blog/index.php

   1 <?php // $Id$
   2
   3 /**
   4  * file index.php
   5  * index page to view blogs. if no blog is specified then site wide entries are shown
   6  * if a blog id is specified then the latest entries from that blog are shown
   7  */
   8
   9 require_once('../config.php');
  10 require_once($CFG->dirroot .'/blog/lib.php');
  11 require_once($CFG->libdir .'/blocklib.php');
  12
  13 $id           = optional_param('id', 0, PARAM_INT);
  14 $start        = optional_param('formstart', 0, PARAM_INT);
  15 $userid       = optional_param('userid',0,PARAM_INT);
  16 $tag          = optional_param('tag', '', PARAM_NOTAGS);
  17 $tagid        = optional_param('tagid', 0, PARAM_INT);
  18 $postid       = optional_param('postid',0,PARAM_INT);
  19 $filtertype   = optional_param('filtertype', '', PARAM_ALPHA);
  20 $filterselect = optional_param('filterselect', 0, PARAM_INT);
  21
  22 $edit         = optional_param('edit', -1, PARAM_BOOL);
  23 $courseid     = optional_param('courseid', 0, PARAM_INT); // needed for user tabs and course tracking
  24
  25
  26 if (empty($CFG->bloglevel)) {
  27     error('Blogging is disabled!');
  28 }
  29
  30 $sitecontext = get_context_instance(CONTEXT_SYSTEM, SITEID);
  31
  32
  33 // change block edit staus if not guest and logged in
  34 if (isloggedin() and !isguest() and $edit != -1) {
  35     $SESSION->blog_editing_enabled = $edit;
  36 }
  37
  38 if (empty($filtertype)) {
  39     if ($userid) {    // default to user if specified
  40         $filtertype = 'user';
  41         $filterselect = $userid;
  42     } else if (has_capability('moodle/blog:view', $sitecontext) and $CFG->bloglevel > BLOG_USER_LEVEL) {
  43         $filtertype = 'site';
  44         $filterselect = '';
  45     } else {
  46         // user might have capability to write blogs, but not read blogs at site level
  47         // users might enter this url manually without parameters
  48         $filtertype = 'user';
  49         $filterselect = $USER->id;
  50     }
  51 }
  52 /// check access and prepare filters
  53
  54 switch ($filtertype) {
  55
  56     case 'site':
  57         if ($CFG->bloglevel < BLOG_SITE_LEVEL) {
  58             error('Site blogs is not enabled');
  59         }
  60         if ($CFG->bloglevel < BLOG_GLOBAL_LEVEL) {
  61             require_login();
  62         }
  63         if (!has_capability('moodle/blog:view', $sitecontext)) {
  64             error('You do not have the required permissions to view all site blogs');
  65         }
  66     break;
  67
  68     case 'course':
  69         if ($CFG->bloglevel < BLOG_COURSE_LEVEL) {
  70             error('Course blogs is not enabled');
  71         }
  72         if (!$course = get_record('course', 'id', $filterselect)) {
  73             error('Incorrect course id specified');
  74         }
  75         $courseid = $course->id;
  76         $coursecontext = get_context_instance(CONTEXT_COURSE, $course->id);
  77         require_login($course->id);
  78         if (!has_capability('moodle/blog:view', $sitecontext)) {
  79             error('You do not have the required permissions to view blogs in this course');
  80         }
  81     break;
  82
  83     case 'group':
  84         if ($CFG->bloglevel < BLOG_GROUP_LEVEL) {
  85             error('Group blogs is not enabled');
  86         }
  87         if (!$group = get_record('groups','id',$groupid)) {
  88             error('Incorrect group id specified');
  89         }
  90         if (!$course = get_record('course', 'id', $group->courseid)) {
  91             error('Incorrect course id specified');
  92         }
  93         $coursecontext = get_context_instance(CONTEXT_COURSE, $course->id);
  94         $courseid = $course->id;
  95         require_login($course->id);
  96         if (!has_capability('moodle/blog:view', $coursecontext)) {
  97             error('You do not have the required permissions to view blogs in this course/group');
  98         }
  99         if (groupmode($course) == SEPARATEGROUPS
 100           and !has_capability('moodle/site:accessallgroups', $coursecontext)) {
 101             if (!ismember($filterselect)) {
 102                 error ('You are not a member of this course group');
 103             }
 104         }
 105
 106     break;
 107
 108     case 'user':
 109         if ($CFG->bloglevel < BLOG_USER_LEVEL) {
 110             error('Blogs is not enabled');
 111         }
 112         if (!$user = get_record('user', 'id', $filterselect)) {
 113             error('Incorrect user id');
 114         }
 115         if ($USER->id == $filterselect) {
 116             if (!has_capability('moodle/blog:create', $sitecontext)
 117               and !has_capability('moodle/blog:view', $sitecontext)) {
 118                 error('You do not have your own a blog, sorry.');
 119             }
 120         } else {
 121             $personalcontext = get_context_instance(CONTEXT_USER, $filterselect);
 122             if (!has_capability('moodle/blog:view', $sitecontext)
 123               and !has_capability('moodle/user:readuserblogs', $personalcontext)) {
 124                 error('You do not have the required permissions to read user blogs');
 125             }
 126             if (!blog_user_can_view_user_post($filterselect)) {
 127                 error('You can not view blog of this user, sorry.');
 128             }
 129         }
 130         $userid = $filterselect;
 131
 132     break;
 133
 134     default:
 135         error('Incorrect blog filter type specified');
 136     break;
 137 }
 138
 139 if (empty($courseid)) {
 140     $courseid = SITEID;
 141 }
 142
 143 include($CFG->dirroot .'/blog/header.php');
 144
 145 blog_print_html_formatted_entries($postid, $filtertype, $filterselect, $tagid, $tag);
 146
 147 add_to_log($courseid, 'blog', 'view', 'index.php?filtertype='.$filtertype.'&amp;filterselect='.$filterselect.'&amp;postid='.$postid.'&amp;tagid='.$tagid.'&amp;tag='.$tag, 'view blog entry');
 148
 149 include($CFG->dirroot .'/blog/footer.php');
 150
 151
 152 ?>