. /** * file index.php * index page to view blogs. if no blog is specified then site wide entries are shown * if a blog id is specified then the latest entries from that blog are shown */ require_once(dirname(dirname(__FILE__)).'/config.php'); require_once($CFG->dirroot .'/blog/lib.php'); require_once($CFG->dirroot .'/blog/locallib.php'); require_once($CFG->dirroot .'/course/lib.php'); require_once($CFG->dirroot .'/tag/lib.php'); require_once($CFG->dirroot .'/comment/lib.php'); $id = optional_param('id', null, PARAM_INT); $start = optional_param('formstart', 0, PARAM_INT); $tag = optional_param('tag', '', PARAM_NOTAGS); $userid = optional_param('userid', null, PARAM_INT); $tagid = optional_param('tagid', null, PARAM_INT); $modid = optional_param('modid', null, PARAM_INT); $entryid = optional_param('entryid', null, PARAM_INT); $groupid = optional_param('groupid', null, PARAM_INT); $courseid = optional_param('courseid', null, PARAM_INT); $search = optional_param('search', null, PARAM_RAW); comment::init(); $url_params = compact('id', 'start', 'tag', 'userid', 'tagid', 'modid', 'entryid', 'groupid', 'courseid', 'search'); foreach ($url_params as $var => $val) { if (empty($val)) { unset($url_params[$var]); } } $PAGE->set_url('/blog/index.php', $url_params); // Correct tagid if a text tag is provided as a param. if (!empty($tag)) { if ($tagrec = $DB->get_record('tag', array('name' => $tag))) { $tagid = $tagrec->id; } else { unset($tagid); } } // Set the userid to the entry author if we have the entry ID. if ($entryid and !isset($userid)) { $entry = new blog_entry($entryid); $userid = $entry->userid; } if (isset($userid) && empty($courseid)) { $context = context_user::instance($userid); } else if (!empty($courseid) && $courseid != SITEID) { $context = context_course::instance($courseid); } else { $context = context_system::instance(); } $PAGE->set_context($context); $sitecontext = context_system::instance(); if (isset($userid) && $USER->id == $userid) { $blognode = $PAGE->navigation->find('siteblog', null); if ($blognode) { $blognode->make_inactive(); } } // Check basic permissions. if ($CFG->bloglevel == BLOG_GLOBAL_LEVEL) { // Everybody can see anything - no login required unless site is locked down using forcelogin. if ($CFG->forcelogin) { require_login(); } } else if ($CFG->bloglevel == BLOG_SITE_LEVEL) { // Users must log in and can not be guests. require_login(); if (isguestuser()) { // They must have entered the url manually. print_error('blogdisable', 'blog'); } } else if ($CFG->bloglevel == BLOG_USER_LEVEL) { // Users can see own blogs only! with the exception of people with special cap. require_login(); } else { // Weird! print_error('blogdisable', 'blog'); } if (empty($CFG->enableblogs)) { print_error('blogdisable', 'blog'); } // Add courseid if modid or groupid is specified: This is used for navigation and title. if (!empty($modid) && empty($courseid)) { $courseid = $DB->get_field('course_modules', 'course', array('id' => $modid)); } if (!empty($groupid) && empty($courseid)) { $courseid = $DB->get_field('groups', 'courseid', array('id' => $groupid)); } if (!$userid && has_capability('moodle/blog:view', $sitecontext) && $CFG->bloglevel > BLOG_USER_LEVEL) { if ($entryid) { if (!$entryobject = $DB->get_record('post', array('id'=>$entryid))) { print_error('nosuchentry', 'blog'); } $userid = $entryobject->userid; } } else if (!$userid) { $userid = $USER->id; } if (!empty($modid)) { if ($CFG->bloglevel < BLOG_SITE_LEVEL) { print_error(get_string('nocourseblogs', 'blog')); } if (!$mod = $DB->get_record('course_modules', array('id' => $modid))) { print_error(get_string('invalidmodid', 'blog')); } $courseid = $mod->course; } if ((empty($courseid) ? true : $courseid == SITEID) && empty($userid)) { if ($CFG->bloglevel < BLOG_SITE_LEVEL) { print_error('siteblogdisable', 'blog'); } if (!has_capability('moodle/blog:view', $sitecontext)) { print_error('cannotviewsiteblog', 'blog'); } $COURSE = $DB->get_record('course', array('format'=>'site')); $courseid = $COURSE->id; } if (!empty($courseid)) { if (!$course = $DB->get_record('course', array('id'=>$courseid))) { print_error('invalidcourseid'); } $courseid = $course->id; require_login($course); if (!has_capability('moodle/blog:view', $sitecontext)) { print_error('cannotviewcourseblog', 'blog'); } } else { $coursecontext = context_course::instance(SITEID); } if (!empty($groupid)) { if ($CFG->bloglevel < BLOG_SITE_LEVEL) { print_error('groupblogdisable', 'blog'); } if (! $group = groups_get_group($groupid)) { print_error(get_string('invalidgroupid', 'blog')); } if (!$course = $DB->get_record('course', array('id'=>$group->courseid))) { print_error('invalidcourseid'); } $coursecontext = context_course::instance($course->id); $courseid = $course->id; require_login($course); if (!has_capability('moodle/blog:view', $sitecontext)) { print_error(get_string('cannotviewcourseorgroupblog', 'blog')); } if (groups_get_course_groupmode($course) == SEPARATEGROUPS && !has_capability('moodle/site:accessallgroups', $coursecontext)) { if (!groups_is_member($groupid)) { print_error('notmemberofgroup'); } } } if (!empty($userid)) { if ($CFG->bloglevel < BLOG_USER_LEVEL) { print_error('blogdisable', 'blog'); } if (!$user = $DB->get_record('user', array('id'=>$userid))) { print_error('invaliduserid'); } if ($user->deleted) { echo $OUTPUT->header(); echo $OUTPUT->heading(get_string('userdeleted')); echo $OUTPUT->footer(); die; } if ($USER->id == $userid) { if (!has_capability('moodle/blog:create', $sitecontext) && !has_capability('moodle/blog:view', $sitecontext)) { print_error('donothaveblog', 'blog'); } } else { if (!has_capability('moodle/blog:view', $sitecontext) || !blog_user_can_view_user_entry($userid)) { print_error('cannotviewcourseblog', 'blog'); } $PAGE->navigation->extend_for_user($user); } } $courseid = (empty($courseid)) ? SITEID : $courseid; $blogheaders = blog_get_headers(); if ($CFG->enablerssfeeds) { $rsscontext = null; $filtertype = null; $thingid = null; list($thingid, $rsscontext, $filtertype) = blog_rss_get_params($blogheaders['filters']); if (empty($rsscontext)) { $rsscontext = context_system::instance(); } $rsstitle = $blogheaders['heading']; // Check we haven't started output by outputting an error message. if ($PAGE->state == moodle_page::STATE_BEFORE_HEADER) { blog_rss_add_http_header($rsscontext, $rsstitle, $filtertype, $thingid, $tagid); } } $usernode = $PAGE->navigation->find('user'.$userid, null); if ($usernode && $courseid != SITEID) { $courseblogsnode = $PAGE->navigation->find('courseblogs', null); if ($courseblogsnode) { $courseblogsnode->remove(); } $blogurl = new moodle_url($PAGE->url); $blognode = $usernode->add(get_string('blogscourse', 'blog'), $blogurl); $blognode->make_active(); } if ($courseid != SITEID) { $PAGE->set_heading($course->fullname); echo $OUTPUT->header(); if (!empty($user)) { $headerinfo = array('heading' => fullname($user), 'user' => $user); echo $OUTPUT->context_header($headerinfo, 2); } } else if (isset($userid)) { $PAGE->set_heading(fullname($user)); echo $OUTPUT->header(); } else if ($courseid == SITEID) { echo $OUTPUT->header(); } echo $OUTPUT->heading($blogheaders['heading'], 2); $bloglisting = new blog_listing($blogheaders['filters']); $bloglisting->print_entries(); echo $OUTPUT->footer(); $eventparams = array( 'other' => array('entryid' => $entryid, 'tagid' => $tagid, 'userid' => $userid, 'modid' => $modid, 'groupid' => $groupid, 'search' => $search, 'fromstart' => $start) ); if (!empty($userid)) { $eventparams['relateduserid'] = $userid; } $eventparams['other']['courseid'] = ($courseid === SITEID) ? 0 : $courseid; $event = \core\event\blog_entries_viewed::create($eventparams); $event->trigger();