1 <?php
24 namespace MediaWiki\Auth;
26 use Message;
37 abstract class AuthenticationRequest {
40  const OPTIONAL = 0;
43  const REQUIRED = 1;
47  const PRIMARY_REQUIRED = 2;
53  public $action = null;
57  public $required = self::REQUIRED;
60  public $returnToUrl = null;
63  public $username = null;
80  public function getUniqueId() {
81  return get_called_class();
82  }
107  abstract public function getFieldInfo();
119  public function getMetadata() {
120  return [];
121  }
132  public function loadFromSubmission( array $data ) {
133  $fields = array_filter( $this->getFieldInfo(), function ( $info ) {
134  return $info['type'] !== 'null';
135  } );
136  if ( !$fields ) {
137  return false;
138  }
140  foreach ( $fields as $field => $info ) {
141  // Checkboxes and buttons are special. Depending on the method used
142  // to populate $data, they might be unset meaning false or they
143  // might be boolean. Further, image buttons might submit the
144  // coordinates of the click rather than the expected value.
145  if ( $info['type'] === 'checkbox' || $info['type'] === 'button' ) {
146  $this->$field = isset( $data[$field] ) && $data[$field] !== false
147  || isset( $data["{$field}_x"] ) && $data["{$field}_x"] !== false;
148  if ( !$this->$field && empty( $info['optional'] ) ) {
149  return false;
150  }
151  continue;
152  }
154  // Multiselect are too, slightly
155  if ( !isset( $data[$field] ) && $info['type'] === 'multiselect' ) {
156  $data[$field] = [];
157  }
159  if ( !isset( $data[$field] ) ) {
160  return false;
161  }
162  if ( $data[$field] === '' || $data[$field] === [] ) {
163  if ( empty( $info['optional'] ) ) {
164  return false;
165  }
166  } else {
167  switch ( $info['type'] ) {
168  case 'select':
169  if ( !isset( $info['options'][$data[$field]] ) ) {
170  return false;
171  }
172  break;
174  case 'multiselect':
175  $data[$field] = (array)$data[$field];
176  $allowed = array_keys( $info['options'] );
177  if ( array_diff( $data[$field], $allowed ) !== [] ) {
178  return false;
179  }
180  break;
181  }
182  }
184  $this->$field = $data[$field];
185  }
187  return true;
188  }
206  public function describeCredentials() {
207  return [
208  'provider' => new \RawMessage( '$1', [ get_called_class() ] ),
209  'account' => new \RawMessage( '$1', [ $this->getUniqueId() ] ),
210  ];
211  }
219  public static function loadRequestsFromSubmission( array $reqs, array $data ) {
220  return array_values( array_filter( $reqs, function ( $req ) use ( $data ) {
221  return $req->loadFromSubmission( $data );
222  } ) );
223  }
234  public static function getRequestByClass( array $reqs, $class, $allowSubclasses = false ) {
235  $requests = array_filter( $reqs, function ( $req ) use ( $class, $allowSubclasses ) {
236  if ( $allowSubclasses ) {
237  return is_a( $req, $class, false );
238  } else {
239  return get_class( $req ) === $class;
240  }
241  } );
242  return count( $requests ) === 1 ? reset( $requests ) : null;
243  }
254  public static function getUsernameFromRequests( array $reqs ) {
255  $username = null;
256  $otherClass = null;
257  foreach ( $reqs as $req ) {
258  $info = $req->getFieldInfo();
259  if ( $info && array_key_exists( 'username', $info ) && $req->username !== null ) {
260  if ( $username === null ) {
261  $username = $req->username;
262  $otherClass = get_class( $req );
263  } elseif ( $username !== $req->username ) {
264  $requestClass = get_class( $req );
265  throw new \UnexpectedValueException( "Conflicting username fields: \"{$req->username}\" from "
266  . "$requestClass::\$username vs. \"$username\" from $otherClass::\$username" );
267  }
268  }
269  }
270  return $username;
271  }
279  public static function mergeFieldInfo( array $reqs ) {
280  $merged = [];
282  // fields that are required by some primary providers but not others are not actually required
283  $primaryRequests = array_filter( $reqs, function ( $req ) {
284  return $req->required === AuthenticationRequest::PRIMARY_REQUIRED;
285  } );
286  $sharedRequiredPrimaryFields = array_reduce( $primaryRequests, function ( $shared, $req ) {
287  $required = array_keys( array_filter( $req->getFieldInfo(), function ( $options ) {
288  return empty( $options['optional'] );
289  } ) );
290  if ( $shared === null ) {
291  return $required;
292  } else {
293  return array_intersect( $shared, $required );
294  }
295  }, null );
297  foreach ( $reqs as $req ) {
298  $info = $req->getFieldInfo();
299  if ( !$info ) {
300  continue;
301  }
303  foreach ( $info as $name => $options ) {
304  if (
305  // If the request isn't required, its fields aren't required either.
306  $req->required === self::OPTIONAL
307  // If there is a primary not requiring this field, no matter how many others do,
308  // authentication can proceed without it.
309  || $req->required === self::PRIMARY_REQUIRED
310  && !in_array( $name, $sharedRequiredPrimaryFields, true )
311  ) {
312  $options['optional'] = true;
313  } else {
314  $options['optional'] = !empty( $options['optional'] );
315  }
317  if ( !array_key_exists( $name, $merged ) ) {
318  $merged[$name] = $options;
319  } elseif ( $merged[$name]['type'] !== $options['type'] ) {
320  throw new \UnexpectedValueException( "Field type conflict for \"$name\", " .
321  "\"{$merged[$name]['type']}\" vs \"{$options['type']}\""
322  );
323  } else {
324  if ( isset( $options['options'] ) ) {
325  if ( isset( $merged[$name]['options'] ) ) {
326  $merged[$name]['options'] += $options['options'];
327  } else {
328  // @codeCoverageIgnoreStart
329  $merged[$name]['options'] = $options['options'];
330  // @codeCoverageIgnoreEnd
331  }
332  }
334  $merged[$name]['optional'] = $merged[$name]['optional'] && $options['optional'];
336  // No way to merge 'value', 'image', 'help', or 'label', so just use
337  // the value from the first request.
338  }
339  }
340  }
342  return $merged;
343  }
350  public static function __set_state( $data ) {
351  $ret = new static();
352  foreach ( $data as $k => $v ) {
353  $ret->$k = $v;
354  }
355  return $ret;
356  }
357 }
