are allowed, it has to start with a letter.
322 */
325 /**
326 * PARAM_PLUGIN is used for plugin names such as 'forum', 'glossary', 'ldap', 'paypal', 'completionstatus'.
327 * Only lowercase ascii letters, numbers and underscores are allowed, it has to start with a letter.
328 * NOTE: numbers and underscores are strongly discouraged in plugin names! Underscores are forbidden in module names.
329 */
333 // Web Services.
335 /**
336 * VALUE_REQUIRED - if the parameter is not supplied, there is an error
337 */
340 /**
341 * VALUE_OPTIONAL - if the parameter is not supplied, then the param has no value
342 */
345 /**
346 * VALUE_DEFAULT - if the parameter is not supplied, then the default value is used
347 */
350 /**
351 * NULL_NOT_ALLOWED - the parameter can not be set to null in the database
352 */
355 /**
356 * NULL_ALLOWED - the parameter can be set to null in the database
357 */
360 // Page types.
362 /**
363 * PAGE_COURSE_VIEW is a definition of a page type. For more information on the page class see moodle/lib/pagelib.php.
364 */
367 /** Get remote addr constant */
369 /** Get remote addr constant */
371 /**
372 * GETREMOTEADDR_SKIP_DEFAULT defines the default behavior remote IP address validation.
373 */
374 define('GETREMOTEADDR_SKIP_DEFAULT', GETREMOTEADDR_SKIP_HTTP_X_FORWARDED_FOR|GETREMOTEADDR_SKIP_HTTP_CLIENT_IP);
376 // Blog access level constant declaration.
384 // Tag constants.
385 /**
386 * To prevent problems with multibytes strings,Flag updating in nav not working on the review page. this should not exceed the
387 * length of "varchar(255) / 3 (bytes / utf-8 character) = 85".
388 * TODO: this is not correct, varchar(255) are 255 unicode chars ;-)
389 *
390 * @todo define(TAG_MAX_LENGTH) this is not correct, varchar(255) are 255 unicode chars ;-)
391 */
394 // Password policy constants.
400 // Feature constants.
401 // Used for plugin_supports() to report features that are, or are not, supported by a module.
403 /** True if module can provide a grade */
405 /** True if module supports outcomes */
407 /** True if module supports advanced grading methods */
409 /** True if module controls the grade visibility over the gradebook */
411 /** True if module supports plagiarism plugins */
414 /** True if module has code to track whether somebody viewed it */
416 /** True if module has custom completion rules */
419 /** True if module has no 'view' page (like label) */
421 /** True (which is default) if the module wants support for setting the ID number for grade calculation purposes. */
423 /** True if module supports groups */
425 /** True if module supports groupings */
427 /**
428 * True if module supports groupmembersonly (which no longer exists)
429 * @deprecated Since Moodle 2.8
430 */
433 /** Type of module */
435 /** True if module supports intro editor */
437 /** True if module has default completion */
443 /** True if module supports backup/restore of moodle2 format */
446 /** True if module can show description on course main page */
449 /** True if module uses the question bank */
452 /**
453 * Maximum filename char size
454 */
457 /** Unspecified module archetype */
459 /** Resource-like type module */
461 /** Assignment module archetype */
463 /** System (not user-addable) module archetype */
466 /** Type of module */
468 /** Module purpose administration */
470 /** Module purpose assessment */
472 /** Module purpose communication */
474 /** Module purpose communication */
476 /** Module purpose content */
478 /** Module purpose interface */
480 /** Module purpose other */
483 /**
484 * Security token used for allowing access
485 * from external application such as web services.
486 * Scripts do not use any session, performance is relatively
487 * low because we need to load access info in each request.
488 * Scripts are executed in parallel.
489 */
492 /**
493 * Security token used for allowing access
494 * of embedded applications, the code is executed in the
495 * active user session. Token is invalidated after user logs out.
496 * Scripts are executed serially - normal session locking is used.
497 */
500 /**
501 * The home page should be the site home
502 */
504 /**
505 * The home page should be the users my page
506 */
508 /**
509 * The home page can be chosen by the user
510 */
512 /**
513 * The home page should be the users my courses page
514 */
517 /**
518 * URL of the Moodle sites registration portal.
519 */
522 /**
523 * URL of the statistic server public key.
524 */
525 defined('HUB_STATSPUBLICKEY') || define('HUB_STATSPUBLICKEY', 'https://moodle.org/static/statspubkey.pem');
527 /**
528 * Moodle mobile app service name
529 */
532 /**
533 * Indicates the user has the capabilities required to ignore activity and course file size restrictions
534 */
537 /**
538 * Course display settings: display all sections on one page.
539 */
541 /**
542 * Course display settings: split pages into a page per section.
543 */
546 /**
547 * Authentication constant: String used in password field when password is not stored.
548 */
551 /**
552 * Email from header to never include via information.
553 */
556 /**
557 * Email from header to always include via information.
558 */
561 /**
562 * Email from header to only include via information if the address is no-reply.
563 */
566 /**
567 * Contact site support form/link disabled.
568 */
571 /**
572 * Contact site support form/link only available to authenticated users.
573 */
576 /**
577 * Contact site support form/link available to anyone visiting the site.
578 */
581 // PARAMETER HANDLING.
583 /**
584 * Returns a particular value for the named variable, taken from
585 * POST or GET. If the parameter doesn't exist then an error is
586 * thrown because we require this variable.
587 *
588 * This function should be used to initialise all required values
589 * in a script that are based on parameters. Usually it will be
590 * used like this:
591 * $id = required_param('id', PARAM_INT);
592 *
593 * Please note the $type parameter is now required and the value can not be array.
594 *
595 * @param string $parname the name of the page parameter we want
596 * @param string $type expected type of parameter
597 * @return mixed
598 * @throws coding_exception
599 */
602 throw new coding_exception('required_param() requires $parname and $type to be specified (parameter: '.$parname.')');
603 }
604 // POST has precedence.
611 }
615 // TODO: switch to fatal error in Moodle 2.3.
617 }
620 }
622 /**
623 * Returns a particular array value for the named variable, taken from
624 * POST or GET. If the parameter doesn't exist then an error is
625 * thrown because we require this variable.
626 *
627 * This function should be used to initialise all required values
628 * in a script that are based on parameters. Usually it will be
629 * used like this:
630 * $ids = required_param_array('ids', PARAM_INT);
631 *
632 * Note: arrays of arrays are not supported, only alphanumeric keys with _ and - are supported
633 *
634 * @param string $parname the name of the page parameter we want
635 * @param string $type expected type of parameter
636 * @return array
637 * @throws coding_exception
638 */
641 throw new coding_exception('required_param_array() requires $parname and $type to be specified (parameter: '.$parname.')');
642 }
643 // POST has precedence.
650 }
653 }
658 debugging('Invalid key name in required_param_array() detected: '.$key.', parameter: '.$parname);
660 }
662 }
665 }
667 /**
668 * Returns a particular value for the named variable, taken from
669 * POST or GET, otherwise returning a given default.
670 *
671 * This function should be used to initialise all optional values
672 * in a script that are based on parameters. Usually it will be
673 * used like this:
674 * $name = optional_param('name', 'Fred', PARAM_TEXT);
675 *
676 * Please note the $type parameter is now required and the value can not be array.
677 *
678 * @param string $parname the name of the page parameter we want
679 * @param mixed $default the default value to return if nothing is found
680 * @param string $type expected type of parameter
681 * @return mixed
682 * @throws coding_exception
683 */
686 throw new coding_exception('optional_param requires $parname, $default + $type to be specified (parameter: '.$parname.')');
687 }
689 // POST has precedence.
696 }
700 // TODO: switch to $default in Moodle 2.3.
702 }
705 }
707 /**
708 * Returns a particular array value for the named variable, taken from
709 * POST or GET, otherwise returning a given default.
710 *
711 * This function should be used to initialise all optional values
712 * in a script that are based on parameters. Usually it will be
713 * used like this:
714 * $ids = optional_param('id', array(), PARAM_INT);
715 *
716 * Note: arrays of arrays are not supported, only alphanumeric keys with _ and - are supported
717 *
718 * @param string $parname the name of the page parameter we want
719 * @param mixed $default the default value to return if nothing is found
720 * @param string $type expected type of parameter
721 * @return array
722 * @throws coding_exception
723 */
726 throw new coding_exception('optional_param_array requires $parname, $default + $type to be specified (parameter: '.$parname.')');
727 }
729 // POST has precedence.
736 }
740 }
745 debugging('Invalid key name in optional_param_array() detected: '.$key.', parameter: '.$parname);
747 }
749 }
752 }
754 /**
755 * Strict validation of parameter values, the values are only converted
756 * to requested PHP type. Internally it is using clean_param, the values
757 * before and after cleaning must be equal - otherwise
758 * an invalid_parameter_exception is thrown.
759 * Objects and classes are not accepted.
760 *
761 * @param mixed $param
762 * @param string $type PARAM_ constant
763 * @param bool $allownull are nulls valid value?
764 * @param string $debuginfo optional debug information
765 * @return mixed the $param value converted to PHP type
766 * @throws invalid_parameter_exception if $param is not of given type
767 */
774 }
775 }
778 }
783 // Do not detect precision loss here.
785 // These always fit.
786 } else if (!is_numeric($param) or !preg_match('/^[\+-]?[0-9]*\.?[0-9]*(e[-+]?[0-9]+)?$/i', (string)$param)) {
788 }
790 // Conversion to string is usually lossless.
792 }
795 }
797 /**
798 * Makes sure array contains only the allowed types, this function does not validate array key names!
799 *
800 * <code>
801 * $options = clean_param($options, PARAM_INT);
802 * </code>
803 *
804 * @param array|null $param the variable array we are cleaning
805 * @param string $type expected format of param after cleaning.
806 * @param bool $recursive clean recursive arrays
807 * @return array
808 * @throws coding_exception
809 */
811 // Convert null to empty array.
818 throw new coding_exception('clean_param_array can not process multidimensional arrays when $recursive is false.');
819 }
822 }
823 }
825 }
827 /**
828 * Used by {@link optional_param()} and {@link required_param()} to
829 * clean the variables and/or cast to specific types, based on
830 * an options field.
831 * <code>
832 * $course->format = clean_param($course->format, PARAM_ALPHA);
833 * $selectedgradeitem = clean_param($selectedgradeitem, PARAM_INT);
834 * </code>
835 *
836 * @param mixed $param the variable we are cleaning
837 * @param string $type expected format of param after cleaning.
838 * @return mixed
839 * @throws coding_exception
840 */
845 throw new coding_exception('clean_param() can not process arrays, please use clean_param_array() instead.');
850 throw new coding_exception('clean_param() can not process objects, please use clean_param_array() instead.');
851 }
852 }
856 // No cleaning at all.
861 // No cleaning, but strip leading and trailing whitespace.
866 // General HTML cleaning, try to use more specific type if possible this is deprecated!
867 // Please use more specific type instead.
870 }
872 // Sweep for scripts, etc.
876 // Clean html fragment.
878 // Sweep for scripts, etc.
883 // Convert to integer.
887 // Convert to float.
891 // Convert to float.
895 // Remove everything not `a-z`.
899 // Remove everything not `a-zA-Z_-` (originally allowed "/" too).
903 // Remove everything not `a-zA-Z0-9`.
907 // Remove everything not `a-zA-Z0-9_-`.
911 // Remove everything not `0-9,`.
915 // Convert to 1 or 0.
923 }
927 // Strip all tags.
932 // Leave only tags needed for multilang.
934 // If the multilang syntax is not correct we strip all tags because it would break xhtml strict which is required
935 // for accessibility standards please note this cleaning does not strip unbalanced '>' for BC compatibility reasons.
938 // Old and future mutilang syntax.
942 }
951 }
952 }
957 }
958 }
961 }
965 // Current problematic multilang syntax.
969 }
978 }
979 }
984 }
985 }
988 }
990 }
992 // Easy, just strip all tags, if we ever want to fix orphaned '&' we have to do that in format_string().
996 // We do not want any guessing here, either the name is correct or not
997 // please note only normalised component names are accepted.
1001 }
1004 }
1006 // Module names must not contain underscores because we need to differentiate them from invalid plugin types.
1009 }
1010 }
1015 // We do not want any guessing here, either the name is correct or not.
1018 }
1022 // Remove everything not a-zA-Z0-9_- .
1026 // Remove everything not a-zA-Z0-9/_- .
1030 // Strip all suspicious characters from filename.
1035 }
1039 // Strip all suspicious characters from file path.
1043 // Explode the path and clean each element using the PARAM_FILE rules.
1047 // Special condition to allow for relative current path such as ./currentdirfile.txt.
1050 }
1052 }
1055 // Remove multiple current path (./././) and multiple slashes (///).
1061 // Allow FQDN or IPv4 dotted quad.
1063 // Match ipv4 dotted quad.
1065 // Confirm values are ok.
1070 // Hmmm, what kind of dotted quad is this?
1072 }
1076 ) {
1077 // All is ok - $param is respected.
1079 // All is not ok...
1081 }
1085 // Allow safe urls.
1089 // All is ok, param is respected.
1091 // Not really ok.
1093 }
1097 // Allow http absolute, root relative and relative URLs within wwwroot.
1102 // Exact match;
1104 // Root-relative, ok!
1106 // Absolute, and matches our wwwroot.
1109 // Relative - let's make sure there are no tricks.
1110 if (validateUrlSyntax('/' . $param, 's-u-P-a-p-f+q?r?') && !preg_match('/javascript:/i', $param)) {
1111 // Looks ok.
1114 }
1115 }
1116 }
1121 // PEM formatted strings may contain letters/numbers and the symbols:
1122 // forward slash: /
1123 // plus sign: +
1124 // equal sign: =
1125 // , surrounded by BEGIN and END CERTIFICATE prefix and suffixes.
1126 if (preg_match('/^-----BEGIN CERTIFICATE-----([\s\w\/\+=]+)-----END CERTIFICATE-----$/', trim($param), $matches)) {
1134 }
1135 }
1140 // PEM formatted strings may contain letters/numbers and the symbols
1141 // forward slash: /
1142 // plus sign: +
1143 // equal sign: =.
1146 }
1148 // Each line of base64 encoded data must be 64 characters in length, except for the last line which may be less
1149 // than (or equal to) 64 characters long.
1154 }
1156 }
1160 }
1161 }
1165 }
1169 // Please note it is not safe to use the tag name directly anywhere,
1170 // it must be processed with s(), urlencode() before embedding anywhere.
1171 // Remove some nasties.
1173 // Convert many whitespace chars into one.
1186 }
1187 }
1192 }
1199 }
1207 }
1217 }
1224 // Specified language is not installed or param malformed.
1226 }
1237 // Specified theme is not installed.
1239 }
1244 // Convert uppercase to lowercase MDL-16919.
1248 // Regular expression, eliminate all chars EXCEPT:
1249 // alphanum, dash (-), underscore (_), at sign (@) and period (.) characters.
1251 }
1260 }
1267 }
1270 // Can be int, float(with .5 or .0) or string seperated by '/' and can have '-_'.
1272 $timezonepattern = '/^(([+-]?(0?[0-9](\.[5|0])?|1[0-3](\.0)?|1[0-2]\.5))|(99)|[[:alnum:]]+(\/?[[:alpha:]_-])+)$/';
1277 }
1280 // Doh! throw error, switched parameters in optional_param or another serious problem.
1282 }
1283 }
1285 /**
1286 * Whether the PARAM_* type is compatible in RTL.
1287 *
1288 * Being compatible with RTL means that the data they contain can flow
1289 * from right-to-left or left-to-right without compromising the user experience.
1290 *
1291 * Take URLs for example, they are not RTL compatible as they should always
1292 * flow from the left to the right. This also applies to numbers, email addresses,
1293 * configuration snippets, base64 strings, etc...
1294 *
1295 * This function tries to best guess which parameters can contain localised strings.
1296 *
1297 * @param string $paramtype Constant PARAM_*.
1298 * @return bool
1299 */
1302 }
1304 /**
1305 * Makes sure the data is using valid utf8, invalid characters are discarded.
1306 *
1307 * Note: this function is not intended for full objects with methods and private properties.
1308 *
1309 * @param mixed $value
1310 * @return mixed with proper utf-8 encoding
1311 */
1318 // Shortcut.
1320 }
1321 // No null bytes expected in our data, so let's remove it.
1324 // Note: this duplicates min_fix_utf8() intentionally.
1327 $buggyiconv = (!function_exists('iconv') or @iconv('UTF-8', 'UTF-8//IGNORE', '100'.chr(130).'€') !== '100€');
1328 }
1338 // Warn admins on admin/index.php page.
1340 }
1344 }
1351 }
1355 // Do not modify original.
1359 }
1363 // This is some other type, no utf-8 here.
1365 }
1366 }
1368 /**
1369 * Return true if given value is integer or string with integer value
1370 *
1371 * @param mixed $value String or Int
1372 * @return bool true if number, false if not
1373 */
1381 }
1382 }
1384 /**
1385 * Returns host part from url.
1386 *
1387 * @param string $url full url
1388 * @return string host, null if not found
1389 */
1394 }
1396 }
1398 /**
1399 * Tests whether anything was returned by text editor
1400 *
1401 * This function is useful for testing whether something you got back from
1402 * the HTML editor actually contains anything. Sometimes the HTML editor
1403 * appear to be empty, but actually you get back a <br> tag or something.
1404 *
1405 * @param string $string a string containing HTML.
1406 * @return boolean does the string contain any actual content - that is text,
1407 * images, objects, etc.
1408 */
1410 return trim(strip_tags((string)$string, '<img><object><applet><input><select><textarea><hr>')) == '';
1411 }
1413 /**
1414 * Set a key in global configuration
1415 *
1416 * Set a key/value pair in both this session's {@link $CFG} global variable
1417 * and in the 'config' database table for future sessions.
1418 *
1419 * Can also be used to update keys for plugin-scoped configs in config_plugin table.
1420 * In that case it doesn't affect $CFG.
1421 *
1422 * A NULL value will delete the entry.
1423 *
1424 * NOTE: this function is called from lib/db/upgrade.php
1425 *
1426 * @param string $name the key to set
1427 * @param string $value the value to set (without magic quotes)
1428 * @param string $plugin (optional) the plugin scope, default null
1429 * @return bool true or exception
1430 */
1434 // Redirect to appropriate handler when value is null.
1437 }
1439 // Set variables determining conditions and where to store the new config.
1440 // Plugin config goes to {config_plugins}, core config goes to {config}.
1443 // If it's for core config.
1448 // If it's a plugin.
1452 }
1454 // DB handling - checks for existing config, updating or inserting only if necessary.
1459 // Inserts a new config record.
1465 }
1468 // Record exists - Check and only set new value if it has changed.
1470 }
1473 // So it's defined for this invocation at least.
1474 // Settings from db are always strings.
1476 }
1478 // When setting config during a Behat test (in the CLI script, not in the web browser
1479 // requests), remember which ones are set so that we can clear them later.
1482 }
1484 // Update siteidentifier cache, if required.
1487 }
1489 // Invalidate cache, if required.
1492 }
1495 }
1497 /**
1498 * Get configuration values from the global config table
1499 * or the config_plugins table.
1500 *
1501 * If called with one parameter, it will load all the config
1502 * variables for one plugin, and return them as an object.
1503 *
1504 * If called with 2 parameters it will return a string single
1505 * value or false if the value is not found.
1506 *
1507 * NOTE: this function is called from lib/db/upgrade.php
1508 *
1509 * @param string $plugin full component name
1510 * @param string $name default null
1511 * @return mixed hash-like object or single value, return false no config found
1512 * @throws dml_exception
1513 */
1526 }
1528 }
1532 // This may throw an exception during installation, which is how we detect the
1533 // need to install the database. For more details see {@see initialise_cfg()}.
1536 // Set siteidentifier to false. We don't want to trip this continually.
1539 }
1540 }
1547 }
1548 }
1553 // The user is after a recordset.
1555 $result = $DB->get_records_menu('config_plugins', array('plugin' => $plugin), '', 'name,value');
1557 // This part is not really used any more, but anyway...
1559 }
1561 }
1566 }
1568 }
1572 }
1576 // We do not want any extra mess here, just real settings that could be saved in db.
1579 // Convert to string as if it went through the DB.
1581 }
1582 }
1585 }
1587 /**
1588 * Removes a key from global configuration.
1589 *
1590 * NOTE: this function is called from lib/db/upgrade.php
1591 *
1592 * @param string $name the key to set
1593 * @param string $plugin (optional) the plugin scope
1594 * @return boolean whether the operation succeeded.
1595 */
1606 }
1609 }
1611 /**
1612 * Remove all the config variables for a given plugin.
1613 *
1614 * NOTE: this function is called from lib/db/upgrade.php
1615 *
1616 * @param string $plugin a plugin, for example 'quiz' or 'qtype_multichoice';
1617 * @return boolean whether the operation succeeded.
1618 */
1621 // Delete from the obvious config_plugins first.
1623 // Next delete any suspect settings from config.
1627 // Finally clear both the plugin cache and the core cache (suspect settings now removed from core).
1631 }
1633 /**
1634 * Use this function to get a list of users from a config setting of type admin_setting_users_with_capability.
1635 *
1636 * All users are verified if they still have the necessary capability.
1637 *
1638 * @param string $value the value of the config setting.
1639 * @param string $capability the capability - must match the one passed to the admin_setting_users_with_capability constructor.
1640 * @param bool $includeadmins include administrators.
1641 * @return array of user objects.
1642 */
1646 }
1648 // We have to make sure that users still have the necessary capability,
1649 // it should be faster to fetch them all first and then test if they are present
1650 // instead of validating them one-by-one.
1656 }
1657 }
1661 }
1669 }
1670 }
1673 }
1676 /**
1677 * Invalidates browser caches and cached data in temp.
1678 *
1679 * @return void
1680 */
1683 }
1685 /**
1686 * Selectively invalidate different types of cache.
1687 *
1688 * Purges the cache areas specified. By default, this will purge all caches but can selectively purge specific
1689 * areas alone or in combination.
1690 *
1691 * @param bool[] $options Specific parts of the cache to purge. Valid options are:
1692 * 'muc' Purge MUC caches?
1693 * 'theme' Purge theme cache?
1694 * 'lang' Purge language string cache?
1695 * 'js' Purge javascript cache?
1696 * 'filter' Purge text filter cache?
1697 * 'other' Purge all other caches?
1698 */
1700 $defaults = array_fill_keys(['muc', 'theme', 'lang', 'js', 'template', 'filter', 'other'], false);
1704 $options = array_merge($defaults, array_intersect_key($options, $defaults)); // Override defaults with specified options.
1705 }
1708 }
1711 }
1714 }
1717 }
1720 }
1723 }
1726 }
1727 }
1729 /**
1730 * Purge all non-MUC caches not otherwise purged in purge_caches.
1731 *
1732 * IMPORTANT - If you are adding anything here to do with the cache directory you should also have a look at
1733 * {@link phpunit_util::reset_dataroot()}
1734 */
1739 }
1741 // Bump up cacherev field for all courses.
1745 // Ignore exception since this function is also called before upgrade script when field course.cacherev does not exist yet.
1746 }
1750 // Purge all other caches: rss, simplepie, etc.
1754 // Make sure cache dir is writable, throws exception if not.
1757 // This is the only place where we purge local caches, we are only adding files there.
1758 // The $CFG->localcachedirpurged flag forces local directories to be purged on cluster nodes.
1763 }
1765 /**
1766 * Get volatile flags
1767 *
1768 * @param string $type
1769 * @param int $changedsince default null
1770 * @return array records array
1771 */
1780 }
1785 }
1786 }
1788 }
1790 /**
1791 * Get volatile flags
1792 *
1793 * @param string $type
1794 * @param string $name
1795 * @param int $changedsince default null
1796 * @return string|false The cache flag value or false
1797 */
1807 }
1810 }
1812 /**
1813 * Set a volatile flag
1814 *
1815 * @param string $type the "type" namespace for the key
1816 * @param string $name the key to set
1817 * @param string $value the value to set (without magic quotes) - null will remove the flag
1818 * @param int $expiry (optional) epoch indicating expiry - defaults to now()+ 24hs
1819 * @return bool Always returns true
1820 */
1829 }
1834 }
1836 if ($f = $DB->get_record('cache_flags', array('name' => $name, 'flagtype' => $type), '*', IGNORE_MULTIPLE)) {
1837 // This is a potential problem in DEBUG_DEVELOPER.
1840 }
1853 }
1855 }
1857 /**
1858 * Removes a single volatile flag
1859 *
1860 * @param string $type the "type" namespace for the key
1861 * @param string $name the key to set
1862 * @return bool
1863 */
1868 }
1870 /**
1871 * Garbage-collect volatile flags
1872 *
1873 * @return bool Always returns true
1874 */
1879 }
1881 // USER PREFERENCE API.
1883 /**
1884 * Refresh user preference cache. This is used most often for $USER
1885 * object that is stored in session, but it also helps with performance in cron script.
1886 *
1887 * Preferences for each user are loaded on first use on every page, then again after the timeout expires.
1888 *
1889 * @package core
1890 * @category preference
1891 * @access public
1892 * @param stdClass $user User object. Preferences are preloaded into 'preference' property
1893 * @param int $cachelifetime Cache life time on the current page (in seconds)
1894 * @throws coding_exception
1895 * @return null
1896 */
1899 // Static cache, we need to check on each page load, not only every 2 minutes.
1903 throw new coding_exception('Invalid $user parameter in check_user_preferences_loaded() call, missing id field');
1904 }
1907 // No permanent storage for not-logged-in users and guest.
1910 }
1912 }
1916 if (isset($loadedusers[$user->id]) and isset($user->preference) and isset($user->preference['_lastloaded'])) {
1917 // Already loaded at least once on this page. Are we up to date?
1919 // No need to reload - we are on the same page and we loaded prefs just a moment ago.
1922 } else if (!get_cache_flag('userpreferenceschanged', $user->id, $user->preference['_lastloaded'])) {
1923 // No change since the lastcheck on this page.
1926 }
1927 }
1929 // OK, so we have to reload all preferences.
1931 $user->preference = $DB->get_records_menu('user_preferences', array('userid' => $user->id), '', 'name,value'); // All values.
1933 }
1935 /**
1936 * Called from set/unset_user_preferences, so that the prefs can be correctly reloaded in different sessions.
1937 *
1938 * NOTE: internal function, do not call from other code.
1939 *
1940 * @package core
1941 * @access private
1942 * @param integer $userid the user whose prefs were changed.
1943 */
1948 // No cache flags for guest and not-logged-in users.
1950 }
1953 }
1955 /**
1956 * Sets a preference for the specified user.
1957 *
1958 * If a $user object is submitted it's 'preference' property is used for the preferences cache.
1959 *
1960 * When additional validation/permission check is needed it is better to use {@see useredit_update_user_preference()}
1961 *
1962 * @package core
1963 * @category preference
1964 * @access public
1965 * @param string $name The key to set as preference for the specified user
1966 * @param string $value The value to set for the $name key in the specified user's
1967 * record, null means delete current value.
1968 * @param stdClass|int|null $user A moodle user object or id, null means current user
1969 * @throws coding_exception
1970 * @return bool Always true or exception
1971 */
1977 }
1980 // Null means delete current.
1983 throw new coding_exception('Invalid value in set_user_preference() call, objects are not allowed');
1985 throw new coding_exception('Invalid value in set_user_preference() call, arrays are not allowed');
1986 }
1987 // Value column maximum length is 1333 characters.
1990 throw new coding_exception('Invalid value in set_user_preference() call, value is is too long for the value column');
1991 }
1996 // It is a valid object.
2001 }
2006 // No permanent storage for not-logged-in users and guest.
2009 }
2011 if ($preference = $DB->get_record('user_preferences', array('userid' => $user->id, 'name' => $name))) {
2012 if ($preference->value === $value and isset($user->preference[$name]) and $user->preference[$name] === $value) {
2013 // Preference already set to this value.
2015 }
2024 }
2026 // Update value in cache.
2028 // Update the $USER in case where we've not a direct reference to $USER.
2031 }
2033 // Set reload flag for other sessions.
2037 }
2039 /**
2040 * Sets a whole array of preferences for the current user
2041 *
2042 * If a $user object is submitted it's 'preference' property is used for the preferences cache.
2043 *
2044 * @package core
2045 * @category preference
2046 * @access public
2047 * @param array $prefarray An array of key/value pairs to be set
2048 * @param stdClass|int|null $user A moodle user object or id, null means current user
2049 * @return bool Always true or exception
2050 */
2054 }
2056 }
2058 /**
2059 * Unsets a preference completely by deleting it from the database
2060 *
2061 * If a $user object is submitted it's 'preference' property is used for the preferences cache.
2062 *
2063 * @package core
2064 * @category preference
2065 * @access public
2066 * @param string $name The key to unset as preference for the specified user
2067 * @param stdClass|int|null $user A moodle user object or id, null means current user
2068 * @throws coding_exception
2069 * @return bool Always true or exception
2070 */
2076 }
2081 // It is a valid object.
2086 }
2091 // No permanent storage for not-logged-in user and guest.
2094 }
2096 // Delete from DB.
2099 // Delete the preference from cache.
2101 // Update the $USER in case where we've not a direct reference to $USER.
2104 }
2106 // Set reload flag for other sessions.
2110 }
2112 /**
2113 * Used to fetch user preference(s)
2114 *
2115 * If no arguments are supplied this function will return
2116 * all of the current user preferences as an array.
2117 *
2118 * If a name is specified then this function
2119 * attempts to return that particular preference value. If
2120 * none is found, then the optional value $default is returned,
2121 * otherwise null.
2122 *
2123 * If a $user object is submitted it's 'preference' property is used for the preferences cache.
2124 *
2125 * @package core
2126 * @category preference
2127 * @access public
2128 * @param string $name Name of the key to use in finding a preference value
2129 * @param mixed|null $default Value to be returned if the $name key is not set in the user preferences
2130 * @param stdClass|int|null $user A moodle user object or id, null means current user
2131 * @throws coding_exception
2132 * @return string|mixed|null A string containing the value of a single preference. An
2133 * array with all of the preferences or null
2134 */
2139 // All prefs.
2142 }
2147 // Is a valid object.
2153 }
2156 }
2161 // All values.
2164 // The single string value.
2167 // Default value (null if not specified).
2169 }
2170 }
2172 // FUNCTIONS FOR HANDLING TIME.
2174 /**
2175 * Given Gregorian date parts in user time produce a GMT timestamp.
2176 *
2177 * @package core
2178 * @category time
2179 * @param int $year The year part to create timestamp of
2180 * @param int $month The month part to create timestamp of
2181 * @param int $day The day part to create timestamp of
2182 * @param int $hour The hour part to create timestamp of
2183 * @param int $minute The minute part to create timestamp of
2184 * @param int $second The second part to create timestamp of
2185 * @param int|float|string $timezone Timezone modifier, used to calculate GMT time offset.
2186 * if 99 then default user's timezone is used {@link http://docs.moodle.org/dev/Time_API#Timezone}
2187 * @param bool $applydst Toggle Daylight Saving Time, default true, will be
2188 * applied only if timezone is 99 or string.
2189 * @return int GMT timestamp
2190 */
2191 function make_timestamp($year, $month=1, $day=1, $hour=0, $minute=0, $second=0, $timezone=99, $applydst=true) {
2199 throw new coding_exception('getTimestamp() returned false, please ensure you have passed correct values.'.
2201 }
2203 // Moodle BC DST stuff.
2206 }
2210 }
2212 /**
2213 * Format a date/time (seconds) as weeks, days, hours etc as needed
2214 *
2215 * Given an amount of time in seconds, returns string
2216 * formatted nicely as years, days, hours etc as needed
2217 *
2218 * @package core
2219 * @category time
2220 * @uses MINSECS
2221 * @uses HOURSECS
2222 * @uses DAYSECS
2223 * @uses YEARSECS
2224 * @param int $totalsecs Time in seconds
2225 * @param stdClass $str Should be a time object
2226 * @return string A nicely formatted date/time string
2227 */
2233 // Create the str structure the slow way.
2245 }
2270 }
2273 }
2276 }
2279 }
2282 }
2286 }
2289 }
2292 }
2295 }
2298 }
2300 }
2302 /**
2303 * Returns a formatted string that represents a date in user time.
2304 *
2305 * @package core
2306 * @category time
2307 * @param int $date the timestamp in UTC, as obtained from the database.
2308 * @param string $format strftime format. You should probably get this using
2309 * get_string('strftime...', 'langconfig');
2310 * @param int|float|string $timezone by default, uses the user's time zone. if numeric and
2311 * not 99 then daylight saving will not be added.
2312 * {@link http://docs.moodle.org/dev/Time_API#Timezone}
2313 * @param bool $fixday If true (default) then the leading zero from %d is removed.
2314 * If false then the leading zero is maintained.
2315 * @param bool $fixhour If true (default) then the leading zero from %I is removed.
2316 * @return string the formatted date/time.
2317 */
2321 }
2323 /**
2324 * Returns a html "time" tag with both the exact user date with timezone information
2325 * as a datetime attribute in the W3C format, and the user readable date and time as text.
2326 *
2327 * @package core
2328 * @category time
2329 * @param int $date the timestamp in UTC, as obtained from the database.
2330 * @param string $format strftime format. You should probably get this using
2331 * get_string('strftime...', 'langconfig');
2332 * @param int|float|string $timezone by default, uses the user's time zone. if numeric and
2333 * not 99 then daylight saving will not be added.
2334 * {@link http://docs.moodle.org/dev/Time_API#Timezone}
2335 * @param bool $fixday If true (default) then the leading zero from %d is removed.
2336 * If false then the leading zero is maintained.
2337 * @param bool $fixhour If true (default) then the leading zero from %I is removed.
2338 * @return string the formatted date/time.
2339 */
2340 function userdate_htmltime($date, $format = '', $timezone = 99, $fixday = true, $fixhour = true) {
2344 }
2349 return html_writer::tag('time', $userdatestr, ['datetime' => $machinedate->format(DateTime::W3C)]);
2350 }
2352 /**
2353 * Returns a formatted date ensuring it is UTF-8.
2354 *
2355 * If we are running under Windows convert to Windows encoding and then back to UTF-8
2356 * (because it's impossible to specify UTF-8 to fetch locale info in Win32).
2357 *
2358 * @param int $date the timestamp - since Moodle 2.9 this is a real UTC timestamp
2359 * @param string $format strftime format.
2360 * @param int|float|string $tz the user timezone
2361 * @return string the formatted date/time.
2362 * @since Moodle 2.3.3
2363 */
2368 // Get the calendar type user is using.
2372 }
2376 }
2385 ], [
2387 $datearray['hours'] < 12 ? get_string('amcaps', 'langconfig') : get_string('pmcaps', 'langconfig'),
2389 }
2396 }
2399 }
2401 /**
2402 * Given a $time timestamp in GMT (seconds since epoch),
2403 * returns an array that represents the Gregorian date in user time
2404 *
2405 * @package core
2406 * @category time
2407 * @param int $time Timestamp in GMT
2408 * @param float|int|string $timezone user timezone
2409 * @return array An array that represents the date in user time
2410 */
2413 // PHP8 and PHP7 return different results when getdate(null) is called.
2414 // Display warning and cast to 0 to make sure the usergetdate() behaves consistently on all versions of PHP.
2415 // In the future versions of Moodle we may consider adding a strict typehint.
2418 }
2425 }
2427 /**
2428 * Given a GMT timestamp (seconds since epoch), offsets it by
2429 * the timezone. eg 3pm in India is 3pm GMT - 7 * 3600 seconds
2430 *
2431 * NOTE: this function does not include DST properly,
2432 * you should use the PHP date stuff instead!
2433 *
2434 * @package core
2435 * @category time
2436 * @param int $date Timestamp in GMT
2437 * @param float|int|string $timezone user timezone
2438 * @return int
2439 */
2446 }
2448 /**
2449 * Get a formatted string representation of an interval between two unix timestamps.
2450 *
2451 * E.g.
2452 * $intervalstring = get_time_interval_string(12345600, 12345660);
2453 * Will produce the string:
2454 * '0d 0h 1m'
2455 *
2456 * @param int $time1 unix timestamp
2457 * @param int $time2 unix timestamp
2458 * @param string $format string (can be lang string) containing format chars: https://www.php.net/manual/en/dateinterval.format.php.
2459 * @return string the formatted string describing the time difference, e.g. '10d 11h 45m'.
2460 */
2469 }
2471 /**
2472 * Given a time, return the GMT timestamp of the most recent midnight
2473 * for the current user.
2474 *
2475 * @package core
2476 * @category time
2477 * @param int $date Timestamp in GMT
2478 * @param float|int|string $timezone user timezone
2479 * @return int Returns a GMT timestamp
2480 */
2485 // Time of midnight of this user's day, in GMT.
2486 return make_timestamp($userdate['year'], $userdate['mon'], $userdate['mday'], 0, 0, 0, $timezone);
2488 }
2490 /**
2491 * Returns a string that prints the user's timezone
2492 *
2493 * @package core
2494 * @category time
2495 * @param float|int|string $timezone user timezone
2496 * @return string
2497 */
2501 }
2503 /**
2504 * Returns a float or a string which denotes the user's timezone
2505 * A float value means that a simple offset from GMT is used, while a string (it will be the name of a timezone in the database)
2506 * means that for this timezone there are also DST rules to be taken into account
2507 * Checks various settings and picks the most dominant of those which have a value
2508 *
2509 * @package core
2510 * @category time
2511 * @param float|int|string $tz timezone to calculate GMT time offset before
2512 * calculating user timezone, 99 is default user timezone
2513 * {@link http://docs.moodle.org/dev/Time_API#Timezone}
2514 * @return float|string
2515 */
2524 );
2528 // Loop while $tz is, empty but not zero, or 99, and there is another timezone is the array.
2532 }
2533 }
2535 }
2537 /**
2538 * Calculates the Daylight Saving Offset for a given date/time (timestamp)
2539 * - Note: Daylight saving only works for string timezones and not for float.
2540 *
2541 * @package core
2542 * @category time
2543 * @param int $time must NOT be compensated at all, it has to be a pure timestamp
2544 * @param int|float|string $strtimezone user timezone
2545 * @return int
2546 */
2554 }
2556 }
2558 }
2560 /**
2561 * Calculates when the day appears in specific month
2562 *
2563 * @package core
2564 * @category time
2565 * @param int $startday starting day of the month
2566 * @param int $weekday The day when week starts (normally taken from user preferences)
2567 * @param int $month The month whose day is sought
2568 * @param int $year The year of the month whose day is sought
2569 * @return int
2570 */
2578 // Don't care about weekday, so return:
2579 // abs($startday) if $startday != -1
2580 // $daysinmonth otherwise.
2582 }
2584 // From now on we 're looking for a specific weekday.
2585 // Give "end of month" its actual value, since we know it.
2588 }
2590 // Starting from day $startday, the sign is the direction.
2595 // This is the last such weekday of the month.
2599 }
2601 // Find the first such weekday <= $startday.
2604 }
2613 }
2615 // This is the first such weekday of the month equal to or after $startday.
2619 }
2620 }
2622 /**
2623 * Calculate the number of days in a given month
2624 *
2625 * @package core
2626 * @category time
2627 * @param int $month The month whose day count is sought
2628 * @param int $year The year of the month whose day count is sought
2629 * @return int
2630 */
2634 }
2636 /**
2637 * Calculate the position in the week of a specific calendar day
2638 *
2639 * @package core
2640 * @category time
2641 * @param int $day The day of the date whose position in the week is sought
2642 * @param int $month The month of the date whose position in the week is sought
2643 * @param int $year The year of the date whose position in the week is sought
2644 * @return int
2645 */
2649 }
2651 // USER AUTHENTICATION AND LOGIN.
2653 /**
2654 * Returns full login url.
2655 *
2656 * Any form submissions for authentication to this URL must include username,
2657 * password as well as a logintoken generated by \core\session\manager::get_login_token().
2658 *
2659 * @return string login url
2660 */
2665 }
2667 /**
2668 * This function checks that the current user is logged in and has the
2669 * required privileges
2670 *
2671 * This function checks that the current user is logged in, and optionally
2672 * whether they are allowed to be in a particular course and view a particular
2673 * course module.
2674 * If they are not logged in, then it redirects them to the site login unless
2675 * $autologinguest is set and {@link $CFG}->autologinguests is set to 1 in which
2676 * case they are automatically logged in as guests.
2677 * If $courseid is given and the user is not enrolled in that course then the
2678 * user is redirected to the course enrolment page.
2679 * If $cm is given and the course module is hidden and the user is not a teacher
2680 * in the course then the user is redirected to the course home page.
2681 *
2682 * When $cm parameter specified, this function sets page layout to 'module'.
2683 * You need to change it manually later if some other layout needed.
2684 *
2685 * @package core_access
2686 * @category access
2687 *
2688 * @param mixed $courseorid id of the course or course object
2689 * @param bool $autologinguest default true
2690 * @param object $cm course module object
2691 * @param bool $setwantsurltome Define if we want to set $SESSION->wantsurl, defaults to
2692 * true. Used to avoid (=false) some scripts (file.php...) to set that variable,
2693 * in order to keep redirects working properly. MDL-14495
2694 * @param bool $preventredirect set to true in scripts that can not redirect (CLI, rss feeds, etc.), throws exceptions
2695 * @return mixed Void, exit, and die depending on path
2696 * @throws coding_exception
2697 * @throws require_login_exception
2698 * @throws moodle_exception
2699 */
2700 function require_login($courseorid = null, $autologinguest = true, $cm = null, $setwantsurltome = true, $preventredirect = false) {
2703 // Must not redirect when byteserving already started.
2706 }
2709 // We cannot redirect for AJAX scripts either.
2711 }
2713 // Setup global $COURSE, themes, language and locale.
2721 }
2725 }
2726 // Make sure we have a $cm from get_fast_modinfo as this contains activity access details.
2728 // Note: nearly all pages call get_fast_modinfo anyway and it does not make any
2729 // db queries so this is not really a performance concern, however it is obviously
2730 // better if you use get_fast_modinfo to get the cm before calling this.
2733 }
2734 }
2736 // Do not touch global $COURSE via $PAGE->set_course(),
2737 // the reasons is we need to be able to call require_login() at any time!!
2740 throw new coding_exception('cm parameter in require_login() requires valid course parameter!');
2741 }
2742 }
2744 // If this is an AJAX request and $setwantsurltome is true then we need to override it and set it to false.
2745 // Otherwise the AJAX request URL will be set to $SESSION->wantsurl and events such as self enrolment in the future
2746 // risk leading the user back to the AJAX request URL.
2749 }
2751 // Redirect to the login page if session has expired, only with dbsessions enabled (MDL-35029) to maintain current behaviour.
2752 if ((!isloggedin() or isguestuser()) && !empty($SESSION->has_timed_out) && !empty($CFG->dbsessions)) {
2758 }
2760 }
2761 }
2763 // If the user is not even logged in yet then make sure they are.
2767 // Misconfigured site guest, just redirect to login page.
2770 }
2776 // NOTE: $USER->site check was obsoleted by session test cookie, $USER->confirmed test is in login/index.php.
2779 }
2783 }
2785 // Give auth plugins an opportunity to authenticate or redirect to an external login page
2794 }
2797 }
2798 }
2800 // If we're still not logged in then go to the login page
2804 }
2805 }
2806 }
2808 // Loginas as redirection if needed.
2814 }
2815 }
2816 }
2818 // Check whether the user should be changing password (but only if it is REALLY them).
2819 if (get_user_preferences('auth_forcepasswordchange') && !\core\session\manager::is_loggedinas()) {
2824 }
2826 // Use plugin custom url.
2829 // Use moodle internal method.
2831 }
2836 }
2837 }
2839 // Check that the user account is properly set up. If we can't redirect to
2840 // edit their profile and this is not a WS request, perform just the lax check.
2841 // It will allow them to use filepicker on the profile edit page.
2847 }
2852 }
2855 }
2857 }
2859 // Make sure the USER has a sesskey set up. Used for CSRF protection.
2863 // During a "logged in as" session we should force all content to be cleaned because the
2864 // logged in user will be viewing potentially malicious user generated content.
2865 // See MDL-63786 for more details.
2867 }
2871 // Do not bother admins with any formalities, except for activities pending deletion.
2873 // Set the global $COURSE.
2879 }
2880 // Set accesstime or the user will appear offline which messes up messaging.
2881 // Do not update access time for webservice or ajax requests.
2884 }
2889 }
2890 }
2892 }
2894 // Scripts have a chance to declare that $USER->policyagreed should not be checked.
2895 // This is mostly for places where users are actually accepting the policies, to avoid the redirect loop.
2898 }
2900 // Check that the user has agreed to a site policy if there is one - do not test in case of admins.
2901 // Do not test if the script explicitly asked for skipping the site policies check.
2907 }
2910 }
2912 }
2913 }
2915 // Fetch the system context, the course context, and prefetch its child contexts.
2922 }
2924 // If the site is currently under maintenance, then print a message.
2925 if (!empty($CFG->maintenance_enabled) and !has_capability('moodle/site:maintenanceaccess', $sysctx)) {
2928 }
2931 }
2933 // Make sure the course itself is not hidden.
2935 // Frontpage can not be hidden.
2938 // When switching roles ignore the hidden flag - user had to be in course to do the switch.
2940 if (!$course->visible and !has_capability('moodle/course:viewhiddencourses', $coursecontext)) {
2941 // Originally there was also test of parent category visibility, BUT is was very slow in complex queries
2942 // involving "my courses" now it is also possible to simply hide all courses user is not enrolled in :-).
2945 }
2947 // We need to override the navigation URL as the course won't have been added to the navigation and thus
2948 // the navigation will mess up when trying to find it.
2951 }
2952 }
2953 }
2955 // Is the user enrolled?
2957 // Everybody is enrolled on the frontpage.
2960 // Make sure the REAL person can access this course first.
2966 }
2970 }
2971 }
2976 // Ok, user had to be inside this course before the switch.
2980 // Ok, no need to mess with enrol.
2990 }
2992 // Expired.
2994 }
2995 }
3002 // Expired.
3005 }
3006 }
3009 // Cache not ok.
3012 // Active participants may always access, a timestamp in the future, 0 (always) or false.
3015 }
3023 // First ask all enabled enrol instances in course if they want to auto enrol user.
3027 }
3028 // Get a duration for the enrolment, a timestamp in the future, 0 (always) or false.
3033 }
3037 }
3038 }
3039 // If not enrolled yet try to gain temporary guest access.
3044 }
3045 // Get a duration for the guest access, a timestamp in the future or false.
3051 }
3052 }
3053 }
3055 // User is not enrolled and is not allowed to browse courses here.
3058 }
3060 // We need to override the navigation URL as the course won't have been added to the navigation and thus
3061 // the navigation will mess up when trying to find it.
3064 }
3065 }
3066 }
3071 }
3074 }
3076 }
3077 }
3079 // Check whether the activity has been scheduled for deletion. If so, then deny access, even for admins.
3083 }
3086 }
3088 // Check visibility of activity to current user; includes visible flag, conditional availability, etc.
3092 }
3093 // Get the error message that activity is not available and why (if explanation can be shown to the user).
3098 }
3100 // Set the global $COURSE.
3106 }
3111 }
3112 }
3114 // Finally access granted, update lastaccess times.
3115 // Do not update access time for webservice or ajax requests.
3118 }
3119 }
3121 /**
3122 * A convenience function for where we must be logged in as admin
3123 * @return void
3124 */
3128 }
3130 /**
3131 * This function just makes sure a user is logged out.
3132 *
3133 * @package core_access
3134 * @category access
3135 */
3140 // This should not happen often, no need for hooks or events here.
3143 }
3145 // Execute hooks before action.
3151 }
3153 // Store info that gets removed during logout.
3160 )
3161 );
3164 }
3166 // Clone of $USER object to be used by auth plugins.
3169 // Delete session record and drop $_SESSION content.
3172 // Trigger event AFTER action.
3175 // Hook to execute auth plugins redirection after event trigger.
3178 }
3179 }
3181 /**
3182 * Weaker version of require_login()
3183 *
3184 * This is a weaker version of {@link require_login()} which only requires login
3185 * when called from within a course rather than the site page, unless
3186 * the forcelogin option is turned on.
3187 * @see require_login()
3188 *
3189 * @package core_access
3190 * @category access
3191 *
3192 * @param mixed $courseorid The course object or id in question
3193 * @param bool $autologinguest Allow autologin guests if that is wanted
3194 * @param object $cm Course activity module if known
3195 * @param bool $setwantsurltome Define if we want to set $SESSION->wantsurl, defaults to
3196 * true. Used to avoid (=false) some scripts (file.php...) to set that variable,
3197 * in order to keep redirects working properly. MDL-14495
3198 * @param bool $preventredirect set to true in scripts that can not redirect (CLI, rss feeds, etc.), throws exceptions
3199 * @return void
3200 * @throws coding_exception
3201 */
3202 function require_course_login($courseorid, $autologinguest = true, $cm = null, $setwantsurltome = true, $preventredirect = false) {
3207 // Note: nearly all pages call get_fast_modinfo anyway and it does not make any
3208 // db queries so this is not really a performance concern, however it is obviously
3209 // better if you use get_fast_modinfo to get the cm before calling this.
3214 }
3217 }
3219 // Login required for both SITE and courses.
3223 // Always login for hidden activities.
3227 // User is already logged in. Make sure the login is complete (user is fully setup, policies agreed).
3231 // Login for SITE not required.
3232 // We still need to instatiate PAGE vars properly so that things that rely on it like navigation function correctly.
3238 }
3241 throw new coding_exception('course and cm parameters in require_course_login() call do not match!!');
3242 }
3247 }
3249 // If $PAGE->course, and hence $PAGE->context, have not already been set up properly, set them up now.
3251 }
3252 // Do not update access time for webservice or ajax requests.
3255 }
3259 // Course login always required.
3261 }
3262 }
3264 /**
3265 * Validates a user key, checking if the key exists, is not expired and the remote ip is correct.
3266 *
3267 * @param string $keyvalue the key value
3268 * @param string $script unique script identifier
3269 * @param int $instance instance id
3270 * @return stdClass the key entry in the user_private_key table
3271 * @since Moodle 3.2
3272 * @throws moodle_exception
3273 */
3277 if (!$key = $DB->get_record('user_private_key', array('script' => $script, 'value' => $keyvalue, 'instance' => $instance))) {
3279 }
3283 }
3289 }
3290 }
3292 }
3294 /**
3295 * Require key login. Function terminates with error if key not found or incorrect.
3296 *
3297 * @uses NO_MOODLE_COOKIES
3298 * @uses PARAM_ALPHANUM
3299 * @param string $script unique script identifier
3300 * @param int $instance optional instance id
3301 * @param string $keyvalue The key. If not supplied, this will be fetched from the current session.
3302 * @return int Instance ID
3303 */
3309 }
3311 // Extra safety.
3316 }
3322 }
3326 // Emulate normal session.
3330 // Note we are not using normal login.
3333 }
3335 // Return instance id - it might be empty.
3337 }
3339 /**
3340 * Creates a new private user access key.
3341 *
3342 * @param string $script unique target identifier
3343 * @param int $userid
3344 * @param int $instance optional instance id
3345 * @param string $iprestriction optional ip restricted access
3346 * @param int $validuntil key valid only until given data
3347 * @return string access key value
3348 */
3349 function create_user_key($script, $userid, $instance=null, $iprestriction=null, $validuntil=null) {
3360 // Something long and unique.
3363 // Must be unique.
3365 }
3368 }
3370 /**
3371 * Delete the user's new private user access keys for a particular script.
3372 *
3373 * @param string $script unique target identifier
3374 * @param int $userid
3375 * @return void
3376 */
3380 }
3382 /**
3383 * Gets a private user access key (and creates one if one doesn't exist).
3384 *
3385 * @param string $script unique target identifier
3386 * @param int $userid
3387 * @param int $instance optional instance id
3388 * @param string $iprestriction optional ip restricted access
3389 * @param int $validuntil key valid only until given date
3390 * @return string access key value
3391 */
3392 function get_user_key($script, $userid, $instance=null, $iprestriction=null, $validuntil=null) {
3401 }
3402 }
3405 /**
3406 * Modify the user table by setting the currently logged in user's last login to now.
3407 *
3408 * @return bool Always returns true
3409 */
3414 // Do not update guest access times/ips for performance.
3416 }
3419 // Do not update user login time when using user key login.
3421 }
3428 // Make sure all users that logged in have some firstaccess.
3431 }
3433 // Store the previous current as lastlogin.
3438 // Function user_accesstime_log() may not update immediately, better do it here.
3443 // Note: do not call user_update_user() here because this is part of the login process,
3444 // the login event means that these fields were updated.
3447 }
3449 /**
3450 * Determines if a user has completed setting up their account.
3451 *
3452 * The lax mode (with $strict = false) has been introduced for special cases
3453 * only where we want to skip certain checks intentionally. This is valid in
3454 * certain mnet or ajax scenarios when the user cannot / should not be
3455 * redirected to edit their profile. In most cases, you should perform the
3456 * strict check.
3457 *
3458 * @param stdClass $user A {@link $USER} object to test for the existence of a valid name and email
3459 * @param bool $strict Be more strict and assert id and custom profile fields set, too
3460 * @return bool
3461 */
3466 // If the user is setup then store this in the session to avoid re-checking.
3467 // Some edge cases are when the users email starts to bounce or the
3468 // configuration for custom fields has changed while they are logged in so
3469 // we re-check this fully every hour for the rare cases it has changed.
3473 }
3477 }
3479 if (empty($user->firstname) or empty($user->lastname) or empty($user->email) or over_bounce_threshold($user)) {
3481 }
3485 // Strict mode can be used with existing accounts only.
3487 }
3490 }
3493 }
3494 }
3497 }
3499 /**
3500 * Check whether the user has exceeded the bounce threshold
3501 *
3502 * @param stdClass $user A {@link $USER} object
3503 * @return bool true => User has exceeded bounce threshold
3504 */
3510 }
3513 // No real (DB) user, nothing to do here.
3515 }
3517 // Set sensible defaults.
3520 }
3523 }
3526 if ($bounce = $DB->get_record('user_preferences', array ('userid' => $user->id, 'name' => 'email_bounce_count'))) {
3528 }
3529 if ($send = $DB->get_record('user_preferences', array('userid' => $user->id, 'name' => 'email_send_count'))) {
3531 }
3533 }
3535 /**
3536 * Used to increment or reset email sent count
3537 *
3538 * @param stdClass $user object containing an id
3539 * @param bool $reset will reset the count to 0
3540 * @return void
3541 */
3546 // No real (DB) user, nothing to do here.
3548 }
3550 if ($pref = $DB->get_record('user_preferences', array('userid' => $user->id, 'name' => 'email_send_count'))) {
3554 // If it's not there and we're resetting, don't bother. Make a new one.
3560 }
3561 }
3563 /**
3564 * Increment or reset user's email bounce count
3565 *
3566 * @param stdClass $user object containing an id
3567 * @param bool $reset will reset the count to 0
3568 */
3572 if ($pref = $DB->get_record('user_preferences', array('userid' => $user->id, 'name' => 'email_bounce_count'))) {
3576 // If it's not there and we're resetting, don't bother. Make a new one.
3582 }
3583 }
3585 /**
3586 * Determines if the logged in user is currently moving an activity
3587 *
3588 * @param int $courseid The id of the course being tested
3589 * @return bool
3590 */
3596 }
3598 }
3600 /**
3601 * Returns a persons full name
3602 *
3603 * Given an object containing all of the users name values, this function returns a string with the full name of the person.
3604 * The result may depend on system settings or language. 'override' will force the alternativefullnameformat to be used. In
3605 * English, fullname as well as alternativefullnameformat is set to 'firstname lastname' by default. But you could have
3606 * fullname set to 'firstname lastname' and alternativefullnameformat set to 'firstname middlename alternatename lastname'.
3607 *
3608 * @param stdClass $user A {@link $USER} object to get full name of.
3609 * @param bool $override If true then the alternativefullnameformat format rather than fullnamedisplay format will be used.
3610 * @return string
3611 */
3617 }
3619 // Get all of the name fields.
3624 // If all the user name fields are not set in the user object, then notify the programmer that it needs to be fixed.
3625 debugging('You need to update your sql to include additional name fields in the user object.', DEBUG_DEVELOPER);
3626 // Message has been sent, no point in sending the message multiple times.
3628 }
3629 }
3630 }
3635 }
3638 }
3639 }
3643 }
3646 // If the fullnamedisplay setting is available, set the template to that.
3649 }
3650 // If the template is empty, or set to language, return the language string.
3653 }
3655 // Check to see if we are displaying according to the alternative full name format.
3658 // Default to show just the user names according to the fullnamedisplay string.
3661 // If the override is true, then change the template to use the complete name.
3663 }
3664 }
3667 // With each name, see if it is in the display name template, and add it to the required names array if it is.
3671 }
3672 }
3675 // Switch in the actual data into the template.
3678 // Using empty() on the below if statement causes breakages.
3683 }
3686 }
3687 }
3688 // Tidy up any misc. characters (Not perfect, but gets most characters).
3689 // Don't remove the "u" at the end of the first expression unless you want garbled characters when combining hiragana or
3690 // katakana and parenthesis.
3692 // This regular expression replacement is to fix problems such as 'James () Kirk' Where 'Tiberius' (middlename) has not been
3693 // filled in by a user.
3694 // The special characters are Japanese brackets that are common enough to make allowances for them (not covered by :punct:).
3696 // This regular expression is to remove any double spaces in the display name.
3700 }
3702 // Trimming $displayname will help the next check to ensure that we don't have a display name with spaces.
3705 // Going with just the first name if no alternate fields are filled out. May be changed later depending on what
3706 // people in general feel is a good setting to fall back on.
3708 }
3710 }
3712 /**
3713 * Reduces lines of duplicated code for getting user name fields.
3714 *
3715 * See also {@link user_picture::unalias()}
3716 *
3717 * @param object $addtoobject Object to add user name fields to.
3718 * @param object $secondobject Object that contains user name field information.
3719 * @param string $prefix prefix to be added to all fields (including $additionalfields) e.g. authorfirstname.
3720 * @param array $additionalfields Additional fields to be matched with data in the second object.
3721 * The key can be set to the user table field name.
3722 * @return object User name fields.
3723 */
3724 function username_load_fields_from_object($addtoobject, $secondobject, $prefix = null, $additionalfields = null) {
3728 }
3730 // Additional fields can specify their own 'alias' such as 'id' => 'userid'. This checks to see if
3731 // the key is a number and then sets the key to the array value.
3738 }
3739 }
3741 }
3743 // Important that we have all of the user name fields present in the object that we are sending back.
3747 }
3748 }
3750 }
3752 /**
3753 * Returns an array of values in order of occurance in a provided string.
3754 * The key in the result is the character postion in the string.
3755 *
3756 * @param array $values Values to be found in the string format
3757 * @param string $stringformat The string which may contain values being searched for.
3758 * @return array An array of values in order according to placement in the string format.
3759 */
3764 // Using preg_match as strpos() may match values that are similar e.g. firstname and firstnamephonetic.
3767 // Replace the value with something more unique to ensure we get the right position when using strpos().
3771 }
3772 }
3775 }
3777 /**
3778 * Returns whether a given authentication plugin exists.
3779 *
3780 * @param string $auth Form of authentication to check for. Defaults to the global setting in {@link $CFG}.
3781 * @return boolean Whether the plugin is available.
3782 */
3788 }
3790 }
3792 /**
3793 * Checks if a given plugin is in the list of enabled authentication plugins.
3794 *
3795 * @param string $auth Authentication plugin.
3796 * @return boolean Whether the plugin is enabled.
3797 */
3801 }
3806 }
3808 /**
3809 * Returns an authentication plugin instance.
3810 *
3811 * @param string $auth name of authentication plugin
3812 * @return auth_plugin_base An instance of the required authentication plugin.
3813 */
3817 // Check the plugin exists first.
3820 }
3822 // Return auth plugin instance.
3826 }
3828 /**
3829 * Returns array of active auth plugins.
3830 *
3831 * @param bool $fix fix $CFG->auth if needed. Only set if logged in as admin.
3832 * @return array
3833 */
3843 }
3849 // The manual and nologin plugin never need to be stored.
3854 }
3855 }
3857 // Ideally only explicit interaction from a human admin should trigger a
3858 // change in auth config, see MDL-70424 for details.
3864 }
3865 }
3868 }
3870 /**
3871 * Returns true if an internal authentication method is being used.
3872 * if method not specified then, global default is assumed
3873 *
3874 * @param string $auth Form of authentication required
3875 * @return bool
3876 */
3878 // Throws error if bad $auth.
3881 }
3883 /**
3884 * Returns true if the user is a 'restored' one.
3885 *
3886 * Used in the login process to inform the user and allow him/her to reset the password
3887 *
3888 * @param string $username username to be checked
3889 * @return bool
3890 */
3894 return $DB->record_exists('user', array('username' => $username, 'mnethostid' => $CFG->mnet_localhost_id, 'password' => 'restored'));
3895 }
3897 /**
3898 * Returns an array of user fields
3899 *
3900 * @return array User field/column names
3901 */
3910 }
3912 /**
3913 * Returns the string of the language for the new user.
3914 *
3915 * @return string language for the new user
3916 */
3919 return (!empty($CFG->autolangusercreation) && !empty($SESSION->lang)) ? $SESSION->lang : $CFG->lang;
3920 }
3922 /**
3923 * Creates a bare-bones user record
3924 *
3925 * @todo Outline auth types and provide code example
3926 *
3927 * @param string $username New user's username to add to record
3928 * @param string $password New user's password to add to record
3929 * @param string $auth Form of authentication required
3930 * @return stdClass A complete user object
3931 */
3937 // Just in case check text case.
3948 }
3949 }
3950 }
3955 }
3956 }
3961 // Fix for MDL-8480
3962 // user CFG lang for user if $newuser->lang is empty
3963 // or $user->lang is not an installed language.
3966 }
3975 // Save user profile data.
3981 }
3982 // Set the password.
3985 // Trigger event.
3989 }
3991 /**
3992 * Will update a local user record from an external source (MNET users can not be updated using this method!).
3993 *
3994 * @param string $username user's username to update the record
3995 * @return stdClass A complete user object
3996 */
3999 // Just in case check text case.
4002 $oldinfo = $DB->get_record('user', array('username' => $username, 'mnethostid' => $CFG->mnet_localhost_id), '*', MUST_EXIST);
4004 }
4006 /**
4007 * Will update a local user record from an external source (MNET users can not be updated using this method!).
4008 *
4009 * @param int $id user id
4010 * @return stdClass A complete user object
4011 */
4031 }
4034 // Unknown or must not be changed.
4036 }
4037 if (empty($userauth->config->{'field_updatelocal_' . $key}) || empty($userauth->config->{'field_lock_' . $key})) {
4039 }
4043 // MDL-4207 Don't overwrite modified user profile values with
4044 // empty LDAP values when 'unlocked if empty' is set. The purpose
4045 // of the setting 'unlocked if empty' is to allow the user to fill
4046 // in a value for the selected field _if LDAP is giving
4047 // nothing_ for this field. Thus it makes sense to let this value
4048 // stand in until LDAP is giving a value for this field.
4053 }
4054 }
4055 }
4056 }
4062 // Save user profile data.
4065 // Trigger event.
4067 }
4068 }
4071 }
4073 /**
4074 * Will truncate userinfo as it comes from auth_get_userinfo (from external auth) which may have large fields.
4075 *
4076 * @param array $info Array of user properties to truncate if needed
4077 * @return array The now truncated information that was passed in
4078 */
4080 // Define the limits.
4094 );
4096 // Apply where needed.
4100 }
4101 }
4104 }
4106 /**
4107 * Marks user deleted in internal user database and notifies the auth plugin.
4108 * Also unenrols user from all roles and does other cleanup.
4109 *
4110 * Any plugin that needs to purge user data should register the 'user_deleted' event.
4111 *
4112 * @param stdClass $user full user object before delete
4113 * @return boolean success
4114 * @throws coding_exception if invalid $user parameter detected
4115 */
4123 // Make sure nobody sends bogus record type as parameter.
4126 }
4128 // Better not trust the parameter and fetch the latest info this will be very expensive anyway.
4132 }
4134 // There must be always exactly one guest record, originally the guest account was identified by username only,
4135 // now we use $CFG->siteguest for performance reasons.
4139 }
4141 // Admin can be theoretically from different auth plugin, but we want to prevent deletion of internal accoutns only,
4142 // if anything goes wrong ppl may force somebody to be admin via config.php setting $CFG->siteadmins.
4146 }
4148 // Allow plugins to use this user object before we completely delete it.
4153 }
4154 }
4155 }
4157 // Keep user record before updating it, as we have to pass this to user_deleted event.
4160 // Keep a copy of user context, we need it for event.
4163 // Delete all grades - backup is kept in grade_grades_history table.
4166 // TODO: remove from cohorts using standard API here.
4168 // Remove user tags.
4171 // Unconditionally unenrol from all courses.
4174 // Unenrol from all roles in all contexts.
4175 // This might be slow but it is really needed - modules might do some extra cleanup!
4178 // Notify the competency subsystem.
4181 // Now do a brute force cleanup.
4183 // Delete all user events and subscription events.
4184 $DB->delete_records_select('event', 'userid = :userid AND subscriptionid IS NOT NULL', ['userid' => $user->id]);
4186 // Now, delete all calendar subscription from the user.
4189 // Remove from all cohorts.
4192 // Remove from all groups.
4195 // Brute force unenrol from all courses.
4198 // Purge user preferences.
4201 // Purge user extra profile info.
4204 // Purge log of previous password hashes.
4207 // Last course access not necessary either.
4209 // Remove all user tokens.
4212 // Unauthorise the user for all services.
4215 // Remove users private keys.
4218 // Remove users customised pages.
4221 // Remove user's oauth2 refresh tokens, if present.
4224 // Delete user from $SESSION->bulk_users.
4227 }
4229 // Force logout - may fail if file based sessions used, sorry.
4232 // Generate username from email address, or a fake email.
4233 $delemail = !empty($user->email) ? $user->email : $user->username . '.' . $user->id . '@unknownemail.invalid';
4238 // Max username length is 100 chars. Select up to limit - (length of current time + 1 [period character]) from users email.
4242 // Workaround for bulk deletes of users with the same email address.
4243 while ($DB->record_exists('user', array('username' => $delname))) { // No need to use mnethostid here.
4245 }
4247 // Mark internal user record as "deleted".
4252 $updateuser->email = md5($user->username);// Store hash of username, useful importing/restoring users.
4257 // Don't trigger update event, as user is being deleted.
4260 // Delete all content associated with the user context, but not the context itself.
4263 // Delete any search data.
4266 // Any plugin that needs to cleanup should register this event.
4267 // Trigger event.
4279 )
4280 )
4281 );
4285 // We will update the user's timemodified, as it will be passed to the user_deleted event, which
4286 // should know about this updated property persisted to the user's table.
4289 // Notify auth plugin - do not block the delete even when plugin fails.
4294 }
4296 /**
4297 * Retrieve the guest user object.
4298 *
4299 * @return stdClass A {@link $USER} object
4300 */
4308 }
4311 }
4313 /**
4314 * Authenticates a user against the chosen authentication mechanism
4315 *
4316 * Given a username and password, this function looks them
4317 * up using the currently selected authentication mechanism,
4318 * and if the authentication is successful, it returns a
4319 * valid $user object from the 'user' table.
4320 *
4321 * Uses auth_ functions from the currently active auth module
4322 *
4323 * After authenticate_user_login() returns success, you will need to
4324 * log that the user has logged in, and call complete_user_login() to set
4325 * the session up.
4326 *
4327 * Note: this function works only with non-mnet accounts!
4328 *
4329 * @param string $username User's username (or also email if $CFG->authloginviaemail enabled)
4330 * @param string $password User's password
4331 * @param bool $ignorelockout useful when guessing is prevented by other mechanism such as captcha or SSO
4332 * @param int $failurereason login failure reason, can be used in renderers (it may disclose if account exists)
4333 * @param mixed logintoken If this is set to a string it is validated against the login token for the session.
4334 * @return stdClass|false A {@link $USER} object or false if error
4335 */
4336 function authenticate_user_login($username, $password, $ignorelockout=false, &$failurereason=null, $logintoken=false) {
4341 // we have found the user
4349 // Use email for login only if unique.
4353 }
4355 }
4356 }
4358 // Make sure this request came from the login form.
4362 // Trigger login failed event (specifying the ID of the found user, if available).
4368 ],
4371 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Invalid Login Token: $username ".$_SERVER['HTTP_USER_AGENT']);
4373 }
4378 // Use manual if auth not set.
4384 }
4389 // Trigger login failed event.
4393 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Suspended Login: $username ".$_SERVER['HTTP_USER_AGENT']);
4395 }
4397 // Legacy way to suspend user.
4400 // Trigger login failed event.
4404 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Disabled Login: $username ".$_SERVER['HTTP_USER_AGENT']);
4406 }
4410 // Check if there's a deleted record (cheaply), this should not happen because we mangle usernames in delete_user().
4411 if ($DB->get_field('user', 'id', array('username' => $username, 'mnethostid' => $CFG->mnet_localhost_id, 'deleted' => 1))) {
4414 // Trigger login failed event.
4418 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Deleted Login: $username ".$_SERVER['HTTP_USER_AGENT']);
4420 }
4422 // User does not exist.
4426 }
4429 // Some other mechanism protects against brute force password guessing, for example login form might include reCAPTCHA
4430 // or this function is called from a SSO script.
4432 // Verify login lockout after other ways that may prevent user login.
4436 // Trigger login failed event.
4441 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Login lockout: $username ".$_SERVER['HTTP_USER_AGENT']);
4443 }
4445 // We can not lockout non-existing accounts.
4446 }
4451 // On auth fail fall through to the next plugin.
4454 }
4456 // Before performing login actions, check if user still passes password policy, if admin setting is enabled.
4461 // First trigger event for failure.
4465 // If able to change password, set flag and move on.
4467 // Check if we are on internal change password page, or service is external, don't show notification.
4469 if (!($PAGE->has_set_url() && $internalchangeurl->compare($PAGE->url)) && $authplugin->is_internal()) {
4471 }
4474 // Else force a reset if possible.
4479 // If support page is set, add link for help.
4484 }
4486 // If no change or reset is possible, add a notification for user.
4488 }
4489 }
4490 }
4492 // Successful authentication.
4494 // User already exists in database.
4496 // For some reason auth isn't set yet.
4499 }
4501 // If the existing hash is using an out-of-date algorithm (or the legacy md5 algorithm), then we should update to
4502 // the current hash algorithm while we have access to the user's password.
4506 // Update user record from external DB.
4508 }
4510 // The user is authenticated but user creation may be disabled.
4514 // Trigger login failed event.
4519 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Unknown user, can not create new accounts: $username ".
4524 }
4525 }
4532 }
4536 // Trigger login failed event.
4541 }
4544 // Just in case some auth plugin suspended account.
4546 // Trigger login failed event.
4550 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Suspended Login: $username ".$_SERVER['HTTP_USER_AGENT']);
4552 }
4557 }
4559 // Failed if all the plugins have failed.
4561 error_log('[client '.getremoteaddr()."] $CFG->wwwroot Failed Login: $username ".$_SERVER['HTTP_USER_AGENT']);
4562 }
4567 // Trigger login failed event.
4573 // Trigger login failed event.
4577 }
4580 }
4582 /**
4583 * Call to complete the user login process after authenticate_user_login()
4584 * has succeeded. It will setup the $USER variable and other required bits
4585 * and pieces.
4586 *
4587 * NOTE:
4588 * - It will NOT log anything -- up to the caller to decide what to log.
4589 * - this function does not set any cookies any more!
4590 *
4591 * @param stdClass $user
4592 * @param array $extrauserinfo
4593 * @return stdClass A {@link $USER} object - BC only, do not use
4594 */
4600 // Reload preferences from DB.
4604 // Update login times.
4607 // Extra session prefs init.
4610 // Trigger login event.
4618 ]
4619 )
4620 );
4623 // Check if the user is using a new browser or session (a new MoodleSession cookie is set in that case).
4624 // If the user is accessing from the same IP, ignore everything (most of the time will be a new session in the same browser).
4625 // Skip Web Service requests, CLI scripts, AJAX scripts, and request from the mobile app itself.
4630 if (!empty($SESSION->isnewsessioncookie) && $isnewip && $isvalidenv && !\core_useragent::is_moodle_app()) {
4636 // Schedule adhoc task to sent a login notification to the user.
4642 }
4644 // Queue migrating the messaging data, if we need to.
4646 // Check if there are any legacy messages to migrate.
4651 }
4652 }
4655 // No need to continue when user is THE guest.
4657 }
4660 // We can redirect to password change URL only in browser.
4662 }
4664 // Select password change url.
4667 // Check whether the user should be changing password.
4676 }
4679 }
4680 }
4682 }
4684 /**
4685 * Check a password hash to see if it was hashed using the legacy hash algorithm (md5).
4686 *
4687 * @param string $password String to check.
4688 * @return boolean True if the $password matches the format of an md5 sum.
4689 */
4692 }
4694 /**
4695 * Compare password against hash stored in user object to determine if it is valid.
4696 *
4697 * If necessary it also updates the stored hash to the current format.
4698 *
4699 * @param stdClass $user (Password property may be updated).
4700 * @param string $password Plain text password.
4701 * @return bool True if password is valid.
4702 */
4707 // Internal password is not used at all, it can not validate.
4709 }
4711 // If hash isn't a legacy (md5) hash, validate using the library function.
4714 }
4716 // Otherwise we need to check for a legacy (md5) hash instead. If the hash
4717 // is valid we can then update it to the new algorithm.
4726 // Note: we are intentionally using the addslashes() here because we
4727 // need to accept old password hashes of passwords with magic quotes.
4734 if ($user->password === md5($password.$CFG->$alt) or $user->password === md5(addslashes($password).$CFG->$alt)) {
4737 }
4738 }
4739 }
4740 }
4743 // If the password matches the existing md5 hash, update to the
4744 // current hash algorithm while we have access to the user's password.
4746 }
4749 }
4751 /**
4752 * Calculate hash for a plain text password.
4753 *
4754 * @param string $password Plain text password to be hashed.
4755 * @param bool $fasthash If true, use a low cost factor when generating the hash
4756 * This is much faster to generate but makes the hash
4757 * less secure. It is used when lots of hashes need to
4758 * be generated quickly.
4759 * @return string The hashed password.
4760 *
4761 * @throws moodle_exception If a problem occurs while generating the hash.
4762 */
4766 // Set the cost factor to 4 for fast hashing, otherwise use default cost.
4773 }
4776 }
4778 /**
4779 * Update password hash in user object (if necessary).
4780 *
4781 * The password is updated if:
4782 * 1. The password has changed (the hash of $user->password is different
4783 * to the hash of $password).
4784 * 2. The existing hash is using an out-of-date algorithm (or the legacy
4785 * md5 algorithm).
4786 *
4787 * Updating the password will modify the $user object and the database
4788 * record to use the current hashing algorithm.
4789 * It will remove Web Services user tokens too.
4790 *
4791 * @param stdClass $user User object (password property may be updated).
4792 * @param string $password Plain text password.
4793 * @param bool $fasthash If true, use a low cost factor when generating the hash
4794 * This is much faster to generate but makes the hash
4795 * less secure. It is used when lots of hashes need to
4796 * be generated quickly.
4797 * @return bool Always returns true.
4798 */
4802 // Figure out what the hashed password should be.
4805 DEBUG_DEVELOPER);
4807 }
4813 }
4818 // Password is not cached, update it if not set to AUTH_PASSWORD_NOT_CACHED.
4822 // If verification fails then it means the password has changed.
4826 // While creating new user, password in unset in $user object, to avoid
4827 // saving it with user_create()
4829 }
4835 // Trigger event.
4839 // Remove WS user tokens.
4843 }
4844 }
4847 }
4849 /**
4850 * Get a complete user record, which includes all the info in the user record.
4851 *
4852 * Intended for setting as $USER session variable
4853 *
4854 * @param string $field The user field to be checked for a given value.
4855 * @param string $value The value to match for $field.
4856 * @param int $mnethostid
4857 * @param bool $throwexception If true, it will throw an exception when there's no record found or when there are multiple records
4858 * found. Otherwise, it will just return false.
4859 * @return mixed False, or A {@link $USER} object.
4860 */
4866 }
4868 // Change the field to lowercase.
4871 // List of case insensitive fields.
4874 // Username input is forced to lowercase and should be case sensitive.
4877 }
4879 // Build the WHERE clause for an SQL query.
4882 // Do a case-insensitive query, if necessary. These are generally very expensive. The performance can be improved on some DBs
4883 // such as MySQL by pre-filtering users with accent-insensitive subselect.
4891 }
4894 // If we are loading user data based on anything other than id,
4895 // we must also restrict our search based on mnet host.
4898 // If empty, we restrict to local users.
4900 }
4901 }
4905 }
4909 }
4911 // Get all the basic user data.
4913 // Make sure that there's only a single record that matches our query.
4914 // For example, when fetching by email, multiple records might match the query as there's no guarantee that email addresses
4915 // are unique. Therefore we can't reliably tell whether the user profile data that we're fetching is the correct one.
4921 // Return false when no records or multiple records were found.
4923 }
4924 }
4926 // Get various settings and preferences.
4928 // Preload preference cache.
4931 // Load course enrolment related stuff.
4937 }
4938 }
4940 // Add cohort theme.
4945 }
4946 }
4948 // Add the custom profile fields to the user record.
4953 }
4955 // Rewrite some variables if necessary.
4957 // No need to cart all of it around.
4959 }
4961 // Guest language always same as site.
4963 // Name always in current language.
4966 }
4969 }
4971 /**
4972 * Validate a password against the configured password policy
4973 *
4974 * @param string $password the password to be checked against the password policy
4975 * @param string $errmsg the error message to display when the password doesn't comply with the policy.
4976 * @param stdClass $user the user object to perform password validation against. Defaults to null if not provided.
4977 *
4978 * @return bool true if the password is valid according to the policy. false otherwise.
4979 */
4986 $errmsg .= '<div>'. get_string('errorminpasswordlength', 'auth', $CFG->minpasswordlength) .'</div>';
4987 }
4989 $errmsg .= '<div>'. get_string('errorminpassworddigits', 'auth', $CFG->minpassworddigits) .'</div>';
4990 }
4992 $errmsg .= '<div>'. get_string('errorminpasswordlower', 'auth', $CFG->minpasswordlower) .'</div>';
4993 }
4995 $errmsg .= '<div>'. get_string('errorminpasswordupper', 'auth', $CFG->minpasswordupper) .'</div>';
4996 }
4997 if (preg_match_all('/[^[:upper:][:lower:][:digit:]]/u', $password, $matches) < $CFG->minpasswordnonalphanum) {
4998 $errmsg .= '<div>'. get_string('errorminpasswordnonalphanum', 'auth', $CFG->minpasswordnonalphanum) .'</div>';
4999 }
5001 $errmsg .= '<div>'. get_string('errormaxconsecutiveidentchars', 'auth', $CFG->maxconsecutiveidentchars) .'</div>';
5002 }
5004 // Fire any additional password policy functions from plugins.
5005 // Plugin functions should output an error message string or empty string for success.
5012 }
5013 }
5014 }
5015 }
5021 }
5022 }
5025 /**
5026 * When logging in, this function is run to set certain preferences for the current SESSION.
5027 */
5036 }
5039 /**
5040 * Delete a course, including all related data from the database, and any associated files.
5041 *
5042 * @param mixed $courseorid The id of the course or course object to delete.
5043 * @param bool $showfeedback Whether to display notifications of each action the function performs.
5044 * @return bool true if all the removals succeeded. false if there were any failures. If this
5045 * method returns false, some of the removals will probably have succeeded, and others
5046 * failed, but you have no way of knowing which.
5047 */
5058 }
5059 }
5062 // Frontpage course can not be deleted!!
5065 }
5067 // Allow plugins to use this course before we completely delete it.
5072 }
5073 }
5074 }
5076 // Tell the search manager we are about to delete a course. This prevents us sending updates
5077 // for each individual context being deleted.
5083 // Make the course completely empty.
5086 // Delete the course and related context instance.
5092 // Reset all course related caches here.
5095 // Tell search that we have deleted the course so it can delete course data from the index.
5098 // Trigger a course deleted event.
5106 )
5107 ));
5112 }
5114 /**
5115 * Clear a course out completely, deleting all content but don't delete the course itself.
5116 *
5117 * This function does not verify any permissions.
5118 *
5119 * Please note this function also deletes all user enrolments,
5120 * enrolment instances and role assignments by default.
5121 *
5122 * $options:
5123 * - 'keep_roles_and_enrolments' - false by default
5124 * - 'keep_groups_and_groupings' - false by default
5125 *
5126 * @param int $courseid The id of the course that is being deleted
5127 * @param bool $showfeedback Whether to display notifications of each action the function performs.
5128 * @param array $options extra options
5129 * @return bool true if all the removals succeeded. false if there were any failures. If this
5130 * method returns false, some of the removals will probably have succeeded, and others
5131 * failed, but you have no way of knowing which.
5132 */
5145 // Handle course badges.
5148 // NOTE: these concatenated strings are suboptimal, but it is just extra info...
5151 // Some crazy wishlist of stuff we should skip during purging of course content.
5158 // Delete course completion information, this has to be done before grades and enrols.
5162 echo $OUTPUT->notification($strdeleted.get_string('completion', 'completion'), 'notifysuccess');
5163 }
5165 // Remove all data from gradebook - this needs to be done before course modules
5166 // because while deleting this information, the system may need to reference
5167 // the course modules that own the grades.
5171 // Delete course blocks in any all child contexts,
5172 // they may depend on modules so delete them first.
5176 }
5180 echo $OUTPUT->notification($strdeleted.get_string('type_block_plural', 'plugin'), 'notifysuccess');
5181 }
5186 // Get the list of all modules that are properly installed.
5189 // Delete every instance of every module,
5190 // this has to be done before deleting of course level stuff.
5195 }
5199 LEFT JOIN {course_modules} cm ON cm.instance = m.id AND cm.module = :moduleid
5210 // Delete activity context questions and question categories.
5212 // Notify the competency subsystem.
5215 // Delete all tag instances associated with the instance of this module.
5218 }
5220 // This purges all module data in related tables, extra user prefs, settings, etc.
5223 // NOTE: we should not allow installation of modules with missing delete support!
5224 debugging("Defective module '$modname' detected when deleting course contents: missing function $moddelete()!");
5226 }
5229 // Delete cm and its context - orphaned contexts are purged in cron in case of any race condition.
5235 }
5236 }
5237 }
5240 }
5242 // Ooops, this module is not properly installed, force-delete it in the next block.
5243 }
5244 }
5246 // We have tried to delete everything the nice way - now let's force-delete any remaining module data.
5248 // Delete completion defaults.
5251 // Remove all data from availability and completion tables that is associated
5252 // with course-modules belonging to this course. Note this is done even if the
5253 // features are not enabled now, in case they were enabled previously.
5259 // Remove course-module data that has not been removed in modules' _delete_instance callbacks.
5267 // Ignore weird or missing table problems.
5268 }
5269 }
5273 }
5276 echo $OUTPUT->notification($strdeleted.get_string('type_mod_plural', 'plugin'), 'notifysuccess');
5277 }
5279 // Delete questions and question categories.
5283 }
5285 // Delete content bank contents.
5289 echo $OUTPUT->notification($strdeleted.get_string('contentbank', 'contentbank'), 'notifysuccess');
5290 }
5292 // Make sure there are no subcontexts left - all valid blocks and modules should be already gone.
5296 }
5299 // Remove roles and enrolments by default.
5301 // This hack is used in restore when deleting contents of existing course.
5302 // During restore, we should remove only enrolment related data that the user performing the restore has a
5303 // permission to remove.
5308 echo $OUTPUT->notification($strdeleted.get_string('type_enrol_plural', 'plugin'), 'notifysuccess');
5309 }
5310 }
5312 // Delete any groups, removing members and grouping/course links first.
5316 }
5318 // Filters be gone!
5321 // Notes, you shall not pass!
5324 // Die comments!
5327 // Ratings are history too.
5333 // Delete course tags.
5336 // Give the course format the opportunity to remove its obscure data.
5340 // Notify the competency subsystem.
5343 // Delete calendar events.
5347 // Delete all related records in other core tables that may have a courseid
5348 // This array stores the tables that need to be cleared, as
5349 // table_name => column_name that contains the course id.
5353 );
5356 }
5358 // Delete all course backup files.
5361 // Cleanup course record - remove links to deleted stuff.
5369 }
5372 // Delete course sections.
5375 // Delete legacy, section and any other course files.
5378 // Delete all remaining stuff linked to context such as files, comments, ratings, etc.
5379 if (empty($options['keep_roles_and_enrolments']) and empty($options['keep_groups_and_groupings'])) {
5380 // Easy, do not delete the context itself...
5383 // Hack alert!!!!
5384 // We can not drop all context stuff because it would bork enrolments and roles,
5385 // there might be also files used by enrol plugins...
5386 }
5388 // Delete legacy files - just in case some files are still left there after conversion to new file api,
5389 // also some non-standard unsupported plugins may try to store something there.
5392 // Delete from cache to reduce the cache size especially makes sense in case of bulk course deletion.
5395 // Trigger a course content deleted event.
5402 ));
5407 }
5409 /**
5410 * Change dates in module - used from course reset.
5411 *
5412 * @param string $modname forum, assignment, etc
5413 * @param array $fields array of date fields from mod table
5414 * @param int $timeshift time difference
5415 * @param int $courseid
5416 * @param int $modid (Optional) passed if specific mod instance in course needs to be updated.
5417 * @return bool success
5418 */
5432 }
5434 }
5437 }
5439 /**
5440 * This function will empty a course of user data.
5441 * It will retain the activities and the structure of the course.
5442 *
5443 * @param object $data an object containing all the settings including courseid (without magic quotes)
5444 * @return array status array of array component, item, error
5445 */
5461 )
5462 );
5466 // Calculate the time shift of dates.
5468 // Time part of course startdate should be zero.
5472 }
5474 // Result array: component, item, error.
5477 // Start the resetting.
5480 // Move the course start time.
5482 // Change course start data.
5483 $DB->set_field('course', 'startdate', $data->reset_start_date, array('id' => $data->courseid));
5484 // Update all course and group events - do not move activity events.
5486 SET timestart = timestart + ?
5490 // Update any date activity restrictions.
5493 }
5495 // Update completion expected dates.
5501 $DB->set_field('course_modules', 'completionexpected', $cm->completionexpected + $data->timeshift,
5504 }
5505 }
5507 // Clear course cache if changes made.
5510 }
5512 // Update course date completion criteria.
5514 }
5516 $status[] = array('component' => $componentstr, 'item' => get_string('datechanged'), 'error' => false);
5517 }
5520 // If the user set a end date value respect it.
5523 // If there is a time shift apply it to the end date as well.
5526 }
5530 $status[] = array('component' => $componentstr, 'item' => get_string('deleteevents', 'calendar'), 'error' => false);
5531 }
5536 $status[] = array('component' => $componentstr, 'item' => get_string('deletenotes', 'notes'), 'error' => false);
5537 }
5542 $status[] = array('component' => $componentstr, 'item' => get_string('deleteblogassociations', 'blog'), 'error' => false);
5543 }
5546 // Delete course and activity completion information.
5552 }
5558 }
5566 }
5568 $status[] = array('component' => $componentstr, 'item' => get_string('deletecourseoverrides', 'role'), 'error' => false);
5569 }
5575 }
5576 $status[] = array('component' => $componentstr, 'item' => get_string('deletelocalroles', 'role'), 'error' => false);
5577 }
5579 // First unenrol users - this cleans some of related user data too, such as forum subscriptions, tracking, etc.
5588 }
5589 }
5595 FROM {user_enrolments} ue
5596 JOIN {enrol} e ON (e.id = ue.enrolid AND e.courseid = :courseid)
5597 JOIN {context} c ON (c.contextlevel = :courselevel AND c.instanceid = e.courseid)
5598 JOIN {role_assignments} ra ON (ra.contextid = c.id AND ra.roleid = :roleid AND ra.userid = ue.userid)";
5599 $params = array('courseid' => $data->courseid, 'roleid' => $withroleid, 'courselevel' => CONTEXT_COURSE);
5602 // Without any role assigned at course context.
5604 FROM {user_enrolments} ue
5605 JOIN {enrol} e ON (e.id = ue.enrolid AND e.courseid = :courseid)
5606 JOIN {context} c ON (c.contextlevel = :courselevel AND c.instanceid = e.courseid)
5607 LEFT JOIN {role_assignments} ra ON (ra.contextid = c.id AND ra.userid = ue.userid)
5610 }
5616 }
5621 }
5624 // If we don't remove all roles and user has more than one role, just remove this role.
5629 // If we remove all roles or user has only one role, unenrol user from course.
5631 }
5633 }
5635 }
5636 }
5642 );
5643 }
5647 // Remove all group members.
5650 $status[] = array('component' => $componentstr, 'item' => get_string('removegroupsmembers', 'group'), 'error' => false);
5651 }
5653 // Remove all groups.
5656 $status[] = array('component' => $componentstr, 'item' => get_string('deleteallgroups', 'group'), 'error' => false);
5657 }
5659 // Remove all grouping members.
5662 $status[] = array('component' => $componentstr, 'item' => get_string('removegroupingsmembers', 'group'), 'error' => false);
5663 }
5665 // Remove all groupings.
5668 $status[] = array('component' => $componentstr, 'item' => get_string('deleteallgroupings', 'group'), 'error' => false);
5669 }
5671 // Look in every instance of every module for data to delete.
5681 }
5689 }
5692 }
5695 }
5696 // Update calendar events for all modules.
5698 }
5699 }
5701 // Mention unsupported mods.
5708 );
5709 }
5710 }
5713 // Reset gradebook,.
5718 $status[] = array('component' => $componentstr, 'item' => get_string('removeallcourseitems', 'grades'), 'error' => false);
5722 $status[] = array('component' => $componentstr, 'item' => get_string('removeallcoursegrades', 'grades'), 'error' => false);
5723 }
5724 // Reset comments.
5728 }
5734 }
5736 /**
5737 * Generate an email processing address.
5738 *
5739 * @param int $modid
5740 * @param string $modargs
5741 * @return string Returns email processing address
5742 */
5748 }
5750 /**
5751 * ?
5752 *
5753 * @todo Finish documenting this function
5754 *
5755 * @param string $modargs
5756 * @param string $body Currently unused
5757 */
5761 // The first char should be an unencoded letter. We'll take this as an action.
5766 // Check the half md5 of their email.
5770 }
5771 // Else maybe they've already changed it?
5772 }
5773 }
5775 // Maybe more later?
5776 }
5777 }
5779 // CORRESPONDENCE.
5781 /**
5782 * Get mailer instance, enable buffering, flush buffer or disable buffering.
5783 *
5784 * @param string $action 'get', 'buffer', 'close' or 'flush'
5785 * @return moodle_phpmailer|null mailer instance if 'get' used or nothing
5786 */
5790 /** @var moodle_phpmailer $mailer */
5796 }
5804 // Reset the mailer.
5822 }
5826 }
5834 // Use Qmail system.
5838 // Use PHP mail() = sendmail.
5842 // Use SMTP directly.
5846 }
5847 // Specify main and backup servers.
5849 // Specify secure connection protocol.
5851 // Use previous keepalive.
5855 // Use SMTP authentication.
5859 }
5860 }
5863 }
5867 // Keep smtp session open after sending.
5874 }
5875 }
5877 }
5879 // Close smtp session, but continue buffering.
5884 }
5888 }
5889 }
5891 }
5893 // Close smtp session, do not buffer anymore.
5898 }
5901 }
5902 }
5904 /**
5905 * A helper function to test for email diversion
5906 *
5907 * @param string $email
5908 * @return bool Returns true if the email should be diverted
5909 */
5915 }
5919 }
5921 $patterns = array_map('trim', preg_split("/[\s,]+/", $CFG->divertallemailsexcept, -1, PREG_SPLIT_NO_EMPTY));
5925 }
5926 }
5929 }
5931 /**
5932 * Generate a unique email Message-ID using the moodle domain and install path
5933 *
5934 * @param string $localpart An optional unique message id prefix.
5935 * @return string The formatted ID ready for appending to the email headers.
5936 */
5943 // If multiple moodles are on the same domain we want to tell them
5944 // apart so we add the install path to the local part. This means
5945 // that the id local part should never contain a / character so
5946 // we can correctly parse the id to reassemble the wwwroot.
5949 }
5953 }
5955 // Because we may have an option /installpath suffix to the local part
5956 // of the id we need to escape any / chars which are in the $localpart.
5960 }
5962 /**
5963 * Send an email to a specified user
5964 *
5965 * @param stdClass $user A {@link $USER} object
5966 * @param stdClass $from A {@link $USER} object
5967 * @param string $subject plain text subject line of the email
5968 * @param string $messagetext plain text version of the message
5969 * @param string $messagehtml complete html version of the message (optional)
5970 * @param string $attachment a file on the filesystem, either relative to $CFG->dataroot or a full path to a file in one of
5971 * the following directories: $CFG->cachedir, $CFG->dataroot, $CFG->dirroot, $CFG->localcachedir, $CFG->tempdir
5972 * @param string $attachname the name of the file (extension indicates MIME)
5973 * @param bool $usetrueaddress determines whether $from email address should
5974 * be sent out. Will be overruled by user profile setting for maildisplay
5975 * @param string $replyto Email address to reply to
5976 * @param string $replytoname Name of reply to recipient
5977 * @param int $wordwrapwidth custom word wrap width, default 79
5978 * @return bool Returns true if mail was sent OK and false if there was an error.
5979 */
5980 function email_to_user($user, $from, $subject, $messagetext, $messagehtml = '', $attachment = '', $attachname = '',
5988 }
5993 }
5998 }
6001 // Fake email sending in behat.
6003 }
6006 // Hidden setting for development sites, set in config.php if needed.
6009 }
6015 }
6017 // Skip mail to suspended users.
6018 if ((isset($user->auth) && $user->auth=='nologin') or (isset($user->suspended) && $user->suspended)) {
6020 }
6023 // We can not send emails to invalid addresses - it might create security issue or confuse the mailer.
6024 debugging("email_to_user: User $user->id (".fullname($user).") email ($user->email) is invalid! Not sending.");
6026 }
6029 debugging("email_to_user: User $user->id (".fullname($user).") is over bounce threshold! Not sending.");
6031 }
6033 // TLD .invalid is specifically reserved for invalid domain names.
6034 // For More information, see {@link http://tools.ietf.org/html/rfc2606#section-2}.
6036 debugging("email_to_user: User $user->id (".fullname($user).") email domain ($user->email) is invalid! Not sending.");
6038 }
6040 // If the user is a remote mnet user, parse the email text for URL to the
6041 // wwwroot and modify the url to direct the user's browser to login at their
6042 // home site (identity provider - idp) before hitting the link itself.
6055 }
6060 }
6065 // Make sure that we fall back onto some reasonable no-reply address.
6072 }
6074 // Make up an email address for handling bounces.
6080 }
6082 // Make sure that the explicit replyto is valid, fall back to the implicit one.
6086 }
6091 // Check if using the true address is true, and the email is in the list of allowed domains for sending email,
6092 // and that the senders email setting is either displayed to everyone, or display to only other users that are enrolled
6093 // in a course with the sender.
6097 // Better not to use $noreplyaddress in this case.
6099 }
6108 }
6112 }
6122 }
6126 }
6127 }
6131 }
6135 // Set word wrap.
6139 // Add custom headers.
6143 }
6146 }
6147 }
6149 // If the X-PHP-Originating-Script email header is on then also add an additional
6150 // header with details of where exactly in moodle the email was triggered from,
6151 // either a call to message_send() or to email_to_user().
6160 }
6161 }
6166 }
6173 }
6174 }
6175 }
6179 }
6192 );
6196 }
6200 }
6203 // Only process html templates if the user preferences allow html email.
6206 // If no html has been given, BUT there is an html wrapping template then
6207 // auto convert the text to html and then wrap it.
6209 }
6212 }
6219 // Autogenerate a MessageID if it's missing.
6222 }
6225 // Don't ever send HTML to users who don't want it.
6233 }
6237 // Security check for ".." in dir path.
6240 $mail->addStringAttachment('Error in attachment. User attempted to attach a filename with a unsafe name.', 'error.txt', '8bit', 'text/plain');
6245 // Before doing the comparison, make sure that the paths are correct (Windows uses slashes in the other direction).
6246 // The absolute (real) path is also fetched to ensure that comparisons to allowed paths are compared equally.
6249 // Build an array of all filepaths from which attachments can be added (normalised slashes, absolute/real path).
6252 }, [
6259 ]);
6261 // Set addpath to true.
6264 // Check if attachment includes one of the allowed paths.
6266 // Set addpath to false if the attachment includes one of the allowed paths.
6270 }
6271 }
6273 // If the attachment is a full path to a file in the multiple allowed paths, use it as is,
6274 // otherwise assume it is a relative path from the dataroot (for backwards compatibility reasons).
6277 }
6280 }
6281 }
6283 // Check if the email should be sent in an other charset then the default UTF-8.
6286 // Use the defined site mail charset or eventually the one preferred by the recipient.
6291 }
6292 }
6294 // Convert all the necessary strings if the charset is supported.
6306 }
6309 }
6310 }
6311 }
6315 }
6318 }
6329 debugging("Email DKIM selector chosen due to {$mail->From} but no certificate found at $pempath", DEBUG_DEVELOPER);
6330 }
6331 }
6337 }
6340 // Trigger event for failing to send email.
6349 )
6350 ));
6354 }
6357 }
6359 }
6360 }
6362 /**
6363 * Check to see if a user's real email address should be used for the "From" field.
6364 *
6365 * @param object $from The user object for the user we are sending the email from.
6366 * @param object $user The user object that we are sending the email to.
6367 * @param array $unused No longer used.
6368 * @return bool Returns true if we can use the from user's email adress in the "From" field.
6369 */
6374 }
6376 // Email is in the list of allowed domains for sending email,
6377 // and the senders email setting is either displayed to everyone, or display to only other users that are enrolled
6378 // in a course with the sender.
6379 if (\core\ip_utils::is_domain_in_allowed_list(substr($from->email, strpos($from->email, '@') + 1), $alloweddomains)
6384 }
6386 }
6388 /**
6389 * Generate a signoff for emails based on support settings
6390 *
6391 * @return string
6392 */
6399 }
6405 }
6408 }
6410 /**
6411 * Sets specified user's password and send the new password to the user via email.
6412 *
6413 * @param stdClass $user A {@link $USER} object
6414 * @param bool $fasthash If true, use a low cost factor when generating the hash for speed.
6415 * @return bool|string Returns "true" if mail was sent OK and "false" if there was an error
6416 */
6420 // We try to send the mail in language the user understands,
6421 // unfortunately the filter_string() does not support alternative langs yet
6422 // so multilang will not work properly for site->fullname.
6443 $subject = format_string($site->fullname) .': '. (string)new lang_string('newusernewpasswordsubj', '', $a, $lang);
6445 // Directly email rather than using the messaging system to ensure its not routed to a popup or jabber.
6448 }
6450 /**
6451 * Resets specified user's password and send the new password to the user via email.
6452 *
6453 * @param stdClass $user A {@link $USER} object
6454 * @return bool Returns true if mail was sent OK and false if there was an error.
6455 */
6464 trigger_error("Attempt to reset user password for user $user->username with Auth $user->auth.");
6466 }
6472 }
6489 // Directly email rather than using the messaging system to ensure its not routed to a popup or jabber.
6491 }
6493 /**
6494 * Send email to specified user with confirmation text and activation link.
6495 *
6496 * @param stdClass $user A {@link $USER} object
6497 * @param string $confirmationurl user confirmation URL
6498 * @return bool Returns true if mail was sent OK and false if there was an error.
6499 */
6514 }
6517 // Remove data parameter just in case it was included in the confirmation so we can add it manually later.
6521 // We need to custom encode the username to include trailing dots in the link.
6522 // Because of this custom encoding we can't use moodle_url directly.
6523 // Determine if a query string is present in the confirmation url.
6525 // Perform normal url encoding of the username first.
6527 // Prevent problems with trailing dots not being included as part of link in some mail clients.
6530 $data->link = $confirmationpath . ( $hasquerystring ? '&' : '?') . 'data='. $user->secret .'/'. $username;
6535 // Directly email rather than using the messaging system to ensure its not routed to a popup or jabber.
6537 }
6539 /**
6540 * Sends a password change confirmation email.
6541 *
6542 * @param stdClass $user A {@link $USER} object
6543 * @param stdClass $resetrecord An object tracking metadata regarding password reset request
6544 * @return bool Returns true if mail was sent OK and false if there was an error.
6545 */
6565 // Directly email rather than using the messaging system to ensure its not routed to a popup or jabber.
6568 }
6570 /**
6571 * Sends an email containing information on how to change your password.
6572 *
6573 * @param stdClass $user A {@link $USER} object
6574 * @return bool Returns true if mail was sent OK and false if there was an error.
6575 */
6590 // Directly email rather than using the messaging system to ensure its not routed to a popup or jabber.
6592 }
6597 // Directly email rather than using the messaging system to ensure its not routed to a popup or jabber.
6599 }
6601 /**
6602 * Check that an email is allowed. It returns an error message if there was a problem.
6603 *
6604 * @param string $email Content of email
6605 * @return string|false
6606 */
6610 // Comparing lowercase domains.
6618 }
6621 // Subdomains are in a form ".example.com" - matches "xxx@anything.example.com".
6623 }
6627 }
6628 }
6637 }
6640 // Subdomains are in a form ".example.com" - matches "xxx@anything.example.com".
6642 }
6646 }
6647 }
6648 }
6651 }
6653 // FILE HANDLING.
6655 /**
6656 * Returns local file storage instance
6657 *
6658 * @return file_storage
6659 */
6668 }
6672 }
6679 }
6681 /**
6682 * Returns local file storage instance
6683 *
6684 * @return file_browser
6685 */
6693 }
6700 }
6702 /**
6703 * Returns file packer
6704 *
6705 * @param string $mimetype default application/zip
6706 * @return file_packer
6707 */
6715 }
6733 }
6739 }
6741 /**
6742 * Returns current name of file on disk if it exists.
6743 *
6744 * @param string $newfile File to be verified
6745 * @return string Current name of file on disk if true
6746 */
6750 }
6755 }
6756 }
6758 /**
6759 * Returns the maximum size for uploading files.
6760 *
6761 * There are seven possible upload limits:
6762 * 1. in Apache using LimitRequestBody (no way of checking or changing this)
6763 * 2. in php.ini for 'upload_max_filesize' (can not be changed inside PHP)
6764 * 3. in .htaccess for 'upload_max_filesize' (can not be changed inside PHP)
6765 * 4. in php.ini for 'post_max_size' (can not be changed inside PHP)
6766 * 5. by the Moodle admin in $CFG->maxbytes
6767 * 6. by the teacher in the current course $course->maxbytes
6768 * 7. by the teacher for the current module, eg $assignment->maxbytes
6769 *
6770 * These last two are passed to this function as arguments (in bytes).
6771 * Anything defined as 0 is ignored.
6772 * The smallest of all the non-zero numbers is returned.
6773 *
6774 * @todo Finish documenting this function
6775 *
6776 * @param int $sitebytes Set maximum size
6777 * @param int $coursebytes Current course $course->maxbytes (in bytes)
6778 * @param int $modulebytes Current module ->maxbytes (in bytes)
6779 * @param bool $unused This parameter has been deprecated and is not used any more.
6780 * @return int The maximum size for uploading files.
6781 */
6782 function get_max_upload_file_size($sitebytes=0, $coursebytes=0, $modulebytes=0, $unused = false) {
6786 }
6793 }
6794 }
6798 }
6802 }
6806 }
6809 }
6811 /**
6812 * Returns the maximum size for uploading files for the current user
6813 *
6814 * This function takes in account {@link get_max_upload_file_size()} the user's capabilities
6815 *
6816 * @param context $context The context in which to check user capabilities
6817 * @param int $sitebytes Set maximum size
6818 * @param int $coursebytes Current course $course->maxbytes (in bytes)
6819 * @param int $modulebytes Current module ->maxbytes (in bytes)
6820 * @param stdClass $user The user
6821 * @param bool $unused This parameter has been deprecated and is not used any more.
6822 * @return int The maximum size for uploading files.
6823 */
6824 function get_user_max_upload_file_size($context, $sitebytes = 0, $coursebytes = 0, $modulebytes = 0, $user = null,
6830 }
6834 }
6837 }
6839 /**
6840 * Returns an array of possible sizes in local language
6841 *
6842 * Related to {@link get_max_upload_file_size()} - this function returns an
6843 * array of possible sizes in an array, translated to the
6844 * local language.
6845 *
6846 * The list of options will go up to the minimum of $sitebytes, $coursebytes or $modulebytes.
6847 *
6848 * If $coursebytes or $sitebytes is not 0, an option will be included for "Course/Site upload limit (X)"
6849 * with the value set to 0. This option will be the first in the list.
6850 *
6851 * @uses SORT_NUMERIC
6852 * @param int $sitebytes Set maximum size
6853 * @param int $coursebytes Current course $course->maxbytes (in bytes)
6854 * @param int $modulebytes Current module ->maxbytes (in bytes)
6855 * @param int|array $custombytes custom upload size/s which will be added to list,
6856 * Only value/s smaller then maxsize will be added to list.
6857 * @return array
6858 */
6859 function get_max_upload_sizes($sitebytes = 0, $coursebytes = 0, $modulebytes = 0, $custombytes = null) {
6864 }
6867 // Will get the minimum of upload_max_filesize or post_max_size.
6869 }
6877 // If custombytes is given and is valid then add it to the list.
6882 }
6885 }
6887 // Allow maxbytes to be selected if it falls outside the above boundaries.
6889 // Note: get_real_size() is used in order to prevent problems with invalid values.
6891 }
6896 }
6897 }
6917 }
6923 }
6926 }
6928 /**
6929 * Returns an array with all the filenames in all subdirectories, relative to the given rootdir.
6930 *
6931 * If excludefiles is defined, then that file/directory is ignored
6932 * If getdirs is true, then (sub)directories are included in the output
6933 * If getfiles is true, then files are included in the output
6934 * (at least one of these must be true!)
6935 *
6936 * @todo Finish documenting this function. Add examples of $excludefile usage.
6937 *
6938 * @param string $rootdir A given root directory to start from
6939 * @param string|array $excludefiles If defined then the specified file/directory is ignored
6940 * @param bool $descend If true then subdirectories are recursed as well
6941 * @param bool $getdirs If true then (sub)directories are included in the output
6942 * @param bool $getfiles If true then files are included in the output
6943 * @return array An array with all the filenames in all subdirectories, relative to the given rootdir
6944 */
6945 function get_directory_list($rootdir, $excludefiles='', $descend=true, $getdirs=false, $getfiles=true) {
6951 }
6955 }
6959 }
6963 }
6969 }
6974 }
6979 }
6980 }
6983 }
6984 }
6990 }
6993 /**
6994 * Adds up all the files in a directory and works out the size.
6995 *
6996 * @param string $rootdir The directory to start from
6997 * @param string $excludefile A file to exclude when summing directory size
6998 * @return int The summed size of all files and subfiles within the root directory
6999 */
7003 // Do it this way if we can, it's much faster.
7010 // We told it to return k.
7012 }
7013 }
7016 // Must be a directory.
7018 }
7021 // Can't open it for some reason.
7023 }
7031 }
7037 }
7038 }
7042 }
7044 /**
7045 * Converts bytes into display form
7046 *
7047 * @param int $size The size to convert to human readable form
7048 * @param int $decimalplaces If specified, uses fixed number of decimal places
7049 * @param string $fixedunits If specified, uses fixed units (e.g. 'KB')
7050 * @return string Display version of size
7051 */
7058 }
7067 }
7094 }
7096 // Special case for magnitude 0 (bytes) - never use decimal places.
7100 }
7102 // Convert to specified units.
7105 // Fixed decimal places.
7107 }
7109 /**
7110 * Cleans a given filename by removing suspicious or troublesome characters
7111 *
7112 * @see clean_param()
7113 * @param string $string file name
7114 * @return string cleaned file name
7115 */
7118 }
7120 // STRING TRANSLATION.
7122 /**
7123 * Returns the code for the current language
7124 *
7125 * @category string
7126 * @return string
7127 */
7132 // Allows overriding course-forced language (useful for admins to check
7133 // issues in courses whose language they don't understand).
7134 // Also used by some code to temporarily get language-related information in a
7135 // specific language (see force_current_language()).
7139 // Activity language, if set.
7142 } else if (!empty($PAGE->course->id) && $PAGE->course->id != SITEID && !empty($PAGE->course->lang)) {
7143 // Course language can override all other settings for this page.
7147 // Session language can override other settings.
7158 }
7160 // Just in case this slipped in from somewhere by accident.
7164 }
7166 /**
7167 * Fix the current language to the given language code.
7168 *
7169 * @param string $lang The language code to use.
7170 * @return void
7171 */
7177 }
7192 }
7196 }
7197 }
7199 /**
7200 * Returns parent language of current active language if defined
7201 *
7202 * @category string
7203 * @param string $lang null means current language
7204 * @return string
7205 */
7212 }
7215 }
7217 /**
7218 * Force the current language to get strings and dates localised in the given language.
7219 *
7220 * After calling this function, all strings will be provided in the given language
7221 * until this function is called again, or equivalent code is run.
7222 *
7223 * @param string $language
7224 * @return string previous $SESSION->forcelang value
7225 */
7230 // Setting forcelang to null or an empty string disables its effect.
7234 }
7235 }
7237 }
7239 /**
7240 * Returns current string_manager instance.
7241 *
7242 * The param $forcereload is needed for CLI installer only where the string_manager instance
7243 * must be replaced during the install.php script life time.
7244 *
7245 * @category string
7246 * @param bool $forcereload shall the singleton be released and new instance created instead?
7247 * @return core_string_manager
7248 */
7256 }
7266 // Each language in the $CFG->langlist can has an "alias" that would substitute the default language name.
7272 }
7273 }
7274 }
7283 $singleton = new $classname($CFG->langotherroot, $CFG->langlocalroot, $translist, $transaliases);
7289 }
7292 debugging('Unable to instantiate custom string manager: class '.$classname.' can not be found.');
7293 }
7294 }
7296 $singleton = new core_string_manager_standard($CFG->langotherroot, $CFG->langlocalroot, $translist, $transaliases);
7300 }
7301 }
7304 }
7306 /**
7307 * Returns a localized string.
7308 *
7309 * Returns the translated string specified by $identifier as
7310 * for $module. Uses the same format files as STphp.
7311 * $a is an object, string or number that can be used
7312 * within translation strings
7313 *
7314 * eg 'hello {$a->firstname} {$a->lastname}'
7315 * or 'hello {$a}'
7316 *
7317 * If you would like to directly echo the localized string use
7318 * the function {@link print_string()}
7319 *
7320 * Example usage of this function involves finding the string you would
7321 * like a local equivalent of and using its identifier and module information
7322 * to retrieve it.<br/>
7323 * If you open moodle/lang/en/moodle.php and look near line 278
7324 * you will find a string to prompt a user for their word for 'course'
7325 * <code>
7326 * $string['course'] = 'Course';
7327 * </code>
7328 * So if you want to display the string 'Course'
7329 * in any language that supports it on your site
7330 * you just need to use the identifier 'course'
7331 * <code>
7332 * $mystring = '<strong>'. get_string('course') .'</strong>';
7333 * or
7334 * </code>
7335 * If the string you want is in another file you'd take a slightly
7336 * different approach. Looking in moodle/lang/en/calendar.php you find
7337 * around line 75:
7338 * <code>
7339 * $string['typecourse'] = 'Course event';
7340 * </code>
7341 * If you want to display the string "Course event" in any language
7342 * supported you would use the identifier 'typecourse' and the module 'calendar'
7343 * (because it is in the file calendar.php):
7344 * <code>
7345 * $mystring = '<h1>'. get_string('typecourse', 'calendar') .'</h1>';
7346 * </code>
7347 *
7348 * As a last resort, should the identifier fail to map to a string
7349 * the returned string will be [[ $identifier ]]
7350 *
7351 * In Moodle 2.3 there is a new argument to this function $lazyload.
7352 * Setting $lazyload to true causes get_string to return a lang_string object
7353 * rather than the string itself. The fetching of the string is then put off until
7354 * the string object is first used. The object can be used by calling it's out
7355 * method or by casting the object to a string, either directly e.g.
7356 * (string)$stringobject
7357 * or indirectly by using the string within another string or echoing it out e.g.
7358 * echo $stringobject
7359 * return "<p>{$stringobject}</p>";
7360 * It is worth noting that using $lazyload and attempting to use the string as an
7361 * array key will cause a fatal error as objects cannot be used as array keys.
7362 * But you should never do that anyway!
7363 * For more information {@link lang_string}
7364 *
7365 * @category string
7366 * @param string $identifier The key identifier for the localized string
7367 * @param string $component The module where the key identifier is stored,
7368 * usually expressed as the filename in the language pack without the
7369 * .php on the end but can also be written as mod/forum or grade/export/xls.
7370 * If none is specified then moodle.php is used.
7371 * @param string|object|array $a An object, string or number that can be used
7372 * within translation strings
7373 * @param bool $lazyload If set to true a string object is returned instead of
7374 * the string itself. The string then isn't calculated until it is first used.
7375 * @return string The localized string.
7376 * @throws coding_exception
7377 */
7381 // If the lazy load argument has been supplied return a lang_string object
7382 // instead.
7383 // We need to make sure it is true (and a bool) as you will see below there
7384 // used to be a forth argument at one point.
7387 }
7390 throw new coding_exception('Invalid string identifier. The identifier cannot be empty. Please fix your get_string() call.', DEBUG_DEVELOPER);
7391 }
7393 // There is now a forth argument again, this time it is a boolean however so
7394 // we can still check for the old extralocations parameter.
7396 debugging('extralocations parameter in get_string() is not supported any more, please use standard lang locations only.');
7397 }
7401 'like mod/mymod or block/myblock. The correct form looks like mymod, or block_myblock.' , DEBUG_DEVELOPER);
7421 }
7422 }
7426 // Debugging feature lets you display string identifier and component.
7427 if (isset($CFG->debugstringids) && $CFG->debugstringids && optional_param('strings', 0, PARAM_INT)) {
7429 }
7431 }
7433 /**
7434 * Converts an array of strings to their localized value.
7435 *
7436 * @param array $array An array of strings
7437 * @param string $component The language module that these strings can be found in.
7438 * @return stdClass translated strings.
7439 */
7444 }
7446 }
7448 /**
7449 * Prints out a translated string.
7450 *
7451 * Prints out a translated string using the return value from the {@link get_string()} function.
7452 *
7453 * Example usage of this function when the string is in the moodle.php file:<br/>
7454 * <code>
7455 * echo '<strong>';
7456 * print_string('course');
7457 * echo '</strong>';
7458 * </code>
7459 *
7460 * Example usage of this function when the string is not in the moodle.php file:<br/>
7461 * <code>
7462 * echo '<h1>';
7463 * print_string('typecourse', 'calendar');
7464 * echo '</h1>';
7465 * </code>
7466 *
7467 * @category string
7468 * @param string $identifier The key identifier for the localized string
7469 * @param string $component The module where the key identifier is stored. If none is specified then moodle.php is used.
7470 * @param string|object|array $a An object, string or number that can be used within translation strings
7471 */
7474 }
7476 /**
7477 * Returns a list of charset codes
7478 *
7479 * Returns a list of charset codes. It's hardcoded, so they should be added manually
7480 * (checking that such charset is supported by the texlib library!)
7481 *
7482 * @return array And associative array with contents in the form of charset => charset
7483 */
7498 }
7500 /**
7501 * Returns a list of valid and compatible themes
7502 *
7503 * @return array
7504 */
7514 }
7519 }
7524 }
7526 /**
7527 * Factory function for emoticon_manager
7528 *
7529 * @return emoticon_manager singleton
7530 */
7536 }
7539 }
7541 /**
7542 * Provides core support for plugins that have to deal with emoticons (like HTML editor or emoticon filter).
7543 *
7544 * Whenever this manager mentiones 'emoticon object', the following data
7545 * structure is expected: stdClass with properties text, imagename, imagecomponent,
7546 * altidentifier and altcomponent
7547 *
7548 * @see admin_setting_emoticons
7549 *
7550 * @copyright 2010 David Mudrak
7551 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
7552 */
7555 /**
7556 * Returns the currently enabled emoticons
7557 *
7558 * @param boolean $selectable - If true, only return emoticons that should be selectable from a list.
7559 * @return array of emoticon objects
7560 */
7567 }
7572 // Something is wrong with the format of stored setting.
7573 debugging('Invalid format of emoticons setting, please resave the emoticons settings form', DEBUG_NORMAL);
7575 }
7579 // Skip this one.
7581 }
7582 }
7583 }
7586 }
7588 /**
7589 * Converts emoticon object into renderable pix_emoticon object
7590 *
7591 * @param stdClass $emoticon emoticon object
7592 * @param array $attributes explicit HTML attributes to set
7593 * @return pix_emoticon
7594 */
7601 }
7603 }
7605 /**
7606 * Encodes the array of emoticon objects into a string storable in config table
7607 *
7608 * @see self::decode_stored_config()
7609 * @param array $emoticons array of emtocion objects
7610 * @return string
7611 */
7614 }
7616 /**
7617 * Decodes the string into an array of emoticon objects
7618 *
7619 * @see self::encode_stored_config()
7620 * @param string $encoded
7621 * @return string|null
7622 */
7627 }
7629 }
7631 /**
7632 * Returns default set of emoticons supported by Moodle
7633 *
7634 * @return array of sdtClasses
7635 */
7668 );
7669 }
7671 /**
7672 * Helper method preparing the stdClass with the emoticon properties
7673 *
7674 * @param string|array $text or array of strings
7675 * @param string $imagename to be used by {@link pix_emoticon}
7676 * @param string $altidentifier alternative string identifier, null for no alt
7677 * @param string $altcomponent where the alternative string is defined
7678 * @param string $imagecomponent to be used by {@link pix_emoticon}
7679 * @return stdClass
7680 */
7689 );
7690 }
7691 }
7693 // ENCRYPTION.
7695 /**
7696 * rc4encrypt
7697 *
7698 * @param string $data Data to encrypt.
7699 * @return string The now encrypted data.
7700 */
7703 }
7705 /**
7706 * rc4decrypt
7707 *
7708 * @param string $data Data to decrypt.
7709 * @return string The now decrypted data.
7710 */
7713 }
7715 /**
7716 * Based on a class by Mukul Sabharwal [mukulsabharwal @ yahoo.com]
7717 *
7718 * @todo Finish documenting this function
7719 *
7720 * @param string $pwd The password to use when encrypting or decrypting
7721 * @param string $data The data to be decrypted/encrypted
7722 * @param string $case Either 'de' for decrypt or '' for encrypt
7723 * @return string
7724 */
7729 }
7738 }
7747 }
7763 }
7769 }
7772 }
7774 // ENVIRONMENT CHECKING.
7776 /**
7777 * This method validates a plug name. It is much faster than calling clean_param.
7778 *
7779 * @param string $name a string that might be a plugin name.
7780 * @return bool if this string is a valid plugin name.
7781 */
7783 // This does not work for 'mod', bad luck, use any other type.
7785 }
7787 /**
7788 * Get a list of all the plugins of a given type that define a certain API function
7789 * in a certain file. The plugin component names and function names are returned.
7790 *
7791 * @param string $plugintype the type of plugin, e.g. 'mod' or 'report'.
7792 * @param string $function the part of the name of the function after the
7793 * frankenstyle prefix. e.g 'hook' if you are looking for functions with
7794 * names like report_courselist_hook.
7795 * @param string $file the name of file within the plugin that defines the
7796 * function. Defaults to lib.php.
7797 * @return array with frankenstyle plugin names as keys (e.g. 'report_courselist', 'mod_forum')
7798 * and the function names as values (e.g. 'report_courselist_hook', 'forum_hook').
7799 */
7803 // We don't include here as all plugin types files would be included.
7808 }
7812 // Reformat the array and include the files.
7816 // Check that it has not been removed and the file is still available.
7823 // Now that the file is loaded, we must verify the function still exists.
7827 // Invalidate the cache for next run.
7829 }
7830 }
7831 }
7832 }
7835 }
7837 /**
7838 * Get a list of all the plugins that define a certain API function in a certain file.
7839 *
7840 * @param string $function the part of the name of the function after the
7841 * frankenstyle prefix. e.g 'hook' if you are looking for functions with
7842 * names like report_courselist_hook.
7843 * @param string $file the name of file within the plugin that defines the
7844 * function. Defaults to lib.php.
7845 * @param bool $include Whether to include the files that contain the functions or not.
7846 * @return array with [plugintype][plugin] = functionname
7847 */
7852 // API functions _must not_ be called during an installation or upgrade.
7854 }
7858 // Including both although I doubt that we will find two functions definitions with the same name.
7859 // Clearning the filename as cache_helper::hash_key only allows a-zA-Z0-9_.
7864 // Use the plugin manager to check that plugins are currently installed.
7869 // Checking that the files are still available.
7876 // Plugin code is still present on disk but it is not installed.
7879 }
7881 // Cache might be out of sync with the codebase, skip the plugin if it is not available.
7885 }
7889 // Include the files if it was requested.
7892 // If the file is not available any more it should not be returned.
7895 }
7897 // Check if the function still exists in the file.
7901 }
7902 }
7903 }
7905 // If the cache is dirty, we should fall through and let it rebuild.
7908 }
7909 }
7913 // To fill the cached. Also, everything should continue working with cache disabled.
7917 // We need to include files here.
7924 }
7930 // Function exists with standard name. Store, indexed by frankenstyle name of plugin.
7934 // For modules, we also allow plugin without full frankenstyle but just starting with the module name.
7938 }
7939 }
7944 }
7946 }
7948 }
7949 }
7954 }
7956 /**
7957 * Lists plugin-like directories within specified directory
7958 *
7959 * This function was originally used for standard Moodle plugins, please use
7960 * new core_component::get_plugin_list() now.
7961 *
7962 * This function is used for general directory listing and backwards compatility.
7963 *
7964 * @param string $directory relative directory from root
7965 * @param string $exclude dir name to exclude from the list (defaults to none)
7966 * @param string $basedir full path to the base dir where $plugin resides (defaults to $CFG->dirroot)
7967 * @return array Sorted array of directory names found under the requested parameters
7968 */
7979 }
7982 // Make sure devs do not use this to list normal plugins,
7983 // this is intended for general directories that are not plugins!
7987 debugging('get_list_of_plugins() should not be used to list real plugins, use core_component::get_plugin_list() instead!', DEBUG_DEVELOPER);
7988 }
7990 }
8002 ]));
8006 debugging("Directory permission error for plugin ({$directory}). Directory exists but cannot be read.", DEBUG_DEVELOPER);
8008 }
8011 // Ignore directories starting with .
8012 // These are treated as hidden directories.
8014 }
8016 // This directory features on the ignore list.
8018 }
8021 }
8023 }
8025 }
8028 }
8030 }
8032 /**
8033 * Invoke plugin's callback functions
8034 *
8035 * @param string $type plugin type e.g. 'mod'
8036 * @param string $name plugin name
8037 * @param string $feature feature name
8038 * @param string $action feature's action
8039 * @param array $params parameters of callback function, should be an array
8040 * @param mixed $default default value if callback function hasn't been defined, or if it retursn null.
8041 * @return mixed
8042 *
8043 * @todo Decide about to deprecate and drop plugin_callback() - MDL-30743
8044 */
8046 return component_callback($type . '_' . $name, $feature . '_' . $action, (array) $params, $default);
8047 }
8049 /**
8050 * Invoke component's callback functions
8051 *
8052 * @param string $component frankenstyle component name, e.g. 'mod_quiz'
8053 * @param string $function the rest of the function name, e.g. 'cron' will end up calling 'mod_quiz_cron'
8054 * @param array $params parameters of callback function
8055 * @param mixed $default default value if callback function hasn't been defined, or if it retursn null.
8056 * @return mixed
8057 */
8063 // PHP 8 allows to have associative arrays in the call_user_func_array() parameters but
8064 // PHP 7 does not. Using associative arrays can result in different behavior in different PHP versions.
8065 // See https://php.watch/versions/8.0/named-parameters#named-params-call_user_func_array
8066 // This check can be removed when minimum PHP version for Moodle is raised to 8.
8067 debugging('Parameters array can not be an associative array while Moodle supports both PHP 7 and PHP 8.',
8068 DEBUG_DEVELOPER);
8070 }
8073 // Function exists, so just return function result.
8079 }
8080 }
8082 }
8084 /**
8085 * Determine if a component callback exists and return the function name to call. Note that this
8086 * function will include the required library files so that the functioname returned can be
8087 * called directly.
8088 *
8089 * @param string $component frankenstyle component name, e.g. 'mod_quiz'
8090 * @param string $function the rest of the function name, e.g. 'cron' will end up calling 'mod_quiz_cron'
8091 * @return mixed Complete function name to call if the callback exists or false if it doesn't.
8092 * @throws coding_exception if invalid component specfied
8093 */
8099 throw new coding_exception('Invalid component used in plugin/component_callback():' . $component);
8100 }
8111 throw new coding_exception('Invalid component used in plugin/component_callback():' . $component);
8112 }
8114 // Load library and look for function.
8117 }
8121 debugging("Please use new function name $function instead of legacy $oldfunction", DEBUG_DEVELOPER);
8122 }
8124 }
8128 }
8130 }
8132 /**
8133 * Call the specified callback method on the provided class.
8134 *
8135 * If the callback returns null, then the default value is returned instead.
8136 * If the class does not exist, then the default value is returned.
8137 *
8138 * @param string $classname The name of the class to call upon.
8139 * @param string $methodname The name of the staticically defined method on the class.
8140 * @param array $params The arguments to pass into the method.
8141 * @param mixed $default The default value.
8142 * @return mixed The return value.
8143 */
8147 }
8151 }
8160 }
8161 }
8163 /**
8164 * Checks whether a plugin supports a specified feature.
8165 *
8166 * @param string $type Plugin type e.g. 'mod'
8167 * @param string $name Plugin name e.g. 'forum'
8168 * @param string $feature Feature code (FEATURE_xx constant)
8169 * @param mixed $default default value if feature support unknown
8170 * @return mixed Feature result (false if not supported, null if feature is unknown,
8171 * otherwise usually true but may have other feature-specific value such as array)
8172 * @throws coding_exception
8173 */
8178 // Somebody forgot to rename the module template.
8180 }
8184 throw new coding_exception('Invalid component used in plugin_supports():' . $type . '_' . $name);
8185 }
8190 // We need this special case because we support subplugins in modules,
8191 // otherwise it would end up in infinite loop.
8196 // Legacy non-frankenstyle function name.
8198 }
8199 }
8203 // Non existent plugin type.
8205 }
8209 }
8210 }
8215 // Plugin does not know - use default.
8219 }
8220 }
8222 // Plugin does not care, so use default.
8224 }
8226 /**
8227 * Returns true if the current version of PHP is greater that the specified one.
8228 *
8229 * @todo Check PHP version being required here is it too low?
8230 *
8231 * @param string $version The version of php being tested.
8232 * @return bool
8233 */
8236 }
8238 /**
8239 * Determine if moodle installation requires update.
8240 *
8241 * Checks version numbers of main code and all plugins to see
8242 * if there are any mismatches.
8243 *
8244 * @return bool
8245 */
8251 }
8253 // There is no need to purge plugininfo caches here because
8254 // these caches are not used during upgrade and they are purged after
8255 // every upgrade.
8259 }
8264 }
8266 /**
8267 * Returns the major version of this site
8268 *
8269 * Moodle version numbers consist of three numbers separated by a dot, for
8270 * example 1.9.11 or 2.0.2. The first two numbers, like 1.9 or 2.0, represent so
8271 * called major version. This function extracts the major version from either
8272 * $CFG->release (default) or eventually from the $release variable defined in
8273 * the main version.php.
8274 *
8275 * @param bool $fromdisk should the version if source code files be used
8276 * @return string|false the major version like '2.3', false if could not be determined
8277 */
8286 }
8291 }
8293 }
8299 }
8300 }
8302 // MISCELLANEOUS.
8304 /**
8305 * Gets the system locale
8306 *
8307 * @return string Retuns the current locale.
8308 */
8312 // Fetch the correct locale based on ostype.
8317 }
8321 }
8324 }
8326 /**
8327 * Sets the system locale
8328 *
8329 * @category string
8330 * @param string $locale Can be used to force a locale
8331 */
8339 // The priority is the same as in get_string() - parameter, config, course, session, user, global language.
8344 }
8346 // Do nothing if locale already set up.
8349 }
8351 // Due to some strange BUG we cannot set the LC_TIME directly, so we fetch current values,
8352 // set LC_ALL and then set values again. Just wondering why we cannot set LC_ALL only??? - stronk7
8353 // Some day, numeric, monetary and other categories should be set too, I think. :-/.
8355 // Get current values.
8361 }
8362 // Set locale to all.
8364 // If setting of locale fails try the other utf8 or utf-8 variant,
8365 // some operating systems support both (Debian), others just one (OSX).
8373 }
8374 }
8375 // Set old values.
8380 }
8382 // To workaround a well-known PHP problem with Turkish letter Ii.
8384 }
8385 }
8387 /**
8388 * Count words in a string.
8389 *
8390 * Words are defined as things between whitespace.
8391 *
8392 * @category string
8393 * @param string $string The text to be searched for words. May be HTML.
8394 * @return int The count of words in the specified string
8395 */
8397 // Before stripping tags, add a space after the close tag of anything that is not obviously inline.
8398 // Also, br is a special case because it definitely delimits a word, but has no close tag.
8400 ( # Capture the tag we match.
8401 </ # Start of close tag.
8402 (?! # Do not match any of these specific close tag names.
8403 a> | b> | del> | em> | i> |
8404 ins> | s> | small> |
8405 strong> | sub> | sup> | u>
8406 )
8407 \w+ # But, apart from those execptions, match any tag name.
8408 > # End of close tag.
8409 |
8410 <br> | <br\s*/> # Special cases that are not close tags.
8411 )
8413 // Now remove HTML tags.
8415 // Decode HTML entities.
8418 // Now, the word count is the number of blocks of characters separated
8419 // by any sort of space. That seems to be the definition used by all other systems.
8420 // To be precise about what is considered to separate words:
8421 // * Anything that Unicode considers a 'Separator'
8422 // * Anything that Unicode considers a 'Control character'
8423 // * An em- or en- dash.
8425 }
8427 /**
8428 * Count letters in a string.
8429 *
8430 * Letters are defined as chars not in tags and different from whitespace.
8431 *
8432 * @category string
8433 * @param string $string The text to be searched for letters. May be HTML.
8434 * @return int The count of letters in the specified text.
8435 */
8442 }
8444 /**
8445 * Generate and return a random string of the specified length.
8446 *
8447 * @param int $length The length of the string to be created.
8448 * @return string
8449 */
8460 }
8462 }
8464 /**
8465 * Generate a complex random string (useful for md5 salts)
8466 *
8467 * This function is based on the above {@link random_string()} however it uses a
8468 * larger pool of characters and generates a string between 24 and 32 characters
8469 *
8470 * @param int $length Optional if set generates a string to exactly this length
8471 * @return string
8472 */
8479 }
8485 }
8487 }
8489 /**
8490 * Try to generates cryptographically secure pseudo-random bytes.
8491 *
8492 * Note this is achieved by fallbacking between:
8493 * - PHP 7 random_bytes().
8494 * - OpenSSL openssl_random_pseudo_bytes().
8495 * - In house random generator getting its entropy from various, hard to guess, pseudo-random sources.
8496 *
8497 * @param int $length requested length in bytes
8498 * @return string binary data
8499 */
8505 }
8507 // Use PHP 7 goodness.
8511 }
8512 }
8514 // If you have the openssl extension enabled.
8518 }
8519 }
8521 // Bad luck, there is no reliable random generator, let's just slowly hash some unique stuff that is hard to guess.
8529 }
8531 /**
8532 * Given some text (which may contain HTML) and an ideal length,
8533 * this function truncates the text neatly on a word boundary if possible
8534 *
8535 * @category string
8536 * @param string $text text to be shortened
8537 * @param int $ideal ideal string length
8538 * @param boolean $exact if false, $text will not be cut mid-word
8539 * @param string $ending The string to append if the passed string is truncated
8540 * @return string $truncate shortened string
8541 */
8543 // If the plain text is shorter than the maximum length, return the whole text.
8546 }
8548 // Splits on HTML tags. Each open/close/empty tag will be the first thing
8549 // and only tag in its 'line'.
8555 // This array stores information about open and close tags and their position
8556 // in the truncated string. Each item in the array is an object with fields
8557 // ->open (true if open), ->tag (tag name in lower case), and ->pos
8558 // (byte position in truncated text).
8562 // If there is any html-tag in this line, handle it and add it (uncounted) to the output.
8564 // If it's an "empty element" with or without xhtml-conform closing slash (f.e. <br/>).
8565 if (!preg_match('/^<(\s*.+?\/\s*|\s*(img|br|input|hr|area|base|basefont|col|frame|isindex|link|meta|param)(\s.+?)?)>$/is', $linematchings[1])) {
8567 // Record closing tag.
8572 );
8575 // Record opening tag.
8580 );
8586 );
8592 );
8593 }
8594 }
8595 // Add html-tag to $truncate'd text.
8597 }
8599 // Calculate the length of the plain text part of the line; handle entities as one character.
8600 $contentlength = core_text::strlen(preg_replace('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', ' ', $linematchings[2]));
8602 // The number of characters which are left.
8605 // Search for html entities.
8606 if (preg_match_all('/&[0-9a-z]{2,8};|&#[0-9]{1,7};|&#x[0-9a-f]{1,6};/i', $linematchings[2], $entities, PREG_OFFSET_CAPTURE)) {
8607 // Calculate the real length of all entities in the legal range.
8613 // No more characters left.
8615 }
8616 }
8617 }
8620 // If the words shouldn't be cut in the middle...
8622 // Search the last occurence of a space.
8629 // Chinese/Japanese/Korean text can be truncated at any UTF-8 character boundary.
8632 }
8633 }
8634 }
8635 }
8637 // This deals with the test_shorten_text_no_spaces case.
8640 // This deals with the previous for loop breaking on the first char.
8642 }
8645 // Maximum length is reached, so get off the loop.
8650 }
8652 // If the maximum length is reached, get off the loop.
8655 }
8656 }
8658 // Add the defined ending to the text.
8661 // Now calculate the list of open html tags based on the truncate position.
8665 // Add tag to the beginning of $opentags list.
8668 // Can have multiple exact same open tags, close the last one.
8672 }
8673 }
8674 }
8676 // Close all unclosed html-tags.
8682 }
8683 }
8686 }
8688 /**
8689 * Shortens a given filename by removing characters positioned after the ideal string length.
8690 * When the filename is too long, the file cannot be created on the filesystem due to exceeding max byte size.
8691 * Limiting the filename to a certain size (considering multibyte characters) will prevent this.
8692 *
8693 * @param string $filename file name
8694 * @param int $length ideal string length
8695 * @param bool $includehash Whether to include a file hash in the shortened version. This ensures uniqueness.
8696 * @return string $shortened shortened file name
8697 */
8700 // Extract a part of the filename if it's char size exceeds the ideal string length.
8702 // Exclude extension if present in filename.
8713 }
8714 }
8716 }
8718 /**
8719 * Shortens a given array of filenames by removing characters positioned after the ideal string length.
8720 *
8721 * @param array $path The paths to reduce the length.
8722 * @param int $length Ideal string length
8723 * @param bool $includehash Whether to include a file hash in the shortened version. This ensures uniqueness.
8724 * @return array $result Shortened paths in array.
8725 */
8732 }, []);
8735 }
8737 /**
8738 * Given dates in seconds, how many weeks is the date from startdate
8739 * The first week is 1, the second 2 etc ...
8740 *
8741 * @param int $startdate Timestamp for the start date
8742 * @param int $thedate Timestamp for the end date
8743 * @return string
8744 */
8748 }
8751 }
8753 /**
8754 * Returns a randomly generated password of length $maxlen. inspired by
8755 *
8756 * {@link http://www.phpbuilder.com/columns/jesus19990502.php3} and
8757 * {@link http://es2.php.net/manual/en/function.str-shuffle.php#73254}
8758 *
8759 * @param int $maxlen The maximum size of the password being generated.
8760 * @return string
8761 */
8779 // Var minlength should be the greater one of the two ( $minlen and $total ).
8781 // Var maxlen can never be smaller than minlen.
8785 // Make sure we have enough characters to fulfill
8786 // complexity requirements.
8790 }
8794 }
8798 }
8802 }
8804 // Now mix and shuffle it all.
8813 }
8816 }
8818 /**
8819 * Given a float, prints it nicely.
8820 * Localized floats must not be used in calculations!
8821 *
8822 * The stripzeros feature is intended for making numbers look nicer in small
8823 * areas where it is not necessary to indicate the degree of accuracy by showing
8824 * ending zeros. If you turn it on with $decimalpoints set to 3, for example,
8825 * then it will display '5.4' instead of '5.400' or '5' instead of '5.000'.
8826 *
8827 * @param float $float The float to print
8828 * @param int $decimalpoints The number of decimal places to print. -1 is a special value for auto detect (full precision).
8829 * @param bool $localized use localized decimal separator
8830 * @param bool $stripzeros If true, removes final zeros after decimal point. It will be ignored and the trailing zeros after
8831 * the decimal point are always striped if $decimalpoints is -1.
8832 * @return string locale float
8833 */
8837 }
8842 }
8844 // The following counts the number of decimals.
8845 // It is safe as both floatval() and round() functions have same behaviour when non-numeric values are provided.
8848 }
8852 // Remove zeros and final dot if not needed.
8853 // However, only do this if there is a decimal point!
8855 }
8857 }
8859 /**
8860 * Converts locale specific floating point/comma number back to standard PHP float value
8861 * Do NOT try to do any math operations before this conversion on any user submitted floats!
8862 *
8863 * @param string $localefloat locale aware float representation
8864 * @param bool $strict If true, then check the input and return false if it is not a valid number.
8865 * @return mixed float|bool - false or the parsed float.
8866 */
8872 }
8874 $localefloat = str_replace(' ', '', $localefloat); // No spaces - those might be used as thousand separators.
8879 }
8882 }
8884 /**
8885 * Given a simple array, this shuffles it up just like shuffle()
8886 * Unlike PHP's shuffle() this function works on any machine.
8887 *
8888 * @param array $array The array to be rearranged
8889 * @return array
8890 */
8899 }
8901 }
8903 /**
8904 * Like {@link swapshuffle()}, but works on associative arrays
8905 *
8906 * @param array $array The associative array to be rearranged
8907 * @return array
8908 */
8916 }
8918 }
8920 /**
8921 * Given an arbitrary array, and a number of draws,
8922 * this function returns an array with that amount
8923 * of items. The indexes are retained.
8924 *
8925 * @todo Finish documenting this function
8926 *
8927 * @param array $array
8928 * @param int $draws
8929 * @return array
8930 */
8939 }
8951 }
8954 }
8956 /**
8957 * Calculate the difference between two microtimes
8958 *
8959 * @param string $a The first Microtime
8960 * @param string $b The second Microtime
8961 * @return string
8962 */
8967 }
8969 /**
8970 * Given a list (eg a,b,c,d,e) this function returns
8971 * an array of 1->a, 2->b, 3->c etc
8972 *
8973 * @param string $list The string to explode into array bits
8974 * @param string $separator The separator used within the list string
8975 * @return array The now assembled array
8976 */
8982 }
8984 }
8986 /**
8987 * Creates an array that represents all the current grades that
8988 * can be chosen using the given grading type.
8989 *
8990 * Negative numbers
8991 * are scales, zero is no grade, and positive numbers are maximum
8992 * grades.
8993 *
8994 * @todo Finish documenting this function or better deprecated this completely!
8995 *
8996 * @param int $gradingtype
8997 * @return array
8998 */
9006 }
9010 }
9012 }
9014 }
9016 /**
9017 * make_unique_id_code
9018 *
9019 * @todo Finish documenting this function
9020 *
9021 * @uses $_SERVER
9022 * @param string $extra Extra string to append to the end of the code
9023 * @return string
9024 */
9036 }
9046 }
9047 }
9050 /**
9051 * Function to check the passed address is within the passed subnet
9052 *
9053 * The parameter is a comma separated string of subnet definitions.
9054 * Subnet strings can be in one of three formats:
9055 * 1: xxx.xxx.xxx.xxx/nn or xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/nnn (number of bits in net mask)
9056 * 2: xxx.xxx.xxx.xxx-yyy or xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx::xxxx-yyyy (a range of IP addresses in the last group)
9057 * 3: xxx.xxx or xxx.xxx. or xxx:xxx:xxxx or xxx:xxx:xxxx. (incomplete address, a bit non-technical ;-)
9058 * Code for type 1 modified from user posted comments by mediator at
9059 * {@link http://au.php.net/manual/en/function.ip2long.php}
9060 *
9061 * @param string $addr The address you are checking
9062 * @param string $subnetstr The string of subnet addresses
9063 * @return bool
9064 */
9069 }
9076 }
9085 }
9088 // 1: xxx.xxx.xxx.xxx/nn or xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx/nnn.
9093 }
9097 }
9099 // IPv6.
9102 }
9105 }
9108 }
9112 }
9114 }
9122 }
9129 }
9130 }
9133 // IPv4.
9136 }
9139 }
9142 }
9146 }
9148 }
9152 }
9153 }
9156 // 2: xxx.xxx.xxx.xxx-yyy or xxxx:xxxx:xxxx:xxxx:xxxx:xxxx:xxxx::xxxx-yyyy. A range of IP addresses in the last group.
9160 }
9163 // IPv6.
9166 }
9170 }
9177 }
9182 }
9190 }
9193 // IPv4.
9196 }
9200 }
9206 }
9210 }
9211 }
9214 // 3: xxx.xxx or xxx.xxx. or xxx:xxx:xxxx or xxx:xxx:xxxx.
9216 // IPv6.
9219 }
9226 }
9231 }
9235 }
9240 }
9243 // IPv4.
9246 }
9253 }
9258 }
9262 }
9267 }
9268 }
9269 }
9270 }
9273 }
9275 /**
9276 * For outputting debugging info
9277 *
9278 * @param string $string The string to write
9279 * @param string $eol The end of line char(s) to use
9280 * @param string $sleep Period to make the application sleep
9281 * This ensures any messages have time to display before redirect
9282 */
9291 // We must explicitly call the add_line function here.
9292 // Uses of fwrite to STDOUT are not picked up by ob_start.
9295 }
9298 }
9300 // Flush again.
9303 // Delay to keep message on user's screen in case of subsequent redirect.
9306 }
9307 }
9309 /**
9310 * Replace 1 or more slashes or backslashes to 1 slash
9311 *
9312 * @param string $path The path to strip
9313 * @return string the path with double slashes removed
9314 */
9317 }
9319 /**
9320 * Is the current ip in a given list?
9321 *
9322 * @param string $list
9323 * @return bool
9324 */
9329 // Ensure access on cli.
9331 }
9333 }
9335 /**
9336 * Returns most reliable client address
9337 *
9338 * @param string $default If an address can't be determined, then return this
9339 * @return string The remote IP address
9340 */
9345 // This will happen, for example, before just after the upgrade, as the
9346 // user is redirected to the admin screen.
9350 }
9355 }
9356 }
9364 });
9366 // Multiple proxies can append values to this header including an
9367 // untrusted original request header so we must only trust the last ip.
9371 // Remove port and brackets from IPv6.
9374 }
9376 // Remove port from IPv4.
9380 }
9381 }
9385 }
9386 }
9392 }
9393 }
9395 /**
9396 * Cleans an ip address. Internal addresses are now allowed.
9397 * (Originally local addresses were not allowed.)
9398 *
9399 * @param string $addr IPv4 or IPv6 address
9400 * @param bool $compress use IPv6 address compression
9401 * @return string normalised ip address string, null if error
9402 */
9407 // Can be only IPv6.
9412 // Legacy ipv4 notation.
9417 }
9423 }
9427 }
9432 }
9433 // Uncompress.
9440 }
9441 }
9442 }
9447 }
9449 // Normalise 0s and case.
9457 }
9461 }
9466 }
9471 }
9476 }
9479 }
9481 // First get all things that look like IPv4 addresses.
9485 }
9491 }
9493 }
9496 }
9499 /**
9500 * Is IP address a public address?
9501 *
9502 * @param string $ip The ip to check
9503 * @return bool true if the ip is public
9504 */
9506 return (bool) filter_var($ip, FILTER_VALIDATE_IP, (FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE));
9507 }
9509 /**
9510 * This function will make a complete copy of anything it's given,
9511 * regardless of whether it's an object or not.
9512 *
9513 * @param mixed $thing Something you want cloned
9514 * @return mixed What ever it is you passed it
9515 */
9518 }
9520 /**
9521 * Used to make sure that $min <= $value <= $max
9522 *
9523 * Make sure that value is between min, and max
9524 *
9525 * @param int $min The minimum value
9526 * @param int $value The value to check
9527 * @param int $max The maximum value
9528 * @return int
9529 */
9533 }
9536 }
9538 }
9540 /**
9541 * Check if there is a nested array within the passed array
9542 *
9543 * @param array $array
9544 * @return bool true if there is a nested array false otherwise
9545 */
9550 }
9551 }
9553 }
9555 /**
9556 * get_performance_info() pairs up with init_performance_info()
9557 * loaded in setup.php. Returns an array with 'html' and 'txt'
9558 * values ready for use, and each of the individual stats provided
9559 * separately as well.
9560 *
9561 * @return array
9562 */
9571 // Attempt to avoid devs debugging peformance issues, when its caused by css building and so on.
9573 }
9574 $info['html'] .= '<ul class="list-unstyled row mx-md-0">'; // Holds userfriendly HTML representation.
9581 // GET/POST (or NULL if $_SERVER['REQUEST_METHOD'] is undefined) is useful for txt logged information.
9587 $info['html'] .= '<li class="memoryused col-sm-4">RAM: '.display_size($info['memory_total']).'</li> ';
9588 $info['txt'] .= 'memory_total: '.$info['memory_total'].'B (' . display_size($info['memory_total']).') memory_growth: '.
9590 }
9594 $info['html'] .= '<li class="memoryused col-sm-4">RAM peak: '.display_size($info['memory_peak']).'</li> ';
9595 $info['txt'] .= 'memory_peak: '.$info['memory_peak'].'B (' . display_size($info['memory_peak']).') ';
9596 }
9601 $info['html'] .= '<li class="included col-sm-4">Included '.$info['includecount'].' files</li> ';
9605 // We can not track more performance before installation or before PAGE init, sorry.
9607 }
9616 }
9617 }
9626 }
9627 }
9633 }
9636 $info['html'] .= '<li class="dbqueries col-sm-4">DB reads/writes: '.$info['dbqueries'].'</li> ';
9641 $info['html'] .= '<li class="dbqueries col-sm-4">DB reads from slave: '.$info['dbreads_slave'].'</li> ';
9643 }
9646 $info['html'] .= '<li class="dbtime col-sm-4">DB queries time: '.$info['dbtime'].' secs</li> ';
9654 }
9657 $info['txt'] .= "ticks: $info[ticks] user: $info[utime] sys: $info[stime] cuser: $info[cutime] csys: $info[cstime] ";
9658 }
9659 }
9661 // Grab the load average for the last minute.
9662 // /proc will only work under some linux configurations
9663 // while uptime is there under MacOSX/Darwin and other unices.
9667 } else if ( function_exists('is_executable') && is_executable('/usr/bin/uptime') && $loadavg = `/usr/bin/uptime` ) {
9672 }
9673 }
9676 $info['html'] .= '<li class="serverload col-sm-4">Load average: '.$info['serverload'].'</li> ';
9678 }
9680 // Display size of session if session started.
9685 }
9687 // Display time waiting for session if applicable.
9692 ]);
9694 }
9702 $table->head = ['Mode', 'Cache item', 'Static', 'H', 'M', get_string('mappingprimary', 'cache'), 'H', 'M', 'S', 'I/O'];
9704 $table->align = ['left', 'left', 'left', 'right', 'right', 'left', 'right', 'right', 'right', 'right'];
9712 // We want to align static caches into their own column.
9719 }
9721 }
9730 }
9740 }
9758 }
9771 }
9782 }
9795 // The static cache is never set.
9807 }
9808 }
9811 }
9815 }
9817 }
9824 }
9828 }
9832 // Now lets also show sub totals for each cache store.
9839 }
9850 }
9851 }
9852 }
9856 $table->head = [get_string('storename', 'cache'), get_string('type_cachestore', 'plugin'), 'H', 'M', 'S', 'I/O'];
9870 }
9891 }
9894 }
9899 }
9906 }
9914 ];
9926 }
9928 // Display lock information if any.
9941 // The time we had to wait to get the lock.
9946 }
9950 // Show a tick or cross for success.
9954 // If applicable, show how long we held the lock before releasing it.
9960 }
9966 }
9970 }
9973 }
9975 $info['html'] = '<div class="performanceinfo siteinfo container-fluid px-md-0 overflow-auto pt-3">'.$info['html'].'</div>';
9977 }
9979 /**
9980 * Renames a file or directory to a unique name within the same directory.
9981 *
9982 * This function is designed to avoid any potential race conditions, and select an unused name.
9983 *
9984 * @param string $filepath Original filepath
9985 * @param string $prefix Prefix to use for the temporary name
9986 * @return string|bool New file path or false if failed
9987 * @since Moodle 3.10
9988 */
9994 // Select a new name based on a random number.
9997 // Attempt a rename to that new name.
10000 }
10002 // The first time, do some sanity checks, maybe it is failing for a good reason and there
10003 // is no point trying 100 times if so.
10006 }
10008 }
10010 }
10012 /**
10013 * Delete directory or only its content
10014 *
10015 * @param string $dir directory path
10016 * @param bool $contentonly
10017 * @return bool success, true also if dir does not exist
10018 */
10021 // Nothing to do.
10023 }
10026 // Start by renaming the directory; this will guarantee that other processes don't write to it
10027 // while it is in the process of being deleted.
10030 // If the rename was successful then delete the $tempdir instead.
10032 }
10033 // If the rename fails, we will continue through and attempt to delete the directory
10034 // without renaming it since that is likely to at least delete most of the files.
10035 }
10039 }
10047 }
10048 }
10049 }
10054 }
10058 }
10060 /**
10061 * Detect if an object or a class contains a given property
10062 * will take an actual object or the name of a class
10063 *
10064 * @param mix $obj Name of class or real object to test
10065 * @param string $property name of property to find
10066 * @return bool true if property exists
10067 */
10073 }
10075 }
10077 /**
10078 * Converts an object into an associative array
10079 *
10080 * This function converts an object into an associative array by iterating
10081 * over its public properties. Because this function uses the foreach
10082 * construct, Iterators are respected. It works recursively on arrays of objects.
10083 * Arrays and simple values are returned as is.
10084 *
10085 * If class has magic properties, it can implement IteratorAggregate
10086 * and return all available properties in getIterator()
10087 *
10088 * @param mixed $var
10089 * @return array
10090 */
10094 // Loop over elements/properties.
10096 // Recursively convert objects.
10100 // Simple values are untouched.
10102 }
10103 }
10105 }
10107 /**
10108 * Detect a custom script replacement in the data directory that will
10109 * replace an existing moodle script
10110 *
10111 * @return string|bool full path name if a custom script exists, false if no custom script exists
10112 */
10117 // Probably some weird external script.
10119 }
10123 // Check the custom script exists.
10128 }
10129 }
10131 /**
10132 * Returns whether or not the user object is a remote MNET user. This function
10133 * is in moodlelib because it does not rely on loading any of the MNET code.
10134 *
10135 * @param object $user A valid user object
10136 * @return bool True if the user is from a remote Moodle.
10137 */
10146 }
10149 }
10151 /**
10152 * This function will search for browser prefereed languages, setting Moodle
10153 * to use the best one available if $SESSION->lang is undefined
10154 */
10159 // Lang is defined in session or user profile, nothing to do.
10161 }
10163 if (!isset($_SERVER['HTTP_ACCEPT_LANGUAGE'])) { // There isn't list of browser langs, nothing to do.
10165 }
10167 // Extract and clean langs from headers.
10182 }
10183 }
10186 // Look for such langs under standard locations.
10188 // Clean it properly for include.
10191 // Lang exists, set it in session.
10193 // We have finished. Go out.
10195 }
10196 }
10198 }
10200 /**
10201 * Check if $url matches anything in proxybypass list
10202 *
10203 * Any errors just result in the proxy being used (least bad)
10204 *
10205 * @param string $url url to check
10206 * @return boolean true if we should bypass the proxy
10207 */
10211 // Sanity check.
10214 }
10216 // Get the host part out of the url.
10219 }
10221 // Get the possible bypass hosts into an array.
10224 // Check for a match.
10225 // (IPs need to match the left hand side and hosts the right of the url,
10226 // but we can recklessly check both as there can't be a false +ve).
10230 // Try for IP match (Left side).
10234 }
10236 // Try for host match (Right side).
10240 }
10241 }
10243 // Nothing matched.
10245 }
10247 /**
10248 * Check if the passed navigation is of the new style
10249 *
10250 * @param mixed $navigation
10251 * @return bool true for yes false for no
10252 */
10258 }
10259 }
10261 /**
10262 * Checks whether the given variable name is defined as a variable within the given object.
10263 *
10264 * This will NOT work with stdClass objects, which have no class variables.
10265 *
10266 * @param string $var The variable name
10267 * @param object $object The object to check
10268 * @return boolean
10269 */
10274 }
10276 /**
10277 * Returns an array without repeated objects.
10278 * This function is similar to array_unique, but for arrays that have objects as values
10279 *
10280 * @param array $array
10281 * @param bool $keepkeyassoc
10282 * @return array
10283 */
10289 // Convert objects to arrays, in_array() does not support objects.
10292 }
10298 }
10299 }
10303 }
10306 }
10308 /**
10309 * Is a userid the primary administrator?
10310 *
10311 * @param int $userid int id of user to check
10312 * @return boolean
10313 */
10321 }
10322 }
10324 /**
10325 * Returns the site identifier
10326 *
10327 * @return string $CFG->siteidentifier, first making sure it is properly initialised.
10328 */
10331 // Check to see if it is missing. If so, initialise it.
10334 }
10335 // Return it.
10337 }
10339 /**
10340 * Check whether the given password has no more than the specified
10341 * number of consecutive identical characters.
10342 *
10343 * @param string $password password to be checked against the password policy
10344 * @param integer $maxchars maximum number of consecutive identical characters
10345 * @return bool
10346 */
10351 }
10354 }
10365 }
10366 }
10369 }
10372 }
10374 /**
10375 * Helper function to do partial function binding.
10376 * so we can use it for preg_replace_callback, for example
10377 * this works with php functions, user functions, static methods and class methods
10378 * it returns you a callback that you can pass on like so:
10379 *
10380 * $callback = partial('somefunction', $arg1, $arg2);
10381 * or
10382 * $callback = partial(array('someclass', 'somestaticmethod'), $arg1, $arg2);
10383 * or even
10384 * $obj = new someclass();
10385 * $callback = partial(array($obj, 'somemethod'), $arg1, $arg2);
10386 *
10387 * and then the arguments that are passed through at calltime are appended to the argument list.
10388 *
10389 * @param mixed $function a php callback
10390 * @param mixed $arg1,... $argv arguments to partially bind with
10391 * @return array Array callback
10392 */
10395 /**
10396 * Used to manage function binding.
10397 * @copyright 2009 Penny Leach
10398 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
10399 */
10401 /** @var array */
10403 /** @var string The function to call as a callback. */
10405 /**
10406 * Constructor
10407 * @param string $func
10408 * @param array $args
10409 */
10413 }
10414 /**
10415 * Calls the callback function.
10416 * @return mixed
10417 */
10421 }
10422 }
10423 }
10428 }
10430 /**
10431 * helper function to load up and initialise the mnet environment
10432 * this must be called before you use mnet functions.
10433 *
10434 * @return mnet_environment the equivalent of old $MNET global
10435 */
10443 }
10445 }
10447 /**
10448 * during xmlrpc server code execution, any code wishing to access
10449 * information about the remote peer must use this to get it.
10450 *
10451 * @return mnet_remote_client the equivalent of old $MNETREMOTE_CLIENT global
10452 */
10457 }
10461 }
10463 }
10465 /**
10466 * during the xmlrpc server code execution, this will be called
10467 * to setup the object returned by {@link get_mnet_remote_client}
10468 *
10469 * @param mnet_remote_client $client the client to set up
10470 * @throws moodle_exception
10471 */
10475 }
10478 }
10480 /**
10481 * return the jump url for a given remote user
10482 * this is used for rewriting forum post links in emails, etc
10483 *
10484 * @param stdclass $user the user to get the idp url for
10485 */
10493 $mnetjumps[$user->mnethostid] = $idp->wwwroot . $idpjumppath . '?hostwwwroot=' . $CFG->wwwroot . '&wantsurl=';
10494 }
10496 }
10498 /**
10499 * Gets the homepage to use for the current user
10500 *
10501 * @return int One of HOMEPAGE_*
10502 */
10507 // If dashboard is disabled, home will be set to default page.
10514 }
10520 // If the user was using the dashboard but it's disabled, return the default home page.
10522 }
10524 }
10525 }
10527 }
10529 /**
10530 * Returns the default home page to display if current one is not defined or can't be applied.
10531 * The default behaviour is to return Dashboard if it's enabled or My courses page if it isn't.
10532 *
10533 * @return int The default home page.
10534 */
10539 }
10541 /**
10542 * Gets the name of a course to be displayed when showing a list of courses.
10543 * By default this is just $course->fullname but user can configure it. The
10544 * result of this function should be passed through print_string.
10545 * @param stdClass|core_course_list_element $course Moodle course object
10546 * @return string Display name of course (either fullname or short + fullname)
10547 */
10553 }
10557 }
10558 }
10560 /**
10561 * Safe analogue of unserialize() that can only parse arrays
10562 *
10563 * Arrays may contain only integers or strings as both keys and values. Nested arrays are allowed.
10564 * Note: If any string (key or value) has semicolon (;) as part of the string parsing will fail.
10565 * This is a simple method to substitute unnecessary unserialize() in code and not intended to cover all possible cases.
10566 *
10567 * @param string $expression
10568 * @return array|bool either parsed array or false if parsing was impossible.
10569 */
10572 // Find nested arrays, parse them and store in $subs , substitute with special string.
10573 while (preg_match('/([\^;\}])(a:\d+:\{[^\{\}]*\})/', $expression, $matches) && strlen($matches[2]) < strlen($expression)) {
10578 }
10580 }
10582 // Check the expression is an array.
10585 }
10586 // Get the size and elements of an array (key;value;key;value;....).
10591 }
10592 // Analyze each part and make sure it is an integer or string or a substitute.
10597 } else if (preg_match('/^s:(\d+):"(.*)"$/', $parts[$i], $matches3) && strlen($matches3[2]) == (int)$matches3[1]) {
10603 }
10604 }
10605 // Combine keys and values.
10608 }
10610 }
10612 /**
10613 * Safe method for unserializing given input that is expected to contain only a serialized instance of an stdClass object
10614 *
10615 * If any class type other than stdClass is included in the input string, it will not be instantiated and will be cast to an
10616 * stdClass object. The initial cast to array, then back to object is to ensure we are always returning the correct type,
10617 * otherwise we would return an instances of {@see __PHP_Incomplete_class} for malformed strings
10618 *
10619 * @param string $input
10620 * @return stdClass
10621 */
10625 }
10627 /**
10628 * The lang_string class
10629 *
10630 * This special class is used to create an object representation of a string request.
10631 * It is special because processing doesn't occur until the object is first used.
10632 * The class was created especially to aid performance in areas where strings were
10633 * required to be generated but were not necessarily used.
10634 * As an example the admin tree when generated uses over 1500 strings, of which
10635 * normally only 1/3 are ever actually printed at any time.
10636 * The performance advantage is achieved by not actually processing strings that
10637 * arn't being used, as such reducing the processing required for the page.
10638 *
10639 * How to use the lang_string class?
10640 * There are two methods of using the lang_string class, first through the
10641 * forth argument of the get_string function, and secondly directly.
10642 * The following are examples of both.
10643 * 1. Through get_string calls e.g.
10644 * $string = get_string($identifier, $component, $a, true);
10645 * $string = get_string('yes', 'moodle', null, true);
10646 * 2. Direct instantiation
10647 * $string = new lang_string($identifier, $component, $a, $lang);
10648 * $string = new lang_string('yes');
10649 *
10650 * How do I use a lang_string object?
10651 * The lang_string object makes use of a magic __toString method so that you
10652 * are able to use the object exactly as you would use a string in most cases.
10653 * This means you are able to collect it into a variable and then directly
10654 * echo it, or concatenate it into another string, or similar.
10655 * The other thing you can do is manually get the string by calling the
10656 * lang_strings out method e.g.
10657 * $string = new lang_string('yes');
10658 * $string->out();
10659 * Also worth noting is that the out method can take one argument, $lang which
10660 * allows the developer to change the language on the fly.
10661 *
10662 * When should I use a lang_string object?
10663 * The lang_string object is designed to be used in any situation where a
10664 * string may not be needed, but needs to be generated.
10665 * The admin tree is a good example of where lang_string objects should be
10666 * used.
10667 * A more practical example would be any class that requries strings that may
10668 * not be printed (after all classes get renderer by renderers and who knows
10669 * what they will do ;))
10670 *
10671 * When should I not use a lang_string object?
10672 * Don't use lang_strings when you are going to use a string immediately.
10673 * There is no need as it will be processed immediately and there will be no
10674 * advantage, and in fact perhaps a negative hit as a class has to be
10675 * instantiated for a lang_string object, however get_string won't require
10676 * that.
10677 *
10678 * Limitations:
10679 * 1. You cannot use a lang_string object as an array offset. Doing so will
10680 * result in PHP throwing an error. (You can use it as an object property!)
10681 *
10682 * @package core
10683 * @category string
10684 * @copyright 2011 Sam Hemelryk
10685 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
10686 */
10689 /** @var string The strings identifier */
10691 /** @var string The strings component. Default '' */
10693 /** @var array|stdClass Any arguments required for the string. Default null */
10695 /** @var string The language to use when processing the string. Default null */
10698 /** @var string The processed string (once processed) */
10701 /**
10702 * A special boolean. If set to true then the object has been woken up and
10703 * cannot be regenerated. If this is set then $this->string MUST be used.
10704 * @var bool
10705 */
10708 /**
10709 * Constructs a lang_string object
10710 *
10711 * This function should do as little processing as possible to ensure the best
10712 * performance for strings that won't be used.
10713 *
10714 * @param string $identifier The strings identifier
10715 * @param string $component The strings component
10716 * @param stdClass|array $a Any arguments the string requires
10717 * @param string $lang The language to use when processing the string.
10718 * @throws coding_exception
10719 */
10723 }
10729 // We MUST duplicate $a to ensure that it if it changes by reference those
10730 // changes are not carried across.
10731 // To do this we always ensure $a or its properties/values are strings
10732 // and that any properties/values that arn't convertable are forgotten.
10742 // Make sure conversion errors don't get displayed (results in '').
10750 }
10753 }
10754 }
10755 }
10756 }
10760 throw new coding_exception('Invalid string identifier. Most probably some illegal character is part of the string identifier. Please check your string definition');
10761 }
10764 }
10766 debugging('String does not exist. Please check your string definition for '.$this->identifier.'/'.$this->component, DEBUG_DEVELOPER);
10767 }
10768 }
10769 }
10771 /**
10772 * Processes the string.
10773 *
10774 * This function actually processes the string, stores it in the string property
10775 * and then returns it.
10776 * You will notice that this function is VERY similar to the get_string method.
10777 * That is because it is pretty much doing the same thing.
10778 * However as this function is an upgrade it isn't as tolerant to backwards
10779 * compatibility.
10780 *
10781 * @return string
10782 * @throws coding_exception
10783 */
10787 // Check if we need to process the string.
10789 // Check the quality of the identifier.
10791 throw new coding_exception('Invalid string identifier. Most probably some illegal character is part of the string identifier. Please check your string definition', DEBUG_DEVELOPER);
10792 }
10794 // Process the string.
10795 $this->string = get_string_manager()->get_string($this->identifier, $this->component, $this->a, $this->lang);
10796 // Debugging feature lets you display string identifier and component.
10797 if (isset($CFG->debugstringids) && $CFG->debugstringids && optional_param('strings', 0, PARAM_INT)) {
10799 }
10800 }
10801 // Return the string.
10803 }
10805 /**
10806 * Returns the string
10807 *
10808 * @param string $lang The langauge to use when processing the string
10809 * @return string
10810 */
10812 if ($lang !== null && $lang != $this->lang && ($this->lang == null && $lang != current_language())) {
10814 debugging('lang_string objects that have been used cannot be printed in another language. ('.$this->lang.' used)', DEBUG_DEVELOPER);
10816 }
10819 }
10821 }
10823 /**
10824 * Magic __toString method for printing a string
10825 *
10826 * @return string
10827 */
10830 }
10832 /**
10833 * Magic __set_state method used for var_export
10834 *
10835 * @param array $array
10836 * @return self
10837 */
10839 $tmp = new lang_string($array['identifier'], $array['component'], $array['a'], $array['lang']);
10843 }
10845 /**
10846 * Prepares the lang_string for sleep and stores only the forcedstring and
10847 * string properties... the string cannot be regenerated so we need to ensure
10848 * it is generated for this.
10849 *
10850 * @return string
10851 */
10856 }
10858 /**
10859 * Returns the identifier.
10860 *
10861 * @return string
10862 */
10865 }
10867 /**
10868 * Returns the component.
10869 *
10870 * @return string
10871 */
10874 }
10875 }
10877 /**
10878 * Get human readable name describing the given callable.
10879 *
10880 * This performs syntax check only to see if the given param looks like a valid function, method or closure.
10881 * It does not check if the callable actually exists.
10882 *
10883 * @param callable|string|array $callable
10884 * @return string|bool Human readable name of callable, or false if not a valid callable.
10885 */
10893 }
10894 }
10896 /**
10897 * Tries to guess if $CFG->wwwroot is publicly accessible or not.
10898 * Never put your faith on this function and rely on its accuracy as there might be false positives.
10899 * It just performs some simple checks, and mainly is used for places where we want to hide some options
10900 * such as site registration when $CFG->wwwroot is not publicly accessible.
10901 * Good thing is there is no false negative.
10902 * Note that it's possible to force the result of this check by specifying $CFG->site_is_public in config.php
10903 *
10904 * @return bool
10905 */
10909 // Return early if site admin has forced this setting.
10912 }
10924 }
10927 }