2 /************************************************************************/
4 /************************************************************************/
5 /* Copyright (c) 2010 */
6 /* Inclusive Design Institute */
8 /* This program is free software. You can redistribute it and/or */
9 /* modify it under the terms of the GNU General Public License */
10 /* as published by the Free Software Foundation. */
11 /************************************************************************/
13 if (!defined('TR_INCLUDE_PATH')) { exit; }
15 define('TR_DEVEL', 1);
16 define('TR_ERROR_REPORTING', E_ALL ^ E_NOTICE); // default is E_ALL ^ E_NOTICE, use E_ALL or E_ALL + E_STRICT for developing
18 // Emulate register_globals off. src: http://php.net/manual/en/faq.misc.php#faq.misc.registerglobals
19 function unregister_GLOBALS() {
20 if (!ini_get('register_globals')) { return; }
22 // Might want to change this perhaps to a nicer error
23 if (isset($_REQUEST['GLOBALS'])) { die('GLOBALS overwrite attempt detected'); }
25 // Variables that shouldn't be unset
26 $noUnset = array('GLOBALS','_GET','_POST','_COOKIE','_REQUEST','_SERVER','_ENV', '_FILES');
27 $input = array_merge($_GET,$_POST,$_COOKIE,$_SERVER,$_ENV,$_FILES,isset($_SESSION) && is_array($_SESSION) ? $_SESSION : array());
29 foreach ($input as $k => $v) {
30 if (!in_array($k, $noUnset) && isset($GLOBALS[$k])) { unset($GLOBALS[$k]); }
35 * structure of this document (in order):
37 * 0. load config.inc.php
38 * 1. initilize db connection
40 * 3. initilize session
41 * 4. load $_config from table 'config'
42 * 5. start language block
43 * 6. load common libraries
44 * 7. initialize theme and template management
45 * 8. initialize a user instance without user id.
46 * if $_SESSION['user_id'] is set, it's assigned to instance in include/header.inc.php
47 * 9. register pages based on current user's priviledge
48 * 10. initialize course information if $_SESSION['course_id'] is set
51 /**** 0. start system configuration options block ****/
53 include_once(TR_INCLUDE_PATH.'config.inc.php');
54 error_reporting(TR_ERROR_REPORTING);
56 if (!defined('TR_INSTALL') || !TR_INSTALL) {
57 header('Cache-Control: no-store, no-cache, must-revalidate');
58 header('Pragma: no-cache');
60 $relative_path = substr(TR_INCLUDE_PATH, 0, -strlen('include/'));
61 header('Location: ' . $relative_path . 'install/not_installed.php');
64 /*** end system config block ****/
66 /***** 1. database connection *****/
67 //if (!defined('TR_REDIRECT_LOADED')){
68 // require_once(TR_INCLUDE_PATH.'lib/mysql_connect.inc.php');
70 /***** end database connection ****/
72 /*** 2. constants ***/
73 require_once(TR_INCLUDE_PATH.'constants.inc.php');
75 /*** 3. initilize session ***/
77 @ini_set('session.gc_maxlifetime', '36000'); /* 10 hours */
78 @session_cache_limiter('private, must-revalidate');
80 session_name('TransformableID');
81 error_reporting(TR_ERROR_REPORTING);
84 session_set_cookie_params(0, $_base_path);
86 $str = ob_get_contents();
90 // $_user_id could be set in home/ims/ims_import.php
91 // @see home/ims/ims_import.php
92 if (isset($_user_id) && $_user_id > 0) $_SESSION['user_id'] = $_user_id;
93 /***** end session initilization block ****/
95 /***** 4. load $_config from table 'config' *****/
96 require(TR_INCLUDE_PATH.'phpCache/phpCache.inc.php'); // cache library
97 require(TR_INCLUDE_PATH.'classes/DAO/ThemesDAO.class.php');
98 require(TR_INCLUDE_PATH.'classes/DAO/ConfigDAO.class.php');
100 $configDAO = new ConfigDAO();
101 $rows = $configDAO->getAll();
104 foreach ($rows as $id => $row)
106 $_config[$row['name']] = $row['value'];
110 //set the timezone, php 5.3+ problem. http://atutor.ca/atutor/mantis/view.php?id=4409
111 date_default_timezone_set('UTC');
113 // define as constants. more constants are defined in include/constants.inc.php
114 define('EMAIL', $_config['contact_email']);
115 define('SITE_NAME', $_config['site_name']);
116 $MaxFileSize = $_config['max_file_size'];
117 $MaxCourseSize = $_config['max_course_size'];
118 $MaxFileSize = $_config['max_file_size'];
119 $IllegalExtentions = explode('|',$_config['illegal_extentions']);
120 /***** end loading $_config *****/
122 /***** 5. start language block *****/
123 // set current language
124 require(TR_INCLUDE_PATH . 'classes/Language/LanguageManager.class.php');
125 $languageManager = new LanguageManager();
127 $myLang = $languageManager->getMyLanguage();
129 if ($myLang === FALSE) {
130 echo 'There are no languages installed!';
134 $myLang->saveToSession();
136 /* set right-to-left language */
138 if ($myLang->isRTL()) {
139 $rtl = 'rtl_'; /* basically the prefix to a rtl variant directory/filename. eg. rtl_atee */
141 /***** end language block ****/
143 /***** 6. load common libraries *****/
144 require(TR_INCLUDE_PATH.'lib/output.inc.php'); /* output functions */
145 /***** end load common libraries ****/
147 /***** 7. initialize theme and template management *****/
148 require(TR_INCLUDE_PATH.'classes/Savant2/Savant2.php');
150 // set default template paths:
151 $savant = new Savant2();
153 if (isset($_SESSION['prefs']['PREF_THEME']) && file_exists(TR_INCLUDE_PATH . '../themes/' . $_SESSION['prefs']['PREF_THEME']) && $_SESSION['user_id']>0)
155 if (!is_dir(TR_INCLUDE_PATH . '../themes/' . $_SESSION['prefs']['PREF_THEME']))
157 $_SESSION['prefs']['PREF_THEME'] = 'default';
162 $themesDAO = new ThemesDAO();
163 $row = $themesDAO->getByID($_SESSION['prefs']['PREF_THEME']);
165 if ($row['status'] == 0)
168 $_SESSION['prefs']['PREF_THEME'] = get_default_theme();
173 $_SESSION['prefs']['PREF_THEME'] = get_default_theme();
176 $savant->addPath('template', TR_INCLUDE_PATH . '../themes/' . $_SESSION['prefs']['PREF_THEME'] . '/');
178 require(TR_INCLUDE_PATH . '../themes/' . $_SESSION['prefs']['PREF_THEME'] . '/theme.cfg.php');
180 require(TR_INCLUDE_PATH.'classes/Message/Message.class.php');
181 $msg = new Message($savant);
183 /***** end of initialize theme and template management *****/
185 /***** 8. initialize user instance *****/
186 // used as global var
187 if (isset($_SESSION['user_id']) && $_SESSION['user_id'] > 0)
189 // check if $_SESSION['user_id'] is valid
190 include_once(TR_INCLUDE_PATH.'classes/DAO/UsersDAO.class.php');
191 $usersDAO = new UsersDAO();
192 $user = $usersDAO->getUserByID($_SESSION['user_id']);
194 if (!$user) // invalid user
195 unset($_SESSION['user_id']);
198 include_once(TR_INCLUDE_PATH.'classes/User.class.php');
199 $_current_user = new User($_SESSION['user_id']);
202 /***** end of initialize user instance *****/
204 /* 9. initialize course information if $course_id or $cid is set
205 * This section generates global variables:
206 * $_content_id if set,
207 * $_course_id if set or $cid is set
208 * $_SESSION['s_cid']: record the last content_id on (user_id + course_id) basis
209 * $_sequence_links: resume/first/next/previous content links
211 if (intval($_REQUEST['_cid']) > 0) $_content_id = intval($_REQUEST['_cid']);
212 else if (intval($_POST['_cid']) > 0) $_content_id = intval($_POST['_cid']);
214 if (intval($_REQUEST['_course_id']) > 0) $_course_id = intval($_REQUEST['_course_id']);
215 else if (intval($_POST['_course_id']) > 0) $_course_id = intval($_POST['_course_id']);
217 // find course_id thru content_id
218 if ($_content_id > 0)
220 include_once(TR_INCLUDE_PATH.'classes/DAO/ContentDAO.class.php');
221 $contentDAO = new ContentDAO();
222 $content_row = $contentDAO->get($_content_id);
223 $_course_id = $content_row['course_id'];
226 // Generate $_SESSION['s_cid']: record the last visited content_id
227 // for authors and the users who have the current course in "my courses" list,
228 // save the last visited content_id into user_courses and set the session var.
229 // @see ContentUtility::saveLastCid()
230 // for the users who don't have the current course in "my courses" list,
231 // set the session var as $_GET['cid']
234 if ($_SESSION['user_id'] > 0)
236 include_once(TR_INCLUDE_PATH.'classes/DAO/UserCoursesDAO.class.php');
237 $userCoursesDAO = new UserCoursesDAO();
238 $user_courses_row = $userCoursesDAO->get($_SESSION['user_id'], $_course_id);
240 if ($user_courses_row && $user_courses_row['last_cid'] > 0)
241 $_SESSION['s_cid'] = $user_courses_row['last_cid'];
242 else if ($_content_id > 0)
243 $_SESSION['s_cid'] = $_content_id;
244 else // first time accessing this course, no last cid yet
245 unset($_SESSION['s_cid']);
249 $_SESSION['s_cid'] = $_content_id;
253 // Generate contentManager.
254 // Must be called after generating $_SESSION['s_cid'] as it's used in contentManager class
257 global $contentManager;
259 include_once(TR_INCLUDE_PATH. '../home/classes/ContentManager.class.php');
261 $contentManager = new ContentManager($_course_id);
262 $_sequence_links = $contentManager->generateSequenceCrumbs($_content_id);
265 /*** 10. register pages based on user's priviledge ***/
266 require_once(TR_INCLUDE_PATH.'page_constants.inc.php');
268 /*~~~~~~~~~~~~~~~~~flash detection~~~~~~~~~~~~~~~~*/
269 if(isset($_COOKIE["flash"])){
270 $_SESSION['flash'] = $_COOKIE["flash"];
273 AContent.setcookie("flash",'',time()-3600);
276 if (!isset($_SESSION["flash"])) {
278 <script type="text/javascript">
281 //VB-Script for InternetExplorer
282 function iExploreCheck()
284 document.writeln("<scr" + "ipt language=\'VBscript\'>");
285 //document.writeln("\'Test to see if VBScripting works");
286 document.writeln("detectableWithVB = False");
287 document.writeln("If ScriptEngineMajorVersion >= 2 then");
288 document.writeln(" detectableWithVB = True");
289 document.writeln("End If");
290 //document.writeln("\'This will check for the plugin");
291 document.writeln("Function detectActiveXControl(activeXControlName)");
292 document.writeln(" on error resume next");
293 document.writeln(" detectActiveXControl = False");
294 document.writeln(" If detectableWithVB Then");
295 document.writeln(" detectActiveXControl = IsObject(CreateObject(activeXControlName))");
296 document.writeln(" End If");
297 document.writeln("End Function");
298 document.writeln("</scr" + "ipt>");
299 return detectActiveXControl("ShockwaveFlash.ShockwaveFlash.1");
303 var plugin = (navigator.mimeTypes && navigator.mimeTypes["application/x-shockwave-flash"]) ? navigator.mimeTypes["application/x-shockwave-flash"].enabledPlugin : false;
304 if(!(plugin) && (navigator.userAgent && navigator.userAgent.indexOf("MSIE")>=0 && (navigator.appVersion.indexOf("Win") != -1)))
306 flash_detect = "flash=yes";
308 flash_detect = "flash=no";
311 flash_detect = "flash=yes";
313 flash_detect = "flash=no";
315 writeCookie(flash_detect);
317 function writeCookie(value)
319 var today = new Date();
320 var the_date = new Date("December 31, 2099");
321 var the_cookie_date = the_date.toGMTString();
322 var the_cookie = value + ";expires=" + the_cookie_date;
323 document.cookie = the_cookie;
332 /*~~~~~~~~~~~~~~end flash detection~~~~~~~~~~~~~~~*/
335 * This function is used for printing variables for debugging.
337 * @param mixed $var The variable to output
338 * @param string $title The name of the variable, or some mark-up identifier.
339 * @author Joel Kronenberg
341 function debug($var, $title='') {
342 if (!defined('TR_DEVEL') || !TR_DEVEL) {
346 echo '<pre style="border: 1px black solid; padding: 0px; margin: 10px;" title="debugging box">';
348 echo '<h4>'.$title.'</h4>';
353 $str = ob_get_contents();
356 $str = str_replace('<', '<', $str);
358 $str = str_replace('[', '<span style="color: red; font-weight: bold;">[', $str);
359 $str = str_replace(']', ']</span>', $str);
360 $str = str_replace('=>', '<span style="color: blue; font-weight: bold;">=></span>', $str);
361 $str = str_replace('Array', '<span style="color: purple; font-weight: bold;">Array</span>', $str);
367 * This function is used for printing variables into log file for debugging.
369 * @param mixed $var The variable to output
370 * @param string $log The location of the log file. If not provided, use the default one.
371 * @author Cindy Qi Li
373 function debug_to_log($var, $log='') {
374 if (!defined('TR_DEVEL') || !TR_DEVEL) {
378 if ($log == '') $log = TR_CONTENT_DIR. 'debug.log';
379 $handle = fopen($log, 'a');
380 fwrite($handle, "\n\n");
381 fwrite($handle, date("F j, Y, g:i a"));
382 fwrite($handle, "\n");
383 fwrite($handle, var_export($var,1));
388 /****************************************************/
389 /* compute the $_my_uri variable */
390 $bits = explode(SEP, getenv('QUERY_STRING'));
391 $num_bits = count($bits);
394 for ($i=0; $i<$num_bits; $i++) {
395 // if ( (strpos($bits[$i], 'enable=') === 0)
396 // || (strpos($bits[$i], 'disable=') === 0)
397 // || (strpos($bits[$i], 'expand=') === 0)
398 // || (strpos($bits[$i], 'collapse=') === 0)
399 // || (strpos($bits[$i], 'lang=') === 0)
401 if ( (strpos($bits[$i], 'lang=') === 0)
403 /* we don't want this variable added to $_my_uri */
407 if (($_my_uri == '') && ($bits[$i] != '')) {
409 } else if ($bits[$i] != ''){
412 $_my_uri .= $bits[$i];
414 if ($_my_uri == '') {
419 $_my_uri = $_SERVER['PHP_SELF'].$_my_uri;
421 function my_add_null_slashes( $string ) {
422 // return mysql_real_escape_string(stripslashes($string));
423 return addslashes(stripslashes($string));
426 function my_null_slashes($string) {
430 if ( get_magic_quotes_gpc() == 1 ) {
431 $addslashes = 'my_add_null_slashes';
432 $stripslashes = 'stripslashes';
434 $addslashes = 'mysql_real_escape_string';
435 $stripslashes = 'my_null_slashes';
439 * If MBString extension is loaded, then use it.
440 * Otherwise we will have to use include/utf8 library
442 if (extension_loaded('mbstring')){
443 $strtolower = 'mb_strtolower';
444 $strtoupper = 'mb_strtoupper';
445 $substr = 'mb_substr';
446 $strpos = 'mb_strpos';
447 $strrpos = 'mb_strrpos';
448 $strlen = 'mb_strlen';
450 $strtolower = 'utf8_strtolower';
451 $strtoupper = 'utf8_strtoupper';
452 $substr = 'utf8_substr';
453 $strpos = 'utf8_strpos';
454 $strrpos = 'utf8_strrpos';
455 $strlen = 'utf8_strlen';
458 function get_default_theme() {
459 $themesDAO = new ThemesDAO();
461 $rows = $themesDAO->getDefaultTheme();
463 if (!is_dir(TR_INCLUDE_PATH . '../themes/' . $rows[0]['dir_name']))
466 return $rows[0]['dir_name'];
470 * Convert all input to htmlentities output, in UTF-8.
471 * @param string input to be convert
472 * @param boolean true if we wish to change all newlines(\r\n) to a <br/> tag, false otherwise.
473 * ref: http://php.net/manual/en/function.nl2br.php
474 * @author Harris Wong
475 * @date March 12, 2010
477 function htmlentities_utf8($str, $use_nl2br=true){
478 $return = htmlentities($str, ENT_QUOTES, 'UTF-8');
480 return nl2br($return);
486 * Convert all '&' to '&' from the input
487 * @param string any string input, mainly URLs.
488 * @return input with & replaced to '&'
489 * @author Harris Wong
492 function convertAmp($input){
493 $input = str_replace('&', '&', $input); //convert everything to '&' first
494 return str_replace('&', '&', $input);
497 function query_bit( $bitfield, $bit ) {
498 if (!is_int($bitfield)) {
499 $bitfield = intval($bitfield);
504 return ( $bitfield & $bit ) ? true : false;