| blob | 840a6c531576f71c8ec09320c90c1d8300c40388 |
1 <?php
2 // This file is part of Moodle - http://moodle.org/
3 //
4 // Moodle is free software: you can redistribute it and/or modify
5 // it under the terms of the GNU General Public License as published by
6 // the Free Software Foundation, either version 3 of the License, or
7 // (at your option) any later version.
8 //
9 // Moodle is distributed in the hope that it will be useful,
10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 // GNU General Public License for more details.
13 //
14 // You should have received a copy of the GNU General Public License
15 // along with Moodle. If not, see <http://www.gnu.org/licenses/>.
17 /**
18 * Library of functions for web output
19 *
20 * Library of all general-purpose Moodle PHP functions and constants
21 * that produce HTML output
22 *
23 * Other main libraries:
24 * - datalib.php - functions that access the database.
25 * - moodlelib.php - general-purpose Moodle functions.
26 *
27 * @package core
28 * @subpackage lib
29 * @copyright 1999 onwards Martin Dougiamas {@link http://moodle.com}
30 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
31 */
35 // Constants.
37 // Define text formatting types ... eventually we can add Wiki, BBcode etc.
39 /**
40 * Does all sorts of transformations and filtering.
41 */
44 /**
45 * Plain HTML (with some tags stripped).
46 */
49 /**
50 * Plain text (even tags are printed in full).
51 */
54 /**
55 * Wiki-formatted text.
56 * Deprecated: left here just to note that '3' is not used (at the moment)
57 * and to catch any latent wiki-like text (which generates an error)
58 * @deprecated since 2005!
59 */
62 /**
63 * Markdown-formatted text http://daringfireball.net/projects/markdown/
64 */
67 /**
68 * A moodle_url comparison using this flag will return true if the base URLs match, params are ignored.
69 */
72 /**
73 * A moodle_url comparison using this flag will return true if the base URLs match and the params of url1 are part of url2.
74 */
77 /**
78 * A moodle_url comparison using this flag will return true if the two URLs are identical, except for the order of the params.
79 */
82 // Functions.
84 /**
85 * Add quotes to HTML characters.
86 *
87 * Returns $var with HTML characters (like "<", ">", etc.) properly quoted.
88 * Related function {@link p()} simply prints the output of this function.
89 *
90 * @param string $var the string potentially containing HTML characters
91 * @return string
92 */
96 }
100 }
105 );
106 }
108 /**
109 * Add quotes to HTML characters.
110 *
111 * Prints $var with HTML characters (like "<", ">", etc.) properly quoted.
112 * This function simply calls & displays {@link s()}.
113 * @see s()
114 *
115 * @param string $var the string potentially containing HTML characters
116 */
119 }
121 /**
122 * Does proper javascript quoting.
123 *
124 * Do not use addslashes anymore, because it does not work when magic_quotes_sybase is enabled.
125 *
126 * @param mixed $var String, Array, or Object to add slashes to
127 * @return mixed quoted result
128 */
132 $var = str_replace(array('\'', '"', "\n", "\r", "\0"), array('\\\'', '\\"', '\\n', '\\r', '\\0'), $var);
140 }
142 }
144 }
146 /**
147 * Remove query string from url.
148 *
149 * Takes in a URL and returns it without the querystring portion.
150 *
151 * @param string $url the url which may have a query string attached.
152 * @return string The remaining URL.
153 */
157 }
163 }
164 }
166 /**
167 * Returns the name of the current script, WITH the querystring portion.
168 *
169 * This function is necessary because PHP_SELF and REQUEST_URI and SCRIPT_NAME
170 * return different things depending on a lot of things like your OS, Web
171 * server, and the way PHP is compiled (ie. as a CGI, module, ISAPI, etc.)
172 * <b>NOTE:</b> This function returns false if the global variables needed are not set.
173 *
174 * @return mixed String or false if the global variables needed are not set.
175 */
179 }
181 /**
182 * Guesses the full URL of the current script.
183 *
184 * This function is using $PAGE->url, but may fall back to $FULLME which
185 * is constructed from PHP_SELF and REQUEST_URI or SCRIPT_NAME
186 *
187 * @return mixed full page URL string or false if unknown
188 */
193 // This is the only recommended way to find out current page.
198 // CLI script most probably.
200 }
202 // Return only https links when using SSL proxy.
206 }
207 }
208 }
210 /**
211 * Determines whether or not the Moodle site is being served over HTTPS.
212 *
213 * This is done simply by checking the value of $CFG->wwwroot, which seems
214 * to be the only reliable method.
215 *
216 * @return boolean True if site is served over HTTPS, false otherwise.
217 */
222 }
224 /**
225 * Returns the cleaned local URL of the HTTP_REFERER less the URL query string parameters if required.
226 *
227 * @param bool $stripquery if true, also removes the query part of the url.
228 * @return string The resulting referer or empty string.
229 */
237 }
240 }
241 }
243 /**
244 * Class for creating and manipulating urls.
245 *
246 * It can be used in moodle pages where config.php has been included without any further includes.
247 *
248 * It is useful for manipulating urls with long lists of params.
249 * One situation where it will be useful is a page which links to itself to perform various actions
250 * and / or to process form data. A moodle_url object :
251 * can be created for a page to refer to itself with all the proper get params being passed from page call to
252 * page call and methods can be used to output a url including all the params, optionally adding and overriding
253 * params and can also be used to
254 * - output the url without any get params
255 * - and output the params as hidden fields to be output within a form
256 *
257 * @copyright 2007 jamiesensei
258 * @link http://docs.moodle.org/dev/lib/weblib.php_moodle_url See short write up here
259 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
260 * @package core
261 */
264 /**
265 * Scheme, ex.: http, https
266 * @var string
267 */
270 /**
271 * Hostname.
272 * @var string
273 */
276 /**
277 * Port number, empty means default 80 or 443 in case of http.
278 * @var int
279 */
282 /**
283 * Username for http auth.
284 * @var string
285 */
288 /**
289 * Password for http auth.
290 * @var string
291 */
294 /**
295 * Script path.
296 * @var string
297 */
300 /**
301 * Optional slash argument value.
302 * @var string
303 */
306 /**
307 * Anchor, may be also empty, null means none.
308 * @var string
309 */
312 /**
313 * Url parameters as associative array.
314 * @var array
315 */
318 /**
319 * Create new instance of moodle_url.
320 *
321 * @param moodle_url|string $url - moodle_url means make a copy of another
322 * moodle_url and change parameters, string means full url or shortened
323 * form (ex.: '/course/view.php'). It is strongly encouraged to not include
324 * query string because it may result in double encoded values. Use the
325 * $params instead. For admin URLs, just use /admin/script.php, this
326 * class takes care of the $CFG->admin issue.
327 * @param array $params these params override current params or add new
328 * @param string $anchor The anchor to use as part of the URL if there is one.
329 * @throws moodle_exception
330 */
347 // Detect if anchor used.
354 }
356 // Normalise shortened form of our url ex.: '/course/view.php'.
359 }
364 }
365 }
367 // Parse the $url.
371 }
373 // Note: the values may not be correctly decoded, url parameters should be always passed as array.
375 }
379 }
381 // Detect slashargument value from path - we do not support directory names ending with .php.
386 }
387 }
392 }
393 }
395 /**
396 * Add an array of params to the params for this url.
397 *
398 * The added params override existing ones if they have the same name.
399 *
400 * @param array $params Defaults to null. If null then returns all params.
401 * @return array Array of Params for url.
402 * @throws coding_exception
403 */
410 }
414 }
416 throw new coding_exception('Url parameters values can not be objects, unless __toString() is defined!');
417 }
418 }
420 }
422 }
424 /**
425 * Remove all params if no arguments passed.
426 * Remove selected params if arguments are passed.
427 *
428 * Can be called as either remove_params('param1', 'param2')
429 * or remove_params(array('param1', 'param2')).
430 *
431 * @param string[]|string $params,... either an array of param names, or 1..n string params to remove as args.
432 * @return array url parameters
433 */
437 }
440 }
442 }
444 /**
445 * Remove all url parameters.
446 *
447 * @todo remove the unused param.
448 * @param array $params Unused param
449 * @return void
450 */
454 }
456 /**
457 * Add a param to the params for this url.
458 *
459 * The added param overrides existing one if they have the same name.
460 *
461 * @param string $paramname name
462 * @param string $newvalue Param value. If new value specified current value is overriden or parameter is added
463 * @return mixed string parameter value, null if parameter does not exist
464 */
467 // Set new value.
469 }
474 }
475 }
477 /**
478 * Merges parameters and validates them
479 *
480 * @param array $overrideparams
481 * @return array merged parameters
482 * @throws coding_exception
483 */
490 }
493 }
495 throw new coding_exception('Overridden parameters values can not be objects, unless __toString() is defined!');
496 }
498 }
500 }
502 /**
503 * Get the params as as a query string.
504 *
505 * This method should not be used outside of this method.
506 *
507 * @param bool $escaped Use & as params separator instead of plain &
508 * @param array $overrideparams params to add to the output params, these
509 * override existing ones with the same name.
510 * @return string query string that can be added to a url.
511 */
518 }
523 }
529 }
530 }
531 }
536 }
537 }
539 /**
540 * Get the url params as an array of key => value pairs.
541 *
542 * This helps in handling cases where url params contain arrays.
543 *
544 * @return array params array for templates.
545 */
552 }
555 }
556 }
558 }
560 /**
561 * Shortcut for printing of encoded URL.
562 *
563 * @return string
564 */
567 }
569 /**
570 * Output url.
571 *
572 * If you use the returned URL in HTML code, you want the escaped ampersands. If you use
573 * the returned URL in HTTP headers, you want $escaped=false.
574 *
575 * @param bool $escaped Use & as params separator instead of plain &
576 * @param array $overrideparams params to add to the output url, these override existing ones with the same name.
577 * @return string Resulting URL
578 */
585 }
589 // Allow url's to be rewritten by a plugin.
595 }
596 }
600 }
602 /**
603 * Output url without any rewrites
604 *
605 * This is identical in signature and use to out() but doesn't call the rewrite handler.
606 *
607 * @param bool $escaped Use & as params separator instead of plain &
608 * @param array $overrideparams params to add to the output url, these override existing ones with the same name.
609 * @return string Resulting URL
610 */
614 }
621 }
624 }
627 }
629 /**
630 * Returns url without parameters, everything before '?'.
631 *
632 * @param bool $includeanchor if {@link self::anchor} is defined, should it be returned?
633 * @return string
634 */
637 $uri = $this->scheme ? $this->scheme.':'.((strtolower($this->scheme) == 'mailto') ? '':'//'): '';
644 }
647 }
649 /**
650 * Compares this moodle_url with another.
651 *
652 * See documentation of constants for an explanation of the comparison flags.
653 *
654 * @param moodle_url $url The moodle_url object to compare
655 * @param int $matchtype The type of comparison (URL_MATCH_BASE, URL_MATCH_PARAMS, URL_MATCH_EXACT)
656 * @return bool
657 */
663 // Append index.php if there is no specific file.
666 }
669 }
671 // Compare the two base URLs.
674 }
678 }
684 }
687 }
688 }
692 }
697 }
700 }
701 }
705 }
708 }
710 /**
711 * Sets the anchor for the URI (the bit after the hash)
712 *
713 * @param string $anchor null means remove previous
714 */
717 // Remove.
720 // Special case, used as empty link.
723 // Match the anchor against the NMTOKEN spec.
726 // Bad luck, no valid anchor found.
728 }
729 }
731 /**
732 * Sets the scheme for the URI (the bit before ://)
733 *
734 * @param string $scheme
735 */
737 // See http://www.ietf.org/rfc/rfc3986.txt part 3.1.
742 }
743 }
745 /**
746 * Sets the url slashargument value.
747 *
748 * @param string $path usually file path
749 * @param string $parameter name of page parameter if slasharguments not supported
750 * @param bool $supported usually null, then it depends on $CFG->slasharguments, use true or false for other servers
751 * @return void
752 */
757 }
769 }
770 }
772 // Static factory methods.
774 /**
775 * General moodle file url.
776 *
777 * @param string $urlbase the script serving the file
778 * @param string $path
779 * @param bool $forcedownload
780 * @return moodle_url
781 */
786 }
790 }
792 /**
793 * Factory method for creation of url pointing to plugin file.
794 *
795 * Please note this method can be used only from the plugins to
796 * create urls of own files, it must not be used outside of plugins!
797 *
798 * @param int $contextid
799 * @param string $component
800 * @param string $area
801 * @param int $itemid
802 * @param string $pathname
803 * @param string $filename
804 * @param bool $forcedownload
805 * @param mixed $includetoken Whether to use a user token when displaying this group image.
806 * True indicates to generate a token for current user, and integer value indicates to generate a token for the
807 * user whose id is the value indicated.
808 * If the group picture is included in an e-mail or some other location where the audience is a specific
809 * user who will not be logged in when viewing, then we use a token to authenticate the user.
810 * @return moodle_url
811 */
812 public static function make_pluginfile_url($contextid, $component, $area, $itemid, $pathname, $filename,
824 }
827 }
834 }
841 }
843 }
845 /**
846 * Factory method for creation of url pointing to plugin file.
847 * This method is the same that make_pluginfile_url but pointing to the webservice pluginfile.php script.
848 * It should be used only in external functions.
849 *
850 * @since 2.8
851 * @param int $contextid
852 * @param string $component
853 * @param string $area
854 * @param int $itemid
855 * @param string $pathname
856 * @param string $filename
857 * @param bool $forcedownload
858 * @return moodle_url
859 */
860 public static function make_webservice_pluginfile_url($contextid, $component, $area, $itemid, $pathname, $filename,
865 return self::make_file_url($urlbase, "/$contextid/$component/$area".$pathname.$filename, $forcedownload);
867 return self::make_file_url($urlbase, "/$contextid/$component/$area/$itemid".$pathname.$filename, $forcedownload);
868 }
869 }
871 /**
872 * Factory method for creation of url pointing to draft file of current user.
873 *
874 * @param int $draftid draft item id
875 * @param string $pathname
876 * @param string $filename
877 * @param bool $forcedownload
878 * @return moodle_url
879 */
880 public static function make_draftfile_url($draftid, $pathname, $filename, $forcedownload = false) {
885 return self::make_file_url($urlbase, "/$context->id/user/draft/$draftid".$pathname.$filename, $forcedownload);
886 }
888 /**
889 * Factory method for creating of links to legacy course files.
890 *
891 * @param int $courseid
892 * @param string $filepath
893 * @param bool $forcedownload
894 * @return moodle_url
895 */
901 }
903 /**
904 * Checks if URL is relative to $CFG->wwwroot.
905 *
906 * @return bool True if URL is relative to $CFG->wwwroot; otherwise, false.
907 */
912 // Does URL start with wwwroot? Otherwise, URL isn't relative to wwwroot.
914 }
916 /**
917 * Returns URL as relative path from $CFG->wwwroot
918 *
919 * Can be used for passing around urls with the wwwroot stripped
920 *
921 * @param boolean $escaped Use & as params separator instead of plain &
922 * @param array $overrideparams params to add to the output url, these override existing ones with the same name.
923 * @return string Resulting URL
924 * @throws coding_exception if called on a non-local url
925 */
929 // URL should be relative to wwwroot. If not then throw exception.
936 }
937 }
939 /**
940 * Returns the 'path' portion of a URL. For example, if the URL is
941 * http://www.example.org:447/my/file/is/here.txt?really=1 then this will
942 * return '/my/file/is/here.txt'.
943 *
944 * By default the path includes slash-arguments (for example,
945 * '/myfile.php/extra/arguments') so it is what you would expect from a
946 * URL path. If you don't want this behaviour, you can opt to exclude the
947 * slash arguments. (Be careful: if the $CFG variable slasharguments is
948 * disabled, these URLs will have a different format and you may need to
949 * look at the 'file' parameter too.)
950 *
951 * @param bool $includeslashargument If true, includes slash arguments
952 * @return string Path of URL
953 */
956 }
958 /**
959 * Returns a given parameter value from the URL.
960 *
961 * @param string $name Name of parameter
962 * @return string Value of parameter or null if not set
963 */
969 }
970 }
972 /**
973 * Returns the 'scheme' portion of a URL. For example, if the URL is
974 * http://www.example.org:447/my/file/is/here.txt?really=1 then this will
975 * return 'http' (without the colon).
976 *
977 * @return string Scheme of the URL.
978 */
981 }
983 /**
984 * Returns the 'host' portion of a URL. For example, if the URL is
985 * http://www.example.org:447/my/file/is/here.txt?really=1 then this will
986 * return 'www.example.org'.
987 *
988 * @return string Host of the URL.
989 */
992 }
994 /**
995 * Returns the 'port' portion of a URL. For example, if the URL is
996 * http://www.example.org:447/my/file/is/here.txt?really=1 then this will
997 * return '447'.
998 *
999 * @return string Port of the URL.
1000 */
1003 }
1004 }
1006 /**
1007 * Determine if there is data waiting to be processed from a form
1008 *
1009 * Used on most forms in Moodle to check for data
1010 * Returns the data as an object, if it's found.
1011 * This object can be used in foreach loops without
1012 * casting because it's cast to (array) automatically
1013 *
1014 * Checks that submitted POST data exists and returns it as object.
1015 *
1016 * @return mixed false or object
1017 */
1024 }
1025 }
1027 /**
1028 * Given some normal text this function will break up any
1029 * long words to a given size by inserting the given character
1030 *
1031 * It's multibyte savvy and doesn't change anything inside html tags.
1032 *
1033 * @param string $string the string to be modified
1034 * @param int $maxsize maximum length of the string to be returned
1035 * @param string $cutchar the string used to represent word breaks
1036 * @return string
1037 */
1040 // First of all, save all the tags inside the text to skip them.
1044 // Process the string adding the cut when necessary.
1051 if ($char == ' ' or $char == "\t" or $char == "\n" or $char == "\r" or $char == "<" or $char == ">") {
1058 }
1059 }
1061 }
1063 // Finally load the tags back again.
1066 }
1069 }
1071 /**
1072 * Try and close the current window using JavaScript, either immediately, or after a delay.
1073 *
1074 * Echo's out the resulting XHTML & javascript
1075 *
1076 * @param integer $delay a delay in seconds before closing the window. Default 0.
1077 * @param boolean $reloadopener if true, we will see if this window was a pop-up, and try
1078 * to reload the parent window before this one closes.
1079 */
1088 }
1091 // Trigger the reload immediately, even if the reload is after a delay.
1093 }
1100 }
1102 /**
1103 * Returns a string containing a link to the user documentation for the current page.
1104 *
1105 * Also contains an icon by default. Shown to teachers and admin only.
1106 *
1107 * @param string $text The text to be displayed for the link
1108 * @return string The link to user documentation for this current page
1109 */
1115 }
1117 }
1119 /**
1120 * Returns the path to use when constructing a link to the docs.
1121 *
1122 * @since Moodle 2.5.1 2.6
1123 * @param moodle_page $page
1124 * @return string
1125 */
1131 }
1134 }
1139 }
1141 }
1144 /**
1145 * Validates an email to make sure it makes sense.
1146 *
1147 * @param string $address The email address to validate.
1148 * @return boolean
1149 */
1155 }
1160 }
1162 /**
1163 * Extracts file argument either from file parameter or PATH_INFO
1164 *
1165 * Note: $scriptname parameter is not needed anymore
1166 *
1167 * @return string file path (only safe characters)
1168 */
1176 // Checks whether $_SERVER['REQUEST_URI'] contains '/pluginfile.php/'
1177 // instead of '/pluginfile.php?', when serving a file from e.g. mod_imscp or mod_scorm.
1180 // Exclude edge cases like '/pluginfile.php/?file='.
1183 }
1184 }
1187 }
1191 }
1194 // Then try extract file from the slasharguments.
1196 // NOTE: IIS tends to convert all file paths to single byte DOS encoding,
1197 // we can not use other methods because they break unicode chars,
1198 // the only ways are to use URL rewriting
1199 // OR
1200 // to properly set the 'FastCGIUtf8ServerVariables' registry key.
1202 // Check that PATH_INFO works == must not contain the script name.
1205 }
1206 }
1208 // All other apache-like servers depend on PATH_INFO.
1210 if (isset($_SERVER['SCRIPT_NAME']) and strpos($_SERVER['PATH_INFO'], $_SERVER['SCRIPT_NAME']) === 0) {
1214 }
1216 }
1217 }
1220 }
1222 /**
1223 * Just returns an array of text formats suitable for a popup menu
1224 *
1225 * @return array
1226 */
1232 }
1234 /**
1235 * Given text in a variety of format codings, this function returns the text as safe HTML.
1236 *
1237 * This function should mainly be used for long strings like posts,
1238 * answers, glossary items etc. For short strings {@link format_string()}.
1239 *
1240 * <pre>
1241 * Options:
1242 * trusted : If true the string won't be cleaned. Default false required noclean=true.
1243 * noclean : If true the string won't be cleaned, unless $CFG->forceclean is set. Default false required trusted=true.
1244 * nocache : If true the strign will not be cached and will be formatted every call. Default false.
1245 * filter : If true the string will be run through applicable filters as well. Default true.
1246 * para : If true then the returned string will be wrapped in div tags. Default true.
1247 * newlines : If true then lines newline breaks will be converted to HTML newline breaks. Default true.
1248 * context : The context that will be used for filtering.
1249 * overflowdiv : If set to true the formatted text will be encased in a div
1250 * with the class no-overflow before being returned. Default false.
1251 * allowid : If true then id attributes will not be removed, even when
1252 * using htmlpurifier. Default false.
1253 * blanktarget : If true all <a> tags will have target="_blank" added unless target is explicitly specified.
1254 * </pre>
1255 *
1256 * @staticvar array $croncache
1257 * @param string $text The text to be formatted. This is raw text originally from user input.
1258 * @param int $format Identifier of the text format to be used
1259 * [FORMAT_MOODLE, FORMAT_HTML, FORMAT_PLAIN, FORMAT_MARKDOWN]
1260 * @param stdClass|array $options text formatting options
1261 * @param int $courseiddonotuse deprecated course id, use context option instead
1262 * @return string
1263 */
1264 function format_text($text, $format = FORMAT_MOODLE, $options = null, $courseiddonotuse = null) {
1268 // No need to do any filters and cleaning.
1270 }
1272 // Detach object, we can not modify it.
1277 }
1279 // Markdown format cannot be trusted in trusttext areas,
1280 // because we do not know how to sanitise it before editing.
1282 }
1285 // No cleaning if text trusted and noclean not specified.
1289 }
1290 }
1292 // Whatever the caller claims, the admin wants all content cleaned anyway.
1294 }
1297 }
1300 }
1303 }
1306 }
1309 }
1312 // Calculate best context.
1314 // Do not filter anything during installation or before upgrade completes.
1322 }
1324 // Legacy courseid.
1327 // Fallback to $PAGE->context this may be problematic in CLI and other non-standard pages :-(.
1329 }
1332 // Either install/upgrade or something has gone really wrong because context does not exist (yet?).
1335 }
1339 $filtermanager->setup_page_for_filters($PAGE, $context); // Setup global stuff filters may have.
1343 );
1347 }
1353 // Text is already in HTML format, so just continue to the next filtering stage.
1358 }
1371 // This format is deprecated.
1372 $text = '<p>NOTICE: Wiki-like formatting has been removed from Moodle. You should not be seeing
1373 this message as all texts should have been converted to Markdown format instead.
1374 Please post a bug report to http://moodle.org/bugs with information about where you
1386 }
1399 }
1403 }
1405 // At this point there should not be any draftfile links any more,
1406 // this happens when developers forget to post process the text.
1407 // The only potential problem is that somebody might try to format
1408 // the text before storing into database which would be itself big bug..
1409 $text = str_replace("\"$CFG->wwwroot/draftfile.php", "\"$CFG->wwwroot/brokenfile.php#", $text);
1413 debugging('Before calling format_text(), the content must be processed with file_rewrite_pluginfile_urls()',
1414 DEBUG_DEVELOPER);
1415 }
1416 }
1417 }
1421 }
1429 if ($link->hasAttribute('target') && strpos($link->getAttribute('target'), '_blank') === false) {
1431 }
1435 }
1436 }
1438 // This regex is nasty and I don't like it. The correct way to solve this is by loading the HTML like so:
1439 // $domdoc->loadHTML($text, LIBXML_HTML_NOIMPLIED | LIBXML_HTML_NODEFDTD); however it seems like some libxml
1440 // versions don't work properly and end up leaving <html><body>, so I'm forced to use
1441 // this regex to remove those tags as a preventive measure.
1442 $text = trim(preg_replace('~<(?:!DOCTYPE|/?(?:html|body))[^>]*>\s*~i', '', $domdoc->saveHTML($domdoc->documentElement)));
1443 }
1446 }
1448 /**
1449 * Resets some data related to filters, called during upgrade or when general filter settings change.
1450 *
1451 * @param bool $phpunitreset true means called from our PHPUnit integration test reset
1452 * @return void
1453 */
1458 // HTMLPurifier does not change, DB is already reset to defaults,
1459 // nothing to do here, the dataroot was cleared too.
1461 }
1463 // The purge_all_caches() deals with cachedir and localcachedir purging,
1464 // the individual filter caches are invalidated as necessary elsewhere.
1466 // Update $CFG->filterall cache flag.
1470 }
1477 }
1478 }
1480 }
1482 /**
1483 * Given a simple string, this function returns the string
1484 * processed by enabled string filters if $CFG->filterall is enabled
1485 *
1486 * This function should be used to print short strings (non html) that
1487 * need filter processing e.g. activity titles, post subjects,
1488 * glossary concepts.
1489 *
1490 * @staticvar bool $strcache
1491 * @param string $string The string to be filtered. Should be plain text, expect
1492 * possibly for multilang tags.
1493 * @param boolean $striplinks To strip any link in the result text. Moodle 1.8 default changed from false to true! MDL-8713
1494 * @param array $options options array/object or courseid
1495 * @return string
1496 */
1501 // No need to do any filters and cleaning.
1503 }
1505 // We'll use a in-memory cache here to speed up repeated strings.
1509 // Do not filter anything during installation or before upgrade completes.
1511 }
1514 // This number might need some tuning to limit memory usage in cron.
1516 }
1519 // Legacy courseid usage.
1522 // Detach object, we can not modify it.
1524 }
1527 // Fallback to $PAGE->context this may be problematic in CLI and other non-standard pages :-(.
1531 }
1534 }
1539 // We did not find any context? weird.
1541 }
1543 // Calculate md5.
1548 // Fetch from cache if possible.
1551 }
1553 // First replace all ampersands not followed by html entity code
1554 // Regular expression moved to its own method for easier unit testing.
1559 $filtermanager->setup_page_for_filters($PAGE, $options['context']); // Setup global stuff filters may have.
1561 }
1563 // If the site requires it, strip ALL tags from this string.
1569 }
1571 // Otherwise strip just links if that is required (default).
1573 // Strip links in string.
1575 }
1577 }
1579 // Store to cache.
1583 }
1585 /**
1586 * Given a string, performs a negative lookahead looking for any ampersand character
1587 * that is not followed by a proper HTML entity. If any is found, it is replaced
1588 * by &. The string is then returned.
1589 *
1590 * @param string $string
1591 * @return string
1592 */
1595 }
1597 /**
1598 * Given a string, replaces all <a>.*</a> by .* and returns the string.
1599 *
1600 * @param string $string
1601 * @return string
1602 */
1605 }
1607 /**
1608 * This expression turns links into something nice in a text format. (Russell Jungwirth)
1609 *
1610 * @param string $string
1611 * @return string
1612 */
1614 return preg_replace('~(<a [^<]*href=["|\']?([^ "\']*)["|\']?[^>]*>([^<]*)</a>)~i', '$3 [ $2 ]', $string);
1615 }
1617 /**
1618 * Given text in a variety of format codings, this function returns the text as plain text suitable for plain email.
1619 *
1620 * @param string $text The text to be formatted. This is raw text originally from user input.
1621 * @param int $format Identifier of the text format to be used
1622 * [FORMAT_MOODLE, FORMAT_HTML, FORMAT_PLAIN, FORMAT_WIKI, FORMAT_MARKDOWN]
1623 * @return string
1624 */
1634 // There should not be any of these any more!
1649 }
1650 }
1652 /**
1653 * Formats activity intro text
1654 *
1655 * @param string $module name of module
1656 * @param object $activity instance of activity
1657 * @param int $cmid course module id
1658 * @param bool $filter filter resulting html text
1659 * @return string
1660 */
1665 $options = array('noclean' => true, 'para' => false, 'filter' => $filter, 'context' => $context, 'overflowdiv' => true);
1666 $intro = file_rewrite_pluginfile_urls($activity->intro, 'pluginfile.php', $context->id, 'mod_'.$module, 'intro', null);
1668 }
1670 /**
1671 * Removes the usage of Moodle files from a text.
1672 *
1673 * In some rare cases we need to re-use a text that already has embedded links
1674 * to some files hosted within Moodle. But the new area in which we will push
1675 * this content does not support files... therefore we need to remove those files.
1676 *
1677 * @param string $source The text
1678 * @return string The stripped text
1679 */
1682 // Looking for something like < .* "@@pluginfile@@.*" .* >
1685 // Use purify html to rebalence potentially mismatched tags and generally cleanup.
1687 }
1689 /**
1690 * Legacy function, used for cleaning of old forum and glossary text only.
1691 *
1692 * @param string $text text that may contain legacy TRUSTTEXT marker
1693 * @return string text without legacy TRUSTTEXT marker
1694 */
1697 // This avoids the potential for an endless loop below.
1699 }
1705 }
1706 }
1707 }
1709 /**
1710 * Must be called before editing of all texts with trust flag. Removes all XSS nasties from texts stored in database if needed.
1711 *
1712 * @param stdClass $object data object with xxx, xxxformat and xxxtrust fields
1713 * @param string $field name of text field
1714 * @param context $context active context
1715 * @return stdClass updated $object
1716 */
1722 // We do not have a way to sanitise Markdown texts,
1723 // luckily editors for this format should not have XSS problems.
1725 }
1729 }
1732 }
1734 /**
1735 * Is current user trusted to enter no dangerous XSS in this context?
1736 *
1737 * Please note the user must be in fact trusted everywhere on this server!!
1738 *
1739 * @param context $context
1740 * @return bool true if user trusted
1741 */
1744 }
1746 /**
1747 * Is trusttext feature active?
1748 *
1749 * @return bool
1750 */
1755 }
1757 /**
1758 * Cleans raw text removing nasties.
1759 *
1760 * Given raw text (eg typed in by a user) this function cleans it up and removes any nasty tags that could mess up
1761 * Moodle pages through XSS attacks.
1762 *
1763 * The result must be used as a HTML text fragment, this function can not cleanup random
1764 * parts of html tags such as url or src attributes.
1765 *
1766 * NOTE: the format parameter was deprecated because we can safely clean only HTML.
1767 *
1768 * @param string $text The text to be cleaned
1769 * @param int|string $format deprecated parameter, should always contain FORMAT_HTML or FORMAT_MOODLE
1770 * @param array $options Array of options; currently only option supported is 'allowid' (if true,
1771 * does not remove id attributes when cleaning)
1772 * @return string The cleaned up text
1773 */
1778 // TODO: we need to standardise cleanup of text when loading it into editor first.
1779 // debugging('clean_text() is designed to work only with html');.
1780 }
1784 }
1788 }
1790 // Originally we tried to neutralise some script events here, it was a wrong approach because
1791 // it was trivial to work around that (for example using style based XSS exploits).
1792 // We must not give false sense of security here - all developers MUST understand how to use
1793 // rawurlencode(), htmlentities(), htmlspecialchars(), p(), s(), moodle_url, html_writer and friends!!!
1796 }
1798 /**
1799 * Is it necessary to use HTMLPurifier?
1800 *
1801 * @private
1802 * @param string $text
1803 * @return bool false means html is safe and valid, true means use HTMLPurifier
1804 */
1808 }
1812 }
1815 // We need to normalise entities or other tags except p, em, strong and br present.
1817 }
1821 // No < > or other special chars means this must be safe.
1823 }
1825 // Let's try to convert back some safe html tags.
1829 }
1833 }
1834 $altered = preg_replace('|<strong>([^<>]+?)</strong>|m', '<strong>$1</strong>', $altered);
1837 }
1841 }
1844 }
1846 /**
1847 * KSES replacement cleaning function - uses HTML Purifier.
1848 *
1849 * @param string $text The (X)HTML string to purify
1850 * @param array $options Array of options; currently only option supported is 'allowid' (if set,
1851 * does not remove id attributes when cleaning)
1852 * @return string
1853 */
1862 // Purifier code can change only during major version upgrade.
1866 // Purging of caches may remove the cache dir at any time,
1867 // luckily file_exists() results should be cached for all existing directories.
1874 }
1883 }
1886 // Add revision number and all options to the text key so that it is compatible with local cluster node caches.
1891 // The filtering did not change the text last time, no need to filter anything again.
1895 }
1923 ));
1930 }
1934 }
1939 $def->addElement('algebra', 'Inline', 'Inline', array()); // Algebra syntax, equivalent to @@xx@@.
1940 $def->addElement('lang', 'Block', 'Flow', array(), array('lang'=>'CDATA')); // Original multilang style - only our hacked lang attribute.
1942 // Enable the bidirectional isolate element and its span equivalent.
1946 // Media elements.
1947 // https://html.spec.whatwg.org/#the-video-element
1960 ]);
1961 // https://html.spec.whatwg.org/#the-audio-element
1970 ]);
1971 // https://html.spec.whatwg.org/#the-source-element
1975 ]);
1976 // https://html.spec.whatwg.org/#the-track-element
1983 ]);
1985 // Use the built-in Ruby module to add annotation support.
1987 }
1993 }
2001 }
2004 $filteredtext = preg_replace('/<span xxxlang="([a-zA-Z0-9_-]+)">/', '<span lang="${1}" class="multilang">', $filteredtext);
2005 }
2008 // No need to store the filtered text, next time we will just return unfiltered text
2009 // because it was not changed by purifying.
2013 }
2016 }
2018 /**
2019 * Given plain text, makes it into HTML as nicely as possible.
2020 *
2021 * May contain HTML tags already.
2022 *
2023 * Do not abuse this function. It is intended as lower level formatting feature used
2024 * by {@link format_text()} to convert FORMAT_MOODLE to HTML. You are supposed
2025 * to call format_text() in most of cases.
2026 *
2027 * @param string $text The string to convert.
2028 * @param boolean $smileyignored Was used to determine if smiley characters should convert to smiley images, ignored now
2029 * @param boolean $para If true then the returned string will be wrapped in div tags
2030 * @param boolean $newlines If true then lines newline breaks will be converted to HTML newline breaks.
2031 * @return string
2032 */
2034 // Remove any whitespace that may be between HTML tags.
2037 // Remove any returns that precede or follow HTML tags.
2041 // Make returns into HTML newlines.
2044 }
2046 // Wrap the whole thing in a div if required.
2048 // In 1.9 this was changed from a p => div.
2052 }
2053 }
2055 /**
2056 * Given Markdown formatted text, make it into XHTML using external function
2057 *
2058 * @param string $text The markdown formatted text to be converted.
2059 * @return string Converted text
2060 */
2066 }
2073 }
2075 /**
2076 * Given HTML text, make it into plain text using external function
2077 *
2078 * @param string $html The text to be converted.
2079 * @param integer $width Width to wrap the text at. (optional, default 75 which
2080 * is a good value for email. 0 means do not limit line length.)
2081 * @param boolean $dolinks By default, any links in the HTML are collected, and
2082 * printed as a list at the end of the HTML. If you don't want that, set this
2083 * argument to false.
2084 * @return string plain text equivalent of the HTML.
2085 */
2094 );
2098 }
2103 }
2105 /**
2106 * Converts texts or strings to plain text.
2107 *
2108 * - When used to convert user input introduced in an editor the text format needs to be passed in $contentformat like we usually
2109 * do in format_text.
2110 * - When this function is used for strings that are usually passed through format_string before displaying them
2111 * we need to set $contentformat to false. This will execute html_to_text as these strings can contain multilang tags if
2112 * multilang filter is applied to headings.
2113 *
2114 * @param string $content The text as entered by the user
2115 * @param int|false $contentformat False for strings or the text format: FORMAT_MOODLE/FORMAT_HTML/FORMAT_PLAIN/FORMAT_MARKDOWN
2116 * @return string Plain text.
2117 */
2122 // Nothing here.
2129 // FORMAT_HTML, FORMAT_MOODLE and $contentformat = false, the later one are strings usually formatted through
2130 // format_string, we need to convert them from html because they can contain HTML (multilang filter).
2132 }
2135 }
2137 /**
2138 * Factory method for extracting draft file links from arbitrary text using regular expressions. Only text
2139 * is required; other file fields may be passed to filter.
2140 *
2141 * @param string $text Some html content.
2142 * @param bool $forcehttps force https urls.
2143 * @param int $contextid This parameter and the next three identify the file area to save to.
2144 * @param string $component The component name.
2145 * @param string $filearea The filearea.
2146 * @param int $itemid The item id for the filearea.
2147 * @param string $filename The specific filename of the file.
2148 * @return array
2149 */
2150 function extract_draft_file_urls_from_text($text, $forcehttps = false, $contextid = null, $component = null,
2157 }
2165 }
2170 }
2175 }
2180 }
2183 // Filename matching magic based on file_rewrite_urls_to_pluginfile().
2186 }
2189 // Regular expression which matches URLs and returns their components.
2192 }
2194 /**
2195 * This function will highlight search words in a given string
2196 *
2197 * It cares about HTML and will not ruin links. It's best to use
2198 * this function after performing any conversions to HTML.
2199 *
2200 * @param string $needle The search string. Syntax like "word1 +word2 -word3" is dealt with correctly.
2201 * @param string $haystack The string (HTML) within which to highlight the search terms.
2202 * @param boolean $matchcase whether to do case-sensitive. Default case-insensitive.
2203 * @param string $prefix the string to put before each search term found.
2204 * @param string $suffix the string to put after each search term found.
2205 * @return string The highlighted HTML.
2206 */
2210 // Quick bail-out in trivial cases.
2213 }
2215 // Break up the search term into words, discard any -words and build a regexp.
2221 $words[$index] = '\b' . preg_quote(ltrim($word, '+'), '/') . '\b'; // Match only as a complete word.
2224 }
2225 }
2229 }
2231 // Another chance to bail-out if $search was only -words.
2234 }
2236 // Split the string into HTML tags and real content.
2239 // We have an array of alternating blocks of text, then HTML tags, then text, ...
2240 // Loop through replacing search terms in the text, and leaving the HTML unchanged.
2248 }
2250 }
2253 }
2255 /**
2256 * This function will highlight instances of $needle in $haystack
2257 *
2258 * It's faster that the above function {@link highlight()} and doesn't care about
2259 * HTML or anything.
2260 *
2261 * @param string $needle The string to search for
2262 * @param string $haystack The string to search for $needle in
2263 * @return string The highlighted HTML
2264 */
2269 }
2275 }
2285 }
2288 }
2290 /**
2291 * Converts a language code to hyphen-separated format in accordance to the
2292 * {@link https://datatracker.ietf.org/doc/html/rfc5646#section-2.1 BCP47 syntax}.
2293 *
2294 * For additional information, check out
2295 * {@link https://developer.mozilla.org/en-US/docs/Web/HTML/Global_attributes/lang MDN web docs - lang}.
2296 *
2297 * @param string $langcode The language code to convert.
2298 * @return string
2299 */
2302 // If the language code passed is an empty string, return 'unknown'.
2304 }
2306 }
2308 /**
2309 * Return a string containing 'lang', xml:lang and optionally 'dir' HTML attributes.
2310 *
2311 * Internationalisation, for print_header and backup/restorelib.
2312 *
2313 * @param bool $dir Default false
2314 * @return string Attributes
2315 */
2320 if (isset($CFG->lang) && $currentlang !== $CFG->lang && !get_string_manager()->translation_exists($currentlang)) {
2321 // Use the default site language when the current language is not available.
2323 // Fix the current language.
2325 }
2333 }
2334 }
2336 // Accessibility: added the 'lang' attribute to $direction, used in theme <html> tag.
2340 }
2343 // STANDARD WEB PAGE PARTS.
2345 /**
2346 * Send the HTTP headers that Moodle requires.
2347 *
2348 * There is a backwards compatibility hack for legacy code
2349 * that needs to add custom IE compatibility directive.
2350 *
2351 * Example:
2352 * <code>
2353 * if (!isset($CFG->additionalhtmlhead)) {
2354 * $CFG->additionalhtmlhead = '';
2355 * }
2356 * $CFG->additionalhtmlhead .= '<meta http-equiv="X-UA-Compatible" content="IE=8" />';
2357 * header('X-UA-Compatible: IE=8');
2358 * echo $OUTPUT->header();
2359 * </code>
2360 *
2361 * Please note the $CFG->additionalhtmlhead alone might not work,
2362 * you should send the IE compatibility header() too.
2363 *
2364 * @param string $contenttype
2365 * @param bool $cacheable Can this page be cached on back?
2366 * @return void, sends HTTP headers
2367 */
2375 if (empty($CFG->additionalhtmlhead) or stripos($CFG->additionalhtmlhead, 'X-UA-Compatible') === false) {
2377 }
2380 // Allow caching on "back" (but not on normal clicks).
2385 // Do everything we can to always prevent clients and proxies caching.
2391 }
2394 // The Moodle app must be allowed to embed content always.
2397 }
2399 // If referrer policy is set, add a referrer header.
2402 }
2403 }
2405 /**
2406 * Return the right arrow with text ('next'), and optionally embedded in a link.
2407 *
2408 * @param string $text HTML/plain text label (set to blank only for breadcrumb separator cases).
2409 * @param string $url An optional link to use in a surrounding HTML anchor.
2410 * @param bool $accesshide True if text should be hidden (for screen readers only).
2411 * @param string $addclass Additional class names for the link, or the arrow character.
2412 * @return string HTML string.
2413 */
2419 }
2426 }
2427 }
2432 }
2438 ];
2443 }
2445 }
2447 /**
2448 * Return the left arrow with text ('previous'), and optionally embedded in a link.
2449 *
2450 * @param string $text HTML/plain text label (set to blank only for breadcrumb separator cases).
2451 * @param string $url An optional link to use in a surrounding HTML anchor.
2452 * @param bool $accesshide True if text should be hidden (for screen readers only).
2453 * @param string $addclass Additional class names for the link, or the arrow character.
2454 * @return string HTML string.
2455 */
2461 }
2468 }
2469 }
2474 }
2480 ];
2485 }
2487 }
2489 /**
2490 * Return a HTML element with the class "accesshide", for accessibility.
2491 *
2492 * Please use cautiously - where possible, text should be visible!
2493 *
2494 * @param string $text Plain text.
2495 * @param string $elem Lowercase element name, default "span".
2496 * @param string $class Additional classes for the element.
2497 * @param string $attrs Additional attributes string in the form, "name='value' name2='value2'"
2498 * @return string HTML string.
2499 */
2502 }
2504 /**
2505 * Return the breadcrumb trail navigation separator.
2506 *
2507 * @return string HTML string.
2508 */
2510 // Accessibility: the 'hidden' slash is preferred for screen readers.
2512 }
2514 /**
2515 * Print (or return) a collapsible region, that has a caption that can be clicked to expand or collapse the region.
2516 *
2517 * If JavaScript is off, then the region will always be expanded.
2518 *
2519 * @param string $contents the contents of the box.
2520 * @param string $classes class names added to the div that is output.
2521 * @param string $id id added to the div that is output. Must not be blank.
2522 * @param string $caption text displayed at the top. Clicking on this will cause the region to expand or contract.
2523 * @param string $userpref the name of the user preference that stores the user's preferred default state.
2524 * (May be blank if you do not wish the state to be persisted.
2525 * @param boolean $default Initial collapsed state to use if the user_preference it not set.
2526 * @param boolean $return if true, return the HTML as a string, rather than printing it.
2527 * @return string|void If $return is false, returns nothing, otherwise returns a string of HTML.
2528 */
2529 function print_collapsible_region($contents, $classes, $id, $caption, $userpref = '', $default = false, $return = false) {
2538 }
2539 }
2541 /**
2542 * Print (or return) the start of a collapsible region
2543 *
2544 * The collapsibleregion has a caption that can be clicked to expand or collapse the region. If JavaScript is off, then the region
2545 * will always be expanded.
2546 *
2547 * @param string $classes class names added to the div that is output.
2548 * @param string $id id added to the div that is output. Must not be blank.
2549 * @param string $caption text displayed at the top. Clicking on this will cause the region to expand or contract.
2550 * @param string $userpref the name of the user preference that stores the user's preferred default state.
2551 * (May be blank if you do not wish the state to be persisted.
2552 * @param boolean $default Initial collapsed state to use if the user_preference it not set.
2553 * @param boolean $return if true, return the HTML as a string, rather than printing it.
2554 * @param string $extracontent the extra content will show next to caption, eg.Help icon.
2555 * @return string|void if $return is false, returns nothing, otherwise returns a string of HTML.
2556 */
2557 function print_collapsible_region_start($classes, $id, $caption, $userpref = '', $default = false, $return = false,
2561 // Work out the initial state.
2567 }
2571 }
2580 }
2582 $PAGE->requires->js_init_call('M.util.init_collapsible_region', array($id, $userpref, get_string('clicktohideshow')));
2588 }
2589 }
2591 /**
2592 * Close a region started with print_collapsible_region_start.
2593 *
2594 * @param boolean $return if true, return the HTML as a string, rather than printing it.
2595 * @return string|void if $return is false, returns nothing, otherwise returns a string of HTML.
2596 */
2604 }
2605 }
2607 /**
2608 * Print a specified group's avatar.
2609 *
2610 * @param array|stdClass $group A single {@link group} object OR array of groups.
2611 * @param int $courseid The course ID.
2612 * @param boolean $large Default small picture, or large.
2613 * @param boolean $return If false print picture, otherwise return the output as string
2614 * @param boolean $link Enclose image in a link to view specified course?
2615 * @param boolean $includetoken Whether to use a user token when displaying this group image.
2616 * True indicates to generate a token for current user, and integer value indicates to generate a token for the
2617 * user whose id is the value indicated.
2618 * If the group picture is included in an e-mail or some other location where the audience is a specific
2619 * user who will not be logged in when viewing, then we use a token to authenticate the user.
2620 * @return string|void Depending on the setting of $return
2621 */
2622 function print_group_picture($group, $courseid, $large = false, $return = false, $link = true, $includetoken = false) {
2629 }
2635 }
2636 }
2640 // If there is no picture, do nothing.
2643 }
2656 }
2662 }
2663 }
2665 /**
2666 * Return the url to the group picture.
2667 *
2668 * @param stdClass $group A group object.
2669 * @param int $courseid The course ID for the group.
2670 * @param bool $large A large or small group picture? Default is small.
2671 * @param boolean $includetoken Whether to use a user token when displaying this group image.
2672 * True indicates to generate a token for current user, and integer value indicates to generate a token for the
2673 * user whose id is the value indicated.
2674 * If the group picture is included in an e-mail or some other location where the audience is a specific
2675 * user who will not be logged in when viewing, then we use a token to authenticate the user.
2676 * @return moodle_url Returns the url for the group picture.
2677 */
2683 // If there is no picture, do nothing.
2686 }
2692 }
2698 }
2701 /**
2702 * Display a recent activity note
2703 *
2704 * @staticvar string $strftimerecent
2705 * @param int $time A timestamp int.
2706 * @param stdClass $user A user object from the database.
2707 * @param string $text Text for display for the note
2708 * @param string $link The link to wrap around the text
2709 * @param bool $return If set to true the HTML is returned rather than echo'd
2710 * @param string $viewfullnames
2711 * @return string If $retrun was true returns HTML for a recent activity notice.
2712 */
2713 function print_recent_activity_note($time, $user, $text, $link, $return=false, $viewfullnames=null) {
2720 }
2724 }
2736 }
2737 }
2739 /**
2740 * Returns a popup menu with course activity modules
2741 *
2742 * Given a course this function returns a small popup menu with all the course activity modules in it, as a navigation menu
2743 * outputs a simple list structure in XHTML.
2744 * The data is taken from the serialised array stored in the course record.
2745 *
2746 * @param stdClass $course A course object.
2747 * @param array $sections
2748 * @param course_modinfo $modinfo
2749 * @param string $strsection
2750 * @param string $strjumpto
2751 * @param int $width
2752 * @param string $cmid
2753 * @return string The HTML block
2754 */
2755 function navmenulist($course, $sections, $modinfo, $strsection, $strjumpto, $width=50, $cmid=0) {
2766 $menu[] = '<ul class="navmenulist"><li class="jumpto section"><span>'.$strjumpto.'</span><ul>';
2769 // Don't show modules which you can't link to!
2771 }
2773 // For course formats using 'numsections' do not show extra sections.
2774 if (isset($courseformatoptions['numsections']) && $mod->sectionnum > $courseformatoptions['numsections']) {
2776 }
2780 }
2791 }
2799 }
2800 }
2807 // No activities from this hidden section shown.
2809 }
2810 }
2816 }
2819 }
2825 }
2829 }
2833 }
2835 /**
2836 * Prints a grade menu (as part of an existing form) with help showing all possible numerical grades and scales.
2837 *
2838 * @todo Finish documenting this function
2839 * @todo Deprecate: this is only used in a few contrib modules
2840 *
2841 * @param int $courseid The course ID
2842 * @param string $name
2843 * @param string $current
2844 * @param boolean $includenograde Include those with no grades
2845 * @param boolean $return If set to true returns rather than echo's
2846 * @return string|bool Depending on value of $return
2847 */
2858 }
2861 }
2864 }
2869 $action = new popup_action('click', $link, 'ratingscales', array('height' => 400, 'width' => 500));
2876 }
2877 }
2879 /**
2880 * Print an error to STDOUT and exit with a non-zero code. For commandline scripts.
2881 *
2882 * Default errorcode is 1.
2883 *
2884 * Very useful for perl-like error-handling:
2885 * do_somethting() or mdie("Something went wrong");
2886 *
2887 * @param string $msg Error message
2888 * @param integer $errorcode Error code to emit
2889 */
2893 }
2895 /**
2896 * Print a message and exit.
2897 *
2898 * @param string $message The message to print in the notice
2899 * @param moodle_url|string $link The link to use for the continue button
2900 * @param object $course A course object. Unused.
2901 * @return void This function simply exits
2902 */
2911 }
2914 // Header not yet printed.
2919 }
2926 }
2928 /**
2929 * Redirects the user to another page, after printing a notice.
2930 *
2931 * This function calls the OUTPUT redirect method, echo's the output and then dies to ensure nothing else happens.
2932 *
2933 * <strong>Good practice:</strong> You should call this method before starting page
2934 * output by using any of the OUTPUT methods.
2935 *
2936 * @param moodle_url|string $url A moodle_url to redirect to. Strings are not to be trusted!
2937 * @param string $message The message to display to the user
2938 * @param int $delay The delay before redirecting
2939 * @param string $messagetype The type of notification to show the message in. See constants on \core\output\notification.
2940 * @throws moodle_exception
2941 */
2942 function redirect($url, $message='', $delay=null, $messagetype = \core\output\notification::NOTIFY_INFO) {
2946 // This is wrong - developers should not use redirect in these scripts but it should not be very likely.
2948 }
2952 }
2954 // Prevent debug errors - make sure context is properly initialised.
2959 }
2963 }
2968 // Some debugging already printed, no need to look more.
2971 }
2974 // Clicking a URL from MS Word sends a request to the server without cookies. If that
2975 // causes a redirect Word will open a browser pointing the new URL. If not, the URL that
2976 // was clicked is opened. Because the request from Word is without cookies, it almost
2977 // always results in a redirect to the login page, even if the user is logged in in their
2978 // browser. This is not what we want, so prevent the redirect for requests from Word.
2981 }
2984 // No errors should be displayed.
2986 }
2990 }
2993 // Last error not interesting.
2995 }
2997 // Watch out here, @hidden() errors are returned from error_get_last() too.
2999 // We already started printing something - that means errors likely printed.
3002 }
3005 // There is something waiting to be printed, hopefully it is the errors,
3006 // but it might be some error hidden by @ too - such as the timezone mess from setup.php.
3009 }
3012 // Technically, HTTP/1.1 requires Location: header to contain the absolute path.
3013 // (In practice browsers accept relative paths - but still, might as well do it properly.)
3014 // This code turns relative into absolute.
3016 // Get host name http://www.wherever.com.
3019 // URLs beginning with / are relative to web server root so we just add them in.
3022 // URLs not beginning with / are relative to path of current script, so add that on.
3024 }
3025 // Replace all ..s.
3030 }
3032 }
3033 }
3035 // Sanitise url - we can not rely on moodle_url or our URL cleaning
3036 // because they do not support all valid external URLs.
3040 $encodedurl = preg_replace('/^.*href="([^"]*)".*$/', "\\1", clean_text('<a href="'.$encodedurl.'" />', FORMAT_HTML));
3045 // A message has been provided, and the headers have not yet been sent.
3046 // Display the message as a notification on the subsequent page.
3053 }
3055 }
3059 }
3061 // Make sure the session is closed properly, this prevents problems in IIS
3062 // and also some potential PHP shutdown issues.
3067 // This helps when debugging redirect issues like loops and it is not clear
3068 // which layer in the stack sent the redirect header. If debugging is on
3069 // then the file and line is also shown.
3073 $redirectby .= ' /' . str_replace($CFG->dirroot . '/', '', $origin['file']) . ':' . $origin['line'];
3074 }
3077 // 302 might not work for POST requests, 303 is ignored by obsolete clients.
3082 }
3084 // Include a redirect message, even with a HTTP redirect, because that is recommended practice.
3086 $CFG->docroot = false; // To prevent the link to moodle docs from being displayed on redirect page.
3087 echo $OUTPUT->redirect_message($encodedurl, $message, $delay, $debugdisableredirect, $messagetype);
3092 }
3093 }
3095 /**
3096 * Given an email address, this function will return an obfuscated version of it.
3097 *
3098 * @param string $email The email address to obfuscate
3099 * @return string The obfuscated email address
3100 */
3110 }
3112 }
3114 }
3116 /**
3117 * This function takes some text and replaces about half of the characters
3118 * with HTML entity equivalents. Return string is obviously longer.
3119 *
3120 * @param string $plaintext The text to be obfuscated
3121 * @return string The obfuscated text
3122 */
3140 }
3142 }
3144 }
3146 /**
3147 * This function uses the {@link obfuscate_email()} and {@link obfuscate_text()}
3148 * to generate a fully obfuscated email link, ready to use.
3149 *
3150 * @param string $email The email address to display
3151 * @param string $label The text to displayed as hyperlink to $email
3152 * @param boolean $dimmed If true then use css class 'dimmed' for hyperlink
3153 * @param string $subject The subject of the email in the mailto link
3154 * @param string $body The content of the email in the mailto link
3155 * @return string The obfuscated mailto link
3156 */
3161 }
3171 }
3174 }
3176 // Use the obfuscated mailto.
3182 }
3185 }
3187 /**
3188 * This function is used to rebuild the <nolink> tag because some formats (PLAIN and WIKI)
3189 * will transform it to html entities
3190 *
3191 * @param string $text Text to search for nolink tag in
3192 * @return string
3193 */
3199 }
3201 /**
3202 * Prints a maintenance message from $CFG->maintenance_message or default if empty.
3203 */
3220 }
3223 }
3225 /**
3226 * Returns a string containing a nested list, suitable for formatting into tabs with CSS.
3227 *
3228 * It is not recommended to use this function in Moodle 2.5 but it is left for backward
3229 * compartibility.
3230 *
3231 * Example how to print a single line tabs:
3232 * $rows = array(
3233 * new tabobject(...),
3234 * new tabobject(...)
3235 * );
3236 * echo $OUTPUT->tabtree($rows, $selectedid);
3237 *
3238 * Multiple row tabs may not look good on some devices but if you want to use them
3239 * you can specify ->subtree for the active tabobject.
3240 *
3241 * @param array $tabrows An array of rows where each row is an array of tab objects
3242 * @param string $selected The id of the selected tab (whatever row it's on)
3243 * @param array $inactive An array of ids of inactive tabs that are not selectable.
3244 * @param array $activated An array of ids of other tabs that are currently activated
3245 * @param bool $return If true output is returned rather then echo'd
3246 * @return string HTML output if $return was set to true.
3247 */
3248 function print_tabs($tabrows, $selected = null, $inactive = null, $activated = null, $return = false) {
3263 }
3265 }
3267 }
3274 }
3275 }
3277 /**
3278 * Alter debugging level for the current request,
3279 * the change is not saved in database.
3280 *
3281 * @param int $level one of the DEBUG_* constants
3282 * @param bool $debugdisplay
3283 */
3292 }
3293 }
3295 /**
3296 * Standard Debugging Function
3297 *
3298 * Returns true if the current site debugging settings are equal or above specified level.
3299 * If passed a parameter it will emit a debugging notice similar to trigger_error(). The
3300 * routing of notices is controlled by $CFG->debugdisplay
3301 * eg use like this:
3302 *
3303 * 1) debugging('a normal debug notice');
3304 * 2) debugging('something really picky', DEBUG_ALL);
3305 * 3) debugging('annoying debug message only for developers', DEBUG_DEVELOPER);
3306 * 4) if (debugging()) { perform extra debugging operations (do not use print or echo) }
3307 *
3308 * In code blocks controlled by debugging() (such as example 4)
3309 * any output should be routed via debugging() itself, or the lower-level
3310 * trigger_error() or error_log(). Using echo or print will break XHTML
3311 * JS and HTTP headers.
3312 *
3313 * It is also possible to define NO_DEBUG_DISPLAY which redirects the message to error_log.
3314 *
3315 * @param string $message a message to print
3316 * @param int $level the level at which this debugging statement should show
3317 * @param array $backtrace use different backtrace
3318 * @return bool
3319 */
3327 }
3331 }
3335 }
3340 }
3344 // We are inside test, the debug message was logged.
3346 }
3347 }
3350 // Script does not want any errors or debugging in output,
3351 // we send the info to error log instead.
3357 }
3361 echo '<div class="notifytiny debuggingmessage" data-rel="debugging">' , $message , $from , '</div>';
3362 }
3366 }
3367 }
3369 }
3371 /**
3372 * Outputs a HTML comment to the browser.
3373 *
3374 * This is used for those hard-to-debug pages that use bits from many different files in very confusing ways (e.g. blocks).
3375 *
3376 * <code>print_location_comment(__FILE__, __LINE__);</code>
3377 *
3378 * @param string $file
3379 * @param integer $line
3380 * @param boolean $return Whether to return or print the comment
3381 * @return string|void Void unless true given as third parameter
3382 */
3388 }
3389 }
3392 /**
3393 * Returns true if the user is using a right-to-left language.
3394 *
3395 * @return boolean true if the current language is right-to-left (Hebrew, Arabic etc)
3396 */
3399 }
3402 /**
3403 * Returns swapped left<=> right if in RTL environment.
3404 *
3405 * Part of RTL Moodles support.
3406 *
3407 * @param string $align align to check
3408 * @return string
3409 */
3413 }
3416 }
3419 }
3421 }
3424 /**
3425 * Returns true if the page is displayed in a popup window.
3426 *
3427 * Gets the information from the URL parameter inpopup.
3428 *
3429 * @todo Use a central function to create the popup calls all over Moodle and
3430 * In the moment only works with resources and probably questions.
3431 *
3432 * @return boolean
3433 */
3438 }
3440 /**
3441 * Progress trace class.
3442 *
3443 * Use this class from long operations where you want to output occasional information about
3444 * what is going on, but don't know if, or in what format, the output should be.
3445 *
3446 * @copyright 2009 Tim Hunt
3447 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3448 * @package core
3449 */
3451 /**
3452 * Output an progress message in whatever format.
3453 *
3454 * @param string $message the message to output.
3455 * @param integer $depth indent depth for this message.
3456 */
3459 /**
3460 * Called when the processing is finished.
3461 */
3463 }
3464 }
3466 /**
3467 * This subclass of progress_trace does not ouput anything.
3468 *
3469 * @copyright 2009 Tim Hunt
3470 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3471 * @package core
3472 */
3474 /**
3475 * Does Nothing
3476 *
3477 * @param string $message
3478 * @param int $depth
3479 * @return void Does Nothing
3480 */
3482 }
3483 }
3485 /**
3486 * This subclass of progress_trace outputs to plain text.
3487 *
3488 * @copyright 2009 Tim Hunt
3489 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3490 * @package core
3491 */
3493 /**
3494 * Output the trace message.
3495 *
3496 * @param string $message
3497 * @param int $depth
3498 * @return void Output is echo'd
3499 */
3502 }
3503 }
3505 /**
3506 * This subclass of progress_trace outputs as HTML.
3507 *
3508 * @copyright 2009 Tim Hunt
3509 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3510 * @package core
3511 */
3513 /**
3514 * Output the trace message.
3515 *
3516 * @param string $message
3517 * @param int $depth
3518 * @return void Output is echo'd
3519 */
3521 echo '<p>', str_repeat('  ', $depth), htmlspecialchars($message, ENT_COMPAT), "</p>\n";
3523 }
3524 }
3526 /**
3527 * HTML List Progress Tree
3528 *
3529 * @copyright 2009 Tim Hunt
3530 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3531 * @package core
3532 */
3534 /** @var int */
3537 /**
3538 * Echo out the list
3539 *
3540 * @param string $message The message to display
3541 * @param int $depth
3542 * @return void Output is echoed
3543 */
3551 }
3553 }
3558 }
3561 }
3564 }
3566 /**
3567 * Called when the processing is finished.
3568 */
3573 }
3574 }
3575 }
3577 /**
3578 * This subclass of progress_trace outputs to error log.
3579 *
3580 * @copyright Petr Skoda {@link http://skodak.org}
3581 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3582 * @package core
3583 */
3585 /** @var string log prefix */
3588 /**
3589 * Constructor.
3590 * @param string $prefix optional log prefix
3591 */
3594 }
3596 /**
3597 * Output the trace message.
3598 *
3599 * @param string $message
3600 * @param int $depth
3601 * @return void Output is sent to error log.
3602 */
3605 }
3606 }
3608 /**
3609 * Special type of trace that can be used for catching of output of other traces.
3610 *
3611 * @copyright Petr Skoda {@link http://skodak.org}
3612 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3613 * @package core
3614 */
3616 /** @var progress_trace */
3618 /** @var bool do we pass output out */
3620 /** @var string output buffer */
3623 /**
3624 * Constructor.
3625 *
3626 * @param progress_trace $trace
3627 * @param bool $passthrough true means output and buffer, false means just buffer and no output
3628 */
3633 }
3635 /**
3636 * Output the trace message.
3637 *
3638 * @param string $message the message to output.
3639 * @param int $depth indent depth for this message.
3640 * @return void output stored in buffer
3641 */
3650 }
3651 }
3653 /**
3654 * Called when the processing is finished.
3655 */
3664 }
3665 }
3667 /**
3668 * Reset internal text buffer.
3669 */
3672 }
3674 /**
3675 * Return internal text buffer.
3676 * @return string buffered plain text
3677 */
3680 }
3681 }
3683 /**
3684 * Special type of trace that can be used for redirecting to multiple other traces.
3685 *
3686 * @copyright Petr Skoda {@link http://skodak.org}
3687 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
3688 * @package core
3689 */
3692 /**
3693 * An array of traces.
3694 * @var array
3695 */
3698 /**
3699 * Constructs a new instance.
3700 *
3701 * @param array $traces multiple traces
3702 */
3705 }
3707 /**
3708 * Output an progress message in whatever format.
3709 *
3710 * @param string $message the message to output.
3711 * @param integer $depth indent depth for this message.
3712 */
3716 }
3717 }
3719 /**
3720 * Called when the processing is finished.
3721 */
3725 }
3726 }
3727 }
3729 /**
3730 * Returns a localized sentence in the current language summarizing the current password policy
3731 *
3732 * @todo this should be handled by a function/method in the language pack library once we have a support for it
3733 * @uses $CFG
3734 * @return string
3735 */
3744 }
3747 }
3750 }
3753 }
3755 $messages[] = get_string('informminpasswordnonalphanum', 'auth', $CFG->minpasswordnonalphanum);
3756 }
3758 // Fire any additional password policy functions from plugins.
3759 // Callbacks must return an array of message strings.
3764 }
3765 }
3768 // Check if messages is empty before outputting any text.
3771 }
3772 }
3774 }
3776 /**
3777 * Get the value of a help string fully prepared for display in the current language.
3778 *
3779 * @param string $identifier The identifier of the string to search for.
3780 * @param string $component The module the string is associated with.
3781 * @param boolean $ajax Whether this help is called from an AJAX script.
3782 * This is used to influence text formatting and determines
3783 * which format to output the doclink in.
3784 * @param string|object|array $a An object, string or number that can be used
3785 * within translation strings
3786 * @return stdClass An object containing:
3787 * - heading: Any heading that there may be for this help string.
3788 * - text: The wiki-formatted help string.
3789 * - doclink: An object containing a link, the linktext, and any additional
3790 * CSS classes to apply to that link. Only present if $ajax = false.
3791 * - completedoclink: A text representation of the doclink. Only present if $ajax = true.
3792 */
3797 // Do not rebuild caches here!
3798 // Devs need to learn to purge all caches after any change or disable $CFG->langstringcache.
3805 // Gracefully fall back to an empty string.
3807 }
3819 // Should be simple wiki only MDL-21695.
3820 $data->text = format_text(get_string($identifier.'_help', $component, $a), FORMAT_MARKDOWN, $options);
3836 }
3837 }
3840 html_writer::tag('strong', 'TODO') . ": missing help string [{$identifier}_help, {$component}]");
3841 }
3843 }