file.php

   1 <?PHP // $Id$
   2       // This function fetches files from the data directory
   3       // Syntax:   file.php/courseid/dir/.../dir/filename.ext
   4
   5     require_once("config.php");
   6     require_once("files/mimetypes.php");
   7
   8     if (empty($CFG->filelifetime)) {
   9         $CFG->filelifetime = 86400;     /// Seconds for files to remain in caches
  10     }
  11
  12     if (isset($file)) {     // workaround for situations where / syntax doesn't work
  13         $pathinfo = $file;
  14     } else {
  15         $pathinfo = get_slash_arguments("file.php");
  16     }
  17
  18     if (!$pathinfo) {
  19         error("No file parameters!");
  20     }
  21
  22     $pathinfo = urldecode($pathinfo);
  23
  24     if (! $args = parse_slash_arguments($pathinfo)) {
  25         error("No valid arguments supplied");
  26     }
  27
  28     $numargs = count($args);
  29     if ($numargs < 2 or empty($args[1])) {
  30         error("No valid arguments supplied");
  31     }
  32
  33     $courseid = (integer)$args[0];
  34
  35     if (!$course = get_record("course", "id", $courseid)) {  // Course ID must be specified
  36         error("Invalid course ID");
  37     }
  38
  39     if ($course->category) {
  40         require_login($courseid);
  41     } else if ($CFG->forcelogin) {
  42         require_login();
  43     }
  44
  45     $pathname = "$CFG->dataroot$pathinfo";
  46     if ($pathargs = explode("?",$pathname)) {
  47         $pathname = $pathargs[0];            // Only keep what's before the '?'
  48     }
  49     $filename = $args[$numargs-1];
  50     if ($fileargs = explode("?",$filename)) {
  51         $filename = $fileargs[0];            // Only keep what's before the '?'
  52     }
  53
  54     if (file_exists($pathname)) {
  55         $lastmodified = filemtime($pathname);
  56         $mimetype = mimeinfo("type", $filename);
  57
  58         header("Last-Modified: " . gmdate("D, d M Y H:i:s", $lastmodified) . " GMT");
  59         header("Expires: " . gmdate("D, d M Y H:i:s", time() + $CFG->filelifetime) . " GMT");
  60         header("Cache-control: max_age = $CFG->filelifetime");
  61         header("Pragma: ");
  62         header("Content-disposition: inline; filename=$filename");
  63
  64
  65         if (empty($CFG->filteruploadedfiles)) {
  66             header("Content-length: ".filesize($pathname));
  67             header("Content-type: $mimetype");
  68             readfile($pathname);
  69
  70         } else {     /// Try and put the file through filters
  71             if ($mimetype == "text/html") {
  72                 $options->noclean = true;
  73                 $output = format_text(implode('', file($pathname)), FORMAT_HTML, $options, $courseid);
  74
  75                 header("Content-length: ".strlen($output));
  76                 header("Content-type: text/html");
  77                 echo $output;
  78
  79             } else if ($mimetype == "text/plain") {
  80                 $options->newlines = false;
  81                 $options->noclean = true;
  82                 $output = '<pre>'.format_text(implode('', file($pathname)), FORMAT_MOODLE, $options, $courseid).'</pre>';
  83                 header("Content-length: ".strlen($output));
  84                 header("Content-type: text/html");
  85                 echo $output;
  86
  87             } else {    /// Just send it out raw
  88                 header("Content-length: ".filesize($pathname));
  89                 header("Content-type: $mimetype");
  90                 readfile($pathname);
  91             }
  92         }
  93     } else {
  94         header("HTTP/1.0 404 not found");
  95         error(get_string("filenotfound", "error"), "$CFG->wwwroot/course/view.php?id=$courseid");
  96     }
  97
  98     exit;
  99 ?>