Implement core functions ?
Secure existing RSS feeds in Moodle ?
Add option to force HTTPS for RSS feeds ?
RSS for Calendar(Upcoming events) ?
RSS for Recent Activity ?
MDL-12563 fixed ?

2/ the rss should use contextid as module or plugin identifier now - we will be moving to this for all module/block files next week; the first implementation of new API should be finished in about 2 weeks from now

3/ rss_auth() does not respect the $CFG->guestloginbutton which also disables any guest login if disabled

4/ $CFG->forcelogin setting is not respected too I think

5/ calendar/lib.php - following if does not seem to be correct:
if (isset($CFG->enablerssfeeds) && isset($CFG->calendar_enablerssfeeds)...

6/ why the changes in require_user_key_login()?

7/ please watch your whitespace, especially the trailing spaces and indentation

8/ do not initialise objects with NULL value

9/ use proper PHPdoc inline syntax to annotate all new functions/methods

10/ course_setup() must be used if you assign $COURSE global object directly

11/ I guess <br /> is not recommended if you want to separate the rss icons in footers, it might be hard to style with css

Today I was thinking about possible RSS feed upgrade path in 2.0, the current feeds are going to break anyway - we could start using a new file /rssfile.php and let the old one rss/file.php just display feeds with nice error messages including info how to subscribe to new feeds.

Is there any ETAG support planned? This could help with perf a bit, loading of user caps is not cheap.

petr

1) I didn't like it either, so I will be happy to remove this check However, I want to leave the code, which changes RSS links to 'https://', ok?

2) Can you tell me where I can find more info about this changes?

3) 5) 11) My mistake. I will fix it.

4) You are right. But I can't imagine how it works in context of our 'magic' urls. I think the use of this URL's already assumes 'logging in'.

6) I just wanted to pass user_key to this function directly.

7) I need to get rid of a habit of sleeping on a spacebar

10) Ok. By the way, I there is a theme_setup() call in course_setup(), can it cause any problems?

You mean HTTP ETAG ? Yes, I was thinking about this. And IF-MODIFIED-SINCE too.

http://tracker.moodle.org/browse/MDL-14589

I have to work on getting 1.9.2 ready this week, next week I should be working on file related stuff again.

• No more Cron jobs for RSS feeds.
• All feeds are generated on the fly (i.e. no cached .xml files)
• In order to generate RSS feed, each module must implement this two functions in its rsslib.php
  1/ rss_newstuff($instance, $time,&$cache, $info) - checks if there is new stuff. Like looking into forum post table and seeing if something changed there since last feed fetching. If this returns false, second function is called.
  2/ rss_generate_feed($instance,&$cache,$info) - generates and returns XML rss contents

Most of the times nothing changes in the feed - we do not have to send the actual feed content, we can just send HTTP 304 Not Modified header. And because no actual content is sent, this allows us to skip loading all capabilities, identifying users etc - improve performance.

It may be convenient to prefetch some data in rss_newstuff(), that's why $cache is used.
However, it duplicates rcache functionality a bit, so I'm thinking about removing it.

But there is a problem, when rss_new_stuff() result depends on what capabilities user has. In this situation we could:
1) Identify user, load all capabilities. This is slow, but reliable way.
2) Assume that user has all the necessary capabilites. If there are no changes since last feed fetching, then send 304 Not Modified. Otherwise, do the real check during feed content generation. This is compromise solution.

Btw, File API Docs page says something about old file.php used for compatibility. What exactly does it mean?

How about merging it with HEAD? To get feedback and bug reports?