2013-10-23 15:36:40 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @group API
|
|
|
|
|
* @group medium
|
|
|
|
|
*
|
|
|
|
|
* @covers ApiMain
|
|
|
|
|
*/
|
|
|
|
|
class ApiMainTest extends ApiTestCase {
|
|
|
|
|
|
|
|
|
|
/**
|
API: HTMLize and internationalize the help, add Special:ApiHelp
The existing API help, formatted as basically a plain-text document
embedded in XML and with a little bolding and a few links
syntax-highlighted in after the fact, works ok for experienced programmers
but isn't at all newbie-friendly. Further, all the help is hard-coded in
English, which isn't very friendly to non-English speakers.
So let's rewrite it. The help text is now obtained from i18n messages
and output in HTML, with the default display consisting of help for a
single module with links to help for other modules. This, of course,
necessitates deprecating many of the existing help-related methods and
hooks and replacing them with new ones, but backwards compatibility is
maintained for almost everything.
At the same time, action=paraminfo also needs to support the
'description' and other help-related fields being output in wikitext or
HTML, and I11cb063d (to access all modules via the 'modules' parameter
instead of having 'modules', 'formatmodules', 'querymodules', and so on)
is folded in.
And we also add Special:ApiHelp. When directly accessed, it simply
redirects to api.php with appropriate parameters. But it's also
transcludable to allow up-to-date API help text to be included within
the on-wiki documentation.
Note this patch doesn't actually add i18n messages for any API modules
besides ApiMain and ApiHelp. That will come in a followup patch, but for
the moment the backwards-compatibility code handles them nicely.
While we're messing with the documentation, we may as well add the
"internal" flag requested in bug 62905 (although the 'includeinternal'
parameter it also requests doesn't make much sense anymore) and a
"deprecated" flag that's needed by several modules now.
Bug: 30936
Bug: 38126
Bug: 42343
Bug: 45641
Bug: 62905
Bug: 63211
Change-Id: Ib14c00df06d85c2f6364d83b2b10ce34c7f513cc
2014-09-16 17:54:01 +00:00
|
|
|
* Test that the API will accept a FauxRequest and execute.
|
2013-10-23 15:36:40 +00:00
|
|
|
*/
|
|
|
|
|
public function testApi() {
|
|
|
|
|
$api = new ApiMain(
|
2016-02-17 09:09:32 +00:00
|
|
|
new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ] )
|
2013-10-23 15:36:40 +00:00
|
|
|
);
|
|
|
|
|
$api->execute();
|
API: Overhaul ApiResult, make format=xml not throw, and add json formatversion
ApiResult was a mess: some methods could only be used with an array
reference instead of manipulating the stored data, methods that had both
array-ref and internal-data versions had names that didn't at all
correspond, some methods that worked on an array reference were
annoyingly non-static, and then the whole mess with setIndexedTagName.
ApiFormatXml is also entirely annoying to deal with, as it liked to
throw exceptions if certain metadata wasn't provided that no other
formatter required. Its legacy also means we have this silly convention
of using empty-string rather than boolean true, annoying restrictions on
keys (leading to things that should be hashes being arrays of key-value
object instead), '*' used as a key all over the place, and so on.
So, changes here:
* ApiResult is no longer an ApiBase or a ContextSource.
* Wherever sensible, ApiResult provides a static method working on an
arrayref and a non-static method working on internal data.
* Metadata is now always added to ApiResult's internal data structure.
Formatters are responsible for stripping it if necessary. "raw mode"
is deprecated.
* New metadata to replace the '*' key, solve the array() => '[]' vs '{}'
question, and so on.
* New class for formatting warnings and errors using i18n messages, and
support for multiple errors and a more machine-readable format for
warnings. For the moment, though, the actual output will not be changing
yet (see T47843 for future plans).
* New formatversion parameter for format=json and format=php, to select
between BC mode and the modern output.
* In BC mode, booleans will be converted to empty-string presence style;
modules currently returning booleans will need to use
ApiResult::META_BC_BOOLS to preserve their current output.
Actual changes to the API modules' output (e.g. actually returning
booleans for the new formatversion) beyond the use of
ApiResult::setContentValue() are left for a future change.
Bug: T76728
Bug: T57371
Bug: T33629
Change-Id: I7b37295e8862b188d1f3b0cd07f66ac34629678f
2014-12-03 22:14:22 +00:00
|
|
|
$data = $api->getResult()->getResultData();
|
API: HTMLize and internationalize the help, add Special:ApiHelp
The existing API help, formatted as basically a plain-text document
embedded in XML and with a little bolding and a few links
syntax-highlighted in after the fact, works ok for experienced programmers
but isn't at all newbie-friendly. Further, all the help is hard-coded in
English, which isn't very friendly to non-English speakers.
So let's rewrite it. The help text is now obtained from i18n messages
and output in HTML, with the default display consisting of help for a
single module with links to help for other modules. This, of course,
necessitates deprecating many of the existing help-related methods and
hooks and replacing them with new ones, but backwards compatibility is
maintained for almost everything.
At the same time, action=paraminfo also needs to support the
'description' and other help-related fields being output in wikitext or
HTML, and I11cb063d (to access all modules via the 'modules' parameter
instead of having 'modules', 'formatmodules', 'querymodules', and so on)
is folded in.
And we also add Special:ApiHelp. When directly accessed, it simply
redirects to api.php with appropriate parameters. But it's also
transcludable to allow up-to-date API help text to be included within
the on-wiki documentation.
Note this patch doesn't actually add i18n messages for any API modules
besides ApiMain and ApiHelp. That will come in a followup patch, but for
the moment the backwards-compatibility code handles them nicely.
While we're messing with the documentation, we may as well add the
"internal" flag requested in bug 62905 (although the 'includeinternal'
parameter it also requests doesn't make much sense anymore) and a
"deprecated" flag that's needed by several modules now.
Bug: 30936
Bug: 38126
Bug: 42343
Bug: 45641
Bug: 62905
Bug: 63211
Change-Id: Ib14c00df06d85c2f6364d83b2b10ce34c7f513cc
2014-09-16 17:54:01 +00:00
|
|
|
$this->assertInternalType( 'array', $data );
|
|
|
|
|
$this->assertArrayHasKey( 'query', $data );
|
2013-10-23 15:36:40 +00:00
|
|
|
}
|
|
|
|
|
|
2014-01-19 01:13:16 +00:00
|
|
|
public static function provideAssert() {
|
2016-02-17 09:09:32 +00:00
|
|
|
return [
|
|
|
|
|
[ false, [], 'user', 'assertuserfailed' ],
|
|
|
|
|
[ true, [], 'user', false ],
|
|
|
|
|
[ true, [], 'bot', 'assertbotfailed' ],
|
|
|
|
|
[ true, [ 'bot' ], 'user', false ],
|
|
|
|
|
[ true, [ 'bot' ], 'bot', false ],
|
|
|
|
|
];
|
2014-01-19 01:13:16 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Tests the assert={user|bot} functionality
|
|
|
|
|
*
|
|
|
|
|
* @covers ApiMain::checkAsserts
|
|
|
|
|
* @dataProvider provideAssert
|
2015-03-29 08:41:38 +00:00
|
|
|
* @param bool $registered
|
|
|
|
|
* @param array $rights
|
2014-01-19 01:13:16 +00:00
|
|
|
* @param string $assert
|
2014-07-24 12:55:43 +00:00
|
|
|
* @param string|bool $error False if no error expected
|
2014-01-19 01:13:16 +00:00
|
|
|
*/
|
2015-03-29 08:41:38 +00:00
|
|
|
public function testAssert( $registered, $rights, $assert, $error ) {
|
|
|
|
|
$user = new User();
|
|
|
|
|
if ( $registered ) {
|
|
|
|
|
$user->setId( 1 );
|
|
|
|
|
}
|
|
|
|
|
$user->mRights = $rights;
|
2014-01-19 01:13:16 +00:00
|
|
|
try {
|
2016-02-17 09:09:32 +00:00
|
|
|
$this->doApiRequest( [
|
2014-01-19 01:13:16 +00:00
|
|
|
'action' => 'query',
|
|
|
|
|
'assert' => $assert,
|
2016-02-17 09:09:32 +00:00
|
|
|
], null, null, $user );
|
2014-01-19 01:13:16 +00:00
|
|
|
$this->assertFalse( $error ); // That no error was expected
|
2016-10-19 16:54:25 +00:00
|
|
|
} catch ( ApiUsageException $e ) {
|
|
|
|
|
$this->assertTrue( self::apiExceptionHasCode( $e, $error ) );
|
2014-01-19 01:13:16 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-10-05 14:35:47 +00:00
|
|
|
/**
|
|
|
|
|
* Tests the assertuser= functionality
|
|
|
|
|
*
|
|
|
|
|
* @covers ApiMain::checkAsserts
|
|
|
|
|
*/
|
|
|
|
|
public function testAssertUser() {
|
|
|
|
|
$user = $this->getTestUser()->getUser();
|
|
|
|
|
$this->doApiRequest( [
|
|
|
|
|
'action' => 'query',
|
|
|
|
|
'assertuser' => $user->getName(),
|
|
|
|
|
], null, null, $user );
|
|
|
|
|
|
|
|
|
|
try {
|
|
|
|
|
$this->doApiRequest( [
|
|
|
|
|
'action' => 'query',
|
|
|
|
|
'assertuser' => $user->getName() . 'X',
|
|
|
|
|
], null, null, $user );
|
|
|
|
|
$this->fail( 'Expected exception not thrown' );
|
2016-10-19 16:54:25 +00:00
|
|
|
} catch ( ApiUsageException $e ) {
|
|
|
|
|
$this->assertTrue( self::apiExceptionHasCode( $e, 'assertnameduserfailed' ) );
|
2016-10-05 14:35:47 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2014-11-17 19:08:10 +00:00
|
|
|
/**
|
|
|
|
|
* Test if all classes in the main module manager exists
|
|
|
|
|
*/
|
|
|
|
|
public function testClassNamesInModuleManager() {
|
|
|
|
|
$api = new ApiMain(
|
2016-02-17 09:09:32 +00:00
|
|
|
new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ] )
|
2014-11-17 19:08:10 +00:00
|
|
|
);
|
|
|
|
|
$modules = $api->getModuleManager()->getNamesWithClasses();
|
2016-12-21 15:06:57 +00:00
|
|
|
|
2015-06-17 20:01:00 +00:00
|
|
|
foreach ( $modules as $name => $class ) {
|
2016-12-21 15:06:57 +00:00
|
|
|
$this->assertTrue(
|
|
|
|
|
class_exists( $class ),
|
|
|
|
|
'Class ' . $class . ' for api module ' . $name . ' does not exist (with exact case)'
|
2014-11-17 19:08:10 +00:00
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Test HTTP precondition headers
|
|
|
|
|
*
|
|
|
|
|
* @covers ApiMain::checkConditionalRequestHeaders
|
|
|
|
|
* @dataProvider provideCheckConditionalRequestHeaders
|
|
|
|
|
* @param array $headers HTTP headers
|
|
|
|
|
* @param array $conditions Return data for ApiBase::getConditionalRequestData
|
|
|
|
|
* @param int $status Expected response status
|
|
|
|
|
* @param bool $post Request is a POST
|
|
|
|
|
*/
|
2015-10-03 13:44:13 +00:00
|
|
|
public function testCheckConditionalRequestHeaders(
|
|
|
|
|
$headers, $conditions, $status, $post = false
|
|
|
|
|
) {
|
2016-02-17 09:09:32 +00:00
|
|
|
$request = new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ], $post );
|
2015-08-17 20:52:09 +00:00
|
|
|
$request->setHeaders( $headers );
|
|
|
|
|
$request->response()->statusHeader( 200 ); // Why doesn't it default?
|
|
|
|
|
|
2015-09-22 14:33:24 +00:00
|
|
|
$context = $this->apiContext->newTestContext( $request, null );
|
|
|
|
|
$api = new ApiMain( $context );
|
2015-08-17 20:52:09 +00:00
|
|
|
$priv = TestingAccessWrapper::newFromObject( $api );
|
|
|
|
|
$priv->mInternalMode = false;
|
|
|
|
|
|
|
|
|
|
$module = $this->getMockBuilder( 'ApiBase' )
|
2016-02-17 09:09:32 +00:00
|
|
|
->setConstructorArgs( [ $api, 'mock' ] )
|
|
|
|
|
->setMethods( [ 'getConditionalRequestData' ] )
|
2015-08-17 20:52:09 +00:00
|
|
|
->getMockForAbstractClass();
|
|
|
|
|
$module->expects( $this->any() )
|
|
|
|
|
->method( 'getConditionalRequestData' )
|
|
|
|
|
->will( $this->returnCallback( function ( $condition ) use ( $conditions ) {
|
|
|
|
|
return isset( $conditions[$condition] ) ? $conditions[$condition] : null;
|
|
|
|
|
} ) );
|
|
|
|
|
|
|
|
|
|
$ret = $priv->checkConditionalRequestHeaders( $module );
|
|
|
|
|
|
|
|
|
|
$this->assertSame( $status, $request->response()->getStatusCode() );
|
|
|
|
|
$this->assertSame( $status === 200, $ret );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static function provideCheckConditionalRequestHeaders() {
|
|
|
|
|
$now = time();
|
|
|
|
|
|
2016-02-17 09:09:32 +00:00
|
|
|
return [
|
2015-08-17 20:52:09 +00:00
|
|
|
// Non-existing from module is ignored
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-None-Match' => '"foo", "bar"' ], [], 200 ],
|
|
|
|
|
[ [ 'If-Modified-Since' => 'Tue, 18 Aug 2015 00:00:00 GMT' ], [], 200 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// No headers
|
2016-02-17 09:09:32 +00:00
|
|
|
[
|
|
|
|
|
[],
|
|
|
|
|
[
|
2015-08-17 20:52:09 +00:00
|
|
|
'etag' => '""',
|
|
|
|
|
'last-modified' => '20150815000000',
|
2016-02-17 09:09:32 +00:00
|
|
|
],
|
2015-08-17 20:52:09 +00:00
|
|
|
200
|
2016-02-17 09:09:32 +00:00
|
|
|
],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Basic If-None-Match
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-None-Match' => '"foo", "bar"' ], [ 'etag' => '"bar"' ], 304 ],
|
|
|
|
|
[ [ 'If-None-Match' => '"foo", "bar"' ], [ 'etag' => '"baz"' ], 200 ],
|
|
|
|
|
[ [ 'If-None-Match' => '"foo"' ], [ 'etag' => 'W/"foo"' ], 304 ],
|
|
|
|
|
[ [ 'If-None-Match' => 'W/"foo"' ], [ 'etag' => '"foo"' ], 304 ],
|
|
|
|
|
[ [ 'If-None-Match' => 'W/"foo"' ], [ 'etag' => 'W/"foo"' ], 304 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Pointless, but supported
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-None-Match' => '*' ], [], 304 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Basic If-Modified-Since
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 304 ],
|
|
|
|
|
[ [ 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now ) ], 304 ],
|
|
|
|
|
[ [ 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now + 1 ) ], 200 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// If-Modified-Since ignored when If-None-Match is given too
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-None-Match' => '""', 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) ],
|
|
|
|
|
[ 'etag' => '"x"', 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 200 ],
|
|
|
|
|
[ [ 'If-None-Match' => '""', 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 304 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Ignored for POST
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-None-Match' => '"foo", "bar"' ], [ 'etag' => '"bar"' ], 200, true ],
|
|
|
|
|
[ [ 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 200, true ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Other date formats allowed by the RFC
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-Modified-Since' => gmdate( 'l, d-M-y H:i:s', $now ) . ' GMT' ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 304 ],
|
|
|
|
|
[ [ 'If-Modified-Since' => gmdate( 'D M j H:i:s Y', $now ) ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 304 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Old browser extension to HTTP/1.0
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-Modified-Since' => wfTimestamp( TS_RFC2822, $now ) . '; length=123' ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 304 ],
|
2015-08-17 20:52:09 +00:00
|
|
|
|
|
|
|
|
// Invalid date formats should be ignored
|
2016-02-17 09:09:32 +00:00
|
|
|
[ [ 'If-Modified-Since' => gmdate( 'Y-m-d H:i:s', $now ) . ' GMT' ],
|
|
|
|
|
[ 'last-modified' => wfTimestamp( TS_MW, $now - 1 ) ], 200 ],
|
|
|
|
|
];
|
2015-08-17 20:52:09 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Test conditional headers output
|
|
|
|
|
* @dataProvider provideConditionalRequestHeadersOutput
|
|
|
|
|
* @param array $conditions Return data for ApiBase::getConditionalRequestData
|
|
|
|
|
* @param array $headers Expected output headers
|
|
|
|
|
* @param bool $isError $isError flag
|
|
|
|
|
* @param bool $post Request is a POST
|
|
|
|
|
*/
|
2015-10-03 13:44:13 +00:00
|
|
|
public function testConditionalRequestHeadersOutput(
|
|
|
|
|
$conditions, $headers, $isError = false, $post = false
|
|
|
|
|
) {
|
2016-02-17 09:09:32 +00:00
|
|
|
$request = new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ], $post );
|
2015-08-17 20:52:09 +00:00
|
|
|
$response = $request->response();
|
|
|
|
|
|
|
|
|
|
$api = new ApiMain( $request );
|
|
|
|
|
$priv = TestingAccessWrapper::newFromObject( $api );
|
|
|
|
|
$priv->mInternalMode = false;
|
|
|
|
|
|
|
|
|
|
$module = $this->getMockBuilder( 'ApiBase' )
|
2016-02-17 09:09:32 +00:00
|
|
|
->setConstructorArgs( [ $api, 'mock' ] )
|
|
|
|
|
->setMethods( [ 'getConditionalRequestData' ] )
|
2015-08-17 20:52:09 +00:00
|
|
|
->getMockForAbstractClass();
|
|
|
|
|
$module->expects( $this->any() )
|
|
|
|
|
->method( 'getConditionalRequestData' )
|
|
|
|
|
->will( $this->returnCallback( function ( $condition ) use ( $conditions ) {
|
|
|
|
|
return isset( $conditions[$condition] ) ? $conditions[$condition] : null;
|
|
|
|
|
} ) );
|
|
|
|
|
$priv->mModule = $module;
|
|
|
|
|
|
|
|
|
|
$priv->sendCacheHeaders( $isError );
|
|
|
|
|
|
2016-02-17 09:09:32 +00:00
|
|
|
foreach ( [ 'Last-Modified', 'ETag' ] as $header ) {
|
2015-08-17 20:52:09 +00:00
|
|
|
$this->assertEquals(
|
|
|
|
|
isset( $headers[$header] ) ? $headers[$header] : null,
|
|
|
|
|
$response->getHeader( $header ),
|
|
|
|
|
$header
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static function provideConditionalRequestHeadersOutput() {
|
2016-02-17 09:09:32 +00:00
|
|
|
return [
|
|
|
|
|
[
|
|
|
|
|
[],
|
|
|
|
|
[]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
[ 'etag' => '"foo"' ],
|
|
|
|
|
[ 'ETag' => '"foo"' ]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
[ 'last-modified' => '20150818000102' ],
|
|
|
|
|
[ 'Last-Modified' => 'Tue, 18 Aug 2015 00:01:02 GMT' ]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
[ 'etag' => '"foo"', 'last-modified' => '20150818000102' ],
|
|
|
|
|
[ 'ETag' => '"foo"', 'Last-Modified' => 'Tue, 18 Aug 2015 00:01:02 GMT' ]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
[ 'etag' => '"foo"', 'last-modified' => '20150818000102' ],
|
|
|
|
|
[],
|
2015-08-17 20:52:09 +00:00
|
|
|
true,
|
2016-02-17 09:09:32 +00:00
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
[ 'etag' => '"foo"', 'last-modified' => '20150818000102' ],
|
|
|
|
|
[],
|
2015-08-17 20:52:09 +00:00
|
|
|
false,
|
|
|
|
|
true,
|
2016-02-17 09:09:32 +00:00
|
|
|
],
|
|
|
|
|
];
|
2015-08-17 20:52:09 +00:00
|
|
|
}
|
|
|
|
|
|
2015-05-08 14:20:30 +00:00
|
|
|
/**
|
|
|
|
|
* @covers ApiMain::lacksSameOriginSecurity
|
|
|
|
|
*/
|
|
|
|
|
public function testLacksSameOriginSecurity() {
|
|
|
|
|
// Basic test
|
2016-05-20 18:11:58 +00:00
|
|
|
$main = new ApiMain( new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ] ) );
|
2015-05-08 14:20:30 +00:00
|
|
|
$this->assertFalse( $main->lacksSameOriginSecurity(), 'Basic test, should have security' );
|
|
|
|
|
|
|
|
|
|
// JSONp
|
|
|
|
|
$main = new ApiMain(
|
2016-05-20 18:11:58 +00:00
|
|
|
new FauxRequest( [ 'action' => 'query', 'format' => 'xml', 'callback' => 'foo' ] )
|
2015-05-08 14:20:30 +00:00
|
|
|
);
|
|
|
|
|
$this->assertTrue( $main->lacksSameOriginSecurity(), 'JSONp, should lack security' );
|
|
|
|
|
|
|
|
|
|
// Header
|
2016-05-20 18:11:58 +00:00
|
|
|
$request = new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ] );
|
2015-05-08 14:20:30 +00:00
|
|
|
$request->setHeader( 'TrEaT-As-UnTrUsTeD', '' ); // With falsey value!
|
|
|
|
|
$main = new ApiMain( $request );
|
|
|
|
|
$this->assertTrue( $main->lacksSameOriginSecurity(), 'Header supplied, should lack security' );
|
|
|
|
|
|
|
|
|
|
// Hook
|
2016-05-20 18:11:58 +00:00
|
|
|
$this->mergeMwGlobalArrayValue( 'wgHooks', [
|
|
|
|
|
'RequestHasSameOriginSecurity' => [ function () {
|
|
|
|
|
return false;
|
|
|
|
|
} ]
|
|
|
|
|
] );
|
|
|
|
|
$main = new ApiMain( new FauxRequest( [ 'action' => 'query', 'meta' => 'siteinfo' ] ) );
|
2015-05-08 14:20:30 +00:00
|
|
|
$this->assertTrue( $main->lacksSameOriginSecurity(), 'Hook, should lack security' );
|
|
|
|
|
}
|
2016-10-19 16:54:25 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Test proper creation of the ApiErrorFormatter
|
|
|
|
|
* @covers ApiMain::__construct
|
|
|
|
|
* @dataProvider provideApiErrorFormatterCreation
|
|
|
|
|
* @param array $request Request parameters
|
|
|
|
|
* @param array $expect Expected data
|
|
|
|
|
* - uselang: ApiMain language
|
|
|
|
|
* - class: ApiErrorFormatter class
|
|
|
|
|
* - lang: ApiErrorFormatter language
|
|
|
|
|
* - format: ApiErrorFormatter format
|
|
|
|
|
* - usedb: ApiErrorFormatter use-database flag
|
|
|
|
|
*/
|
|
|
|
|
public function testApiErrorFormatterCreation( array $request, array $expect ) {
|
|
|
|
|
$context = new RequestContext();
|
|
|
|
|
$context->setRequest( new FauxRequest( $request ) );
|
|
|
|
|
$context->setLanguage( 'ru' );
|
|
|
|
|
|
|
|
|
|
$main = new ApiMain( $context );
|
|
|
|
|
$formatter = $main->getErrorFormatter();
|
|
|
|
|
$wrappedFormatter = TestingAccessWrapper::newFromObject( $formatter );
|
|
|
|
|
|
|
|
|
|
$this->assertSame( $expect['uselang'], $main->getLanguage()->getCode() );
|
|
|
|
|
$this->assertInstanceOf( $expect['class'], $formatter );
|
|
|
|
|
$this->assertSame( $expect['lang'], $formatter->getLanguage()->getCode() );
|
|
|
|
|
$this->assertSame( $expect['format'], $wrappedFormatter->format );
|
|
|
|
|
$this->assertSame( $expect['usedb'], $wrappedFormatter->useDB );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public static function provideApiErrorFormatterCreation() {
|
|
|
|
|
global $wgContLang;
|
|
|
|
|
|
|
|
|
|
return [
|
|
|
|
|
'Default (BC)' => [ [], [
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter_BackCompat::class,
|
|
|
|
|
'lang' => 'en',
|
|
|
|
|
'format' => 'none',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
] ],
|
|
|
|
|
'BC ignores fields' => [ [ 'errorlang' => 'de', 'errorsuselocal' => 1 ], [
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter_BackCompat::class,
|
|
|
|
|
'lang' => 'en',
|
|
|
|
|
'format' => 'none',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
] ],
|
|
|
|
|
'Explicit BC' => [ [ 'errorformat' => 'bc' ], [
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter_BackCompat::class,
|
|
|
|
|
'lang' => 'en',
|
|
|
|
|
'format' => 'none',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
] ],
|
|
|
|
|
'Basic' => [ [ 'errorformat' => 'wikitext' ], [
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => 'ru',
|
|
|
|
|
'format' => 'wikitext',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
] ],
|
|
|
|
|
'Follows uselang' => [ [ 'uselang' => 'fr', 'errorformat' => 'plaintext' ], [
|
|
|
|
|
'uselang' => 'fr',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => 'fr',
|
|
|
|
|
'format' => 'plaintext',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
] ],
|
|
|
|
|
'Explicitly follows uselang' => [
|
|
|
|
|
[ 'uselang' => 'fr', 'errorlang' => 'uselang', 'errorformat' => 'plaintext' ],
|
|
|
|
|
[
|
|
|
|
|
'uselang' => 'fr',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => 'fr',
|
|
|
|
|
'format' => 'plaintext',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'uselang=content' => [
|
|
|
|
|
[ 'uselang' => 'content', 'errorformat' => 'plaintext' ],
|
|
|
|
|
[
|
|
|
|
|
'uselang' => $wgContLang->getCode(),
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => $wgContLang->getCode(),
|
|
|
|
|
'format' => 'plaintext',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'errorlang=content' => [
|
|
|
|
|
[ 'errorlang' => 'content', 'errorformat' => 'plaintext' ],
|
|
|
|
|
[
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => $wgContLang->getCode(),
|
|
|
|
|
'format' => 'plaintext',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'Explicit parameters' => [
|
|
|
|
|
[ 'errorlang' => 'de', 'errorformat' => 'html', 'errorsuselocal' => 1 ],
|
|
|
|
|
[
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => 'de',
|
|
|
|
|
'format' => 'html',
|
|
|
|
|
'usedb' => true,
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'Explicit parameters override uselang' => [
|
|
|
|
|
[ 'errorlang' => 'de', 'uselang' => 'fr', 'errorformat' => 'raw' ],
|
|
|
|
|
[
|
|
|
|
|
'uselang' => 'fr',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => 'de',
|
|
|
|
|
'format' => 'raw',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'Bogus language doesn\'t explode' => [
|
|
|
|
|
[ 'errorlang' => '<bogus1>', 'uselang' => '<bogus2>', 'errorformat' => 'none' ],
|
|
|
|
|
[
|
|
|
|
|
'uselang' => 'en',
|
|
|
|
|
'class' => ApiErrorFormatter::class,
|
|
|
|
|
'lang' => 'en',
|
|
|
|
|
'format' => 'none',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'Bogus format doesn\'t explode' => [ [ 'errorformat' => 'bogus' ], [
|
|
|
|
|
'uselang' => 'ru',
|
|
|
|
|
'class' => ApiErrorFormatter_BackCompat::class,
|
|
|
|
|
'lang' => 'en',
|
|
|
|
|
'format' => 'none',
|
|
|
|
|
'usedb' => false,
|
|
|
|
|
] ],
|
|
|
|
|
];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @covers ApiMain::errorMessagesFromException
|
|
|
|
|
* @covers ApiMain::substituteResultWithError
|
|
|
|
|
* @dataProvider provideExceptionErrors
|
|
|
|
|
* @param Exception $exception
|
|
|
|
|
* @param array $expectReturn
|
|
|
|
|
* @param array $expectResult
|
|
|
|
|
*/
|
|
|
|
|
public function testExceptionErrors( $error, $expectReturn, $expectResult ) {
|
|
|
|
|
$context = new RequestContext();
|
|
|
|
|
$context->setRequest( new FauxRequest( [ 'errorformat' => 'plaintext' ] ) );
|
|
|
|
|
$context->setLanguage( 'en' );
|
|
|
|
|
$context->setConfig( new MultiConfig( [
|
|
|
|
|
new HashConfig( [ 'ShowHostnames' => true, 'ShowSQLErrors' => false ] ),
|
|
|
|
|
$context->getConfig()
|
|
|
|
|
] ) );
|
|
|
|
|
|
|
|
|
|
$main = new ApiMain( $context );
|
|
|
|
|
$main->addWarning( new RawMessage( 'existing warning' ), 'existing-warning' );
|
|
|
|
|
$main->addError( new RawMessage( 'existing error' ), 'existing-error' );
|
|
|
|
|
|
|
|
|
|
$ret = TestingAccessWrapper::newFromObject( $main )->substituteResultWithError( $error );
|
|
|
|
|
$this->assertSame( $expectReturn, $ret );
|
|
|
|
|
|
|
|
|
|
// PHPUnit sometimes adds some SplObjectStorage garbage to the arrays,
|
|
|
|
|
// so let's try ->assertEquals().
|
|
|
|
|
$this->assertEquals(
|
|
|
|
|
$expectResult,
|
|
|
|
|
$main->getResult()->getResultData( [], [ 'Strip' => 'all' ] )
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Not static so $this->getMock() can be used
|
|
|
|
|
public function provideExceptionErrors() {
|
|
|
|
|
$reqId = WebRequest::getRequestId();
|
|
|
|
|
$doclink = wfExpandUrl( wfScript( 'api' ) );
|
|
|
|
|
|
|
|
|
|
$ex = new InvalidArgumentException( 'Random exception' );
|
|
|
|
|
$trace = wfMessage( 'api-exception-trace',
|
|
|
|
|
get_class( $ex ),
|
|
|
|
|
$ex->getFile(),
|
|
|
|
|
$ex->getLine(),
|
|
|
|
|
MWExceptionHandler::getRedactedTraceAsString( $ex )
|
|
|
|
|
)->inLanguage( 'en' )->useDatabase( false )->text();
|
|
|
|
|
|
|
|
|
|
$dbex = new DBQueryError( $this->getMock( 'IDatabase' ), 'error', 1234, 'SELECT 1', __METHOD__ );
|
|
|
|
|
$dbtrace = wfMessage( 'api-exception-trace',
|
|
|
|
|
get_class( $dbex ),
|
|
|
|
|
$dbex->getFile(),
|
|
|
|
|
$dbex->getLine(),
|
|
|
|
|
MWExceptionHandler::getRedactedTraceAsString( $dbex )
|
|
|
|
|
)->inLanguage( 'en' )->useDatabase( false )->text();
|
|
|
|
|
|
|
|
|
|
$apiEx1 = new ApiUsageException( null,
|
|
|
|
|
StatusValue::newFatal( new ApiRawMessage( 'An error', 'sv-error1' ) ) );
|
|
|
|
|
TestingAccessWrapper::newFromObject( $apiEx1 )->modulePath = 'foo+bar';
|
|
|
|
|
$apiEx1->getStatusValue()->warning( new ApiRawMessage( 'A warning', 'sv-warn1' ) );
|
|
|
|
|
$apiEx1->getStatusValue()->warning( new ApiRawMessage( 'Another warning', 'sv-warn2' ) );
|
|
|
|
|
$apiEx1->getStatusValue()->fatal( new ApiRawMessage( 'Another error', 'sv-error2' ) );
|
|
|
|
|
|
|
|
|
|
return [
|
|
|
|
|
[
|
|
|
|
|
$ex,
|
|
|
|
|
[ 'existing-error', 'internal_api_error_InvalidArgumentException' ],
|
|
|
|
|
[
|
|
|
|
|
'warnings' => [
|
|
|
|
|
[ 'code' => 'existing-warning', 'text' => 'existing warning', 'module' => 'main' ],
|
|
|
|
|
],
|
|
|
|
|
'errors' => [
|
|
|
|
|
[ 'code' => 'existing-error', 'text' => 'existing error', 'module' => 'main' ],
|
|
|
|
|
[
|
|
|
|
|
'code' => 'internal_api_error_InvalidArgumentException',
|
|
|
|
|
'text' => "[$reqId] Exception caught: Random exception",
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'trace' => $trace,
|
|
|
|
|
'servedby' => wfHostname(),
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
$dbex,
|
|
|
|
|
[ 'existing-error', 'internal_api_error_DBQueryError' ],
|
|
|
|
|
[
|
|
|
|
|
'warnings' => [
|
|
|
|
|
[ 'code' => 'existing-warning', 'text' => 'existing warning', 'module' => 'main' ],
|
|
|
|
|
],
|
|
|
|
|
'errors' => [
|
|
|
|
|
[ 'code' => 'existing-error', 'text' => 'existing error', 'module' => 'main' ],
|
|
|
|
|
[
|
|
|
|
|
'code' => 'internal_api_error_DBQueryError',
|
|
|
|
|
'text' => "[$reqId] Database query error.",
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
'trace' => $dbtrace,
|
|
|
|
|
'servedby' => wfHostname(),
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
new UsageException( 'Usage exception!', 'ue', 0, [ 'foo' => 'bar' ] ),
|
|
|
|
|
[ 'existing-error', 'ue' ],
|
|
|
|
|
[
|
|
|
|
|
'warnings' => [
|
|
|
|
|
[ 'code' => 'existing-warning', 'text' => 'existing warning', 'module' => 'main' ],
|
|
|
|
|
],
|
|
|
|
|
'errors' => [
|
|
|
|
|
[ 'code' => 'existing-error', 'text' => 'existing error', 'module' => 'main' ],
|
|
|
|
|
[ 'code' => 'ue', 'text' => "Usage exception!", 'data' => [ 'foo' => 'bar' ] ]
|
|
|
|
|
],
|
|
|
|
|
'docref' => "See $doclink for API usage.",
|
|
|
|
|
'servedby' => wfHostname(),
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
[
|
|
|
|
|
$apiEx1,
|
|
|
|
|
[ 'existing-error', 'sv-error1', 'sv-error2' ],
|
|
|
|
|
[
|
|
|
|
|
'warnings' => [
|
|
|
|
|
[ 'code' => 'existing-warning', 'text' => 'existing warning', 'module' => 'main' ],
|
|
|
|
|
[ 'code' => 'sv-warn1', 'text' => 'A warning', 'module' => 'foo+bar' ],
|
|
|
|
|
[ 'code' => 'sv-warn2', 'text' => 'Another warning', 'module' => 'foo+bar' ],
|
|
|
|
|
],
|
|
|
|
|
'errors' => [
|
|
|
|
|
[ 'code' => 'existing-error', 'text' => 'existing error', 'module' => 'main' ],
|
|
|
|
|
[ 'code' => 'sv-error1', 'text' => 'An error', 'module' => 'foo+bar' ],
|
|
|
|
|
[ 'code' => 'sv-error2', 'text' => 'Another error', 'module' => 'foo+bar' ],
|
|
|
|
|
],
|
|
|
|
|
'docref' => "See $doclink for API usage.",
|
|
|
|
|
'servedby' => wfHostname(),
|
|
|
|
|
]
|
|
|
|
|
],
|
|
|
|
|
];
|
|
|
|
|
}
|
2013-10-23 15:36:40 +00:00
|
|
|
}
|
