MediaWiki
master
|
A special page subclass for authentication-related special pages. More...
Public Member Functions | |
getRequest () | |
handleFormSubmit ($data) | |
Submit handler callback for HTMLForm. More... | |
onAuthChangeFormFields (array $requests, array $fieldInfo, array &$formDescriptor, $action) | |
Change the form descriptor that determines how a field will look in the authentication form. More... | |
Public Member Functions inherited from SpecialPage | |
__construct ($name= '', $restriction= '', $listed=true, $function=false, $file= '', $includable=false) | |
Default constructor for special pages Derivative classes should call this from their constructor Note that if the user does not have the required level, an error message will be displayed by the default execute() method, without the global function ever being called. More... | |
addHelpLink ($to, $overrideBaseUrl=false) | |
Adds help link with an icon via page indicators. More... | |
checkPermissions () | |
Checks if userCanExecute, and if not throws a PermissionsError. More... | |
checkReadOnly () | |
If the wiki is currently in readonly mode, throws a ReadOnlyError. More... | |
displayRestrictionError () | |
Output an error message telling the user what access level they have to have. More... | |
doesWrites () | |
Indicates whether this special page may perform database writes. More... | |
execute ($subPage) | |
Default execute method Checks user permissions. More... | |
getConfig () | |
Shortcut to get main config object. More... | |
getContext () | |
Gets the context this SpecialPage is executed in. More... | |
getDescription () | |
Returns the name that goes in the \<h1\> in the special page itself, and also the name that will be listed in Special:Specialpages. More... | |
getFinalGroupName () | |
Get the group that the special page belongs in on Special:SpecialPage Use this method, instead of getGroupName to allow customization of the group name from the wiki side. More... | |
getFullTitle () | |
Return the full title, including $par. More... | |
getLanguage () | |
Shortcut to get user's language. More... | |
getLocalName () | |
Get the localised name of the special page. More... | |
getName () | |
Get the name of this Special Page. More... | |
getOutput () | |
Get the OutputPage being used for this instance. More... | |
getPageTitle ($subpage=false) | |
Get a self-referential title object. More... | |
getRequest () | |
Get the WebRequest being used for this instance. More... | |
getRestriction () | |
Get the permission that a user must have to execute this page. More... | |
getSkin () | |
Shortcut to get the skin being used for this instance. More... | |
getTitle ($subpage=false) | |
Get a self-referential title object. More... | |
getUser () | |
Shortcut to get the User executing this instance. More... | |
including ($x=null) | |
Whether the special page is being evaluated via transclusion. More... | |
isCached () | |
Is this page cached? Expensive pages are cached or disabled in miser mode. More... | |
isExpensive () | |
Is this page expensive (for some definition of expensive)? Expensive pages are disabled or cached in miser mode. More... | |
isIncludable () | |
Whether it's allowed to transclude the special page via {{Special:Foo/params}}. More... | |
isListed () | |
Whether this special page is listed in Special:SpecialPages. More... | |
isRestricted () | |
Can be overridden by subclasses with more complicated permissions schemes. More... | |
listed ($x=null) | |
Get or set whether this special page is listed in Special:SpecialPages. More... | |
maxIncludeCacheTime () | |
How long to cache page when it is being included. More... | |
msg () | |
Wrapper around wfMessage that sets the current context. More... | |
outputHeader ($summaryMessageKey= '') | |
Outputs a summary message on top of special pages Per default the message key is the canonical name of the special page May be overridden, i.e. More... | |
prefixSearchSubpages ($search, $limit, $offset) | |
Return an array of subpages beginning with $search that this special page will accept. More... | |
requireLogin ($reasonMsg= 'exception-nologin-text', $titleMsg= 'exception-nologin') | |
If the user is not logged in, throws UserNotLoggedIn error. More... | |
run ($subPage) | |
Entry point. More... | |
setContext ($context) | |
Sets the context this SpecialPage is executed in. More... | |
setHeaders () | |
Sets headers - this should be called from the execute() method of all derived classes! More... | |
setLinkRenderer (LinkRenderer $linkRenderer) | |
setListed ($listed) | |
Set whether this page is listed in Special:Specialpages, at run-time. More... | |
userCanExecute (User $user) | |
Checks if the given user (identified by an object) can execute this special page (as defined by $mRestriction). More... | |
Protected Member Functions | |
addTabIndex (&$formDescriptor) | |
Adds a sequential tabindex starting from 1 to all form elements. More... | |
beforeExecute ($subPage) | |
displayForm ($status) | |
Display the form. More... | |
fieldInfoToFormDescriptor (array $requests, array $fieldInfo, $action) | |
Turns a field info array into a form descriptor. More... | |
getAuthForm (array $requests, $action) | |
getAuthFormDescriptor ($requests, $action) | |
Generates a HTMLForm descriptor array from a set of authentication requests. More... | |
getContinueAction ($action) | |
Gets the _CONTINUE version of an action. More... | |
getDefaultAction ($subPage) | |
Get the default action for this special page, if none is given via URL/POST data. More... | |
getLoginSecurityLevel () | |
getPreservedParams ($withToken=false) | |
Returns URL query parameters which can be used to reload the page (or leave and return) while preserving all information that is necessary for authentication to continue. More... | |
getRequestBlacklist () | |
Allows blacklisting certain request types. More... | |
getToken () | |
Returns the CSRF token. More... | |
getTokenName () | |
Returns the name of the CSRF token (under which it should be found in the POST or GET data). More... | |
handleReauthBeforeExecute ($subPage) | |
Handle redirection when the user needs to (re)authenticate. More... | |
handleReturnBeforeExecute ($subPage) | |
Handle redirection from the /return subpage. More... | |
isActionAllowed ($action) | |
Checks whether AuthManager is ready to perform the action. More... | |
isContinued () | |
Returns true if this is not the first step of the authentication. More... | |
loadAuth ($subPage, $authAction=null, $reset=false) | |
Load or initialize $authAction, $authRequests and $subPage. More... | |
messageKey ($defaultKey) | |
Return custom message key. More... | |
needsSubmitButton ($formDescriptor) | |
Returns true if the form has fields which take values. More... | |
performAuthenticationStep ($action, array $requests) | |
setRequest (array $data, $wasPosted=null) | |
Override the POST data, GET data from the real request is preserved. More... | |
trySubmit () | |
Attempts to do an authentication step with the submitted data. More... | |
Protected Member Functions inherited from SpecialPage | |
addFeedLinks ($params) | |
Adds RSS/atom links. More... | |
afterExecute ($subPage) | |
Gets called after. More... | |
beforeExecute ($subPage) | |
Gets called before. More... | |
checkLoginSecurityLevel ($level=null) | |
Verifies that the user meets the security level, possibly reauthenticating them in the process. More... | |
getCacheTTL () | |
getGroupName () | |
Under which header this special page is listed in Special:SpecialPages See messages 'specialpages-group-*' for valid names This method defaults to group 'other'. More... | |
getLinkRenderer () | |
getLoginSecurityLevel () | |
Tells if the special page does something security-sensitive and needs extra defense against a stolen account (e.g. More... | |
getRobotPolicy () | |
Return the robot policy. More... | |
getSubpagesForPrefixSearch () | |
Return an array of subpages that this special page will accept for prefix searches. More... | |
prefixSearchString ($search, $limit, $offset) | |
Perform a regular substring search for prefixSearchSubpages. More... | |
useTransactionalTimeLimit () | |
Call wfTransactionalTimeLimit() if this request was POSTed. More... | |
Static Protected Member Functions | |
static | getField (array $array, $fieldName, $default=null) |
Get an array value, or a default if it does not exist. More... | |
static | mapFieldInfoTypeToFormDescriptorType ($type) |
Maps AuthenticationRequest::getFieldInfo() types to HTMLForm types. More... | |
static | mapSingleFieldInfo ($singleFieldInfo, $fieldName) |
Maps an authentication field configuration for a single field (as returned by AuthenticationRequest::getFieldInfo()) to a HTMLForm field descriptor. More... | |
static | sortFormDescriptorFields (array &$formDescriptor) |
Sort the fields of a form descriptor by their 'weight' property. More... | |
Static Protected Member Functions inherited from SpecialPage | |
static | prefixSearchArray ($search, $limit, array $subpages, $offset) |
Helper function for implementations of prefixSearchSubpages() that filter the values in memory (as opposed to making a query). More... | |
Protected Attributes | |
string | $authAction |
one of the AuthManager::ACTION_* constants. More... | |
AuthenticationRequest[] | $authRequests |
bool | $isReturn |
True if the current request is a result of returning from a redirect flow. More... | |
WebRequest null | $savedRequest |
If set, will be used instead of the real request. More... | |
string | $subPage |
Subpage of the special page. More... | |
Protected Attributes inherited from SpecialPage | |
IContextSource | $mContext |
Current request context. More... | |
$mIncludable | |
$mIncluding | |
$mName | |
$mRestriction | |
Static Protected Attributes | |
static string[] | $allowedActions |
The list of actions this special page deals with. More... | |
static array | $messages = [] |
Customized messages. More... | |
Additional Inherited Members | |
Static Public Member Functions inherited from SpecialPage | |
static | getSafeTitleFor ($name, $subpage=false) |
Get a localised Title object for a page name with a possibly unvalidated subpage. More... | |
static | getTitleFor ($name, $subpage=false, $fragment= '') |
Get a localised Title object for a specified special page name. More... | |
A special page subclass for authentication-related special pages.
It generates a form from a set of AuthenticationRequest objects, submits the result to AuthManager and partially handles the response.
Definition at line 14 of file AuthManagerSpecialPage.php.
|
protected |
Adds a sequential tabindex starting from 1 to all form elements.
This way the user can use the tab key to traverse the form without having to step through all links and such.
$formDescriptor |
Definition at line 582 of file AuthManagerSpecialPage.php.
References HTMLForm\$typeMappings, and as.
Referenced by getAuthFormDescriptor(), and LoginSignupSpecialPage\postProcessFormDescriptor().
|
protected |
Definition at line 84 of file AuthManagerSpecialPage.php.
References $subPage, SpecialPage\getOutput(), handleReauthBeforeExecute(), and handleReturnBeforeExecute().
|
protected |
Display the form.
false | Status | StatusValue | $status | A form submit status, as in HTMLForm::trySubmit() |
Definition at line 548 of file AuthManagerSpecialPage.php.
References $status, getAuthForm(), and Status\wrap().
Referenced by SpecialUnlinkAccounts\execute(), SpecialLinkAccounts\execute(), SpecialChangeCredentials\execute(), and SpecialLinkAccounts\success().
|
protected |
Turns a field info array into a form descriptor.
Behavior can be modified by the AuthChangeFormFields hook.
AuthenticationRequest[] | $requests | |
array | $fieldInfo | Field information, in the format used by AuthenticationRequest::getFieldInfo() |
string | $action | One of the AuthManager::ACTION_* constants |
Definition at line 624 of file AuthManagerSpecialPage.php.
References as, onAuthChangeFormFields(), Hooks\run(), and serialize().
Referenced by getAuthFormDescriptor().
|
protected |
AuthenticationRequest[] | $requests | |
string | $action | AuthManager action name (one of the AuthManager::ACTION_* constants) |
Definition at line 527 of file AuthManagerSpecialPage.php.
References $context, HTMLForm\factory(), getAuthFormDescriptor(), SpecialPage\getContext(), SpecialPage\getFullTitle(), getPreservedParams(), getRequest(), getToken(), getTokenName(), and needsSubmitButton().
Referenced by displayForm(), and trySubmit().
|
protected |
Generates a HTMLForm descriptor array from a set of authentication requests.
AuthenticationRequest[] | $requests | |
string | $action | AuthManager action name (one of the AuthManager::ACTION_* constants) |
Definition at line 513 of file AuthManagerSpecialPage.php.
References $requests, addTabIndex(), and fieldInfoToFormDescriptor().
Referenced by getAuthForm().
|
protected |
Gets the _CONTINUE version of an action.
string | $action | An AuthManager::ACTION_* constant. |
Definition at line 280 of file AuthManagerSpecialPage.php.
Referenced by LoginSignupSpecialPage\execute(), getPreservedParams(), loadAuth(), and LoginSignupSpecialPage\showExtraInformation().
|
protected |
Get the default action for this special page, if none is given via URL/POST data.
Subclasses should override this (or override loadAuth() so this is never called).
string | $subPage | Subpage of the special page. |
Definition at line 201 of file AuthManagerSpecialPage.php.
Referenced by LoginSignupSpecialPage\execute(), getPreservedParams(), loadAuth(), and LoginSignupSpecialPage\mainLoginForm().
|
staticprotected |
Get an array value, or a default if it does not exist.
array | $array | |
string | $fieldName | |
mixed | $default |
Definition at line 714 of file AuthManagerSpecialPage.php.
|
protected |
Definition at line 59 of file AuthManagerSpecialPage.php.
References SpecialPage\getName().
Referenced by handleReauthBeforeExecute().
|
protected |
Returns URL query parameters which can be used to reload the page (or leave and return) while preserving all information that is necessary for authentication to continue.
These parameters will be preserved in the action URL of the form and in the return URL for redirect flow.
bool | $withToken | Include CSRF token |
Definition at line 496 of file AuthManagerSpecialPage.php.
References $params, getContinueAction(), getDefaultAction(), getToken(), and getTokenName().
Referenced by getAuthForm(), handleReauthBeforeExecute(), handleReturnBeforeExecute(), and performAuthenticationStep().
AuthManagerSpecialPage::getRequest | ( | ) |
Definition at line 63 of file AuthManagerSpecialPage.php.
References SpecialPage\getContext().
Referenced by SpecialUserLogin\beforeExecute(), SpecialUserLogin\clearToken(), SpecialCreateAccount\clearToken(), SpecialUnlinkAccounts\execute(), LoginSignupSpecialPage\execute(), getAuthForm(), LoginSignupSpecialPage\getAuthForm(), LoginSignupSpecialPage\getFakeTemplate(), LoginSignupSpecialPage\getFieldDefinitions(), SpecialChangeCredentials\getPreservedParams(), SpecialChangeCredentials\getReturnUrl(), SpecialUserLogin\getToken(), SpecialCreateAccount\getToken(), getToken(), handleReauthBeforeExecute(), handleReturnBeforeExecute(), LoginSignupSpecialPage\hasSessionCookie(), LoginSignupSpecialPage\load(), loadAuth(), LoginSignupSpecialPage\loadRequestParameters(), LoginSignupSpecialPage\postProcessFormDescriptor(), LoginSignupSpecialPage\setSessionUserForCurrentRequest(), SpecialChangeCredentials\success(), SpecialCreateAccount\successfulAction(), SpecialUserLogin\successfulAction(), and trySubmit().
|
protected |
Allows blacklisting certain request types.
Definition at line 219 of file AuthManagerSpecialPage.php.
Referenced by loadAuth().
|
protected |
Returns the CSRF token.
Definition at line 602 of file AuthManagerSpecialPage.php.
References SpecialPage\getName(), and getRequest().
Referenced by getAuthForm(), LoginSignupSpecialPage\getAuthForm(), LoginSignupSpecialPage\getFakeTemplate(), getPreservedParams(), and trySubmit().
|
protected |
Returns the name of the CSRF token (under which it should be found in the POST or GET data).
Definition at line 611 of file AuthManagerSpecialPage.php.
Referenced by getAuthForm(), getPreservedParams(), and trySubmit().
AuthManagerSpecialPage::handleFormSubmit | ( | $data | ) |
Submit handler callback for HTMLForm.
$data | array Submitted data |
Definition at line 481 of file AuthManagerSpecialPage.php.
References $requests, $response, Status\newGood(), and performAuthenticationStep().
Referenced by trySubmit().
|
protected |
Handle redirection when the user needs to (re)authenticate.
Send the user to the login form if needed; in case the request was a POST, stash in the session and simulate it once the user gets back.
string | $subPage |
ErrorPageError | When the user is not allowed to use this page. |
Definition at line 145 of file AuthManagerSpecialPage.php.
References $request, $title, MWCryptRand\generateHex(), SpecialPage\getFullTitle(), getLoginSecurityLevel(), SpecialPage\getName(), SpecialPage\getOutput(), getPreservedParams(), getRequest(), SpecialPage\getTitleFor(), PROTO_HTTPS, setRequest(), true, and wfArrayToCgi().
Referenced by beforeExecute().
|
protected |
Handle redirection from the /return subpage.
This is used in the redirect flow where we need to be able to process data that was sent via a GET request. We set the /return subpage as the reentry point so we know we need to treat GET as POST, but we don't want to handle all future GETs as POSTs so we need to normalize the URL. (Also we don't want to show any received parameters around in the URL; they are ugly and might be sensitive.)
Thus when on the /return subpage, we stash the request data in the session, redirect, then use the session to detect that we have been redirected, recover the data and replace the real WebRequest with a fake one that contains the saved data.
string | $subPage |
Definition at line 107 of file AuthManagerSpecialPage.php.
References $subPage, SpecialPage\getName(), SpecialPage\getOutput(), SpecialPage\getPageTitle(), getPreservedParams(), getRequest(), loadAuth(), PROTO_HTTPS, and setRequest().
Referenced by beforeExecute().
|
protected |
Checks whether AuthManager is ready to perform the action.
ACTION_CHANGE needs special verification (AuthManager::allowsAuthenticationData*) which is the caller's responsibility.
string | $action | One of the AuthManager::ACTION_* constants in static::$allowedActions |
LogicException | if $action is invalid |
Definition at line 303 of file AuthManagerSpecialPage.php.
References $authAction, and $requests.
Referenced by SpecialLinkAccounts\execute(), and LoginSignupSpecialPage\execute().
|
protected |
Returns true if this is not the first step of the authentication.
Definition at line 267 of file AuthManagerSpecialPage.php.
Referenced by LoginSignupSpecialPage\getFieldDefinitions().
|
protected |
Load or initialize $authAction, $authRequests and $subPage.
Subclasses should call this from execute() or otherwise ensure the variables are initialized.
string | $subPage | Subpage of the special page. |
string | $authAction | Override auth action specified in request (this is useful when the form needs to be changed from <action> to <action>_CONTINUE after a successful authentication step) |
bool | $reset | Regenerate the requests even if a cached version is available |
Definition at line 232 of file AuthManagerSpecialPage.php.
References $authAction, $req, $request, $subPage, getContinueAction(), getDefaultAction(), getRequest(), getRequestBlacklist(), SpecialPage\getUser(), and use.
Referenced by SpecialUnlinkAccounts\execute(), SpecialLinkAccounts\execute(), LoginSignupSpecialPage\execute(), handleReturnBeforeExecute(), LoginSignupSpecialPage\load(), and SpecialLinkAccounts\success().
|
staticprotected |
Maps AuthenticationRequest::getFieldInfo() types to HTMLForm types.
string | $type |
\\LogicException |
Definition at line 728 of file AuthManagerSpecialPage.php.
References $type.
|
staticprotected |
Maps an authentication field configuration for a single field (as returned by AuthenticationRequest::getFieldInfo()) to a HTMLForm field descriptor.
array | $singleFieldInfo |
Definition at line 651 of file AuthManagerSpecialPage.php.
References $type, and wfMessage().
|
protected |
Return custom message key.
Allows subclasses to customize messages.
Definition at line 210 of file AuthManagerSpecialPage.php.
References $messages.
Referenced by trySubmit().
|
protected |
Returns true if the form has fields which take values.
If all available providers use the redirect flow, the form might contain nothing but submit buttons, in which case we should not add an extra submit button which does nothing.
array | $formDescriptor | A HTMLForm descriptor |
Definition at line 564 of file AuthManagerSpecialPage.php.
References HTMLForm\$typeMappings, and class.
Referenced by getAuthForm(), and LoginSignupSpecialPage\postProcessFormDescriptor().
AuthManagerSpecialPage::onAuthChangeFormFields | ( | array | $requests, |
array | $fieldInfo, | ||
array & | $formDescriptor, | ||
$action | |||
) |
Change the form descriptor that determines how a field will look in the authentication form.
Called from fieldInfoToFormDescriptor().
AuthenticationRequest[] | $requests | |
string | $fieldInfo | Field information array (union of all AuthenticationRequest::getFieldInfo() responses). |
array | $formDescriptor | HTMLForm descriptor. The special key 'weight' can be set to change the order of the fields. |
string | $action | Authentication type (one of the AuthManager::ACTION_* constants) |
Definition at line 53 of file AuthManagerSpecialPage.php.
Referenced by fieldInfoToFormDescriptor().
|
protected |
string | $action | One of the AuthManager::ACTION_* constants |
AuthenticationRequest[] | $requests |
LogicException | if $action is invalid |
Definition at line 343 of file AuthManagerSpecialPage.php.
References $req, $status, SpecialPage\getPageTitle(), getPreservedParams(), SpecialPage\getUser(), PROTO_HTTPS, and Hooks\run().
Referenced by SpecialUnlinkAccounts\handleFormSubmit(), SpecialChangeCredentials\handleFormSubmit(), and handleFormSubmit().
|
protected |
Override the POST data, GET data from the real request is preserved.
Used to preserve POST data over a HTTP redirect.
array | $data | |
bool | $wasPosted |
Definition at line 75 of file AuthManagerSpecialPage.php.
References $request, and SpecialPage\getContext().
Referenced by handleReauthBeforeExecute(), and handleReturnBeforeExecute().
|
staticprotected |
Sort the fields of a form descriptor by their 'weight' property.
(Fields with higher weight are shown closer to the bottom; weight defaults to 0. Negative weight is allowed.) Keep order if weights are equal.
array | $formDescriptor |
Definition at line 693 of file AuthManagerSpecialPage.php.
References as.
|
protected |
Attempts to do an authentication step with the submitted data.
Subclasses should probably call this from execute().
Definition at line 398 of file AuthManagerSpecialPage.php.
References $status, as, getAuthForm(), getRequest(), getToken(), getTokenName(), handleFormSubmit(), messageKey(), Status\newFatal(), Status\newGood(), Hooks\run(), and Status\wrap().
Referenced by SpecialUnlinkAccounts\execute(), SpecialLinkAccounts\execute(), SpecialChangeCredentials\execute(), and LoginSignupSpecialPage\execute().
|
staticprotected |
The list of actions this special page deals with.
Subclasses should override this.
Definition at line 17 of file AuthManagerSpecialPage.php.
|
protected |
one of the AuthManager::ACTION_* constants.
Definition at line 28 of file AuthManagerSpecialPage.php.
Referenced by isActionAllowed(), SpecialChangeCredentials\loadAuth(), and loadAuth().
|
protected |
Definition at line 31 of file AuthManagerSpecialPage.php.
Referenced by SpecialChangeCredentials\handleFormSubmit(), and SpecialChangeCredentials\isListed().
|
protected |
True if the current request is a result of returning from a redirect flow.
Definition at line 37 of file AuthManagerSpecialPage.php.
|
staticprotected |
Customized messages.
Definition at line 25 of file AuthManagerSpecialPage.php.
|
protected |
If set, will be used instead of the real request.
Used for redirection.
Definition at line 40 of file AuthManagerSpecialPage.php.
|
protected |
Subpage of the special page.
Definition at line 34 of file AuthManagerSpecialPage.php.
Referenced by SpecialUserLogin\beforeExecute(), beforeExecute(), LoginSignupSpecialPage\beforeExecute(), SpecialUnlinkAccounts\execute(), SpecialLinkAccounts\execute(), SpecialChangeCredentials\execute(), LoginSignupSpecialPage\execute(), handleReturnBeforeExecute(), LoginSignupSpecialPage\load(), SpecialChangeCredentials\loadAuth(), loadAuth(), and LoginSignupSpecialPage\loadRequestParameters().