2004-02-18 02:15:00 +00:00
|
|
|
<?php
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2005-04-12 02:07:16 +00:00
|
|
|
* See user.txt
|
2004-09-02 23:28:24 +00:00
|
|
|
*
|
2004-09-03 23:00:01 +00:00
|
|
|
* @package MediaWiki
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
*
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
require_once( 'WatchedItem.php' );
|
2004-10-24 19:14:48 +00:00
|
|
|
require_once( 'Group.php' );
|
2003-11-09 11:45:12 +00:00
|
|
|
|
2004-09-26 08:25:12 +00:00
|
|
|
# Number of characters in user_token field
|
|
|
|
|
define( 'USER_TOKEN_LENGTH', 32 );
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
*
|
2004-09-03 23:00:01 +00:00
|
|
|
* @package MediaWiki
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
2003-04-14 23:10:40 +00:00
|
|
|
class User {
|
2004-09-04 13:06:25 +00:00
|
|
|
/**#@+
|
|
|
|
|
* @access private
|
|
|
|
|
*/
|
|
|
|
|
var $mId, $mName, $mPassword, $mEmail, $mNewtalk;
|
2005-04-25 18:38:43 +00:00
|
|
|
var $mEmailAuthenticated;
|
2004-09-04 13:06:25 +00:00
|
|
|
var $mRights, $mOptions;
|
|
|
|
|
var $mDataLoaded, $mNewpassword;
|
|
|
|
|
var $mSkin;
|
|
|
|
|
var $mBlockedby, $mBlockreason;
|
|
|
|
|
var $mTouched;
|
2004-09-26 08:25:12 +00:00
|
|
|
var $mToken;
|
2004-09-04 13:06:25 +00:00
|
|
|
var $mRealName;
|
|
|
|
|
var $mHash;
|
2004-10-01 15:57:09 +00:00
|
|
|
/** Array of group id the user belong to */
|
|
|
|
|
var $mGroups;
|
2004-09-04 13:06:25 +00:00
|
|
|
/**#@-*/
|
|
|
|
|
|
|
|
|
|
/** Construct using User:loadDefaults() */
|
2004-06-17 15:21:26 +00:00
|
|
|
function User() {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadDefaults();
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* Static factory method
|
2004-09-04 13:06:25 +00:00
|
|
|
* @param string $name Username, validated by Title:newFromText()
|
2005-04-25 18:38:43 +00:00
|
|
|
* @return User
|
|
|
|
|
* @static
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function newFromName( $name ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$u = new User();
|
|
|
|
|
|
|
|
|
|
# Clean up name according to title rules
|
|
|
|
|
|
|
|
|
|
$t = Title::newFromText( $name );
|
2004-09-11 06:58:47 +00:00
|
|
|
if( is_null( $t ) ) {
|
|
|
|
|
return NULL;
|
|
|
|
|
} else {
|
|
|
|
|
$u->setName( $t->getText() );
|
2004-11-29 17:58:28 +00:00
|
|
|
$u->setId( $u->idFromName( $t->getText() ) );
|
2004-09-11 06:58:47 +00:00
|
|
|
return $u;
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2005-04-25 18:38:43 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Factory method to fetch whichever use has a given email confirmation code.
|
|
|
|
|
* This code is generated when an account is created or its e-mail address
|
|
|
|
|
* has changed.
|
|
|
|
|
*
|
|
|
|
|
* If the code is invalid or has expired, returns NULL.
|
|
|
|
|
*
|
|
|
|
|
* @param string $code
|
|
|
|
|
* @return User
|
|
|
|
|
* @static
|
|
|
|
|
*/
|
|
|
|
|
function newFromConfirmationCode( $code ) {
|
|
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
|
|
|
|
$name = $dbr->selectField( 'user', 'user_name', array(
|
|
|
|
|
'user_email_token' => md5( $code ),
|
|
|
|
|
'user_email_token_expires > ' . $dbr->addQuotes( $dbr->timestamp() ),
|
|
|
|
|
) );
|
|
|
|
|
if( is_string( $name ) ) {
|
|
|
|
|
return User::newFromName( $name );
|
|
|
|
|
} else {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Get username given an id.
|
|
|
|
|
* @param integer $id Database user id
|
|
|
|
|
* @return string Nickname of a user
|
2004-09-02 23:28:24 +00:00
|
|
|
* @static
|
|
|
|
|
*/
|
|
|
|
|
function whoIs( $id ) {
|
2004-07-18 08:48:43 +00:00
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
2004-09-09 11:54:01 +00:00
|
|
|
return $dbr->selectField( 'user', 'user_name', array( 'user_id' => $id ) );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Get real username given an id.
|
|
|
|
|
* @param integer $id Database user id
|
|
|
|
|
* @return string Realname of a user
|
2004-09-02 23:28:24 +00:00
|
|
|
* @static
|
|
|
|
|
*/
|
|
|
|
|
function whoIsReal( $id ) {
|
2004-07-18 08:48:43 +00:00
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
2004-09-09 11:54:01 +00:00
|
|
|
return $dbr->selectField( 'user', 'user_real_name', array( 'user_id' => $id ) );
|
2004-04-23 22:34:33 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Get database id given a user name
|
|
|
|
|
* @param string $name Nickname of a user
|
|
|
|
|
* @return integer|null Database user id (null: if non existent
|
2004-09-02 23:28:24 +00:00
|
|
|
* @static
|
|
|
|
|
*/
|
|
|
|
|
function idFromName( $name ) {
|
2004-07-18 08:48:43 +00:00
|
|
|
$fname = "User::idFromName";
|
|
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
$nt = Title::newFromText( $name );
|
2004-04-26 07:32:52 +00:00
|
|
|
if( is_null( $nt ) ) {
|
|
|
|
|
# Illegal name
|
|
|
|
|
return null;
|
|
|
|
|
}
|
2004-07-18 08:48:43 +00:00
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
2004-09-09 11:54:01 +00:00
|
|
|
$s = $dbr->selectRow( 'user', array( 'user_id' ), array( 'user_name' => $nt->getText() ), $fname );
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-07-18 08:48:43 +00:00
|
|
|
if ( $s === false ) {
|
2004-04-26 07:32:52 +00:00
|
|
|
return 0;
|
|
|
|
|
} else {
|
2003-04-14 23:10:40 +00:00
|
|
|
return $s->user_id;
|
|
|
|
|
}
|
|
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2005-04-28 03:07:41 +00:00
|
|
|
* does the string match an anonymous IPv4 address?
|
|
|
|
|
*
|
2004-09-02 23:28:24 +00:00
|
|
|
* @static
|
2005-04-28 03:07:41 +00:00
|
|
|
* @param string $name Nickname of a user
|
|
|
|
|
* @return bool
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
|
|
|
|
function isIP( $name ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
return preg_match("/^\d{1,3}\.\d{1,3}.\d{1,3}\.\d{1,3}$/",$name);
|
2005-04-28 03:07:41 +00:00
|
|
|
/*return preg_match("/^
|
|
|
|
|
(?:[01]?\d{1,2}|2(:?[0-4]\d|5[0-5]))\.
|
|
|
|
|
(?:[01]?\d{1,2}|2(:?[0-4]\d|5[0-5]))\.
|
|
|
|
|
(?:[01]?\d{1,2}|2(:?[0-4]\d|5[0-5]))\.
|
|
|
|
|
(?:[01]?\d{1,2}|2(:?[0-4]\d|5[0-5]))
|
|
|
|
|
$/x", $name);*/
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2004-12-18 03:47:11 +00:00
|
|
|
/**
|
|
|
|
|
* does the string match roughly an email address ?
|
2005-04-23 21:20:09 +00:00
|
|
|
*
|
|
|
|
|
* @bug 959
|
|
|
|
|
*
|
2004-12-18 03:47:11 +00:00
|
|
|
* @param string $addr email address
|
|
|
|
|
* @static
|
2005-04-23 21:20:09 +00:00
|
|
|
* @return bool
|
2004-12-18 03:47:11 +00:00
|
|
|
*/
|
|
|
|
|
function isValidEmailAddr ( $addr ) {
|
2005-04-23 21:20:09 +00:00
|
|
|
# There used to be a regular expression here, it got removed because it
|
|
|
|
|
# rejected valid addresses.
|
2005-04-25 18:38:43 +00:00
|
|
|
return ( trim( $addr ) != '' ) &&
|
|
|
|
|
(false !== strpos( $addr, '@' ) );
|
2004-12-18 03:47:11 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* probably return a random password
|
|
|
|
|
* @return string probably a random password
|
|
|
|
|
* @static
|
|
|
|
|
* @todo Check what is doing really [AV]
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
|
|
|
|
function randomPassword() {
|
2004-06-17 15:21:26 +00:00
|
|
|
$pwchars = 'ABCDEFGHJKLMNPQRSTUVWXYZabcdefghjkmnpqrstuvwxyz';
|
2003-04-14 23:10:40 +00:00
|
|
|
$l = strlen( $pwchars ) - 1;
|
|
|
|
|
|
|
|
|
|
$np = $pwchars{mt_rand( 0, $l )} . $pwchars{mt_rand( 0, $l )} .
|
|
|
|
|
$pwchars{mt_rand( 0, $l )} . chr( mt_rand(48, 57) ) .
|
|
|
|
|
$pwchars{mt_rand( 0, $l )} . $pwchars{mt_rand( 0, $l )} .
|
|
|
|
|
$pwchars{mt_rand( 0, $l )};
|
|
|
|
|
return $np;
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Set properties to default
|
2004-09-08 03:39:32 +00:00
|
|
|
* Used at construction. It will load per language default settings only
|
|
|
|
|
* if we have an available language object.
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function loadDefaults() {
|
2004-11-22 05:12:50 +00:00
|
|
|
static $n=0;
|
|
|
|
|
$n++;
|
|
|
|
|
$fname = 'User::loadDefaults' . $n;
|
|
|
|
|
wfProfileIn( $fname );
|
|
|
|
|
|
2005-01-18 03:06:20 +00:00
|
|
|
global $wgContLang, $wgIP, $wgDBname;
|
2003-07-01 08:27:32 +00:00
|
|
|
global $wgNamespacesToBeSearchedDefault;
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-10-23 08:26:48 +00:00
|
|
|
$this->mId = 0;
|
|
|
|
|
$this->mNewtalk = -1;
|
2004-01-30 17:07:50 +00:00
|
|
|
$this->mName = $wgIP;
|
2004-07-19 06:35:56 +00:00
|
|
|
$this->mRealName = $this->mEmail = '';
|
2005-04-25 18:38:43 +00:00
|
|
|
$this->mEmailAuthenticated = null;
|
2004-06-17 15:21:26 +00:00
|
|
|
$this->mPassword = $this->mNewpassword = '';
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->mRights = array();
|
2004-10-01 15:57:09 +00:00
|
|
|
$this->mGroups = array();
|
2004-09-08 03:39:32 +00:00
|
|
|
// Getting user defaults only if we have an available language
|
2004-11-22 05:12:50 +00:00
|
|
|
if( isset( $wgContLang ) ) {
|
|
|
|
|
$this->loadDefaultFromLanguage();
|
|
|
|
|
}
|
2004-09-08 03:39:32 +00:00
|
|
|
|
2004-11-22 05:12:50 +00:00
|
|
|
foreach( $wgNamespacesToBeSearchedDefault as $nsnum => $val ) {
|
2004-06-17 15:21:26 +00:00
|
|
|
$this->mOptions['searchNs'.$nsnum] = $val;
|
2003-07-01 08:27:32 +00:00
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
unset( $this->mSkin );
|
|
|
|
|
$this->mDataLoaded = false;
|
|
|
|
|
$this->mBlockedby = -1; # Unset
|
2004-09-26 08:25:12 +00:00
|
|
|
$this->setToken(); # Random
|
2004-07-18 08:48:43 +00:00
|
|
|
$this->mHash = false;
|
2005-01-18 03:06:20 +00:00
|
|
|
|
|
|
|
|
if ( isset( $_COOKIE[$wgDBname.'LoggedOut'] ) ) {
|
|
|
|
|
$this->mTouched = wfTimestamp( TS_MW, $_COOKIE[$wgDBname.'LoggedOut'] );
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
$this->mTouched = '0'; # Allow any pages to be cached
|
|
|
|
|
}
|
|
|
|
|
|
2004-11-22 05:12:50 +00:00
|
|
|
wfProfileOut( $fname );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-09-26 08:25:12 +00:00
|
|
|
|
2004-09-08 03:39:32 +00:00
|
|
|
/**
|
|
|
|
|
* Used to load user options from a language.
|
|
|
|
|
* This is not in loadDefault() cause we sometime create user before having
|
|
|
|
|
* a language object.
|
|
|
|
|
*/
|
|
|
|
|
function loadDefaultFromLanguage(){
|
2004-12-06 14:51:18 +00:00
|
|
|
$this->mOptions = User::getDefaultOptions();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Combine the language default options with any site-specific options
|
|
|
|
|
* and add the default language variants.
|
|
|
|
|
*
|
|
|
|
|
* @return array
|
|
|
|
|
* @static
|
|
|
|
|
* @access private
|
|
|
|
|
*/
|
|
|
|
|
function getDefaultOptions() {
|
2004-11-22 05:12:50 +00:00
|
|
|
/**
|
|
|
|
|
* Site defaults will override the global/language defaults
|
|
|
|
|
*/
|
|
|
|
|
global $wgContLang, $wgDefaultUserOptions;
|
2004-11-21 07:51:41 +00:00
|
|
|
$defOpt = $wgDefaultUserOptions + $wgContLang->getDefaultUserOptions();
|
2004-11-22 05:12:50 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* default language setting
|
|
|
|
|
*/
|
|
|
|
|
$variant = $wgContLang->getPreferredVariant();
|
|
|
|
|
$defOpt['variant'] = $variant;
|
|
|
|
|
$defOpt['language'] = $variant;
|
|
|
|
|
|
2004-12-06 14:51:18 +00:00
|
|
|
return $defOpt;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get a given default option value.
|
|
|
|
|
*
|
|
|
|
|
* @param string $opt
|
|
|
|
|
* @return string
|
|
|
|
|
* @static
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
|
|
|
|
function getDefaultOption( $opt ) {
|
|
|
|
|
$defOpts = User::getDefaultOptions();
|
|
|
|
|
if( isset( $defOpts[$opt] ) ) {
|
|
|
|
|
return $defOpts[$opt];
|
|
|
|
|
} else {
|
|
|
|
|
return '';
|
|
|
|
|
}
|
2004-09-08 03:39:32 +00:00
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Get blocking information
|
2004-09-02 23:28:24 +00:00
|
|
|
* @access private
|
2005-02-17 22:56:51 +00:00
|
|
|
* @param bool $bFromSlave Specify whether to check slave or master. To improve performance,
|
|
|
|
|
* non-critical checks are done against slaves. Check when actually saving should be done against
|
|
|
|
|
* master.
|
|
|
|
|
*
|
|
|
|
|
* Note that even if $bFromSlave is false, the check is done first against slave, then master.
|
|
|
|
|
* The logic is that if blocked on slave, we'll assume it's either blocked on master or
|
|
|
|
|
* just slightly outta sync and soon corrected - safer to block slightly more that less.
|
|
|
|
|
* And it's cheaper to check slave first, then master if needed, than master always.
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
2005-03-28 15:19:24 +00:00
|
|
|
function getBlockedStatus() {
|
2005-03-31 08:17:35 +00:00
|
|
|
global $wgIP, $wgBlockCache, $wgProxyList, $wgEnableSorbs, $bFromSlave;
|
2003-11-14 09:13:23 +00:00
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
if ( -1 != $this->mBlockedby ) { return; }
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-02-14 12:37:25 +00:00
|
|
|
$this->mBlockedby = 0;
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-02-14 12:37:25 +00:00
|
|
|
# User blocking
|
2004-08-14 22:30:10 +00:00
|
|
|
if ( $this->mId ) {
|
2004-02-14 12:37:25 +00:00
|
|
|
$block = new Block();
|
2005-02-17 22:56:51 +00:00
|
|
|
$block->forUpdate( $bFromSlave );
|
|
|
|
|
if ( $block->load( $wgIP , $this->mId ) ) {
|
2004-02-14 12:37:25 +00:00
|
|
|
$this->mBlockedby = $block->mBy;
|
|
|
|
|
$this->mBlockreason = $block->mReason;
|
2005-03-27 16:30:00 +00:00
|
|
|
$this->spreadBlock();
|
2003-11-14 09:13:23 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-02-14 12:37:25 +00:00
|
|
|
# IP/range blocking
|
|
|
|
|
if ( !$this->mBlockedby ) {
|
2005-02-17 22:56:51 +00:00
|
|
|
# Check first against slave, and optionally from master.
|
|
|
|
|
$block = $wgBlockCache->get( $wgIP, true );
|
2005-02-18 12:29:31 +00:00
|
|
|
if ( !$block && !$bFromSlave )
|
2005-02-17 22:56:51 +00:00
|
|
|
{
|
|
|
|
|
# Not blocked: check against master, to make sure.
|
|
|
|
|
$wgBlockCache->clearLocal( );
|
|
|
|
|
$block = $wgBlockCache->get( $wgIP, false );
|
|
|
|
|
}
|
2004-02-14 12:37:25 +00:00
|
|
|
if ( $block !== false ) {
|
|
|
|
|
$this->mBlockedby = $block->mBy;
|
|
|
|
|
$this->mBlockreason = $block->mReason;
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-06-21 07:41:53 +00:00
|
|
|
|
|
|
|
|
# Proxy blocking
|
|
|
|
|
if ( !$this->mBlockedby ) {
|
|
|
|
|
if ( array_key_exists( $wgIP, $wgProxyList ) ) {
|
2005-01-23 16:42:06 +00:00
|
|
|
$this->mBlockedby = wfMsg( 'proxyblocker' );
|
2004-06-21 07:41:53 +00:00
|
|
|
$this->mBlockreason = wfMsg( 'proxyblockreason' );
|
|
|
|
|
}
|
|
|
|
|
}
|
2005-03-28 15:19:24 +00:00
|
|
|
|
|
|
|
|
# DNSBL
|
|
|
|
|
if ( !$this->mBlockedby && $wgEnableSorbs ) {
|
|
|
|
|
if ( $this->inSorbsBlacklist( $wgIP ) ) {
|
2005-03-28 15:57:18 +00:00
|
|
|
$this->mBlockedby = wfMsg( 'sorbs' );
|
|
|
|
|
$this->mBlockreason = wfMsg( 'sorbsreason' );
|
2005-03-28 15:19:24 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2005-03-28 15:19:24 +00:00
|
|
|
function inSorbsBlacklist( $ip ) {
|
2005-05-27 11:03:37 +00:00
|
|
|
global $wgEnableSorbs;
|
|
|
|
|
return $wgEnableSorbs &&
|
|
|
|
|
$this->inDnsBlacklist( $ip, 'http.dnsbl.sorbs.net.' );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function inOpmBlacklist( $ip ) {
|
|
|
|
|
global $wgEnableOpm;
|
|
|
|
|
return $wgEnableOpm &&
|
|
|
|
|
$this->inDnsBlacklist( $ip, 'opm.blitzed.org.' );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function inDnsBlacklist( $ip, $base ) {
|
|
|
|
|
$fname = 'User::inDnsBlacklist';
|
2005-03-28 15:19:24 +00:00
|
|
|
wfProfileIn( $fname );
|
|
|
|
|
|
|
|
|
|
$found = false;
|
|
|
|
|
$host = '';
|
|
|
|
|
|
|
|
|
|
if ( preg_match( '/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/', $ip, $m ) ) {
|
|
|
|
|
# Make hostname
|
|
|
|
|
for ( $i=4; $i>=1; $i-- ) {
|
|
|
|
|
$host .= $m[$i] . '.';
|
|
|
|
|
}
|
2005-05-27 11:03:37 +00:00
|
|
|
$host .= $base;
|
2005-03-28 15:19:24 +00:00
|
|
|
|
|
|
|
|
# Send query
|
|
|
|
|
$ipList = gethostbynamel( $host );
|
|
|
|
|
|
|
|
|
|
if ( $ipList ) {
|
2005-05-27 11:03:37 +00:00
|
|
|
wfDebug( "Hostname $host is {$ipList[0]}, it's a proxy says $base!\n" );
|
2005-03-28 15:19:24 +00:00
|
|
|
$found = true;
|
|
|
|
|
} else {
|
2005-05-27 11:03:37 +00:00
|
|
|
wfDebug( "Requested $host, not found in $base.\n" );
|
2005-03-28 15:19:24 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
wfProfileOut( $fname );
|
|
|
|
|
return $found;
|
|
|
|
|
}
|
|
|
|
|
|
2005-05-27 11:03:37 +00:00
|
|
|
/**
|
|
|
|
|
* Primitive rate limits: enforce maximum actions per time period
|
|
|
|
|
* to put a brake on flooding.
|
|
|
|
|
*
|
|
|
|
|
* Note: when using a shared cache like memcached, IP-address
|
|
|
|
|
* last-hit counters will be shared across wikis.
|
|
|
|
|
*
|
|
|
|
|
* @return bool true if a rate limiter was tripped
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
|
|
|
|
function pingLimiter( $action='edit' ) {
|
|
|
|
|
global $wgRateLimits;
|
|
|
|
|
if( !isset( $wgRateLimits[$action] ) ) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
if( $this->isAllowed( 'delete' ) ) {
|
|
|
|
|
// goddam cabal
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
global $wgMemc, $wgIP, $wgDBname, $wgRateLimitLog;
|
|
|
|
|
$fname = 'User::pingLimiter';
|
|
|
|
|
$limits = $wgRateLimits[$action];
|
|
|
|
|
$keys = array();
|
|
|
|
|
$id = $this->getId();
|
|
|
|
|
|
|
|
|
|
if( isset( $limits['anon'] ) && $id == 0 ) {
|
|
|
|
|
$keys["$wgDBname:limiter:$action:anon"] = $limits['anon'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if( isset( $limits['user'] ) && $id != 0 ) {
|
|
|
|
|
$keys["$wgDBname:limiter:$action:user:$id"] = $limits['user'];
|
|
|
|
|
}
|
|
|
|
|
if( $this->isNewbie() ) {
|
|
|
|
|
if( isset( $limits['newbie'] ) && $id != 0 ) {
|
|
|
|
|
$keys["$wgDBname:limiter:$action:user:$id"] = $limits['newbie'];
|
|
|
|
|
}
|
|
|
|
|
if( isset( $limits['ip'] ) ) {
|
|
|
|
|
$keys["mediawiki:limiter:$action:ip:$wgIP"] = $limits['ip'];
|
|
|
|
|
}
|
|
|
|
|
if( isset( $limits['subnet'] ) && preg_match( '/^(\d+\.\d+\.\d+)\.\d+$/', $wgIP, $matches ) ) {
|
|
|
|
|
$subnet = $matches[1];
|
|
|
|
|
$keys["mediawiki:limiter:$action:subnet:$subnet"] = $limits['subnet'];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$triggered = false;
|
|
|
|
|
foreach( $keys as $key => $limit ) {
|
|
|
|
|
list( $max, $period ) = $limit;
|
|
|
|
|
$summary = "(limit $max in {$period}s)";
|
|
|
|
|
$count = $wgMemc->get( $key );
|
|
|
|
|
if( $count ) {
|
|
|
|
|
if( $count > $max ) {
|
|
|
|
|
wfDebug( "$fname: tripped! $key at $count $summary\n" );
|
|
|
|
|
if( $wgRateLimitLog ) {
|
2005-05-29 00:23:41 +00:00
|
|
|
@error_log( wfTimestamp( TS_MW ) . ' ' . $wgDBname . ': ' . $this->getName() . " tripped $key at $count $summary\n", 3, $wgRateLimitLog );
|
2005-05-27 11:03:37 +00:00
|
|
|
}
|
|
|
|
|
$triggered = true;
|
|
|
|
|
} else {
|
|
|
|
|
wfDebug( "$fname: ok. $key at $count $summary\n" );
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
wfDebug( "$fname: adding record for $key $summary\n" );
|
|
|
|
|
$wgMemc->add( $key, 1, IntVal( $period ) );
|
|
|
|
|
}
|
|
|
|
|
$wgMemc->incr( $key );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $triggered;
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Check if user is blocked
|
|
|
|
|
* @return bool True if blocked, false otherwise
|
|
|
|
|
*/
|
2005-02-17 22:56:51 +00:00
|
|
|
function isBlocked( $bFromSlave = false ) {
|
|
|
|
|
$this->getBlockedStatus( $bFromSlave );
|
2005-04-28 07:54:40 +00:00
|
|
|
return $this->mBlockedby !== 0;
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-09-04 13:06:25 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get name of blocker
|
|
|
|
|
* @return string name of blocker
|
|
|
|
|
*/
|
2003-04-14 23:10:40 +00:00
|
|
|
function blockedBy() {
|
|
|
|
|
$this->getBlockedStatus();
|
|
|
|
|
return $this->mBlockedby;
|
|
|
|
|
}
|
2004-09-04 13:06:25 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get blocking reason
|
|
|
|
|
* @return string Blocking reason
|
|
|
|
|
*/
|
2003-04-14 23:10:40 +00:00
|
|
|
function blockedFor() {
|
|
|
|
|
$this->getBlockedStatus();
|
|
|
|
|
return $this->mBlockreason;
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Initialise php session
|
|
|
|
|
*/
|
2004-01-30 17:07:50 +00:00
|
|
|
function SetupSession() {
|
|
|
|
|
global $wgSessionsInMemcached, $wgCookiePath, $wgCookieDomain;
|
|
|
|
|
if( $wgSessionsInMemcached ) {
|
2004-06-17 15:21:26 +00:00
|
|
|
require_once( 'MemcachedSessions.php' );
|
2004-08-24 03:10:51 +00:00
|
|
|
} elseif( 'files' != ini_get( 'session.save_handler' ) ) {
|
|
|
|
|
# If it's left on 'user' or another setting from another
|
|
|
|
|
# application, it will end up failing. Try to recover.
|
|
|
|
|
ini_set ( 'session.save_handler', 'files' );
|
2004-01-30 17:07:50 +00:00
|
|
|
}
|
|
|
|
|
session_set_cookie_params( 0, $wgCookiePath, $wgCookieDomain );
|
2004-06-17 15:21:26 +00:00
|
|
|
session_cache_limiter( 'private, must-revalidate' );
|
2004-04-19 18:33:13 +00:00
|
|
|
@session_start();
|
2004-01-30 17:07:50 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Read datas from session
|
2004-09-02 23:28:24 +00:00
|
|
|
* @static
|
|
|
|
|
*/
|
|
|
|
|
function loadFromSession() {
|
2003-08-11 13:53:20 +00:00
|
|
|
global $wgMemc, $wgDBname;
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-03-08 01:51:32 +00:00
|
|
|
if ( isset( $_SESSION['wsUserID'] ) ) {
|
|
|
|
|
if ( 0 != $_SESSION['wsUserID'] ) {
|
|
|
|
|
$sId = $_SESSION['wsUserID'];
|
2003-04-14 23:10:40 +00:00
|
|
|
} else {
|
2003-08-11 13:53:20 +00:00
|
|
|
return new User();
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-03-08 01:51:32 +00:00
|
|
|
} else if ( isset( $_COOKIE["{$wgDBname}UserID"] ) ) {
|
|
|
|
|
$sId = IntVal( $_COOKIE["{$wgDBname}UserID"] );
|
|
|
|
|
$_SESSION['wsUserID'] = $sId;
|
2003-04-14 23:10:40 +00:00
|
|
|
} else {
|
2003-08-11 13:53:20 +00:00
|
|
|
return new User();
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-03-08 01:51:32 +00:00
|
|
|
if ( isset( $_SESSION['wsUserName'] ) ) {
|
|
|
|
|
$sName = $_SESSION['wsUserName'];
|
2004-03-10 05:21:58 +00:00
|
|
|
} else if ( isset( $_COOKIE["{$wgDBname}UserName"] ) ) {
|
|
|
|
|
$sName = $_COOKIE["{$wgDBname}UserName"];
|
2004-03-08 01:51:32 +00:00
|
|
|
$_SESSION['wsUserName'] = $sName;
|
2003-04-14 23:10:40 +00:00
|
|
|
} else {
|
2003-08-11 13:53:20 +00:00
|
|
|
return new User();
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
|
|
|
|
$passwordCorrect = FALSE;
|
2003-08-13 12:26:06 +00:00
|
|
|
$user = $wgMemc->get( $key = "$wgDBname:user:id:$sId" );
|
2003-08-11 13:53:20 +00:00
|
|
|
if($makenew = !$user) {
|
|
|
|
|
wfDebug( "User::loadFromSession() unable to load from memcached\n" );
|
|
|
|
|
$user = new User();
|
|
|
|
|
$user->mId = $sId;
|
|
|
|
|
$user->loadFromDatabase();
|
|
|
|
|
} else {
|
|
|
|
|
wfDebug( "User::loadFromSession() got from cache!\n" );
|
|
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2004-09-26 08:25:12 +00:00
|
|
|
if ( isset( $_SESSION['wsToken'] ) ) {
|
|
|
|
|
$passwordCorrect = $_SESSION['wsToken'] == $user->mToken;
|
|
|
|
|
} else if ( isset( $_COOKIE["{$wgDBname}Token"] ) ) {
|
|
|
|
|
$passwordCorrect = $user->mToken == $_COOKIE["{$wgDBname}Token"];
|
2003-04-14 23:10:40 +00:00
|
|
|
} else {
|
2003-08-11 13:53:20 +00:00
|
|
|
return new User(); # Can't log in from session
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2003-08-11 13:53:20 +00:00
|
|
|
if ( ( $sName == $user->mName ) && $passwordCorrect ) {
|
|
|
|
|
if($makenew) {
|
|
|
|
|
if($wgMemc->set( $key, $user ))
|
|
|
|
|
wfDebug( "User::loadFromSession() successfully saved user\n" );
|
|
|
|
|
else
|
|
|
|
|
wfDebug( "User::loadFromSession() unable to save to memcached\n" );
|
|
|
|
|
}
|
|
|
|
|
return $user;
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-08-11 13:53:20 +00:00
|
|
|
return new User(); # Can't log in from session
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
2004-09-04 13:06:25 +00:00
|
|
|
* Load a user from the database
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
|
|
|
|
function loadFromDatabase() {
|
2004-10-24 19:14:48 +00:00
|
|
|
global $wgCommandLineMode, $wgAnonGroupId, $wgLoggedInGroupId;
|
2004-07-18 08:48:43 +00:00
|
|
|
$fname = "User::loadFromDatabase";
|
2005-01-08 09:17:33 +00:00
|
|
|
|
|
|
|
|
# Counter-intuitive, breaks various things, use User::setLoaded() if you want to suppress
|
|
|
|
|
# loading in a command line script, don't assume all command line scripts need it like this
|
|
|
|
|
#if ( $this->mDataLoaded || $wgCommandLineMode ) {
|
|
|
|
|
if ( $this->mDataLoaded ) {
|
2004-03-02 09:26:57 +00:00
|
|
|
return;
|
|
|
|
|
}
|
2004-10-24 19:14:48 +00:00
|
|
|
|
2004-02-19 06:40:52 +00:00
|
|
|
# Paranoia
|
|
|
|
|
$this->mId = IntVal( $this->mId );
|
|
|
|
|
|
2004-10-24 19:14:48 +00:00
|
|
|
/** Anonymous user */
|
2003-04-14 23:10:40 +00:00
|
|
|
if(!$this->mId) {
|
2004-10-24 19:14:48 +00:00
|
|
|
/** Get rights */
|
|
|
|
|
$anong = Group::newFromId($wgAnonGroupId);
|
2004-11-15 08:56:43 +00:00
|
|
|
if (!$anong)
|
|
|
|
|
wfDebugDieBacktrace("Please update your database schema "
|
|
|
|
|
."and populate initial group data from "
|
|
|
|
|
."maintenance/archives patches");
|
2004-10-24 19:14:48 +00:00
|
|
|
$anong->loadFromDatabase();
|
|
|
|
|
$this->mRights = explode(',', $anong->getRights());
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->mDataLoaded = true;
|
|
|
|
|
return;
|
|
|
|
|
} # the following stuff is for non-anonymous users only
|
2004-09-26 08:25:12 +00:00
|
|
|
|
2004-10-23 08:26:48 +00:00
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
2004-09-09 11:54:01 +00:00
|
|
|
$s = $dbr->selectRow( 'user', array( 'user_name','user_password','user_newpassword','user_email',
|
2005-04-25 18:38:43 +00:00
|
|
|
'user_email_authenticated',
|
2004-09-26 08:25:12 +00:00
|
|
|
'user_real_name','user_options','user_touched', 'user_token' ),
|
2004-07-18 08:48:43 +00:00
|
|
|
array( 'user_id' => $this->mId ), $fname );
|
2004-09-26 08:25:12 +00:00
|
|
|
|
2004-07-18 08:48:43 +00:00
|
|
|
if ( $s !== false ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->mName = $s->user_name;
|
|
|
|
|
$this->mEmail = $s->user_email;
|
2005-04-25 18:38:43 +00:00
|
|
|
$this->mEmailAuthenticated = wfTimestampOrNull( TS_MW, $s->user_email_authenticated );
|
2004-04-18 02:28:35 +00:00
|
|
|
$this->mRealName = $s->user_real_name;
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->mPassword = $s->user_password;
|
|
|
|
|
$this->mNewpassword = $s->user_newpassword;
|
|
|
|
|
$this->decodeOptions( $s->user_options );
|
2004-08-10 13:17:20 +00:00
|
|
|
$this->mTouched = wfTimestamp(TS_MW,$s->user_touched);
|
2004-10-01 15:57:09 +00:00
|
|
|
$this->mToken = $s->user_token;
|
2004-10-24 19:14:48 +00:00
|
|
|
|
2004-10-01 15:57:09 +00:00
|
|
|
// Get groups id
|
2004-10-24 09:51:13 +00:00
|
|
|
$res = $dbr->select( 'user_groups', array( 'ug_group' ), array( 'ug_user' => $this->mId ) );
|
2005-05-14 05:39:39 +00:00
|
|
|
|
|
|
|
|
// add the default group for logged in user
|
|
|
|
|
$this->mGroups = array( $wgLoggedInGroupId );
|
2004-10-24 19:14:48 +00:00
|
|
|
|
2004-10-01 15:57:09 +00:00
|
|
|
while($group = $dbr->fetchRow($res)) {
|
2005-05-14 05:39:39 +00:00
|
|
|
if ( $group[0] != $wgLoggedInGroupId ) {
|
|
|
|
|
$this->mGroups[] = $group[0];
|
|
|
|
|
}
|
2004-10-23 08:26:48 +00:00
|
|
|
}
|
2004-10-24 19:14:48 +00:00
|
|
|
|
|
|
|
|
|
|
|
|
|
$this->mRights = array();
|
|
|
|
|
// now we merge groups rights to get this user rights
|
|
|
|
|
foreach($this->mGroups as $aGroupId) {
|
|
|
|
|
$g = Group::newFromId($aGroupId);
|
|
|
|
|
$g->loadFromDatabase();
|
|
|
|
|
$this->mRights = array_merge($this->mRights, explode(',', $g->getRights()));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// array merge duplicate rights which are part of several groups
|
|
|
|
|
$this->mRights = array_unique($this->mRights);
|
|
|
|
|
|
2004-10-01 15:57:09 +00:00
|
|
|
$dbr->freeResult($res);
|
2003-04-16 07:30:52 +00:00
|
|
|
}
|
|
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->mDataLoaded = true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function getID() { return $this->mId; }
|
|
|
|
|
function setID( $v ) {
|
|
|
|
|
$this->mId = $v;
|
|
|
|
|
$this->mDataLoaded = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function getName() {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return $this->mName;
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setName( $str ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mName = $str;
|
|
|
|
|
}
|
|
|
|
|
|
2004-12-18 10:21:03 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Return the title dbkey form of the name, for eg user pages.
|
|
|
|
|
* @return string
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
|
|
|
|
function getTitleKey() {
|
|
|
|
|
return str_replace( ' ', '_', $this->getName() );
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function getNewtalk() {
|
2004-10-23 08:26:48 +00:00
|
|
|
$fname = 'User::getNewtalk';
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
2004-10-23 08:26:48 +00:00
|
|
|
|
|
|
|
|
# Load the newtalk status if it is unloaded (mNewtalk=-1)
|
2004-12-18 10:21:03 +00:00
|
|
|
if( $this->mNewtalk == -1 ) {
|
|
|
|
|
$this->mNewtalk = 0; # reset talk page status
|
|
|
|
|
|
|
|
|
|
# Check memcached separately for anons, who have no
|
|
|
|
|
# entire User object stored in there.
|
|
|
|
|
if( !$this->mId ) {
|
2004-10-23 08:26:48 +00:00
|
|
|
global $wgDBname, $wgMemc;
|
|
|
|
|
$key = "$wgDBname:newtalk:ip:{$this->mName}";
|
|
|
|
|
$newtalk = $wgMemc->get( $key );
|
2004-12-18 10:21:03 +00:00
|
|
|
if( is_integer( $newtalk ) ) {
|
2004-10-23 08:26:48 +00:00
|
|
|
$this->mNewtalk = $newtalk ? 1 : 0;
|
2004-12-18 10:21:03 +00:00
|
|
|
return (bool)$this->mNewtalk;
|
2004-10-23 08:26:48 +00:00
|
|
|
}
|
|
|
|
|
}
|
2004-12-18 10:21:03 +00:00
|
|
|
|
|
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
|
|
|
|
$res = $dbr->select( 'watchlist',
|
|
|
|
|
array( 'wl_user' ),
|
|
|
|
|
array( 'wl_title' => $this->getTitleKey(),
|
|
|
|
|
'wl_namespace' => NS_USER_TALK,
|
|
|
|
|
'wl_user' => $this->mId,
|
|
|
|
|
'wl_notificationtimestamp != 0' ),
|
|
|
|
|
'User::getNewtalk' );
|
|
|
|
|
if( $dbr->numRows($res) > 0 ) {
|
|
|
|
|
$this->mNewtalk = 1;
|
|
|
|
|
}
|
|
|
|
|
$dbr->freeResult( $res );
|
|
|
|
|
|
|
|
|
|
if( !$this->mId ) {
|
|
|
|
|
$wgMemc->set( $key, $this->mNewtalk, time() ); // + 1800 );
|
|
|
|
|
}
|
2004-10-23 08:26:48 +00:00
|
|
|
}
|
|
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
return ( 0 != $this->mNewtalk );
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-08 03:39:32 +00:00
|
|
|
function setNewtalk( $val ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mNewtalk = $val;
|
|
|
|
|
$this->invalidateCache();
|
|
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
function invalidateCache() {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mTouched = wfTimestampNow();
|
|
|
|
|
# Don't forget to save the options after this or
|
|
|
|
|
# it won't take effect!
|
|
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
function validateCache( $timestamp ) {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return ($timestamp >= $this->mTouched);
|
|
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Salt a password.
|
|
|
|
|
* Will only be salted if $wgPasswordSalt is true
|
|
|
|
|
* @param string Password.
|
|
|
|
|
* @return string Salted password or clear password.
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function addSalt( $p ) {
|
2003-08-08 03:10:55 +00:00
|
|
|
global $wgPasswordSalt;
|
|
|
|
|
if($wgPasswordSalt)
|
|
|
|
|
return md5( "{$this->mId}-{$p}" );
|
|
|
|
|
else
|
|
|
|
|
return $p;
|
2003-04-16 07:30:52 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Encrypt a password.
|
|
|
|
|
* It can eventuall salt a password @see User::addSalt()
|
|
|
|
|
* @param string $p clear Password.
|
|
|
|
|
* @param string Encrypted password.
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function encryptPassword( $p ) {
|
2003-04-30 21:52:53 +00:00
|
|
|
return $this->addSalt( md5( $p ) );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-26 08:25:12 +00:00
|
|
|
# Set the password and reset the random token
|
2004-06-17 15:21:26 +00:00
|
|
|
function setPassword( $str ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
2004-09-26 08:25:12 +00:00
|
|
|
$this->setToken();
|
2003-04-30 21:52:53 +00:00
|
|
|
$this->mPassword = $this->encryptPassword( $str );
|
2004-06-17 15:21:26 +00:00
|
|
|
$this->mNewpassword = '';
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-26 08:25:12 +00:00
|
|
|
# Set the random token (used for persistent authentication)
|
|
|
|
|
function setToken( $token = false ) {
|
2005-03-16 07:41:58 +00:00
|
|
|
global $wgSecretKey, $wgProxyKey, $wgDBname;
|
2004-09-26 08:25:12 +00:00
|
|
|
if ( !$token ) {
|
2005-03-16 07:41:58 +00:00
|
|
|
if ( $wgSecretKey ) {
|
|
|
|
|
$key = $wgSecretKey;
|
|
|
|
|
} elseif ( $wgProxyKey ) {
|
|
|
|
|
$key = $wgProxyKey;
|
|
|
|
|
} else {
|
|
|
|
|
$key = microtime();
|
|
|
|
|
}
|
2005-03-16 07:36:02 +00:00
|
|
|
$this->mToken = md5( $wgSecretKey . mt_rand( 0, 0x7fffffff ) . $wgDBname . $this->mId );
|
2004-09-26 08:25:12 +00:00
|
|
|
} else {
|
|
|
|
|
$this->mToken = $token;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setCookiePassword( $str ) {
|
2003-04-16 07:30:52 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mCookiePassword = md5( $str );
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setNewpassword( $str ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
2003-04-30 21:52:53 +00:00
|
|
|
$this->mNewpassword = $this->encryptPassword( $str );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function getEmail() {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return $this->mEmail;
|
|
|
|
|
}
|
|
|
|
|
|
2005-04-25 18:38:43 +00:00
|
|
|
function getEmailAuthenticationTimestamp() {
|
2004-12-18 03:47:11 +00:00
|
|
|
$this->loadFromDatabase();
|
2005-04-25 18:38:43 +00:00
|
|
|
return $this->mEmailAuthenticated;
|
2004-12-18 03:47:11 +00:00
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setEmail( $str ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mEmail = $str;
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function getRealName() {
|
2004-04-18 02:28:35 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return $this->mRealName;
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setRealName( $str ) {
|
2004-04-18 02:28:35 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mRealName = $str;
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function getOption( $oname ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
if ( array_key_exists( $oname, $this->mOptions ) ) {
|
|
|
|
|
return $this->mOptions[$oname];
|
|
|
|
|
} else {
|
2004-06-17 15:21:26 +00:00
|
|
|
return '';
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setOption( $oname, $val ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
2004-04-07 13:58:14 +00:00
|
|
|
if ( $oname == 'skin' ) {
|
|
|
|
|
# Clear cached skin, so the new one displays immediately in Special:Preferences
|
|
|
|
|
unset( $this->mSkin );
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->mOptions[$oname] = $val;
|
|
|
|
|
$this->invalidateCache();
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function getRights() {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return $this->mRights;
|
|
|
|
|
}
|
2004-10-01 15:57:09 +00:00
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function addRight( $rname ) {
|
2003-04-30 21:52:53 +00:00
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
array_push( $this->mRights, $rname );
|
|
|
|
|
$this->invalidateCache();
|
|
|
|
|
}
|
|
|
|
|
|
2004-10-01 15:57:09 +00:00
|
|
|
function getGroups() {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return $this->mGroups;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function setGroups($groups) {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mGroups = $groups;
|
|
|
|
|
$this->invalidateCache();
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-21 12:23:52 +00:00
|
|
|
/**
|
|
|
|
|
* A more legible check for non-anonymousness.
|
|
|
|
|
* Returns true if the user is not an anonymous visitor.
|
|
|
|
|
*
|
|
|
|
|
* @return bool
|
|
|
|
|
*/
|
|
|
|
|
function isLoggedIn() {
|
|
|
|
|
return( $this->getID() != 0 );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* A more legible check for anonymousness.
|
|
|
|
|
* Returns true if the user is an anonymous visitor.
|
|
|
|
|
*
|
|
|
|
|
* @return bool
|
|
|
|
|
*/
|
|
|
|
|
function isAnon() {
|
|
|
|
|
return !$this->isLoggedIn();
|
|
|
|
|
}
|
|
|
|
|
|
2004-10-24 19:14:48 +00:00
|
|
|
/**
|
|
|
|
|
* Check if a user is sysop
|
|
|
|
|
* Die with backtrace. Use User:isAllowed() instead.
|
|
|
|
|
* @deprecated
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function isSysop() {
|
2005-03-20 06:05:43 +00:00
|
|
|
wfDebugDieBacktrace("User::isSysop() is deprecated. Use User::isAllowed() instead");
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-10-24 19:14:48 +00:00
|
|
|
/** @deprecated */
|
2004-06-17 15:21:26 +00:00
|
|
|
function isDeveloper() {
|
2005-03-20 06:05:43 +00:00
|
|
|
wfDebugDieBacktrace("User::isDeveloper() is deprecated. Use User::isAllowed() instead");
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2004-10-24 19:14:48 +00:00
|
|
|
/** @deprecated */
|
2004-06-17 15:21:26 +00:00
|
|
|
function isBureaucrat() {
|
2005-03-20 06:05:43 +00:00
|
|
|
wfDebugDieBacktrace("User::isBureaucrat() is deprecated. Use User::isAllowed() instead");
|
2004-02-01 20:54:24 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
2004-09-04 14:21:45 +00:00
|
|
|
* Whether the user is a bot
|
2004-10-24 19:14:48 +00:00
|
|
|
* @todo need to be migrated to the new user level management sytem
|
2004-09-04 13:06:25 +00:00
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function isBot() {
|
2003-04-14 23:10:40 +00:00
|
|
|
$this->loadFromDatabase();
|
2004-06-17 15:21:26 +00:00
|
|
|
return in_array( 'bot', $this->mRights );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2004-10-24 19:14:48 +00:00
|
|
|
/**
|
|
|
|
|
* Check if user is allowed to access a feature / make an action
|
|
|
|
|
* @param string $action Action to be checked (see $wgAvailableRights in Defines.php for possible actions).
|
|
|
|
|
* @return boolean True: action is allowed, False: action should not be allowed
|
|
|
|
|
*/
|
|
|
|
|
function isAllowed($action='') {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
return in_array( $action , $this->mRights );
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* Load a skin if it doesn't exist or return it
|
|
|
|
|
* @todo FIXME : need to check the old failback system [AV]
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function &getSkin() {
|
2004-11-19 04:14:59 +00:00
|
|
|
global $IP;
|
2003-04-14 23:10:40 +00:00
|
|
|
if ( ! isset( $this->mSkin ) ) {
|
2004-11-22 05:12:50 +00:00
|
|
|
$fname = 'User::getSkin';
|
|
|
|
|
wfProfileIn( $fname );
|
|
|
|
|
|
2004-09-02 03:24:01 +00:00
|
|
|
# get all skin names available
|
2003-04-14 23:10:40 +00:00
|
|
|
$skinNames = Skin::getSkinNames();
|
2004-11-22 05:12:50 +00:00
|
|
|
|
2004-06-17 16:31:57 +00:00
|
|
|
# get the user skin
|
|
|
|
|
$userSkin = $this->getOption( 'skin' );
|
|
|
|
|
if ( $userSkin == '' ) { $userSkin = 'standard'; }
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-06-17 16:31:57 +00:00
|
|
|
if ( !isset( $skinNames[$userSkin] ) ) {
|
|
|
|
|
# in case the user skin could not be found find a replacement
|
2004-03-26 22:25:57 +00:00
|
|
|
$fallback = array(
|
2004-09-02 01:29:18 +00:00
|
|
|
0 => 'Standard',
|
|
|
|
|
1 => 'Nostalgia',
|
|
|
|
|
2 => 'CologneBlue');
|
2004-09-02 03:24:01 +00:00
|
|
|
# if phptal is enabled we should have monobook skin that
|
|
|
|
|
# superseed the good old SkinStandard.
|
2004-05-22 04:53:02 +00:00
|
|
|
if ( isset( $skinNames['monobook'] ) ) {
|
2004-09-02 01:29:18 +00:00
|
|
|
$fallback[0] = 'MonoBook';
|
2004-05-22 04:53:02 +00:00
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-06-17 16:31:57 +00:00
|
|
|
if(is_numeric($userSkin) && isset( $fallback[$userSkin]) ){
|
|
|
|
|
$sn = $fallback[$userSkin];
|
2004-03-26 22:25:57 +00:00
|
|
|
} else {
|
2004-09-02 01:29:18 +00:00
|
|
|
$sn = 'Standard';
|
2004-03-26 22:25:57 +00:00
|
|
|
}
|
|
|
|
|
} else {
|
2004-06-17 16:31:57 +00:00
|
|
|
# The user skin is available
|
2004-09-02 01:29:18 +00:00
|
|
|
$sn = $skinNames[$userSkin];
|
2004-06-17 16:31:57 +00:00
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-09-02 03:24:01 +00:00
|
|
|
# Grab the skin class and initialise it. Each skin checks for PHPTal
|
|
|
|
|
# and will not load if it's not enabled.
|
2004-09-02 01:29:18 +00:00
|
|
|
require_once( $IP.'/skins/'.$sn.'.php' );
|
2004-09-02 03:24:01 +00:00
|
|
|
|
|
|
|
|
# Check if we got if not failback to default skin
|
2004-09-22 11:30:43 +00:00
|
|
|
$className = 'Skin'.$sn;
|
2004-09-22 11:33:56 +00:00
|
|
|
if( !class_exists( $className ) ) {
|
2004-09-22 11:30:43 +00:00
|
|
|
# DO NOT die if the class isn't found. This breaks maintenance
|
|
|
|
|
# scripts and can cause a user account to be unrecoverable
|
|
|
|
|
# except by SQL manipulation if a previously valid skin name
|
|
|
|
|
# is no longer valid.
|
2004-09-22 11:37:16 +00:00
|
|
|
$className = 'SkinStandard';
|
2004-09-02 03:24:01 +00:00
|
|
|
require_once( $IP.'/skins/Standard.php' );
|
|
|
|
|
}
|
2004-11-22 05:12:50 +00:00
|
|
|
$this->mSkin =& new $className;
|
|
|
|
|
wfProfileOut( $fname );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
return $this->mSkin;
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**#@+
|
|
|
|
|
* @param string $title Article title to look at
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Check watched status of an article
|
2004-09-04 14:21:45 +00:00
|
|
|
* @return bool True if article is watched
|
2004-09-04 13:06:25 +00:00
|
|
|
*/
|
2003-11-09 11:45:12 +00:00
|
|
|
function isWatched( $title ) {
|
|
|
|
|
$wl = WatchedItem::fromUserTitle( $this, $title );
|
|
|
|
|
return $wl->isWatched();
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Watch an article
|
|
|
|
|
*/
|
2003-11-09 11:45:12 +00:00
|
|
|
function addWatch( $title ) {
|
|
|
|
|
$wl = WatchedItem::fromUserTitle( $this, $title );
|
|
|
|
|
$wl->addWatch();
|
|
|
|
|
$this->invalidateCache();
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Stop watching an article
|
|
|
|
|
*/
|
2003-11-09 11:45:12 +00:00
|
|
|
function removeWatch( $title ) {
|
|
|
|
|
$wl = WatchedItem::fromUserTitle( $this, $title );
|
|
|
|
|
$wl->removeWatch();
|
|
|
|
|
$this->invalidateCache();
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2004-12-18 07:16:11 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Clear the user's notification timestamp for the given title.
|
|
|
|
|
* If e-notif e-mails are on, they will receive notification mails on
|
|
|
|
|
* the next change of the page if it's watched etc.
|
|
|
|
|
*/
|
2005-05-14 17:55:04 +00:00
|
|
|
function clearNotification( &$title ) {
|
|
|
|
|
global $wgUser;
|
|
|
|
|
|
|
|
|
|
$userid = $this->getID();
|
2005-01-05 14:06:00 +00:00
|
|
|
if ($userid==0)
|
|
|
|
|
return;
|
2005-05-14 17:55:04 +00:00
|
|
|
|
|
|
|
|
// Only update the timestamp if the page is being watched.
|
|
|
|
|
// The query to find out if it is watched is cached both in memcached and per-invocation,
|
|
|
|
|
// and when it does have to be executed, it can be on a slave
|
|
|
|
|
// If this is the user's newtalk page, we always update the timestamp
|
|
|
|
|
if ($title->getNamespace() == NS_USER_TALK &&
|
|
|
|
|
$title->getText() == $wgUser->getName())
|
|
|
|
|
{
|
|
|
|
|
$watched = true;
|
|
|
|
|
} elseif ( $this->getID() == $wgUser->getID() ) {
|
|
|
|
|
$watched = $title->userIsWatching();
|
|
|
|
|
} else {
|
|
|
|
|
$watched = true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If the page is watched by the user (or may be watched), update the timestamp on any
|
|
|
|
|
// any matching rows
|
|
|
|
|
if ( $watched ) {
|
|
|
|
|
$dbw =& wfGetDB( DB_MASTER );
|
|
|
|
|
$success = $dbw->update( 'watchlist',
|
|
|
|
|
array( /* SET */
|
|
|
|
|
'wl_notificationtimestamp' => 0
|
|
|
|
|
), array( /* WHERE */
|
|
|
|
|
'wl_title' => $title->getDBkey(),
|
|
|
|
|
'wl_namespace' => $title->getNamespace(),
|
|
|
|
|
'wl_user' => $this->getID()
|
|
|
|
|
), 'User::clearLastVisited'
|
|
|
|
|
);
|
|
|
|
|
}
|
2004-12-18 07:16:11 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**#@-*/
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-12-18 07:16:11 +00:00
|
|
|
/**
|
|
|
|
|
* Resets all of the given user's page-change notification timestamps.
|
|
|
|
|
* If e-notif e-mails are on, they will receive notification mails on
|
|
|
|
|
* the next change of any watched page.
|
|
|
|
|
*
|
|
|
|
|
* @param int $currentUser user ID number
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
|
|
|
|
function clearAllNotifications( $currentUser ) {
|
|
|
|
|
if( $currentUser != 0 ) {
|
|
|
|
|
|
|
|
|
|
$dbw =& wfGetDB( DB_MASTER );
|
|
|
|
|
$success = $dbw->update( 'watchlist',
|
|
|
|
|
array( /* SET */
|
|
|
|
|
'wl_notificationtimestamp' => 0
|
|
|
|
|
), array( /* WHERE */
|
|
|
|
|
'wl_user' => $currentUser
|
|
|
|
|
), 'UserMailer::clearAll'
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
# we also need to clear here the "you have new message" notification for the own user_talk page
|
|
|
|
|
# This is cleared one page view later in Article::viewUpdates();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* @access private
|
2004-09-04 13:06:25 +00:00
|
|
|
* @return string Encoding options
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
|
|
|
|
function encodeOptions() {
|
2003-04-14 23:10:40 +00:00
|
|
|
$a = array();
|
|
|
|
|
foreach ( $this->mOptions as $oname => $oval ) {
|
2004-06-17 15:21:26 +00:00
|
|
|
array_push( $a, $oname.'='.$oval );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
$s = implode( "\n", $a );
|
2004-07-18 08:48:43 +00:00
|
|
|
return $s;
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* @access private
|
|
|
|
|
*/
|
|
|
|
|
function decodeOptions( $str ) {
|
2003-04-14 23:10:40 +00:00
|
|
|
$a = explode( "\n", $str );
|
|
|
|
|
foreach ( $a as $s ) {
|
|
|
|
|
if ( preg_match( "/^(.[^=]*)=(.*)$/", $s, $m ) ) {
|
|
|
|
|
$this->mOptions[$m[1]] = $m[2];
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function setCookies() {
|
2003-11-12 13:07:08 +00:00
|
|
|
global $wgCookieExpiration, $wgCookiePath, $wgCookieDomain, $wgDBname;
|
2003-04-14 23:10:40 +00:00
|
|
|
if ( 0 == $this->mId ) return;
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$exp = time() + $wgCookieExpiration;
|
|
|
|
|
|
2004-03-08 01:51:32 +00:00
|
|
|
$_SESSION['wsUserID'] = $this->mId;
|
2004-06-17 15:21:26 +00:00
|
|
|
setcookie( $wgDBname.'UserID', $this->mId, $exp, $wgCookiePath, $wgCookieDomain );
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-03-08 01:51:32 +00:00
|
|
|
$_SESSION['wsUserName'] = $this->mName;
|
2004-06-17 15:21:26 +00:00
|
|
|
setcookie( $wgDBname.'UserName', $this->mName, $exp, $wgCookiePath, $wgCookieDomain );
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-09-26 08:25:12 +00:00
|
|
|
$_SESSION['wsToken'] = $this->mToken;
|
2004-06-17 15:21:26 +00:00
|
|
|
if ( 1 == $this->getOption( 'rememberpassword' ) ) {
|
2004-09-26 08:25:12 +00:00
|
|
|
setcookie( $wgDBname.'Token', $this->mToken, $exp, $wgCookiePath, $wgCookieDomain );
|
2003-04-14 23:10:40 +00:00
|
|
|
} else {
|
2004-09-26 08:25:12 +00:00
|
|
|
setcookie( $wgDBname.'Token', '', time() - 3600 );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Logout user
|
|
|
|
|
* It will clean the session cookie
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function logout() {
|
2004-09-26 08:25:12 +00:00
|
|
|
global $wgCookiePath, $wgCookieDomain, $wgDBname, $wgIP;
|
2004-09-23 15:43:25 +00:00
|
|
|
$this->loadDefaults();
|
|
|
|
|
$this->setLoaded( true );
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-03-08 01:51:32 +00:00
|
|
|
$_SESSION['wsUserID'] = 0;
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
setcookie( $wgDBname.'UserID', '', time() - 3600, $wgCookiePath, $wgCookieDomain );
|
2004-09-26 08:25:12 +00:00
|
|
|
setcookie( $wgDBname.'Token', '', time() - 3600, $wgCookiePath, $wgCookieDomain );
|
2005-01-18 02:24:19 +00:00
|
|
|
|
|
|
|
|
# Remember when user logged out, to prevent seeing cached pages
|
|
|
|
|
setcookie( $wgDBname.'LoggedOut', wfTimestampNow(), time() + 86400, $wgCookiePath, $wgCookieDomain );
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Save object settings into database
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function saveSettings() {
|
2003-08-11 13:53:20 +00:00
|
|
|
global $wgMemc, $wgDBname;
|
2004-07-18 08:48:43 +00:00
|
|
|
$fname = 'User::saveSettings';
|
2004-06-12 01:30:00 +00:00
|
|
|
|
2004-12-18 03:47:11 +00:00
|
|
|
$dbw =& wfGetDB( DB_MASTER );
|
|
|
|
|
if ( ! $this->getNewtalk() ) {
|
|
|
|
|
# Delete the watchlist entry for user_talk page X watched by user X
|
2004-12-18 10:21:03 +00:00
|
|
|
$dbw->delete( 'watchlist',
|
|
|
|
|
array( 'wl_user' => $this->mId,
|
|
|
|
|
'wl_title' => $this->getTitleKey(),
|
|
|
|
|
'wl_namespace' => NS_USER_TALK ),
|
|
|
|
|
$fname );
|
|
|
|
|
if( !$this->mId ) {
|
|
|
|
|
# Anon users have a separate memcache space for newtalk
|
|
|
|
|
# since they don't store their own info. Trim...
|
2004-12-18 03:47:11 +00:00
|
|
|
$wgMemc->delete( "$wgDBname:newtalk:ip:{$this->mName}" );
|
|
|
|
|
}
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
|
2004-11-29 17:36:13 +00:00
|
|
|
if ( 0 == $this->mId ) { return; }
|
|
|
|
|
|
2004-08-14 22:30:10 +00:00
|
|
|
$dbw->update( 'user',
|
2004-07-18 08:48:43 +00:00
|
|
|
array( /* SET */
|
|
|
|
|
'user_name' => $this->mName,
|
|
|
|
|
'user_password' => $this->mPassword,
|
|
|
|
|
'user_newpassword' => $this->mNewpassword,
|
|
|
|
|
'user_real_name' => $this->mRealName,
|
|
|
|
|
'user_email' => $this->mEmail,
|
2005-04-25 18:38:43 +00:00
|
|
|
'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
|
2004-07-18 08:48:43 +00:00
|
|
|
'user_options' => $this->encodeOptions(),
|
2004-09-26 08:25:12 +00:00
|
|
|
'user_touched' => $dbw->timestamp($this->mTouched),
|
|
|
|
|
'user_token' => $this->mToken
|
2004-07-18 08:48:43 +00:00
|
|
|
), array( /* WHERE */
|
|
|
|
|
'user_id' => $this->mId
|
|
|
|
|
), $fname
|
|
|
|
|
);
|
2004-10-24 09:21:53 +00:00
|
|
|
$dbw->set( 'user_rights', 'ur_rights', implode( ',', $this->mRights ),
|
2004-10-24 09:51:13 +00:00
|
|
|
'ur_user='. $this->mId, $fname );
|
2003-08-13 12:26:06 +00:00
|
|
|
$wgMemc->delete( "$wgDBname:user:id:$this->mId" );
|
2004-10-01 15:57:09 +00:00
|
|
|
|
|
|
|
|
// delete old groups
|
2004-10-24 09:51:13 +00:00
|
|
|
$dbw->delete( 'user_groups', array( 'ug_user' => $this->mId), $fname);
|
2004-10-24 19:14:48 +00:00
|
|
|
|
2004-10-01 15:57:09 +00:00
|
|
|
// save new ones
|
|
|
|
|
foreach ($this->mGroups as $group) {
|
|
|
|
|
$dbw->replace( 'user_groups',
|
2004-10-24 09:51:13 +00:00
|
|
|
array(array('ug_user','ug_group')),
|
2004-10-01 15:57:09 +00:00
|
|
|
array(
|
2004-10-24 09:51:13 +00:00
|
|
|
'ug_user' => $this->mId,
|
|
|
|
|
'ug_group' => $group
|
2004-10-01 15:57:09 +00:00
|
|
|
), $fname
|
|
|
|
|
);
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-11-29 17:36:13 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* Checks if a user with the given name exists, returns the ID
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function idForName() {
|
2004-07-18 08:48:43 +00:00
|
|
|
$fname = 'User::idForName';
|
|
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
$gotid = 0;
|
|
|
|
|
$s = trim( $this->mName );
|
2004-06-17 15:21:26 +00:00
|
|
|
if ( 0 == strcmp( '', $s ) ) return 0;
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-07-18 08:48:43 +00:00
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
|
|
|
|
$id = $dbr->selectField( 'user', 'user_id', array( 'user_name' => $s ), $fname );
|
|
|
|
|
if ( $id === false ) {
|
|
|
|
|
$id = 0;
|
|
|
|
|
}
|
|
|
|
|
return $id;
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
|
|
|
|
* Add user object to the database
|
|
|
|
|
*/
|
2004-06-17 15:21:26 +00:00
|
|
|
function addToDatabase() {
|
2004-07-18 08:48:43 +00:00
|
|
|
$fname = 'User::addToDatabase';
|
|
|
|
|
$dbw =& wfGetDB( DB_MASTER );
|
|
|
|
|
$seqVal = $dbw->nextSequenceValue( 'user_user_id_seq' );
|
2004-08-14 22:30:10 +00:00
|
|
|
$dbw->insert( 'user',
|
2004-07-18 08:48:43 +00:00
|
|
|
array(
|
|
|
|
|
'user_id' => $seqVal,
|
|
|
|
|
'user_name' => $this->mName,
|
|
|
|
|
'user_password' => $this->mPassword,
|
|
|
|
|
'user_newpassword' => $this->mNewpassword,
|
|
|
|
|
'user_email' => $this->mEmail,
|
2005-04-25 18:38:43 +00:00
|
|
|
'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
|
2004-07-18 08:48:43 +00:00
|
|
|
'user_real_name' => $this->mRealName,
|
2004-09-26 08:25:12 +00:00
|
|
|
'user_options' => $this->encodeOptions(),
|
|
|
|
|
'user_token' => $this->mToken
|
2004-07-18 08:48:43 +00:00
|
|
|
), $fname
|
|
|
|
|
);
|
|
|
|
|
$this->mId = $dbw->insertId();
|
2004-08-24 20:41:07 +00:00
|
|
|
$dbw->insert( 'user_rights',
|
|
|
|
|
array(
|
2004-10-24 21:58:19 +00:00
|
|
|
'ur_user' => $this->mId,
|
|
|
|
|
'ur_rights' => implode( ',', $this->mRights )
|
2004-08-24 20:41:07 +00:00
|
|
|
), $fname
|
|
|
|
|
);
|
2004-10-01 15:57:09 +00:00
|
|
|
|
|
|
|
|
foreach ($this->mGroups as $group) {
|
|
|
|
|
$dbw->insert( 'user_groups',
|
|
|
|
|
array(
|
2004-10-24 09:51:13 +00:00
|
|
|
'ug_user' => $this->mId,
|
|
|
|
|
'ug_group' => $group
|
2004-10-01 15:57:09 +00:00
|
|
|
), $fname
|
|
|
|
|
);
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-08-31 14:30:24 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
function spreadBlock() {
|
2004-12-19 08:00:50 +00:00
|
|
|
global $wgIP;
|
2003-08-31 14:30:24 +00:00
|
|
|
# If the (non-anonymous) user is blocked, this function will block any IP address
|
|
|
|
|
# that they successfully log on from.
|
2004-06-17 15:21:26 +00:00
|
|
|
$fname = 'User::spreadBlock';
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2003-09-01 13:13:56 +00:00
|
|
|
wfDebug( "User:spreadBlock()\n" );
|
|
|
|
|
if ( $this->mId == 0 ) {
|
2003-08-31 14:30:24 +00:00
|
|
|
return;
|
|
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
$userblock = Block::newFromDB( '', $this->mId );
|
2003-09-01 13:13:56 +00:00
|
|
|
if ( !$userblock->isValid() ) {
|
2003-08-31 14:30:24 +00:00
|
|
|
return;
|
|
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2003-08-31 14:30:24 +00:00
|
|
|
# Check if this IP address is already blocked
|
2004-01-30 17:07:50 +00:00
|
|
|
$ipblock = Block::newFromDB( $wgIP );
|
2003-09-01 13:13:56 +00:00
|
|
|
if ( $ipblock->isValid() ) {
|
|
|
|
|
# Just update the timestamp
|
|
|
|
|
$ipblock->updateTimestamp();
|
2003-08-31 14:30:24 +00:00
|
|
|
return;
|
|
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2003-09-07 13:56:25 +00:00
|
|
|
# Make a new block object with the desired properties
|
2004-05-31 11:00:20 +00:00
|
|
|
wfDebug( "Autoblocking {$this->mName}@{$wgIP}\n" );
|
2004-01-30 17:07:50 +00:00
|
|
|
$ipblock->mAddress = $wgIP;
|
2003-09-01 13:13:56 +00:00
|
|
|
$ipblock->mUser = 0;
|
|
|
|
|
$ipblock->mBy = $userblock->mBy;
|
2004-06-17 15:21:26 +00:00
|
|
|
$ipblock->mReason = wfMsg( 'autoblocker', $this->getName(), $userblock->mReason );
|
2003-09-01 13:13:56 +00:00
|
|
|
$ipblock->mTimestamp = wfTimestampNow();
|
2003-09-07 13:56:25 +00:00
|
|
|
$ipblock->mAuto = 1;
|
2004-08-14 22:30:10 +00:00
|
|
|
# If the user is already blocked with an expiry date, we don't
|
2004-04-06 23:08:57 +00:00
|
|
|
# want to pile on top of that!
|
|
|
|
|
if($userblock->mExpiry) {
|
2004-04-07 01:56:35 +00:00
|
|
|
$ipblock->mExpiry = min ( $userblock->mExpiry, Block::getAutoblockExpiry( $ipblock->mTimestamp ));
|
2004-04-06 23:08:57 +00:00
|
|
|
} else {
|
|
|
|
|
$ipblock->mExpiry = Block::getAutoblockExpiry( $ipblock->mTimestamp );
|
|
|
|
|
}
|
2003-09-01 13:13:56 +00:00
|
|
|
|
|
|
|
|
# Insert it
|
|
|
|
|
$ipblock->insert();
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2003-08-31 14:30:24 +00:00
|
|
|
}
|
2003-09-10 01:18:23 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
function getPageRenderingHash() {
|
2004-12-07 22:23:21 +00:00
|
|
|
global $wgContLang;
|
2004-07-18 08:48:43 +00:00
|
|
|
if( $this->mHash ){
|
|
|
|
|
return $this->mHash;
|
2004-01-07 02:51:47 +00:00
|
|
|
}
|
|
|
|
|
|
2004-08-14 22:30:10 +00:00
|
|
|
// stubthreshold is only included below for completeness,
|
2004-01-07 02:51:47 +00:00
|
|
|
// it will always be 0 when this function is called by parsercache.
|
|
|
|
|
|
2004-07-18 08:48:43 +00:00
|
|
|
$confstr = $this->getOption( 'math' );
|
2004-08-14 22:30:10 +00:00
|
|
|
$confstr .= '!' . $this->getOption( 'stubthreshold' );
|
2004-06-17 15:21:26 +00:00
|
|
|
$confstr .= '!' . $this->getOption( 'editsection' );
|
|
|
|
|
$confstr .= '!' . $this->getOption( 'date' );
|
2004-08-15 15:01:33 +00:00
|
|
|
$confstr .= '!' . $this->getOption( 'numberheadings' );
|
2004-10-11 02:46:31 +00:00
|
|
|
$confstr .= '!' . $this->getOption( 'language' );
|
2005-04-12 01:42:12 +00:00
|
|
|
$confstr .= '!' . $this->getOption( 'thumbsize' );
|
2004-12-07 22:23:21 +00:00
|
|
|
// add in language specific options, if any
|
|
|
|
|
$extra = $wgContLang->getExtraHashOptions();
|
2004-12-24 02:47:38 +00:00
|
|
|
$confstr .= $extra;
|
2004-09-20 05:22:45 +00:00
|
|
|
|
2004-07-18 08:48:43 +00:00
|
|
|
$this->mHash = $confstr;
|
|
|
|
|
return $confstr ;
|
2004-01-07 02:51:47 +00:00
|
|
|
}
|
2003-09-10 01:18:23 +00:00
|
|
|
|
2004-06-17 15:21:26 +00:00
|
|
|
function isAllowedToCreateAccount() {
|
2003-09-10 01:18:23 +00:00
|
|
|
global $wgWhitelistAccount;
|
|
|
|
|
$allowed = false;
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2003-09-10 01:18:23 +00:00
|
|
|
if (!$wgWhitelistAccount) { return 1; }; // default behaviour
|
|
|
|
|
foreach ($wgWhitelistAccount as $right => $ok) {
|
2004-06-17 15:21:26 +00:00
|
|
|
$userHasRight = (!strcmp($right, 'user') || in_array($right, $this->getRights()));
|
2003-09-10 01:18:23 +00:00
|
|
|
$allowed |= ($ok && $userHasRight);
|
|
|
|
|
}
|
|
|
|
|
return $allowed;
|
|
|
|
|
}
|
|
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* Set mDataLoaded, return previous value
|
|
|
|
|
* Use this to prevent DB access in command-line scripts or similar situations
|
|
|
|
|
*/
|
|
|
|
|
function setLoaded( $loaded ) {
|
2004-07-18 08:48:43 +00:00
|
|
|
return wfSetVar( $this->mDataLoaded, $loaded );
|
2004-03-27 22:47:25 +00:00
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2005-02-21 11:28:07 +00:00
|
|
|
/**
|
|
|
|
|
* Get this user's personal page title.
|
|
|
|
|
*
|
|
|
|
|
* @return Title
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
2004-04-11 01:25:00 +00:00
|
|
|
function getUserPage() {
|
|
|
|
|
return Title::makeTitle( NS_USER, $this->mName );
|
|
|
|
|
}
|
2005-02-21 11:28:07 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get this user's talk page title.
|
|
|
|
|
*
|
|
|
|
|
* @return Title
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
|
|
|
|
function getTalkPage() {
|
|
|
|
|
$title = $this->getUserPage();
|
|
|
|
|
return $title->getTalkPage();
|
|
|
|
|
}
|
2004-06-26 01:48:39 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* @static
|
|
|
|
|
*/
|
|
|
|
|
function getMaxID() {
|
2004-07-18 08:48:43 +00:00
|
|
|
$dbr =& wfGetDB( DB_SLAVE );
|
|
|
|
|
return $dbr->selectField( 'user', 'max(user_id)', false );
|
2004-06-26 01:48:39 +00:00
|
|
|
}
|
|
|
|
|
|
2004-09-04 13:06:25 +00:00
|
|
|
/**
|
2004-09-04 14:21:45 +00:00
|
|
|
* Determine whether the user is a newbie. Newbies are either
|
|
|
|
|
* anonymous IPs, or the 1% most recently created accounts.
|
|
|
|
|
* Bots and sysops are excluded.
|
2004-09-04 13:06:25 +00:00
|
|
|
* @return bool True if it is a newbie.
|
|
|
|
|
*/
|
2004-06-26 01:48:39 +00:00
|
|
|
function isNewbie() {
|
2005-05-27 11:03:37 +00:00
|
|
|
return $this->isAnon() || $this->mId > User::getMaxID() * 0.99 && !$this->isAllowed( 'delete' ) && !$this->isBot();
|
2004-06-26 01:48:39 +00:00
|
|
|
}
|
2004-08-14 22:30:10 +00:00
|
|
|
|
2004-09-02 23:28:24 +00:00
|
|
|
/**
|
|
|
|
|
* Check to see if the given clear-text password is one of the accepted passwords
|
2004-09-04 13:06:25 +00:00
|
|
|
* @param string $password User password.
|
|
|
|
|
* @return bool True if the given password is correct otherwise False.
|
2004-09-02 23:28:24 +00:00
|
|
|
*/
|
2004-07-30 11:13:54 +00:00
|
|
|
function checkPassword( $password ) {
|
2004-12-18 03:47:11 +00:00
|
|
|
global $wgAuth;
|
2004-07-30 11:13:54 +00:00
|
|
|
$this->loadFromDatabase();
|
2004-11-16 05:28:47 +00:00
|
|
|
|
|
|
|
|
if( $wgAuth->authenticate( $this->getName(), $password ) ) {
|
|
|
|
|
return true;
|
|
|
|
|
} elseif( $wgAuth->strict() ) {
|
|
|
|
|
/* Auth plugin doesn't allow local authentication */
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2004-07-30 11:13:54 +00:00
|
|
|
$ep = $this->encryptPassword( $password );
|
|
|
|
|
if ( 0 == strcmp( $ep, $this->mPassword ) ) {
|
|
|
|
|
return true;
|
2004-12-18 03:47:11 +00:00
|
|
|
} elseif ( ($this->mNewpassword != '') && (0 == strcmp( $ep, $this->mNewpassword )) ) {
|
2004-07-30 11:13:54 +00:00
|
|
|
return true;
|
|
|
|
|
} elseif ( function_exists( 'iconv' ) ) {
|
|
|
|
|
# Some wikis were converted from ISO 8859-1 to UTF-8, the passwords can't be converted
|
|
|
|
|
# Check for this with iconv
|
2005-01-04 10:49:20 +00:00
|
|
|
$cp1252hash = $this->encryptPassword( iconv( 'UTF-8', 'WINDOWS-1252', $password ) );
|
2004-07-30 11:13:54 +00:00
|
|
|
if ( 0 == strcmp( $cp1252hash, $this->mPassword ) ) {
|
|
|
|
|
return true;
|
2005-01-04 10:49:20 +00:00
|
|
|
}
|
2004-07-30 11:13:54 +00:00
|
|
|
}
|
|
|
|
|
return false;
|
|
|
|
|
}
|
2005-02-15 00:28:55 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Initialize (if necessary) and return a session token value
|
|
|
|
|
* which can be used in edit forms to show that the user's
|
|
|
|
|
* login credentials aren't being hijacked with a foreign form
|
|
|
|
|
* submission.
|
|
|
|
|
*
|
2005-02-21 01:56:50 +00:00
|
|
|
* @param mixed $salt - Optional function-specific data for hash.
|
|
|
|
|
* Use a string or an array of strings.
|
2005-02-15 00:28:55 +00:00
|
|
|
* @return string
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
2005-02-21 01:56:50 +00:00
|
|
|
function editToken( $salt = '' ) {
|
2005-02-15 00:28:55 +00:00
|
|
|
if( !isset( $_SESSION['wsEditToken'] ) ) {
|
2005-04-25 18:38:43 +00:00
|
|
|
$token = $this->generateToken();
|
2005-02-15 00:28:55 +00:00
|
|
|
$_SESSION['wsEditToken'] = $token;
|
2005-02-21 01:56:50 +00:00
|
|
|
} else {
|
|
|
|
|
$token = $_SESSION['wsEditToken'];
|
|
|
|
|
}
|
|
|
|
|
if( is_array( $salt ) ) {
|
|
|
|
|
$salt = implode( '|', $salt );
|
2005-02-15 00:28:55 +00:00
|
|
|
}
|
2005-02-21 01:56:50 +00:00
|
|
|
return md5( $token . $salt );
|
2005-02-15 00:28:55 +00:00
|
|
|
}
|
|
|
|
|
|
2005-04-25 18:38:43 +00:00
|
|
|
/**
|
|
|
|
|
* Generate a hex-y looking random token for various uses.
|
|
|
|
|
* Could be made more cryptographically sure if someone cares.
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
function generateToken( $salt = '' ) {
|
|
|
|
|
$token = dechex( mt_rand() ) . dechex( mt_rand() );
|
|
|
|
|
return md5( $token . $salt );
|
|
|
|
|
}
|
|
|
|
|
|
2005-02-15 00:28:55 +00:00
|
|
|
/**
|
|
|
|
|
* Check given value against the token value stored in the session.
|
|
|
|
|
* A match should confirm that the form was submitted from the
|
|
|
|
|
* user's own login session, not a form submission from a third-party
|
|
|
|
|
* site.
|
|
|
|
|
*
|
2005-02-21 01:56:50 +00:00
|
|
|
* @param string $val - the input value to compare
|
|
|
|
|
* @param string $salt - Optional function-specific data for hash
|
2005-02-15 00:28:55 +00:00
|
|
|
* @return bool
|
|
|
|
|
* @access public
|
|
|
|
|
*/
|
2005-02-21 01:56:50 +00:00
|
|
|
function matchEditToken( $val, $salt = '' ) {
|
|
|
|
|
return ( $val == $this->editToken( $salt ) );
|
2005-02-15 00:28:55 +00:00
|
|
|
}
|
2005-04-25 18:38:43 +00:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Generate a new e-mail confirmation token and send a confirmation
|
|
|
|
|
* mail to the user's given address.
|
|
|
|
|
*
|
|
|
|
|
* @return mixed True on success, a WikiError object on failure.
|
|
|
|
|
*/
|
|
|
|
|
function sendConfirmationMail() {
|
|
|
|
|
global $wgIP, $wgContLang;
|
|
|
|
|
$url = $this->confirmationTokenUrl( $expiration );
|
|
|
|
|
return $this->sendMail( wfMsg( 'confirmemail_subject' ),
|
|
|
|
|
wfMsg( 'confirmemail_body',
|
|
|
|
|
$wgIP,
|
|
|
|
|
$this->getName(),
|
|
|
|
|
$url,
|
|
|
|
|
$wgContLang->timeanddate( $expiration, false ) ) );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Send an e-mail to this user's account. Does not check for
|
|
|
|
|
* confirmed status or validity.
|
|
|
|
|
*
|
|
|
|
|
* @param string $subject
|
|
|
|
|
* @param string $body
|
|
|
|
|
* @param strong $from Optional from address; default $wgPasswordSender will be used otherwise.
|
|
|
|
|
* @return mixed True on success, a WikiError object on failure.
|
|
|
|
|
*/
|
|
|
|
|
function sendMail( $subject, $body, $from = null ) {
|
|
|
|
|
if( is_null( $from ) ) {
|
|
|
|
|
global $wgPasswordSender;
|
|
|
|
|
$from = $wgPasswordSender;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
require_once( 'UserMailer.php' );
|
|
|
|
|
$error = userMailer( $this->getEmail(), $from, $subject, $body );
|
|
|
|
|
|
|
|
|
|
if( $error == '' ) {
|
|
|
|
|
return true;
|
|
|
|
|
} else {
|
|
|
|
|
return new WikiError( $error );
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Generate, store, and return a new e-mail confirmation code.
|
|
|
|
|
* A hash (unsalted since it's used as a key) is stored.
|
|
|
|
|
* @param &$expiration mixed output: accepts the expiration time
|
|
|
|
|
* @return string
|
|
|
|
|
* @access private
|
|
|
|
|
*/
|
|
|
|
|
function confirmationToken( &$expiration ) {
|
|
|
|
|
$fname = 'User::confirmationToken';
|
|
|
|
|
|
|
|
|
|
$now = time();
|
|
|
|
|
$expires = $now + 7 * 24 * 60 * 60;
|
|
|
|
|
$expiration = wfTimestamp( TS_MW, $expires );
|
|
|
|
|
|
|
|
|
|
$token = $this->generateToken( $this->mId . $this->mEmail . $expires );
|
|
|
|
|
$hash = md5( $token );
|
|
|
|
|
|
|
|
|
|
$dbw =& wfGetDB( DB_MASTER );
|
|
|
|
|
$dbw->update( 'user',
|
|
|
|
|
array( 'user_email_token' => $hash,
|
|
|
|
|
'user_email_token_expires' => $dbw->timestamp( $expires ) ),
|
|
|
|
|
array( 'user_id' => $this->mId ),
|
|
|
|
|
$fname );
|
|
|
|
|
|
|
|
|
|
return $token;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Generate and store a new e-mail confirmation token, and return
|
|
|
|
|
* the URL the user can use to confirm.
|
|
|
|
|
* @param &$expiration mixed output: accepts the expiration time
|
|
|
|
|
* @return string
|
|
|
|
|
* @access private
|
|
|
|
|
*/
|
|
|
|
|
function confirmationTokenUrl( &$expiration ) {
|
|
|
|
|
$token = $this->confirmationToken( $expiration );
|
|
|
|
|
$title = Title::makeTitle( NS_SPECIAL, 'Confirmemail/' . $token );
|
|
|
|
|
return $title->getFullUrl();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Mark the e-mail address confirmed and save.
|
|
|
|
|
*/
|
|
|
|
|
function confirmEmail() {
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
$this->mEmailAuthenticated = wfTimestampNow();
|
|
|
|
|
$this->saveSettings();
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Is this user allowed to send e-mails within limits of current
|
|
|
|
|
* site configuration?
|
|
|
|
|
* @return bool
|
|
|
|
|
*/
|
|
|
|
|
function canSendEmail() {
|
|
|
|
|
return $this->isEmailConfirmed();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Is this user allowed to receive e-mails within limits of current
|
|
|
|
|
* site configuration?
|
|
|
|
|
* @return bool
|
|
|
|
|
*/
|
|
|
|
|
function canReceiveEmail() {
|
|
|
|
|
return $this->canSendEmail() && !$this->getOption( 'disablemail' );
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Is this user's e-mail address valid-looking and confirmed within
|
|
|
|
|
* limits of the current site configuration?
|
|
|
|
|
*
|
|
|
|
|
* If $wgEmailAuthentication is on, this may require the user to have
|
|
|
|
|
* confirmed their address by returning a code or using a password
|
|
|
|
|
* sent to the address from the wiki.
|
|
|
|
|
*
|
|
|
|
|
* @return bool
|
|
|
|
|
*/
|
|
|
|
|
function isEmailConfirmed() {
|
|
|
|
|
global $wgEmailAuthentication;
|
|
|
|
|
$this->loadFromDatabase();
|
|
|
|
|
if( $this->isAnon() )
|
|
|
|
|
return false;
|
|
|
|
|
if( !$this->isValidEmailAddr( $this->mEmail ) )
|
|
|
|
|
return false;
|
|
|
|
|
if( $wgEmailAuthentication && !$this->getEmailAuthenticationTimestamp() )
|
|
|
|
|
return false;
|
|
|
|
|
return true;
|
|
|
|
|
}
|
2003-04-14 23:10:40 +00:00
|
|
|
}
|
2003-04-16 07:30:52 +00:00
|
|
|
|
2003-04-14 23:10:40 +00:00
|
|
|
?>
|
