2 // This file is part of Moodle - http://moodle.org/
4 // Moodle is free software: you can redistribute it and/or modify
5 // it under the terms of the GNU General Public License as published by
6 // the Free Software Foundation, either version 3 of the License, or
7 // (at your option) any later version.
9 // Moodle is distributed in the hope that it will be useful,
10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 // GNU General Public License for more details.
14 // You should have received a copy of the GNU General Public License
15 // along with Moodle. If not, see <http://www.gnu.org/licenses/>.
18 * These functions are required very early in the Moodle
19 * setup process, before any of the main libraries are
24 * @copyright 1999 onwards Martin Dougiamas {@link http://moodle.com}
25 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
28 defined('MOODLE_INTERNAL') ||
die();
30 // Debug levels - always keep the values in ascending order!
31 /** No warnings and errors at all */
32 define('DEBUG_NONE', 0);
33 /** Fatal errors only */
34 define('DEBUG_MINIMAL', E_ERROR | E_PARSE
);
35 /** Errors, warnings and notices */
36 define('DEBUG_NORMAL', E_ERROR | E_PARSE | E_WARNING | E_NOTICE
);
37 /** All problems except strict PHP warnings */
38 define('DEBUG_ALL', E_ALL
& ~E_STRICT
);
39 /** DEBUG_ALL with all debug messages and strict warnings */
40 define('DEBUG_DEVELOPER', E_ALL | E_STRICT
);
42 /** Remove any memory limits */
43 define('MEMORY_UNLIMITED', -1);
44 /** Standard memory limit for given platform */
45 define('MEMORY_STANDARD', -2);
47 * Large memory limit for given platform - used in cron, upgrade, and other places that need a lot of memory.
48 * Can be overridden with $CFG->extramemorylimit setting.
50 define('MEMORY_EXTRA', -3);
51 /** Extremely large memory limit - not recommended for standard scripts */
52 define('MEMORY_HUGE', -4);
55 * Base Moodle Exception class
57 * Although this class is defined here, you cannot throw a moodle_exception until
58 * after moodlelib.php has been included (which will happen very soon).
62 * @copyright 2008 Petr Skoda {@link http://skodak.org}
63 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
65 class moodle_exception
extends Exception
{
68 * @var string The name of the string from error.php to print
73 * @var string The name of module
78 * @var mixed Extra words and phrases that might be required in the error string
83 * @var string The url where the user will be prompted to continue. If no url is provided the user will be directed to the site index page.
88 * @var string Optional information to aid the debugging process
94 * @param string $errorcode The name of the string from error.php to print
95 * @param string $module name of module
96 * @param string $link The url where the user will be prompted to continue. If no url is provided the user will be directed to the site index page.
97 * @param mixed $a Extra words and phrases that might be required in the error string
98 * @param string $debuginfo optional debugging information
100 function __construct($errorcode, $module='', $link='', $a=NULL, $debuginfo=null) {
103 if (empty($module) ||
$module == 'moodle' ||
$module == 'core') {
107 $this->errorcode
= $errorcode;
108 $this->module
= $module;
111 $this->debuginfo
= is_null($debuginfo) ?
null : (string)$debuginfo;
113 if (get_string_manager()->string_exists($errorcode, $module)) {
114 $message = get_string($errorcode, $module, $a);
115 $haserrorstring = true;
117 $message = $module . '/' . $errorcode;
118 $haserrorstring = false;
121 $isinphpunittest = (defined('PHPUNIT_TEST') && PHPUNIT_TEST
);
122 $hasdebugdeveloper = (
123 isset($CFG->debugdisplay
) &&
124 isset($CFG->debug
) &&
125 $CFG->debugdisplay
&&
126 $CFG->debug
=== DEBUG_DEVELOPER
130 if ($isinphpunittest ||
$hasdebugdeveloper) {
131 $message = "$message ($debuginfo)";
135 if (!$haserrorstring and $isinphpunittest) {
136 // Append the contents of $a to $debuginfo so helpful information isn't lost.
137 // This emulates what {@link get_exception_info()} does. Unfortunately that
138 // function is not used by phpunit.
139 $message .= PHP_EOL
.'$a contents: '.print_r($a, true);
142 parent
::__construct($message, 0);
147 * Course/activity access exception.
149 * This exception is thrown from require_login()
151 * @package core_access
152 * @copyright 2010 Petr Skoda {@link http://skodak.org}
153 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
155 class require_login_exception
extends moodle_exception
{
158 * @param string $debuginfo Information to aid the debugging process
160 function __construct($debuginfo) {
161 parent
::__construct('requireloginerror', 'error', '', NULL, $debuginfo);
166 * Session timeout exception.
168 * This exception is thrown from require_login()
170 * @package core_access
171 * @copyright 2015 Andrew Nicols <andrew@nicols.co.uk>
172 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
174 class require_login_session_timeout_exception
extends require_login_exception
{
178 public function __construct() {
179 moodle_exception
::__construct('sessionerroruser', 'error');
184 * Web service parameter exception class
185 * @deprecated since Moodle 2.2 - use moodle exception instead
186 * This exception must be thrown to the web service client when a web service parameter is invalid
187 * The error string is gotten from webservice.php
189 class webservice_parameter_exception
extends moodle_exception
{
192 * @param string $errorcode The name of the string from webservice.php to print
193 * @param string $a The name of the parameter
194 * @param string $debuginfo Optional information to aid debugging
196 function __construct($errorcode=null, $a = '', $debuginfo = null) {
197 parent
::__construct($errorcode, 'webservice', '', $a, $debuginfo);
202 * Exceptions indicating user does not have permissions to do something
203 * and the execution can not continue.
205 * @package core_access
206 * @copyright 2009 Petr Skoda {@link http://skodak.org}
207 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
209 class required_capability_exception
extends moodle_exception
{
212 * @param context $context The context used for the capability check
213 * @param string $capability The required capability
214 * @param string $errormessage The error message to show the user
215 * @param string $stringfile
217 function __construct($context, $capability, $errormessage, $stringfile) {
218 $capabilityname = get_capability_string($capability);
219 if ($context->contextlevel
== CONTEXT_MODULE
and preg_match('/:view$/', $capability)) {
220 // we can not go to mod/xx/view.php because we most probably do not have cap to view it, let's go to course instead
221 $parentcontext = $context->get_parent_context();
222 $link = $parentcontext->get_url();
224 $link = $context->get_url();
226 parent
::__construct($errormessage, $stringfile, $link, $capabilityname);
231 * Exception indicating programming error, must be fixed by a programer. For example
232 * a core API might throw this type of exception if a plugin calls it incorrectly.
236 * @copyright 2008 Petr Skoda {@link http://skodak.org}
237 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
239 class coding_exception
extends moodle_exception
{
242 * @param string $hint short description of problem
243 * @param string $debuginfo detailed information how to fix problem
245 function __construct($hint, $debuginfo=null) {
246 parent
::__construct('codingerror', 'debug', '', $hint, $debuginfo);
251 * Exception indicating malformed parameter problem.
252 * This exception is not supposed to be thrown when processing
253 * user submitted data in forms. It is more suitable
254 * for WS and other low level stuff.
258 * @copyright 2009 Petr Skoda {@link http://skodak.org}
259 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
261 class invalid_parameter_exception
extends moodle_exception
{
264 * @param string $debuginfo some detailed information
266 function __construct($debuginfo=null) {
267 parent
::__construct('invalidparameter', 'debug', '', null, $debuginfo);
272 * Exception indicating malformed response problem.
273 * This exception is not supposed to be thrown when processing
274 * user submitted data in forms. It is more suitable
275 * for WS and other low level stuff.
277 class invalid_response_exception
extends moodle_exception
{
280 * @param string $debuginfo some detailed information
282 function __construct($debuginfo=null) {
283 parent
::__construct('invalidresponse', 'debug', '', null, $debuginfo);
288 * An exception that indicates something really weird happened. For example,
289 * if you do switch ($context->contextlevel), and have one case for each
290 * CONTEXT_... constant. You might throw an invalid_state_exception in the
291 * default case, to just in case something really weird is going on, and
292 * $context->contextlevel is invalid - rather than ignoring this possibility.
296 * @copyright 2009 onwards Martin Dougiamas {@link http://moodle.com}
297 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
299 class invalid_state_exception
extends moodle_exception
{
302 * @param string $hint short description of problem
303 * @param string $debuginfo optional more detailed information
305 function __construct($hint, $debuginfo=null) {
306 parent
::__construct('invalidstatedetected', 'debug', '', $hint, $debuginfo);
311 * An exception that indicates incorrect permissions in $CFG->dataroot
315 * @copyright 2010 Petr Skoda {@link http://skodak.org}
316 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
318 class invalid_dataroot_permissions
extends moodle_exception
{
321 * @param string $debuginfo optional more detailed information
323 function __construct($debuginfo = NULL) {
324 parent
::__construct('invaliddatarootpermissions', 'error', '', NULL, $debuginfo);
329 * An exception that indicates that file can not be served
333 * @copyright 2010 Petr Skoda {@link http://skodak.org}
334 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
336 class file_serving_exception
extends moodle_exception
{
339 * @param string $debuginfo optional more detailed information
341 function __construct($debuginfo = NULL) {
342 parent
::__construct('cannotservefile', 'error', '', NULL, $debuginfo);
347 * Default exception handler.
349 * @param Exception $ex
350 * @return void -does not return. Terminates execution!
352 function default_exception_handler($ex) {
353 global $CFG, $DB, $OUTPUT, $USER, $FULLME, $SESSION, $PAGE;
355 // detect active db transactions, rollback and log as error
356 abort_all_db_transactions();
358 if (($ex instanceof required_capability_exception
) && !CLI_SCRIPT
&& !AJAX_SCRIPT
&& !empty($CFG->autologinguests
) && !empty($USER->autologinguest
)) {
359 $SESSION->wantsurl
= qualified_me();
360 redirect(get_login_url());
363 $info = get_exception_info($ex);
365 // If we already tried to send the header remove it, the content length
366 // should be either empty or the length of the error page.
367 @header_remove
('Content-Length');
369 if (is_early_init($info->backtrace
)) {
370 echo bootstrap_renderer
::early_error($info->message
, $info->moreinfourl
, $info->link
, $info->backtrace
, $info->debuginfo
, $info->errorcode
);
372 if (debugging('', DEBUG_MINIMAL
)) {
373 $logerrmsg = "Default exception handler: ".$info->message
.' Debug: '.$info->debuginfo
."\n".format_backtrace($info->backtrace
, true);
374 error_log($logerrmsg);
379 // If you enable db debugging and exception is thrown, the print footer prints a lot of rubbish
383 // If we are in an AJAX script we don't want to use PREFERRED_RENDERER_TARGET.
384 // Because we know we will want to use ajax format.
385 $renderer = new core_renderer_ajax($PAGE, 'ajax');
389 echo $renderer->fatal_error($info->message
, $info->moreinfourl
, $info->link
, $info->backtrace
, $info->debuginfo
,
391 } catch (Exception
$e) {
393 } catch (Throwable
$e) {
394 // Engine errors in PHP7 throw exceptions of type Throwable (this "catch" will be ignored in PHP5).
398 if (isset($out_ex)) {
399 // default exception handler MUST not throw any exceptions!!
400 // the problem here is we do not know if page already started or not, we only know that somebody messed up in outputlib or theme
401 // so we just print at least something instead of "Exception thrown without a stack frame in Unknown on line 0":-(
402 if (CLI_SCRIPT
or AJAX_SCRIPT
) {
403 // just ignore the error and send something back using the safest method
404 echo bootstrap_renderer
::early_error($info->message
, $info->moreinfourl
, $info->link
, $info->backtrace
, $info->debuginfo
, $info->errorcode
);
406 echo bootstrap_renderer
::early_error_content($info->message
, $info->moreinfourl
, $info->link
, $info->backtrace
, $info->debuginfo
);
407 $outinfo = get_exception_info($out_ex);
408 echo bootstrap_renderer
::early_error_content($outinfo->message
, $outinfo->moreinfourl
, $outinfo->link
, $outinfo->backtrace
, $outinfo->debuginfo
);
413 exit(1); // General error code
417 * Default error handler, prevents some white screens.
419 * @param string $errstr
420 * @param string $errfile
421 * @param int $errline
422 * @param array $errcontext
423 * @return bool false means use default error handler
425 function default_error_handler($errno, $errstr, $errfile, $errline, $errcontext) {
426 if ($errno == 4096) {
427 //fatal catchable error
428 throw new coding_exception('PHP catchable fatal error', $errstr);
434 * Unconditionally abort all database transactions, this function
435 * should be called from exception handlers only.
438 function abort_all_db_transactions() {
439 global $CFG, $DB, $SCRIPT;
441 // default exception handler MUST not throw any exceptions!!
443 if ($DB && $DB->is_transaction_started()) {
444 error_log('Database transaction aborted automatically in ' . $CFG->dirroot
. $SCRIPT);
445 // note: transaction blocks should never change current $_SESSION
446 $DB->force_transaction_rollback();
451 * This function encapsulates the tests for whether an exception was thrown in
452 * early init -- either during setup.php or during init of $OUTPUT.
454 * If another exception is thrown then, and if we do not take special measures,
455 * we would just get a very cryptic message "Exception thrown without a stack
456 * frame in Unknown on line 0". That makes debugging very hard, so we do take
457 * special measures in default_exception_handler, with the help of this function.
459 * @param array $backtrace the stack trace to analyse.
460 * @return boolean whether the stack trace is somewhere in output initialisation.
462 function is_early_init($backtrace) {
463 $dangerouscode = array(
464 array('function' => 'header', 'type' => '->'),
465 array('class' => 'bootstrap_renderer'),
466 array('file' => __DIR__
.'/setup.php'),
468 foreach ($backtrace as $stackframe) {
469 foreach ($dangerouscode as $pattern) {
471 foreach ($pattern as $property => $value) {
472 if (!isset($stackframe[$property]) ||
$stackframe[$property] != $value) {
485 * Abort execution by throwing of a general exception,
486 * default exception handler displays the error message in most cases.
488 * @param string $errorcode The name of the language string containing the error message.
489 * Normally this should be in the error.php lang file.
490 * @param string $module The language file to get the error message from.
491 * @param string $link The url where the user will be prompted to continue.
492 * If no url is provided the user will be directed to the site index page.
493 * @param object $a Extra words and phrases that might be required in the error string
494 * @param string $debuginfo optional debugging information
495 * @return void, always throws exception!
497 function print_error($errorcode, $module = 'error', $link = '', $a = null, $debuginfo = null) {
498 throw new moodle_exception($errorcode, $module, $link, $a, $debuginfo);
502 * Returns detailed information about specified exception.
503 * @param exception $ex
506 function get_exception_info($ex) {
507 global $CFG, $DB, $SESSION;
509 if ($ex instanceof moodle_exception
) {
510 $errorcode = $ex->errorcode
;
511 $module = $ex->module
;
514 $debuginfo = $ex->debuginfo
;
516 $errorcode = 'generalexceptionmessage';
518 $a = $ex->getMessage();
523 // Append the error code to the debug info to make grepping and googling easier
524 $debuginfo .= PHP_EOL
."Error code: $errorcode";
526 $backtrace = $ex->getTrace();
527 $place = array('file'=>$ex->getFile(), 'line'=>$ex->getLine(), 'exception'=>get_class($ex));
528 array_unshift($backtrace, $place);
530 // Be careful, no guarantee moodlelib.php is loaded.
531 if (empty($module) ||
$module == 'moodle' ||
$module == 'core') {
534 // Search for the $errorcode's associated string
535 // If not found, append the contents of $a to $debuginfo so helpful information isn't lost
536 if (function_exists('get_string_manager')) {
537 if (get_string_manager()->string_exists($errorcode, $module)) {
538 $message = get_string($errorcode, $module, $a);
539 } elseif ($module == 'error' && get_string_manager()->string_exists($errorcode, 'moodle')) {
540 // Search in moodle file if error specified - needed for backwards compatibility
541 $message = get_string($errorcode, 'moodle', $a);
543 $message = $module . '/' . $errorcode;
544 $debuginfo .= PHP_EOL
.'$a contents: '.print_r($a, true);
547 $message = $module . '/' . $errorcode;
548 $debuginfo .= PHP_EOL
.'$a contents: '.print_r($a, true);
551 // Remove some absolute paths from message and debugging info.
554 $cfgnames = array('tempdir', 'cachedir', 'localcachedir', 'themedir', 'dataroot', 'dirroot');
555 foreach ($cfgnames as $cfgname) {
556 if (property_exists($CFG, $cfgname)) {
557 $searches[] = $CFG->$cfgname;
558 $replaces[] = "[$cfgname]";
561 if (!empty($searches)) {
562 $message = str_replace($searches, $replaces, $message);
563 $debuginfo = str_replace($searches, $replaces, $debuginfo);
566 // Be careful, no guarantee weblib.php is loaded.
567 if (function_exists('clean_text')) {
568 $message = clean_text($message);
570 $message = htmlspecialchars($message);
573 if (!empty($CFG->errordocroot
)) {
574 $errordoclink = $CFG->errordocroot
. '/en/';
576 // Only if the function is available. May be not for early errors.
577 if (function_exists('current_language')) {
578 $errordoclink = get_docs_url();
580 $errordoclink = 'https://docs.moodle.org/en/';
584 if ($module === 'error') {
585 $modulelink = 'moodle';
587 $modulelink = $module;
589 $moreinfourl = $errordoclink . 'error/' . $modulelink . '/' . $errorcode;
592 if (!empty($SESSION->fromurl
)) {
593 $link = $SESSION->fromurl
;
594 unset($SESSION->fromurl
);
596 $link = $CFG->wwwroot
.'/';
600 // When printing an error the continue button should never link offsite.
601 // We cannot use clean_param() here as it is not guaranteed that it has been loaded yet.
602 if (stripos($link, $CFG->wwwroot
) === 0) {
603 // Internal HTTP, all good.
605 // External link spotted!
606 $link = $CFG->wwwroot
. '/';
609 $info = new stdClass();
610 $info->message
= $message;
611 $info->errorcode
= $errorcode;
612 $info->backtrace
= $backtrace;
614 $info->moreinfourl
= $moreinfourl;
616 $info->debuginfo
= $debuginfo;
622 * Generate a V4 UUID.
624 * Unique is hard. Very hard. Attempt to use the PECL UUID function if available, and if not then revert to
625 * constructing the uuid using mt_rand.
627 * It is important that this token is not solely based on time as this could lead
628 * to duplicates in a clustered environment (especially on VMs due to poor time precision).
630 * @see https://tools.ietf.org/html/rfc4122
632 * @deprecated since Moodle 3.8 MDL-61038 - please do not use this function any more.
633 * @see \core\uuid::generate()
635 * @return string The uuid.
637 function generate_uuid() {
638 debugging('generate_uuid() is deprecated. Please use \core\uuid::generate() instead.', DEBUG_DEVELOPER
);
639 return \core\uuid
::generate();
643 * Returns the Moodle Docs URL in the users language for a given 'More help' link.
645 * There are three cases:
647 * 1. In the normal case, $path will be a short relative path 'component/thing',
648 * like 'mod/folder/view' 'group/import'. This gets turned into an link to
649 * MoodleDocs in the user's language, and for the appropriate Moodle version.
650 * E.g. 'group/import' may become 'http://docs.moodle.org/2x/en/group/import'.
651 * The 'http://docs.moodle.org' bit comes from $CFG->docroot.
653 * This is the only option that should be used in standard Moodle code. The other
654 * two options have been implemented because they are useful for third-party plugins.
656 * 2. $path may be an absolute URL, starting http:// or https://. In this case,
657 * the link is used as is.
659 * 3. $path may start %%WWWROOT%%, in which case that is replaced by
660 * $CFG->wwwroot to make the link.
662 * @param string $path the place to link to. See above for details.
663 * @return string The MoodleDocs URL in the user's language. for example @link http://docs.moodle.org/2x/en/$path}
665 function get_docs_url($path = null) {
668 // Absolute URLs are used unmodified.
669 if (substr($path, 0, 7) === 'http://' ||
substr($path, 0, 8) === 'https://') {
673 // Paths starting %%WWWROOT%% have that replaced by $CFG->wwwroot.
674 if (substr($path, 0, 11) === '%%WWWROOT%%') {
675 return $CFG->wwwroot
. substr($path, 11);
678 // Otherwise we do the normal case, and construct a MoodleDocs URL relative to $CFG->docroot.
680 // Check that $CFG->branch has been set up, during installation it won't be.
681 if (empty($CFG->branch
)) {
682 // It's not there yet so look at version.php.
683 include($CFG->dirroot
.'/version.php');
685 // We can use $CFG->branch and avoid having to include version.php.
686 $branch = $CFG->branch
;
688 // ensure branch is valid.
690 // We should never get here but in case we do lets set $branch to .
691 // the smart one's will know that this is the current directory
692 // and the smarter ones will know that there is some smart matching
693 // that will ensure people end up at the latest version of the docs.
696 if (empty($CFG->doclang
)) {
697 $lang = current_language();
699 $lang = $CFG->doclang
;
701 $end = '/' . $branch . '/' . $lang . '/' . $path;
702 if (empty($CFG->docroot
)) {
703 return 'http://docs.moodle.org'. $end;
705 return $CFG->docroot
. $end ;
710 * Formats a backtrace ready for output.
712 * This function does not include function arguments because they could contain sensitive information
713 * not suitable to be exposed in a response.
715 * @param array $callers backtrace array, as returned by debug_backtrace().
716 * @param boolean $plaintext if false, generates HTML, if true generates plain text.
717 * @return string formatted backtrace, ready for output.
719 function format_backtrace($callers, $plaintext = false) {
720 // do not use $CFG->dirroot because it might not be available in destructors
721 $dirroot = dirname(__DIR__
);
723 if (empty($callers)) {
727 $from = $plaintext ?
'' : '<ul style="text-align: left" data-rel="backtrace">';
728 foreach ($callers as $caller) {
729 if (!isset($caller['line'])) {
730 $caller['line'] = '?'; // probably call_user_func()
732 if (!isset($caller['file'])) {
733 $caller['file'] = 'unknownfile'; // probably call_user_func()
735 $from .= $plaintext ?
'* ' : '<li>';
736 $from .= 'line ' . $caller['line'] . ' of ' . str_replace($dirroot, '', $caller['file']);
737 if (isset($caller['function'])) {
738 $from .= ': call to ';
739 if (isset($caller['class'])) {
740 $from .= $caller['class'] . $caller['type'];
742 $from .= $caller['function'] . '()';
743 } else if (isset($caller['exception'])) {
744 $from .= ': '.$caller['exception'].' thrown';
746 $from .= $plaintext ?
"\n" : '</li>';
748 $from .= $plaintext ?
'' : '</ul>';
754 * This function makes the return value of ini_get consistent if you are
755 * setting server directives through the .htaccess file in apache.
757 * Current behavior for value set from php.ini On = 1, Off = [blank]
758 * Current behavior for value set from .htaccess On = On, Off = Off
759 * Contributed by jdell @ unr.edu
761 * @param string $ini_get_arg The argument to get
762 * @return bool True for on false for not
764 function ini_get_bool($ini_get_arg) {
765 $temp = ini_get($ini_get_arg);
767 if ($temp == '1' or strtolower($temp) == 'on') {
774 * This function verifies the sanity of PHP configuration
775 * and stops execution if anything critical found.
777 function setup_validate_php_configuration() {
778 // this must be very fast - no slow checks here!!!
780 if (ini_get_bool('session.auto_start')) {
781 print_error('sessionautostartwarning', 'admin');
786 * Initialise global $CFG variable.
787 * @private to be used only from lib/setup.php
789 function initialise_cfg() {
793 // This should not happen.
798 $localcfg = get_config('core');
799 } catch (dml_exception
$e) {
800 // Most probably empty db, going to install soon.
804 foreach ($localcfg as $name => $value) {
805 // Note that get_config() keeps forced settings
806 // and normalises values to string if possible.
807 $CFG->{$name} = $value;
812 * Initialises $FULLME and friends. Private function. Should only be called from
815 function initialise_fullme() {
816 global $CFG, $FULLME, $ME, $SCRIPT, $FULLSCRIPT;
818 // Detect common config error.
819 if (substr($CFG->wwwroot
, -1) == '/') {
820 print_error('wwwrootslash', 'error');
824 initialise_fullme_cli();
827 if (!empty($CFG->overridetossl
)) {
828 if (strpos($CFG->wwwroot
, 'http://') === 0) {
829 $CFG->wwwroot
= str_replace('http:', 'https:', $CFG->wwwroot
);
831 unset_config('overridetossl');
835 $rurl = setup_get_remote_url();
836 $wwwroot = parse_url($CFG->wwwroot
.'/');
838 if (empty($rurl['host'])) {
839 // missing host in request header, probably not a real browser, let's ignore them
841 } else if (!empty($CFG->reverseproxy
)) {
842 // $CFG->reverseproxy specifies if reverse proxy server used
843 // Used in load balancing scenarios.
844 // Do not abuse this to try to solve lan/wan access problems!!!!!
847 if (($rurl['host'] !== $wwwroot['host']) or
848 (!empty($wwwroot['port']) and $rurl['port'] != $wwwroot['port']) or
849 (strpos($rurl['path'], $wwwroot['path']) !== 0)) {
851 // Explain the problem and redirect them to the right URL
852 if (!defined('NO_MOODLE_COOKIES')) {
853 define('NO_MOODLE_COOKIES', true);
855 // The login/token.php script should call the correct url/port.
856 if (defined('REQUIRE_CORRECT_ACCESS') && REQUIRE_CORRECT_ACCESS
) {
857 $wwwrootport = empty($wwwroot['port'])?
'':$wwwroot['port'];
858 $calledurl = $rurl['host'];
859 if (!empty($rurl['port'])) {
860 $calledurl .= ':'. $rurl['port'];
862 $correcturl = $wwwroot['host'];
863 if (!empty($wwwrootport)) {
864 $correcturl .= ':'. $wwwrootport;
866 throw new moodle_exception('requirecorrectaccess', 'error', '', null,
867 'You called ' . $calledurl .', you should have called ' . $correcturl);
869 redirect($CFG->wwwroot
, get_string('wwwrootmismatch', 'error', $CFG->wwwroot
), 3);
873 // Check that URL is under $CFG->wwwroot.
874 if (strpos($rurl['path'], $wwwroot['path']) === 0) {
875 $SCRIPT = substr($rurl['path'], strlen($wwwroot['path'])-1);
877 // Probably some weird external script
878 $SCRIPT = $FULLSCRIPT = $FULLME = $ME = null;
882 // $CFG->sslproxy specifies if external SSL appliance is used
883 // (That is, the Moodle server uses http, with an external box translating everything to https).
884 if (empty($CFG->sslproxy
)) {
885 if ($rurl['scheme'] === 'http' and $wwwroot['scheme'] === 'https') {
886 if (defined('REQUIRE_CORRECT_ACCESS') && REQUIRE_CORRECT_ACCESS
) {
887 print_error('sslonlyaccess', 'error');
889 redirect($CFG->wwwroot
, get_string('wwwrootmismatch', 'error', $CFG->wwwroot
), 3);
893 if ($wwwroot['scheme'] !== 'https') {
894 throw new coding_exception('Must use https address in wwwroot when ssl proxy enabled!');
896 $rurl['scheme'] = 'https'; // make moodle believe it runs on https, squid or something else it doing it
897 $_SERVER['HTTPS'] = 'on'; // Override $_SERVER to help external libraries with their HTTPS detection.
898 $_SERVER['SERVER_PORT'] = 443; // Assume default ssl port for the proxy.
901 // hopefully this will stop all those "clever" admins trying to set up moodle
902 // with two different addresses in intranet and Internet
903 if (!empty($CFG->reverseproxy
) && $rurl['host'] === $wwwroot['host']) {
904 print_error('reverseproxyabused', 'error');
907 $hostandport = $rurl['scheme'] . '://' . $wwwroot['host'];
908 if (!empty($wwwroot['port'])) {
909 $hostandport .= ':'.$wwwroot['port'];
912 $FULLSCRIPT = $hostandport . $rurl['path'];
913 $FULLME = $hostandport . $rurl['fullpath'];
914 $ME = $rurl['fullpath'];
918 * Initialises $FULLME and friends for command line scripts.
919 * This is a private method for use by initialise_fullme.
921 function initialise_fullme_cli() {
922 global $CFG, $FULLME, $ME, $SCRIPT, $FULLSCRIPT;
924 // Urls do not make much sense in CLI scripts
925 $backtrace = debug_backtrace();
926 $topfile = array_pop($backtrace);
927 $topfile = realpath($topfile['file']);
928 $dirroot = realpath($CFG->dirroot
);
930 if (strpos($topfile, $dirroot) !== 0) {
931 // Probably some weird external script
932 $SCRIPT = $FULLSCRIPT = $FULLME = $ME = null;
934 $relativefile = substr($topfile, strlen($dirroot));
935 $relativefile = str_replace('\\', '/', $relativefile); // Win fix
936 $SCRIPT = $FULLSCRIPT = $relativefile;
937 $FULLME = $ME = null;
942 * Get the URL that PHP/the web server thinks it is serving. Private function
943 * used by initialise_fullme. In your code, use $PAGE->url, $SCRIPT, etc.
944 * @return array in the same format that parse_url returns, with the addition of
945 * a 'fullpath' element, which includes any slasharguments path.
947 function setup_get_remote_url() {
949 if (isset($_SERVER['HTTP_HOST'])) {
950 list($rurl['host']) = explode(':', $_SERVER['HTTP_HOST']);
952 $rurl['host'] = null;
954 $rurl['port'] = $_SERVER['SERVER_PORT'];
955 $rurl['path'] = $_SERVER['SCRIPT_NAME']; // Script path without slash arguments
956 $rurl['scheme'] = (empty($_SERVER['HTTPS']) or $_SERVER['HTTPS'] === 'off' or $_SERVER['HTTPS'] === 'Off' or $_SERVER['HTTPS'] === 'OFF') ?
'http' : 'https';
958 if (stripos($_SERVER['SERVER_SOFTWARE'], 'apache') !== false) {
960 $rurl['fullpath'] = $_SERVER['REQUEST_URI'];
962 // Fixing a known issue with:
963 // - Apache versions lesser than 2.4.11
964 // - PHP deployed in Apache as PHP-FPM via mod_proxy_fcgi
965 // - PHP versions lesser than 5.6.3 and 5.5.18.
966 if (isset($_SERVER['PATH_INFO']) && (php_sapi_name() === 'fpm-fcgi') && isset($_SERVER['SCRIPT_NAME'])) {
967 $pathinfodec = rawurldecode($_SERVER['PATH_INFO']);
968 $lenneedle = strlen($pathinfodec);
969 // Checks whether SCRIPT_NAME ends with PATH_INFO, URL-decoded.
970 if (substr($_SERVER['SCRIPT_NAME'], -$lenneedle) === $pathinfodec) {
971 // This is the "Apache 2.4.10- running PHP-FPM via mod_proxy_fcgi" fingerprint,
972 // at least on CentOS 7 (Apache/2.4.6 PHP/5.4.16) and Ubuntu 14.04 (Apache/2.4.7 PHP/5.5.9)
973 // => SCRIPT_NAME contains 'slash arguments' data too, which is wrongly exposed via PATH_INFO as URL-encoded.
974 // Fix both $_SERVER['PATH_INFO'] and $_SERVER['SCRIPT_NAME'].
975 $lenhaystack = strlen($_SERVER['SCRIPT_NAME']);
976 $pos = $lenhaystack - $lenneedle;
977 // Here $pos is greater than 0 but let's double check it.
979 $_SERVER['PATH_INFO'] = $pathinfodec;
980 $_SERVER['SCRIPT_NAME'] = substr($_SERVER['SCRIPT_NAME'], 0, $pos);
985 } else if (stripos($_SERVER['SERVER_SOFTWARE'], 'iis') !== false) {
986 //IIS - needs a lot of tweaking to make it work
987 $rurl['fullpath'] = $_SERVER['SCRIPT_NAME'];
989 // NOTE: we should ignore PATH_INFO because it is incorrectly encoded using 8bit filesystem legacy encoding in IIS.
990 // Since 2.0, we rely on IIS rewrite extensions like Helicon ISAPI_rewrite
991 // example rule: RewriteRule ^([^\?]+?\.php)(\/.+)$ $1\?file=$2 [QSA]
993 // we rely on a proper IIS 6.0+ configuration: the 'FastCGIUtf8ServerVariables' registry key.
994 if (isset($_SERVER['PATH_INFO']) and $_SERVER['PATH_INFO'] !== '') {
995 // Check that PATH_INFO works == must not contain the script name.
996 if (strpos($_SERVER['PATH_INFO'], $_SERVER['SCRIPT_NAME']) === false) {
997 $rurl['fullpath'] .= clean_param(urldecode($_SERVER['PATH_INFO']), PARAM_PATH
);
1001 if (isset($_SERVER['QUERY_STRING']) and $_SERVER['QUERY_STRING'] !== '') {
1002 $rurl['fullpath'] .= '?'.$_SERVER['QUERY_STRING'];
1004 $_SERVER['REQUEST_URI'] = $rurl['fullpath']; // extra IIS compatibility
1006 /* NOTE: following servers are not fully tested! */
1008 } else if (stripos($_SERVER['SERVER_SOFTWARE'], 'lighttpd') !== false) {
1009 //lighttpd - not officially supported
1010 $rurl['fullpath'] = $_SERVER['REQUEST_URI']; // TODO: verify this is always properly encoded
1012 } else if (stripos($_SERVER['SERVER_SOFTWARE'], 'nginx') !== false) {
1013 //nginx - not officially supported
1014 if (!isset($_SERVER['SCRIPT_NAME'])) {
1015 die('Invalid server configuration detected, please try to add "fastcgi_param SCRIPT_NAME $fastcgi_script_name;" to the nginx server configuration.');
1017 $rurl['fullpath'] = $_SERVER['REQUEST_URI']; // TODO: verify this is always properly encoded
1019 } else if (stripos($_SERVER['SERVER_SOFTWARE'], 'cherokee') !== false) {
1020 //cherokee - not officially supported
1021 $rurl['fullpath'] = $_SERVER['REQUEST_URI']; // TODO: verify this is always properly encoded
1023 } else if (stripos($_SERVER['SERVER_SOFTWARE'], 'zeus') !== false) {
1024 //zeus - not officially supported
1025 $rurl['fullpath'] = $_SERVER['REQUEST_URI']; // TODO: verify this is always properly encoded
1027 } else if (stripos($_SERVER['SERVER_SOFTWARE'], 'LiteSpeed') !== false) {
1028 //LiteSpeed - not officially supported
1029 $rurl['fullpath'] = $_SERVER['REQUEST_URI']; // TODO: verify this is always properly encoded
1031 } else if ($_SERVER['SERVER_SOFTWARE'] === 'HTTPD') {
1032 //obscure name found on some servers - this is definitely not supported
1033 $rurl['fullpath'] = $_SERVER['REQUEST_URI']; // TODO: verify this is always properly encoded
1035 } else if (strpos($_SERVER['SERVER_SOFTWARE'], 'PHP') === 0) {
1036 // built-in PHP Development Server
1037 $rurl['fullpath'] = $_SERVER['REQUEST_URI'];
1040 throw new moodle_exception('unsupportedwebserver', 'error', '', $_SERVER['SERVER_SOFTWARE']);
1043 // sanitize the url a bit more, the encoding style may be different in vars above
1044 $rurl['fullpath'] = str_replace('"', '%22', $rurl['fullpath']);
1045 $rurl['fullpath'] = str_replace('\'', '%27', $rurl['fullpath']);
1051 * Try to work around the 'max_input_vars' restriction if necessary.
1053 function workaround_max_input_vars() {
1054 // Make sure this gets executed only once from lib/setup.php!
1055 static $executed = false;
1057 debugging('workaround_max_input_vars() must be called only once!');
1062 if (!isset($_SERVER["CONTENT_TYPE"]) or strpos($_SERVER["CONTENT_TYPE"], 'multipart/form-data') !== false) {
1063 // Not a post or 'multipart/form-data' which is not compatible with "php://input" reading.
1067 if (!isloggedin() or isguestuser()) {
1068 // Only real users post huge forms.
1072 $max = (int)ini_get('max_input_vars');
1075 // Most probably PHP < 5.3.9 that does not implement this limit.
1079 if ($max >= 200000) {
1080 // This value should be ok for all our forms, by setting it in php.ini
1081 // admins may prevent any unexpected regressions caused by this hack.
1083 // Note there is no need to worry about DDoS caused by making this limit very high
1084 // because there are very many easier ways to DDoS any Moodle server.
1088 // Worst case is advanced checkboxes which use up to two max_input_vars
1089 // slots for each entry in $_POST, because of sending two fields with the
1090 // same name. So count everything twice just in case.
1091 if (count($_POST, COUNT_RECURSIVE
) * 2 < $max) {
1095 // Large POST request with enctype supported by php://input.
1096 // Parse php://input in chunks to bypass max_input_vars limit, which also applies to parse_str().
1097 $str = file_get_contents("php://input");
1098 if ($str === false or $str === '') {
1099 // Some weird error.
1104 $fun = function($p) use ($delim) {
1105 return implode($delim, $p);
1107 $chunks = array_map($fun, array_chunk(explode($delim, $str), $max));
1109 // Clear everything from existing $_POST array, otherwise it might be included
1110 // twice (this affects array params primarily).
1111 foreach ($_POST as $key => $value) {
1112 unset($_POST[$key]);
1113 // Also clear from request array - but only the things that are in $_POST,
1114 // that way it will leave the things from a get request if any.
1115 unset($_REQUEST[$key]);
1118 foreach ($chunks as $chunk) {
1120 parse_str($chunk, $values);
1122 merge_query_params($_POST, $values);
1123 merge_query_params($_REQUEST, $values);
1128 * Merge parsed POST chunks.
1130 * NOTE: this is not perfect, but it should work in most cases hopefully.
1132 * @param array $target
1133 * @param array $values
1135 function merge_query_params(array &$target, array $values) {
1136 if (isset($values[0]) and isset($target[0])) {
1137 // This looks like a split [] array, lets verify the keys are continuous starting with 0.
1138 $keys1 = array_keys($values);
1139 $keys2 = array_keys($target);
1140 if ($keys1 === array_keys($keys1) and $keys2 === array_keys($keys2)) {
1141 foreach ($values as $v) {
1147 foreach ($values as $k => $v) {
1148 if (!isset($target[$k])) {
1152 if (is_array($target[$k]) and is_array($v)) {
1153 merge_query_params($target[$k], $v);
1156 // We should not get here unless there are duplicates in params.
1162 * Initializes our performance info early.
1164 * Pairs up with get_performance_info() which is actually
1165 * in moodlelib.php. This function is here so that we can
1166 * call it before all the libs are pulled in.
1170 function init_performance_info() {
1172 global $PERF, $CFG, $USER;
1174 $PERF = new stdClass();
1175 $PERF->logwrites
= 0;
1176 if (function_exists('microtime')) {
1177 $PERF->starttime
= microtime();
1179 if (function_exists('memory_get_usage')) {
1180 $PERF->startmemory
= memory_get_usage();
1182 if (function_exists('posix_times')) {
1183 $PERF->startposixtimes
= posix_times();
1188 * Indicates whether we are in the middle of the initial Moodle install.
1190 * Very occasionally it is necessary avoid running certain bits of code before the
1191 * Moodle installation has completed. The installed flag is set in admin/index.php
1192 * after Moodle core and all the plugins have been installed, but just before
1193 * the person doing the initial install is asked to choose the admin password.
1195 * @return boolean true if the initial install is not complete.
1197 function during_initial_install() {
1199 return empty($CFG->rolesactive
);
1203 * Function to raise the memory limit to a new value.
1204 * Will respect the memory limit if it is higher, thus allowing
1205 * settings in php.ini, apache conf or command line switches
1208 * The memory limit should be expressed with a constant
1209 * MEMORY_STANDARD, MEMORY_EXTRA or MEMORY_HUGE.
1210 * It is possible to use strings or integers too (eg:'128M').
1212 * @param mixed $newlimit the new memory limit
1213 * @return bool success
1215 function raise_memory_limit($newlimit) {
1218 if ($newlimit == MEMORY_UNLIMITED
) {
1219 ini_set('memory_limit', -1);
1222 } else if ($newlimit == MEMORY_STANDARD
) {
1223 if (PHP_INT_SIZE
> 4) {
1224 $newlimit = get_real_size('128M'); // 64bit needs more memory
1226 $newlimit = get_real_size('96M');
1229 } else if ($newlimit == MEMORY_EXTRA
) {
1230 if (PHP_INT_SIZE
> 4) {
1231 $newlimit = get_real_size('384M'); // 64bit needs more memory
1233 $newlimit = get_real_size('256M');
1235 if (!empty($CFG->extramemorylimit
)) {
1236 $extra = get_real_size($CFG->extramemorylimit
);
1237 if ($extra > $newlimit) {
1242 } else if ($newlimit == MEMORY_HUGE
) {
1243 // MEMORY_HUGE uses 2G or MEMORY_EXTRA, whichever is bigger.
1244 $newlimit = get_real_size('2G');
1245 if (!empty($CFG->extramemorylimit
)) {
1246 $extra = get_real_size($CFG->extramemorylimit
);
1247 if ($extra > $newlimit) {
1253 $newlimit = get_real_size($newlimit);
1256 if ($newlimit <= 0) {
1257 debugging('Invalid memory limit specified.');
1261 $cur = ini_get('memory_limit');
1263 // if php is compiled without --enable-memory-limits
1264 // apparently memory_limit is set to ''
1268 return true; // unlimited mem!
1270 $cur = get_real_size($cur);
1273 if ($newlimit > $cur) {
1274 ini_set('memory_limit', $newlimit);
1281 * Function to reduce the memory limit to a new value.
1282 * Will respect the memory limit if it is lower, thus allowing
1283 * settings in php.ini, apache conf or command line switches
1286 * The memory limit should be expressed with a string (eg:'64M')
1288 * @param string $newlimit the new memory limit
1291 function reduce_memory_limit($newlimit) {
1292 if (empty($newlimit)) {
1295 $cur = ini_get('memory_limit');
1297 // if php is compiled without --enable-memory-limits
1298 // apparently memory_limit is set to ''
1302 return true; // unlimited mem!
1304 $cur = get_real_size($cur);
1307 $new = get_real_size($newlimit);
1308 // -1 is smaller, but it means unlimited
1309 if ($new < $cur && $new != -1) {
1310 ini_set('memory_limit', $newlimit);
1317 * Converts numbers like 10M into bytes.
1319 * @param string $size The size to be converted
1322 function get_real_size($size = 0) {
1327 static $binaryprefixes = array(
1334 'T' => 1099511627776,
1335 't' => 1099511627776,
1338 if (preg_match('/^([0-9]+)([KMGT])/i', $size, $matches)) {
1339 return $matches[1] * $binaryprefixes[$matches[2]];
1346 * Try to disable all output buffering and purge
1349 * @access private to be called only from lib/setup.php !
1352 function disable_output_buffering() {
1353 $olddebug = error_reporting(0);
1355 // disable compression, it would prevent closing of buffers
1356 if (ini_get_bool('zlib.output_compression')) {
1357 ini_set('zlib.output_compression', 'Off');
1360 // try to flush everything all the time
1361 ob_implicit_flush(true);
1363 // close all buffers if possible and discard any existing output
1364 // this can actually work around some whitespace problems in config.php
1365 while(ob_get_level()) {
1366 if (!ob_end_clean()) {
1367 // prevent infinite loop when buffer can not be closed
1372 // disable any other output handlers
1373 ini_set('output_handler', '');
1375 error_reporting($olddebug);
1377 // Disable buffering in nginx.
1378 header('X-Accel-Buffering: no');
1383 * Check whether a major upgrade is needed.
1385 * That is defined as an upgrade that changes something really fundamental
1386 * in the database, so nothing can possibly work until the database has
1387 * been updated, and that is defined by the hard-coded version number in
1392 function is_major_upgrade_required() {
1394 $lastmajordbchanges = 2019050100.01;
1396 $required = empty($CFG->version
);
1397 $required = $required ||
(float)$CFG->version
< $lastmajordbchanges;
1398 $required = $required ||
during_initial_install();
1399 $required = $required ||
!empty($CFG->adminsetuppending
);
1405 * Redirect to the Notifications page if a major upgrade is required, and
1406 * terminate the current user session.
1408 function redirect_if_major_upgrade_required() {
1410 if (is_major_upgrade_required()) {
1412 @\core\session\manager
::terminate_current();
1413 } catch (Exception
$e) {
1414 // Ignore any errors, redirect to upgrade anyway.
1416 $url = $CFG->wwwroot
. '/' . $CFG->admin
. '/index.php';
1417 @header
($_SERVER['SERVER_PROTOCOL'] . ' 303 See Other');
1418 @header
('Location: ' . $url);
1419 echo bootstrap_renderer
::plain_redirect_message(htmlspecialchars($url));
1425 * Makes sure that upgrade process is not running
1427 * To be inserted in the core functions that can not be called by pluigns during upgrade.
1428 * Core upgrade should not use any API functions at all.
1429 * See {@link http://docs.moodle.org/dev/Upgrade_API#Upgrade_code_restrictions}
1431 * @throws moodle_exception if executed from inside of upgrade script and $warningonly is false
1432 * @param bool $warningonly if true displays a warning instead of throwing an exception
1433 * @return bool true if executed from outside of upgrade process, false if from inside upgrade process and function is used for warning only
1435 function upgrade_ensure_not_running($warningonly = false) {
1437 if (!empty($CFG->upgraderunning
)) {
1438 if (!$warningonly) {
1439 throw new moodle_exception('cannotexecduringupgrade');
1441 debugging(get_string('cannotexecduringupgrade', 'error'), DEBUG_DEVELOPER
);
1449 * Function to check if a directory exists and by default create it if not exists.
1451 * Previously this was accepting paths only from dataroot, but we now allow
1452 * files outside of dataroot if you supply custom paths for some settings in config.php.
1453 * This function does not verify that the directory is writable.
1455 * NOTE: this function uses current file stat cache,
1456 * please use clearstatcache() before this if you expect that the
1457 * directories may have been removed recently from a different request.
1459 * @param string $dir absolute directory path
1460 * @param boolean $create directory if does not exist
1461 * @param boolean $recursive create directory recursively
1462 * @return boolean true if directory exists or created, false otherwise
1464 function check_dir_exists($dir, $create = true, $recursive = true) {
1467 umask($CFG->umaskpermissions
);
1477 return mkdir($dir, $CFG->directorypermissions
, $recursive);
1481 * Create a new unique directory within the specified directory.
1483 * @param string $basedir The directory to create your new unique directory within.
1484 * @param bool $exceptiononerror throw exception if error encountered
1485 * @return string The created directory
1486 * @throws invalid_dataroot_permissions
1488 function make_unique_writable_directory($basedir, $exceptiononerror = true) {
1489 if (!is_dir($basedir) ||
!is_writable($basedir)) {
1490 // The basedir is not writable. We will not be able to create the child directory.
1491 if ($exceptiononerror) {
1492 throw new invalid_dataroot_permissions($basedir . ' is not writable. Unable to create a unique directory within it.');
1499 // Generate a new (hopefully unique) directory name.
1500 $uniquedir = $basedir . DIRECTORY_SEPARATOR
. \core\uuid
::generate();
1502 // Ensure that basedir is still writable - if we do not check, we could get stuck in a loop here.
1503 is_writable($basedir) &&
1505 // Make the new unique directory. If the directory already exists, it will return false.
1506 !make_writable_directory($uniquedir, $exceptiononerror) &&
1508 // Ensure that the directory now exists
1509 file_exists($uniquedir) && is_dir($uniquedir)
1512 // Check that the directory was correctly created.
1513 if (!file_exists($uniquedir) ||
!is_dir($uniquedir) ||
!is_writable($uniquedir)) {
1514 if ($exceptiononerror) {
1515 throw new invalid_dataroot_permissions('Unique directory creation failed.');
1525 * Create a directory and make sure it is writable.
1528 * @param string $dir the full path of the directory to be created
1529 * @param bool $exceptiononerror throw exception if error encountered
1530 * @return string|false Returns full path to directory if successful, false if not; may throw exception
1532 function make_writable_directory($dir, $exceptiononerror = true) {
1535 if (file_exists($dir) and !is_dir($dir)) {
1536 if ($exceptiononerror) {
1537 throw new coding_exception($dir.' directory can not be created, file with the same name already exists.');
1543 umask($CFG->umaskpermissions
);
1545 if (!file_exists($dir)) {
1546 if (!@mkdir
($dir, $CFG->directorypermissions
, true)) {
1548 // There might be a race condition when creating directory.
1549 if (!is_dir($dir)) {
1550 if ($exceptiononerror) {
1551 throw new invalid_dataroot_permissions($dir.' can not be created, check permissions.');
1553 debugging('Can not create directory: '.$dir, DEBUG_DEVELOPER
);
1560 if (!is_writable($dir)) {
1561 if ($exceptiononerror) {
1562 throw new invalid_dataroot_permissions($dir.' is not writable, check permissions.');
1572 * Protect a directory from web access.
1573 * Could be extended in the future to support other mechanisms (e.g. other webservers).
1576 * @param string $dir the full path of the directory to be protected
1578 function protect_directory($dir) {
1580 // Make sure a .htaccess file is here, JUST IN CASE the files area is in the open and .htaccess is supported
1581 if (!file_exists("$dir/.htaccess")) {
1582 if ($handle = fopen("$dir/.htaccess", 'w')) { // For safety
1583 @fwrite
($handle, "deny from all\r\nAllowOverride None\r\nNote: this file is broken intentionally, we do not want anybody to undo it in subdirectory!\r\n");
1585 @chmod
("$dir/.htaccess", $CFG->filepermissions
);
1591 * Create a directory under dataroot and make sure it is writable.
1592 * Do not use for temporary and cache files - see make_temp_directory() and make_cache_directory().
1594 * @param string $directory the full path of the directory to be created under $CFG->dataroot
1595 * @param bool $exceptiononerror throw exception if error encountered
1596 * @return string|false Returns full path to directory if successful, false if not; may throw exception
1598 function make_upload_directory($directory, $exceptiononerror = true) {
1601 if (strpos($directory, 'temp/') === 0 or $directory === 'temp') {
1602 debugging('Use make_temp_directory() for creation of temporary directory and $CFG->tempdir to get the location.');
1604 } else if (strpos($directory, 'cache/') === 0 or $directory === 'cache') {
1605 debugging('Use make_cache_directory() for creation of cache directory and $CFG->cachedir to get the location.');
1607 } else if (strpos($directory, 'localcache/') === 0 or $directory === 'localcache') {
1608 debugging('Use make_localcache_directory() for creation of local cache directory and $CFG->localcachedir to get the location.');
1611 protect_directory($CFG->dataroot
);
1612 return make_writable_directory("$CFG->dataroot/$directory", $exceptiononerror);
1616 * Get a per-request storage directory in the tempdir.
1618 * The directory is automatically cleaned up during the shutdown handler.
1620 * @param bool $exceptiononerror throw exception if error encountered
1621 * @param bool $forcecreate Force creation of a new parent directory
1622 * @return string Returns full path to directory if successful, false if not; may throw exception
1624 function get_request_storage_directory($exceptiononerror = true, bool $forcecreate = false) {
1627 static $requestdir = null;
1629 $writabledirectoryexists = (null !== $requestdir);
1630 $writabledirectoryexists = $writabledirectoryexists && file_exists($requestdir);
1631 $writabledirectoryexists = $writabledirectoryexists && is_dir($requestdir);
1632 $writabledirectoryexists = $writabledirectoryexists && is_writable($requestdir);
1633 $createnewdirectory = $forcecreate ||
!$writabledirectoryexists;
1635 if ($createnewdirectory) {
1636 if ($CFG->localcachedir
!== "$CFG->dataroot/localcache") {
1637 check_dir_exists($CFG->localcachedir
, true, true);
1638 protect_directory($CFG->localcachedir
);
1640 protect_directory($CFG->dataroot
);
1643 if ($dir = make_unique_writable_directory($CFG->localcachedir
, $exceptiononerror)) {
1644 // Register a shutdown handler to remove the directory.
1645 \core_shutdown_manager
::register_function('remove_dir', [$dir]);
1655 * Create a per-request directory and make sure it is writable.
1656 * This can only be used during the current request and will be tidied away
1657 * automatically afterwards.
1659 * A new, unique directory is always created within a shared base request directory.
1661 * In some exceptional cases an alternative base directory may be required. This can be accomplished using the
1662 * $forcecreate parameter. Typically this will only be requried where the file may be required during a shutdown handler
1663 * which may or may not be registered after a previous request directory has been created.
1665 * @param bool $exceptiononerror throw exception if error encountered
1666 * @param bool $forcecreate Force creation of a new parent directory
1667 * @return string The full path to directory if successful, false if not; may throw exception
1669 function make_request_directory($exceptiononerror = true, bool $forcecreate = false) {
1670 $basedir = get_request_storage_directory($exceptiononerror, $forcecreate);
1671 return make_unique_writable_directory($basedir, $exceptiononerror);
1675 * Get the full path of a directory under $CFG->backuptempdir.
1677 * @param string $directory the relative path of the directory under $CFG->backuptempdir
1678 * @return string|false Returns full path to directory given a valid string; otherwise, false.
1680 function get_backup_temp_directory($directory) {
1682 if (($directory === null) ||
($directory === false)) {
1685 return "$CFG->backuptempdir/$directory";
1689 * Create a directory under $CFG->backuptempdir and make sure it is writable.
1691 * Do not use for storing generic temp files - see make_temp_directory() instead for this purpose.
1693 * Backup temporary files must be on a shared storage.
1695 * @param string $directory the relative path of the directory to be created under $CFG->backuptempdir
1696 * @param bool $exceptiononerror throw exception if error encountered
1697 * @return string|false Returns full path to directory if successful, false if not; may throw exception
1699 function make_backup_temp_directory($directory, $exceptiononerror = true) {
1701 if ($CFG->backuptempdir
!== "$CFG->tempdir/backup") {
1702 check_dir_exists($CFG->backuptempdir
, true, true);
1703 protect_directory($CFG->backuptempdir
);
1705 protect_directory($CFG->tempdir
);
1707 return make_writable_directory("$CFG->backuptempdir/$directory", $exceptiononerror);
1711 * Create a directory under tempdir and make sure it is writable.
1713 * Where possible, please use make_request_directory() and limit the scope
1714 * of your data to the current HTTP request.
1716 * Do not use for storing cache files - see make_cache_directory(), and
1717 * make_localcache_directory() instead for this purpose.
1719 * Temporary files must be on a shared storage, and heavy usage is
1720 * discouraged due to the performance impact upon clustered environments.
1722 * @param string $directory the full path of the directory to be created under $CFG->tempdir
1723 * @param bool $exceptiononerror throw exception if error encountered
1724 * @return string|false Returns full path to directory if successful, false if not; may throw exception
1726 function make_temp_directory($directory, $exceptiononerror = true) {
1728 if ($CFG->tempdir
!== "$CFG->dataroot/temp") {
1729 check_dir_exists($CFG->tempdir
, true, true);
1730 protect_directory($CFG->tempdir
);
1732 protect_directory($CFG->dataroot
);
1734 return make_writable_directory("$CFG->tempdir/$directory", $exceptiononerror);
1738 * Create a directory under cachedir and make sure it is writable.
1740 * Note: this cache directory is shared by all cluster nodes.
1742 * @param string $directory the full path of the directory to be created under $CFG->cachedir
1743 * @param bool $exceptiononerror throw exception if error encountered
1744 * @return string|false Returns full path to directory if successful, false if not; may throw exception
1746 function make_cache_directory($directory, $exceptiononerror = true) {
1748 if ($CFG->cachedir
!== "$CFG->dataroot/cache") {
1749 check_dir_exists($CFG->cachedir
, true, true);
1750 protect_directory($CFG->cachedir
);
1752 protect_directory($CFG->dataroot
);
1754 return make_writable_directory("$CFG->cachedir/$directory", $exceptiononerror);
1758 * Create a directory under localcachedir and make sure it is writable.
1759 * The files in this directory MUST NOT change, use revisions or content hashes to
1760 * work around this limitation - this means you can only add new files here.
1762 * The content of this directory gets purged automatically on all cluster nodes
1763 * after calling purge_all_caches() before new data is written to this directory.
1765 * Note: this local cache directory does not need to be shared by cluster nodes.
1767 * @param string $directory the relative path of the directory to be created under $CFG->localcachedir
1768 * @param bool $exceptiononerror throw exception if error encountered
1769 * @return string|false Returns full path to directory if successful, false if not; may throw exception
1771 function make_localcache_directory($directory, $exceptiononerror = true) {
1774 make_writable_directory($CFG->localcachedir
, $exceptiononerror);
1776 if ($CFG->localcachedir
!== "$CFG->dataroot/localcache") {
1777 protect_directory($CFG->localcachedir
);
1779 protect_directory($CFG->dataroot
);
1782 if (!isset($CFG->localcachedirpurged
)) {
1783 $CFG->localcachedirpurged
= 0;
1785 $timestampfile = "$CFG->localcachedir/.lastpurged";
1787 if (!file_exists($timestampfile)) {
1788 touch($timestampfile);
1789 @chmod
($timestampfile, $CFG->filepermissions
);
1791 } else if (filemtime($timestampfile) < $CFG->localcachedirpurged
) {
1792 // This means our local cached dir was not purged yet.
1793 remove_dir($CFG->localcachedir
, true);
1794 if ($CFG->localcachedir
!== "$CFG->dataroot/localcache") {
1795 protect_directory($CFG->localcachedir
);
1797 touch($timestampfile);
1798 @chmod
($timestampfile, $CFG->filepermissions
);
1802 if ($directory === '') {
1803 return $CFG->localcachedir
;
1806 return make_writable_directory("$CFG->localcachedir/$directory", $exceptiononerror);
1810 * Webserver access user logging
1812 function set_access_log_user() {
1814 if ($USER && isset($USER->username
)) {
1817 if (!empty($CFG->apacheloguser
) && function_exists('apache_note')) {
1818 $logmethod = 'apache';
1819 $logvalue = $CFG->apacheloguser
;
1821 if (!empty($CFG->headerloguser
)) {
1822 $logmethod = 'header';
1823 $logvalue = $CFG->headerloguser
;
1825 if (!empty($logmethod)) {
1826 $loguserid = $USER->id
;
1827 $logusername = clean_filename($USER->username
);
1829 if (isset($USER->firstname
)) {
1830 // We can assume both will be set
1831 // - even if to empty.
1832 $logname = clean_filename($USER->firstname
. " " . $USER->lastname
);
1834 if (\core\session\manager
::is_loggedinas()) {
1835 $realuser = \core\session\manager
::get_realuser();
1836 $logusername = clean_filename($realuser->username
." as ".$logusername);
1837 $logname = clean_filename($realuser->firstname
." ".$realuser->lastname
." as ".$logname);
1838 $loguserid = clean_filename($realuser->id
." as ".$loguserid);
1840 switch ($logvalue) {
1842 $logname = $logusername;
1845 $logname = $logname;
1849 $logname = $loguserid;
1852 if ($logmethod == 'apache') {
1853 apache_note('MOODLEUSER', $logname);
1856 if ($logmethod == 'header') {
1857 header("X-MOODLEUSER: $logname");
1864 * This class solves the problem of how to initialise $OUTPUT.
1866 * The problem is caused be two factors
1868 * <li>On the one hand, we cannot be sure when output will start. In particular,
1869 * an error, which needs to be displayed, could be thrown at any time.</li>
1870 * <li>On the other hand, we cannot be sure when we will have all the information
1871 * necessary to correctly initialise $OUTPUT. $OUTPUT depends on the theme, which
1872 * (potentially) depends on the current course, course categories, and logged in user.
1873 * It also depends on whether the current page requires HTTPS.</li>
1876 * So, it is hard to find a single natural place during Moodle script execution,
1877 * which we can guarantee is the right time to initialise $OUTPUT. Instead we
1878 * adopt the following strategy
1880 * <li>We will initialise $OUTPUT the first time it is used.</li>
1881 * <li>If, after $OUTPUT has been initialised, the script tries to change something
1882 * that $OUTPUT depends on, we throw an exception making it clear that the script
1883 * did something wrong.
1886 * The only problem with that is, how do we initialise $OUTPUT on first use if,
1887 * it is going to be used like $OUTPUT->somthing(...)? Well that is where this
1888 * class comes in. Initially, we set up $OUTPUT = new bootstrap_renderer(). Then,
1889 * when any method is called on that object, we initialise $OUTPUT, and pass the call on.
1891 * Note that this class is used before lib/outputlib.php has been loaded, so we
1892 * must be careful referring to classes/functions from there, they may not be
1893 * defined yet, and we must avoid fatal errors.
1895 * @copyright 2009 Tim Hunt
1896 * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
1899 class bootstrap_renderer
{
1901 * Handles re-entrancy. Without this, errors or debugging output that occur
1902 * during the initialisation of $OUTPUT, cause infinite recursion.
1905 protected $initialising = false;
1908 * Have we started output yet?
1909 * @return boolean true if the header has been printed.
1911 public function has_started() {
1916 * Constructor - to be used by core code only.
1917 * @param string $method The method to call
1918 * @param array $arguments Arguments to pass to the method being called
1921 public function __call($method, $arguments) {
1922 global $OUTPUT, $PAGE;
1925 if ($method == 'notification') {
1926 // Catch infinite recursion caused by debugging output during print_header.
1927 $backtrace = debug_backtrace();
1928 array_shift($backtrace);
1929 array_shift($backtrace);
1930 $recursing = is_early_init($backtrace);
1933 $earlymethods = array(
1934 'fatal_error' => 'early_error',
1935 'notification' => 'early_notification',
1938 // If lib/outputlib.php has been loaded, call it.
1939 if (!empty($PAGE) && !$recursing) {
1940 if (array_key_exists($method, $earlymethods)) {
1941 //prevent PAGE->context warnings - exceptions might appear before we set any context
1942 $PAGE->set_context(null);
1944 $PAGE->initialise_theme_and_output();
1945 return call_user_func_array(array($OUTPUT, $method), $arguments);
1948 $this->initialising
= true;
1950 // Too soon to initialise $OUTPUT, provide a couple of key methods.
1951 if (array_key_exists($method, $earlymethods)) {
1952 return call_user_func_array(array('bootstrap_renderer', $earlymethods[$method]), $arguments);
1955 throw new coding_exception('Attempt to start output before enough information is known to initialise the theme.');
1959 * Returns nicely formatted error message in a div box.
1961 * @param string $message error message
1962 * @param string $moreinfourl (ignored in early errors)
1963 * @param string $link (ignored in early errors)
1964 * @param array $backtrace
1965 * @param string $debuginfo
1968 public static function early_error_content($message, $moreinfourl, $link, $backtrace, $debuginfo = null) {
1971 $content = '<div style="margin-top: 6em; margin-left:auto; margin-right:auto; color:#990000; text-align:center; font-size:large; border-width:1px;
1972 border-color:black; background-color:#ffffee; border-style:solid; border-radius: 20px; border-collapse: collapse;
1973 width: 80%; -moz-border-radius: 20px; padding: 15px">
1976 // Check whether debug is set.
1977 $debug = (!empty($CFG->debug
) && $CFG->debug
>= DEBUG_DEVELOPER
);
1978 // Also check we have it set in the config file. This occurs if the method to read the config table from the
1979 // database fails, reading from the config table is the first database interaction we have.
1980 $debug = $debug ||
(!empty($CFG->config_php_settings
['debug']) && $CFG->config_php_settings
['debug'] >= DEBUG_DEVELOPER
);
1982 if (!empty($debuginfo)) {
1983 // Remove all nasty JS.
1984 if (function_exists('s')) { // Function may be not available for some early errors.
1985 $debuginfo = s($debuginfo);
1987 // Because weblib is not available for these early errors, we
1988 // just duplicate s() code here to be safe.
1989 $debuginfo = preg_replace('/&#(\d+|x[0-9a-f]+);/i', '&#$1;',
1990 htmlspecialchars($debuginfo, ENT_QUOTES | ENT_HTML401 | ENT_SUBSTITUTE
));
1992 $debuginfo = str_replace("\n", '<br />', $debuginfo); // keep newlines
1993 $content .= '<div class="notifytiny">Debug info: ' . $debuginfo . '</div>';
1995 if (!empty($backtrace)) {
1996 $content .= '<div class="notifytiny">Stack trace: ' . format_backtrace($backtrace, false) . '</div>';
2004 * This function should only be called by this class, or from exception handlers
2006 * @param string $message error message
2007 * @param string $moreinfourl (ignored in early errors)
2008 * @param string $link (ignored in early errors)
2009 * @param array $backtrace
2010 * @param string $debuginfo extra information for developers
2013 public static function early_error($message, $moreinfourl, $link, $backtrace, $debuginfo = null, $errorcode = null) {
2017 echo "!!! $message !!!\n";
2018 if (!empty($CFG->debug
) and $CFG->debug
>= DEBUG_DEVELOPER
) {
2019 if (!empty($debuginfo)) {
2020 echo "\nDebug info: $debuginfo";
2022 if (!empty($backtrace)) {
2023 echo "\nStack trace: " . format_backtrace($backtrace, true);
2028 } else if (AJAX_SCRIPT
) {
2029 $e = new stdClass();
2030 $e->error
= $message;
2031 $e->stacktrace
= NULL;
2032 $e->debuginfo
= NULL;
2033 if (!empty($CFG->debug
) and $CFG->debug
>= DEBUG_DEVELOPER
) {
2034 if (!empty($debuginfo)) {
2035 $e->debuginfo
= $debuginfo;
2037 if (!empty($backtrace)) {
2038 $e->stacktrace
= format_backtrace($backtrace, true);
2041 $e->errorcode
= $errorcode;
2042 @header
('Content-Type: application/json; charset=utf-8');
2043 echo json_encode($e);
2047 // In the name of protocol correctness, monitoring and performance
2048 // profiling, set the appropriate error headers for machine consumption.
2049 $protocol = (isset($_SERVER['SERVER_PROTOCOL']) ?
$_SERVER['SERVER_PROTOCOL'] : 'HTTP/1.0');
2050 @header
($protocol . ' 503 Service Unavailable');
2052 // better disable any caching
2053 @header
('Content-Type: text/html; charset=utf-8');
2054 @header
('X-UA-Compatible: IE=edge');
2055 @header
('Cache-Control: no-store, no-cache, must-revalidate');
2056 @header
('Cache-Control: post-check=0, pre-check=0', false);
2057 @header
('Pragma: no-cache');
2058 @header
('Expires: Mon, 20 Aug 1969 09:23:00 GMT');
2059 @header
('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT');
2061 if (function_exists('get_string')) {
2062 $strerror = get_string('error');
2064 $strerror = 'Error';
2067 $content = self
::early_error_content($message, $moreinfourl, $link, $backtrace, $debuginfo);
2069 return self
::plain_page($strerror, $content);
2073 * Early notification message
2075 * @param string $message
2076 * @param string $classes usually notifyproblem or notifysuccess
2079 public static function early_notification($message, $classes = 'notifyproblem') {
2080 return '<div class="' . $classes . '">' . $message . '</div>';
2084 * Page should redirect message.
2086 * @param string $encodedurl redirect url
2089 public static function plain_redirect_message($encodedurl) {
2090 $message = '<div style="margin-top: 3em; margin-left:auto; margin-right:auto; text-align:center;">' . get_string('pageshouldredirect') . '<br /><a href="'.
2091 $encodedurl .'">'. get_string('continue') .'</a></div>';
2092 return self
::plain_page(get_string('redirect'), $message);
2096 * Early redirection page, used before full init of $PAGE global
2098 * @param string $encodedurl redirect url
2099 * @param string $message redirect message
2100 * @param int $delay time in seconds
2101 * @return string redirect page
2103 public static function early_redirect_message($encodedurl, $message, $delay) {
2104 $meta = '<meta http-equiv="refresh" content="'. $delay .'; url='. $encodedurl .'" />';
2105 $content = self
::early_error_content($message, null, null, null);
2106 $content .= self
::plain_redirect_message($encodedurl);
2108 return self
::plain_page(get_string('redirect'), $content, $meta);
2112 * Output basic html page.
2114 * @param string $title page title
2115 * @param string $content page content
2116 * @param string $meta meta tag
2117 * @return string html page
2119 public static function plain_page($title, $content, $meta = '') {
2120 if (function_exists('get_string') && function_exists('get_html_lang')) {
2121 $htmllang = get_html_lang();
2127 if (function_exists('get_performance_info')) { // Function may be not available for some early errors.
2128 if (MDL_PERF_TEST
) {
2129 $perfinfo = get_performance_info();
2130 $footer = '<footer>' . $perfinfo['html'] . '</footer>';
2134 return '<!DOCTYPE html>
2135 <html ' . $htmllang . '>
2137 <meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
2139 <title>' . $title . '</title>
2140 </head><body>' . $content . $footer . '</body></html>';