Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
wiki.techinc.nl/includes/user/User.php

3749 lines
113 KiB
PHP
Raw Normal View History

Fix for compatibility with short_open_tag = Off
2004-02-18 02:15:00 +00:00
<?php
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Implements the User class for the %MediaWiki software.
Added some GPL headers
2011-06-28 18:21:59 +00:00
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License along
* with this program; if not, write to the Free Software Foundation, Inc.,
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
* http://www.gnu.org/copyleft/gpl.html
*
WARNING: HUGE COMMIT Doxygen documentation update: * Changed alls @addtogroup to @ingroup. @addtogroup adds the comment to the group description, but doesn't add the file, class, function, ... to the group like @ingroup does. See for example http://svn.wikimedia.org/doc/group__SpecialPage.html where it's impossible to see related files, classes, ... that should belong to that group. * Added @file to file description, it seems that it should be explicitely decalred for file descriptions, otherwise doxygen will think that the comment document the first class, variabled, function, ... that is in that file. * Removed some empty comments * Removed some ?> Added following groups: * ExternalStorage * JobQueue * MaintenanceLanguage One more thing: there are still a lot of warnings when generating the doc.
2008-05-20 17:13:28 +00:00
* @file
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Coding style: Auto-fix MediaWiki.Classes.UnsortedUseStatements.UnsortedUse Change-Id: I94a0ae83c65e8ee419bbd1ae1e86ab21ed4d8210
2020-01-10 00:00:51 +00:00
use MediaWiki\Auth\AuthenticationRequest;
use MediaWiki\Auth\AuthManager;
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
use MediaWiki\Block\AbstractBlock;
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
use MediaWiki\Block\Block;
Rename Block to MediaWiki\Block\DatabaseBlock Keep Block as a deprecated class alias for DatabaseBlock. Update calls to the Block constructor and Block static methods from external classes. Also update documentation in several places that refer to blocks as Blocks. Bug: T222737 Change-Id: I6d96b63ca0a84bee19486471e0a16a53a79d768a
2019-05-13 14:18:07 +00:00
use MediaWiki\Block\DatabaseBlock;
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
use MediaWiki\Block\SystemBlock;
Introduce helper WikiAwareEntityTrait Bug: T273948 Change-Id: I21180d7031646f13413e2edb1bf0a17fbfdada13
2021-02-06 00:54:54 +00:00
use MediaWiki\DAO\WikiAwareEntityTrait;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
use MediaWiki\HookContainer\ProtectedHookAccessorTrait;
Coding style: Auto-fix MediaWiki.Classes.UnsortedUseStatements.UnsortedUse Change-Id: I94a0ae83c65e8ee419bbd1ae1e86ab21ed4d8210
2020-01-10 00:00:51 +00:00
use MediaWiki\Logger\LoggerFactory;
Convert mail namespace to Authority/UserIdentity Change-Id: I1e1ea72f94735ddaf66eab29aad1296e1abffb9b
2021-03-26 01:50:30 +00:00
use MediaWiki\Mail\UserEmailContact;
Convert SearchEngine to service containers Change-Id: Icef1ecbed3d831557e0256fdfa53743b194007cc
2016-04-03 08:37:11 +00:00
use MediaWiki\MediaWikiServices;
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
use MediaWiki\Page\PageIdentity;
use MediaWiki\Permissions\Authority;
use MediaWiki\Permissions\PermissionStatus;
use MediaWiki\Permissions\UserAuthority;
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
use MediaWiki\Session\SessionManager;
Add UserRigorOptions interface Bug: T253432 Change-Id: I6618fc862da7043449ffda02e4428a5df0303e1c
2020-09-29 17:04:22 +00:00
use MediaWiki\User\UserFactory;
Introduce the UserIdentity interface. This provides a narrow view on a user identity, providing access to ID and name. This has been extracted from I140f43a6fb443b for re-use with Actors, on Anomie's request. Change-Id: Ief00db5ce382537c5bf992159eae6baf096ae4be
2017-11-16 19:44:44 +00:00
use MediaWiki\User\UserIdentity;
User: use ActorNormalization to insert actor While creating users, we have several interesting corner cases: - When creating a new User, we actually rely on the 'unique' constraint on actor_name. This is important if something calls 'User::createNew' with a name that is already occupied by an existing anon actor with no user. This is quite a weird corner case, but there's a test for that. We could probably assimilate this nicly in actor store by checking whether the user id in the database for the actor we found is the same as user id in the passed in user identity. - Even more interesting use-case is 'subsuming' existing actors with reserved user names. When we call User::newSystemUser, and there is already an actor with the same reserved name, we 'subsume' that actor and take over it's actor_id for our new system user. This can now be done with an upsert. This state of having reserved actor with no user is not easy to cause, but imports or updating from old MW versions seem to be able to produce this state. Archeology revealed that 'subsuming' existing actor was added for installer. Change-Id: I16b2f088217db0283215fc2ef5fb04a3742e1626
2021-04-07 17:32:17 +00:00
use MediaWiki\User\UserIdentityValue;
Add a new UserNameUtils service This replaces User::isValidUserName, ::isUsableName, ::isCreatableName, ::getCanonicalName, and ::isIP. Unlike User::isIP, UserNameUtils::isIP will //not// return true for IPv6 ranges. UserNameUtils::isIPRange, like User::isIPRange, accepts a name and simply calls IPUtils::isValidRange. User::isValidUserName, ::isUsableName, ::isCreatableName, ::getCanonical, ::isIP, and ::isValidRange are all soft deprecated A follow up patch will add this to the release notes, to avoid merge conflicts. Bug: T245231 Bug: T239527 Change-Id: I46684bc492bb74b728ff102971f6cdd4d746a50a
2020-02-23 23:52:44 +00:00
use MediaWiki\User\UserNameUtils;
Introduce ActorStore, ActorLookup and ActorFactory. The ActorNormalization factory methods create UserIdentityValue from the database rows, either via fields of a joined table, or via a row from actor table. They assume that the actor_id exist and throw othervise. ActorNormalization is a storage-layer service providing access to finding and acquiring actor_id. The UserIdentityLookup methods do not instantiate new actor on demand, they just find an appropriate row in the actor table and return the result. Bug: T272689 Depends-On: I74d81f3f0233efb17fc8df5178e4c477cc669c6f Change-Id: Icfa1daca960c696a8cef8adab5eab53985802858
2021-01-22 19:51:43 +00:00
use Wikimedia\Assert\Assert;
Make UserIdentity objects aware of which wiki they belong to. Bug: T260933 Change-Id: Ic986640cc34e6ec6be239e410a8334f0e299c682
2021-01-27 04:25:24 +00:00
use Wikimedia\Assert\PreconditionException;
Use namespaced IPUtils class Change-Id: I047e099a93203a59093946d336a143d899d0271f
2019-06-25 18:53:15 +00:00
use Wikimedia\IPUtils;
Move Database and subclasses to Rdbms namespace Change-Id: I52bef87512f9ddd155d1f4cc0052f6b7a0db5b42
2017-02-07 04:49:57 +00:00
use Wikimedia\Rdbms\Database;
Move DB errors to Rdbms namespace Change-Id: I463bd86123501abc68fdb78b4cda6110f7af2549
2017-02-24 16:17:16 +00:00
use Wikimedia\Rdbms\DBExpectedError;
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
use Wikimedia\Rdbms\IDatabase;
Coding style: Auto-fix MediaWiki.Classes.UnsortedUseStatements.UnsortedUse Change-Id: I94a0ae83c65e8ee419bbd1ae1e86ab21ed4d8210
2020-01-10 00:00:51 +00:00
use Wikimedia\ScopedCallback;
Reapply "Update user_touched after saving user options." This reverts commit 4d19d06455874730fe8020f071b2bcbe2f12b5a9. Reason for revert: CenralAuth tests fixed Bug: T284354 Depends-On: I9d681baeca0df4808335e7bececfd114cdad2f0e Change-Id: I483b8f61dcfae70c5a50399391b361cf5310ae24
2021-10-25 19:56:47 +00:00
use Wikimedia\Timestamp\ConvertibleTimestamp;
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Doc tweaks: * Seems like an opportune time to introduce "@addtogroup Media" documentation tags. * Merge "@addtogroup Metadata" (used by Exif.php) into "@addtogroup Media". * Few more moving comment blocks to above classes.
2007-04-24 06:53:31 +00:00
* The User object encapsulates all of the user-specific settings (user_id,
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
* name, rights, email address, options, last login time). Client
Doc tweaks: * Seems like an opportune time to introduce "@addtogroup Media" documentation tags. * Merge "@addtogroup Metadata" (used by Exif.php) into "@addtogroup Media". * Few more moving comment blocks to above classes.
2007-04-24 06:53:31 +00:00
* classes use the getXXX() functions to access these fields. These functions
* do all the work of determining whether the user is logged in,
* whether the requested option can be satisfied from cookies or
* whether a database query is needed. Most of the settings needed
* for rendering normal pages are set in the cookie to minimize use
* of the database.
Mark additional classes as newable for now. The following glasses are marked as newable per the Stable Interface Policy, even though logically, they should not be newable. This is done for classes that are currently instantiated by extensions, and lack an alternative. A better way for obtaining an instance of these classes should be created in the future. At that point, direct instantiation should be deprecated and replaced. - includes/ApiMain.php - needs factory - includes/media/BitmapMetadataHandler.php - should become a stateless service or use handler pattern - includes/GitInfo.php - should become a stateless service - includes/logging/LogPage.php - should become a stateless service or use command pattern - includes/logging/ManualLogEntry.php - should become a stateless service or use command pattern - includes/poolcounter/PoolCounterWorkViaCallback.php - needs a factory - includes/context/RequestContext.php - needs to be narrowed down, and should use a factory - includes/search/SearchHighlighter.php - should have a factory - includes/TitleArrayFromResult.php - should perhaps be part of TitleFactory - includes/user/User.php - should at least get a factory method for anons - includes/diff/Diff.php: needs a TextDiffGenerator service or a factory - includes/EditPage.php: needs a factory Bug: T247862 Change-Id: I033158e693c98630ee167d9528fc8c9936f978d4
2020-06-30 10:13:50 +00:00
*
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
* @note User implements Authority to ease transition. Always prefer
* using existing Authority or obtaining a proper Authority implementation.
*
User is not @newable in 1.36 Bug: T257464 Change-Id: I0d78cfb18166f46a65a65755ca2bef57d504a0b3
2020-07-16 11:46:28 +00:00
* @newable in 1.35 only, the constructor is @internal since 1.36
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
class User implements Authority, UserIdentity, UserEmailContact {
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
use ProtectedHookAccessorTrait;
Introduce helper WikiAwareEntityTrait Bug: T273948 Change-Id: I21180d7031646f13413e2edb1bf0a17fbfdada13
2021-02-06 00:54:54 +00:00
use WikiAwareEntityTrait;
Improve documentation of constants throughout the codebase The most notable improvements I was able to fit into this patch can be seen in the User class, as well as in AbstractRestriction. Our documentation generator ignores the @const tag. It's not needed. Just have a comment above a constant and it will show up in the generated documentation. Using @var is misleading because a constant is not a "variable". The type of a constant is strictly derived from it's value. Documenting the type typically does not provide useful information. Doxygen does not understand the type, but ignores any @… tag and renders everything else as plain text. I can split this patch if you prefer. Please tell me. Change-Id: I8019ae45c049822cdc1768d895ea3e3216c6db5f
2019-02-26 13:02:50 +00:00
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
/**
* @var int
* @see IDBAccessObject::READ_EXCLUSIVE
*/
public const READ_EXCLUSIVE = IDBAccessObject::READ_EXCLUSIVE;
/**
* @var int
* @see IDBAccessObject::READ_LOCKING
*/
public const READ_LOCKING = IDBAccessObject::READ_LOCKING;
revert r82283, loads of unrelated changes
2011-02-16 19:51:25 +00:00
/**
Improve documentation of constants throughout the codebase The most notable improvements I was able to fit into this patch can be seen in the User class, as well as in AbstractRestriction. Our documentation generator ignores the @const tag. It's not needed. Just have a comment above a constant and it will show up in the generated documentation. Using @var is misleading because a constant is not a "variable". The type of a constant is strictly derived from it's value. Documenting the type typically does not provide useful information. Doxygen does not understand the type, but ignores any @… tag and renders everything else as plain text. I can split this patch if you prefer. Please tell me. Change-Id: I8019ae45c049822cdc1768d895ea3e3216c6db5f
2019-02-26 13:02:50 +00:00
* Number of characters required for the user_token field.
Clean up user version constants - Two global constants unused outside of this class so removed - Shorten name since MW and USER are redundant since it's in a class - Use class constant instead of global define consistently Change-Id: I0e8b05372512de568a230a6e5026751aa37c4c4e
2014-07-24 00:26:27 +00:00
*/
Fix even more PSR12.Properties.ConstantVisibility.NotFound Change-Id: If1335359b545c36fc979676c3e88d87628f9389e
2020-05-15 22:07:42 +00:00
public const TOKEN_LENGTH = 32;
Clean up user version constants - Two global constants unused outside of this class so removed - Shorten name since MW and USER are redundant since it's in a class - Use class constant instead of global define consistently Change-Id: I0e8b05372512de568a230a6e5026751aa37c4c4e
2014-07-24 00:26:27 +00:00
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
/**
Improve documentation of constants throughout the codebase The most notable improvements I was able to fit into this patch can be seen in the User class, as well as in AbstractRestriction. Our documentation generator ignores the @const tag. It's not needed. Just have a comment above a constant and it will show up in the generated documentation. Using @var is misleading because a constant is not a "variable". The type of a constant is strictly derived from it's value. Documenting the type typically does not provide useful information. Doxygen does not understand the type, but ignores any @… tag and renders everything else as plain text. I can split this patch if you prefer. Please tell me. Change-Id: I8019ae45c049822cdc1768d895ea3e3216c6db5f
2019-02-26 13:02:50 +00:00
* An invalid string value for the user_token field.
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
*/
Fix even more PSR12.Properties.ConstantVisibility.NotFound Change-Id: If1335359b545c36fc979676c3e88d87628f9389e
2020-05-15 22:07:42 +00:00
public const INVALID_TOKEN = '*** INVALID ***';
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
Clean up user version constants - Two global constants unused outside of this class so removed - Shorten name since MW and USER are redundant since it's in a class - Use class constant instead of global define consistently Change-Id: I0e8b05372512de568a230a6e5026751aa37c4c4e
2014-07-24 00:26:27 +00:00
/**
Improve documentation of constants throughout the codebase The most notable improvements I was able to fit into this patch can be seen in the User class, as well as in AbstractRestriction. Our documentation generator ignores the @const tag. It's not needed. Just have a comment above a constant and it will show up in the generated documentation. Using @var is misleading because a constant is not a "variable". The type of a constant is strictly derived from it's value. Documenting the type typically does not provide useful information. Doxygen does not understand the type, but ignores any @… tag and renders everything else as plain text. I can split this patch if you prefer. Please tell me. Change-Id: I8019ae45c049822cdc1768d895ea3e3216c6db5f
2019-02-26 13:02:50 +00:00
* Version number to tag cached versions of serialized User objects. Should be increased when
* {@link $mCacheVars} or one of it's members changes.
Clean up user version constants - Two global constants unused outside of this class so removed - Shorten name since MW and USER are redundant since it's in a class - Use class constant instead of global define consistently Change-Id: I0e8b05372512de568a230a6e5026751aa37c4c4e
2014-07-24 00:26:27 +00:00
*/
Remove User::$mEditCount and internal caching UserEditTracker now returns null for anonymous users instead of throwing an exception. Added new UserEditTracker::setCachedUserEditCount() method (internal) to handle the user_editcount field in User::loadFromRow()'s row. This now means that the creation of one User object can set the cached value for any other object for the same underlying user - the alternative (just ignoring the value) would mean that an extra database read might be needed. This is only used for users created with a row that includes the user id - we silently discard the value if the row doesn't have a user id (or the user id is 0) to avoid issues with UserEditTracker trying to fetch the user id and potentially triggering another load. A follow-up will simplify the UserEditCountUpdate class to remove storing full UserIdentity objects now that only the id is needed. Follow-up: Ibf1482bcbcbf4d56fc06531bb3e17e2a6e3e2e6f Change-Id: Ie3fb4887d9f2d96b32598865030351bf3bf20ce5
2021-06-15 08:08:33 +00:00
private const VERSION = 17;
Clean up user version constants - Two global constants unused outside of this class so removed - Shorten name since MW and USER are redundant since it's in a class - Use class constant instead of global define consistently Change-Id: I0e8b05372512de568a230a6e5026751aa37c4c4e
2014-07-24 00:26:27 +00:00
Move WatchedItem logic to WatchedItemStore This also removes assumptions that when a page in one Namespace should be watched / removed that the page in the talk / subject ns for the page should have the same action applied This should maintain all backward compatability for the WatchedItem class This also includes tests written by: - WMDE-leszek - Addshore Bug: T127956 Change-Id: Iad9abafe4417bb479151a3bfbee6e1c78a3afe3c
2016-02-01 11:53:01 +00:00
/**
* @since 1.27
*/
Fix even more PSR12.Properties.ConstantVisibility.NotFound Change-Id: If1335359b545c36fc979676c3e88d87628f9389e
2020-05-15 22:07:42 +00:00
public const CHECK_USER_RIGHTS = true;
Move WatchedItem logic to WatchedItemStore This also removes assumptions that when a page in one Namespace should be watched / removed that the page in the talk / subject ns for the page should have the same action applied This should maintain all backward compatability for the WatchedItem class This also includes tests written by: - WMDE-leszek - Addshore Bug: T127956 Change-Id: Iad9abafe4417bb479151a3bfbee6e1c78a3afe3c
2016-02-01 11:53:01 +00:00
/**
* @since 1.27
*/
Fix even more PSR12.Properties.ConstantVisibility.NotFound Change-Id: If1335359b545c36fc979676c3e88d87628f9389e
2020-05-15 22:07:42 +00:00
public const IGNORE_USER_RIGHTS = false;
Move WatchedItem logic to WatchedItemStore This also removes assumptions that when a page in one Namespace should be watched / removed that the page in the talk / subject ns for the page should have the same action applied This should maintain all backward compatability for the WatchedItem class This also includes tests written by: - WMDE-leszek - Addshore Bug: T127956 Change-Id: Iad9abafe4417bb479151a3bfbee6e1c78a3afe3c
2016-02-01 11:53:01 +00:00
Use a constant for 'Maintenance script' username The user 'Maintenance script' is often used to perform various automated tasks. Providing it everywhere as a string literal is error-prone, and errors can be somewhat disruptive (e.g. with User::newSystemUser with steal=true it can erase the credentials of a legitimate account). Provide a constant instead. Also replace existing uses for consistency. Change-Id: I685a5bfe56bbf1a47f35072f7f7c8be320ee27db
2021-05-03 21:34:26 +00:00
/**
* Username used for various maintenance scripts.
* @since 1.37
*/
public const MAINTENANCE_SCRIPT_USER = 'Maintenance script';
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* List of member variables which are saved to the
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* shared cache (memcached). Any operation which changes the
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* corresponding database fields must call a cache-clearing function.
* @showinitializer
Improve @var on User class Add missing @var tags with types or add missing types to @var Change-Id: I34eb4c26d34da072465f1b162fb2d0291610f564
2019-06-05 17:19:22 +00:00
* @var string[]
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
protected static $mCacheVars = [
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
// user table
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
'mId',
'mName',
'mRealName',
'mEmail',
'mTouched',
'mToken',
'mEmailAuthenticated',
'mEmailToken',
'mEmailTokenExpires',
'mRegistration',
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
// actor table
'mActorId',
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
];
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
/** Cache variables */
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
// Some of these are public, including for use by the UserFactory, but they generally
// should not be set manually
Fix issues identified by SpaceBeforeSingleLineComment sniff Change-Id: I048ccb1fa260e4b7152ca5f09b053defdd72d8f9
2015-09-11 13:44:59 +00:00
// @{
Ensure that User::getId() returns int And document User::mId as such. Change-Id: I65a5a284257da50830675f074f890f27701900e0
2016-03-18 13:23:40 +00:00
/** @var int */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mId;
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
/** @var string */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mName;
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
/**
* Switched from protected to public for use in UserFactory
*
* @var int|null
*/
public $mActorId;
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
/** @var string */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mRealName;
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
/** @var string */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mEmail;
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
/** @var string TS_MW timestamp from the DB */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mTouched;
Fix various documentation related to null types The functions returning null or the class property is set explict null Found by phan strict checks Change-Id: I4a271093fb6526564d8083a08249c64cb21f2453
2022-02-26 07:54:16 +00:00
/** @var string|null TS_MW timestamp from cache */
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
protected $mQuickTouched;
Fix various documentation related to null types The functions returning null or the class property is set explict null Found by phan strict checks Change-Id: I4a271093fb6526564d8083a08249c64cb21f2453
2022-02-26 07:54:16 +00:00
/** @var string|null */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mToken;
Fix various documentation related to null types The functions returning null or the class property is set explict null Found by phan strict checks Change-Id: I4a271093fb6526564d8083a08249c64cb21f2453
2022-02-26 07:54:16 +00:00
/** @var string|null */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mEmailAuthenticated;
Fix various documentation related to null types The functions returning null or the class property is set explict null Found by phan strict checks Change-Id: I4a271093fb6526564d8083a08249c64cb21f2453
2022-02-26 07:54:16 +00:00
/** @var string|null */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mEmailToken;
Fix various documentation related to null types The functions returning null or the class property is set explict null Found by phan strict checks Change-Id: I4a271093fb6526564d8083a08249c64cb21f2453
2022-02-26 07:54:16 +00:00
/** @var string|null */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mEmailTokenExpires;
Fix various documentation related to null types The functions returning null or the class property is set explict null Found by phan strict checks Change-Id: I4a271093fb6526564d8083a08249c64cb21f2453
2022-02-26 07:54:16 +00:00
/** @var string|null */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mRegistration;
Fix issues identified by SpaceBeforeSingleLineComment sniff Change-Id: I048ccb1fa260e4b7152ca5f09b053defdd72d8f9
2015-09-11 13:44:59 +00:00
// @}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
Improve @var on User class Add missing @var tags with types or add missing types to @var Change-Id: I34eb4c26d34da072465f1b162fb2d0291610f564
2019-06-05 17:19:22 +00:00
// @{
Document from r87129 summary
2011-06-15 21:23:47 +00:00
/**
Improve @var on User class Add missing @var tags with types or add missing types to @var Change-Id: I34eb4c26d34da072465f1b162fb2d0291610f564
2019-06-05 17:19:22 +00:00
* @var array|bool Array with already loaded items or true if all items have been loaded.
Document from r87129 summary
2011-06-15 21:23:47 +00:00
*/
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
protected $mLoadedItems = [];
Fix issues identified by SpaceBeforeSingleLineComment sniff Change-Id: I048ccb1fa260e4b7152ca5f09b053defdd72d8f9
2015-09-11 13:44:59 +00:00
// @}
Merged localisation-work branch: * Made lines from initialiseMessages() appear as list items during installation * Moved the bulk of the localisation data from the Language*.php files to the Messages*.php files. Deleted most of the Languages*.php files. * Introduced "stub global" framework to provide deferred initialisation of core modules. * Removed placeholder values for $wgTitle and $wgArticle, these variables will now be null during the initialisation process, until they are set by index.php or another entry point. * Added DBA cache type, for BDB-style caches. * Removed custom date format functions, replacing them with a format string in the style of PHP's date(). Used string identifiers instead of integer identifiers, in both the language files and user preferences. Migration should be transparent in most cases. * Simplified the initialisation API for LoadBalancer objects. * Removed the broken altencoding feature. * Moved default user options and toggles from Language to User. Language objects are still able to define default preference overrides and extra user toggles, via a slightly different interface. * Don't include the date option in the parser cache rendering hash unless $wgUseDynamicDates is enabled. * Merged LanguageUtf8 with Language. Removed LanguageUtf8.php. * Removed inclusion of language files from the bottom of Language.php. This is now consistently done from Language::factory(). * Add the name of the executing maintenance script to the debug log. Start the profiler during maintenance scripts. * Added "serialized" directory, for storing precompiled data in serialized form.
2006-07-26 07:15:39 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Improve @var on User class Add missing @var tags with types or add missing types to @var Change-Id: I34eb4c26d34da072465f1b162fb2d0291610f564
2019-06-05 17:19:22 +00:00
* @var string Initialization data source if mLoadedItems!==true. May be one of:
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* - 'defaults' anonymous user initialised from class defaults
* - 'name' initialise from mName
* - 'id' initialise from mId
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* - 'actor' initialise from mActorId
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* - 'session' log in from session if possible
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*
* Use the User::newFrom*() family of functions to set this.
*/
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mFrom;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
More documentation formatting
2011-01-06 15:55:56 +00:00
/**
* Whitespace fixups * followup r66675 - Robla caught a problem with the parameter munging
2011-01-26 17:48:58 +00:00
* Lazy-initialized variables, invalidated with clearInstanceCache
More documentation formatting
2011-01-06 15:55:56 +00:00
*/
Fix various documentation related to null types (part II) The functions returning null or the class property is set explict null. Some function should not accept null or return null. Found by phan strict checks Change-Id: Ie50f23249282cdb18caa332f562a3945a58d86ff
2022-03-01 21:42:03 +00:00
/** @var string|null */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mDatePreference;
Deprecate public User properties related to blocks Deprecate mBlock, mBlockedby and mHideName as public properties, since they allow the user to be put into an inconsistent state. These properties were previously used by now-deprecated hooks (bf5464614b, af24fc1a7a) and tests. Bug: T229035 Change-Id: Ia657eaf8b5e4a77ff9df84eb706de1030e17c3bd
2019-09-18 19:49:11 +00:00
/**
* @deprecated since 1.35. Instead, use User::getBlock to get the block,
* then AbstractBlock::getByName to get the blocker's name; or use the
* GetUserBlock hook to set or unset a block.
* @var string|int -1 when the block is unset
*/
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mBlockedby;
Fix various documentation related to false Some function already document "False on failure", but does not document it on the used type Found by phan strict checks Change-Id: I12eb8bbc99179833ee3e42c1a7d1dc1443682ca6
2022-03-03 20:33:11 +00:00
/** @var string|false */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mHash;
Revert "Revert "Store block reasons as CommentStoreComments in block classes"" This reverts commit 5f06efb318ba5abf2c97afde47c32f61a525ce8a, which reverted 9335363789009eabea57cc5550c96180508b2c9d, which makes the deprecated property AbstractBlock::mReason private. After 9335363789, AbstractBlock::mReason is obsolete, since the block reason is now stored as a CommentStoreComment, AbstractBlock::reason. Change-Id: Ica0a74be90383689ca8e4cfe6d0fb25c9a5942c5
2019-10-20 00:04:00 +00:00
/**
* TODO: This should be removed when User::BlockedFor
* and AbstractBlock::getReason are hard deprecated.
* @var string
*/
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mBlockreason;
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
/** @var AbstractBlock */
Check for global blocks Depends on GlobalBlocking change I2893b9e24173d21fe518c360f6c6add363cc7b23, where the Block object is added to the hook. Before this, it's only possible to check for globalblock status. It is not possible to print a proper error message without relying on the extension and manually calling its GlobalBlocking::getUserBlockErrors to fetch the actual error message. Bug: T111229 Depends-On: I2893b9e24173d21fe518c360f6c6add363cc7b23 Change-Id: I23d29c1a0e016de4e82d5b51afa94ae9afd70ee4
2016-04-13 14:24:30 +00:00
protected $mGlobalBlock;
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
/** @var bool */
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
protected $mLocked;
Deprecate public User properties related to blocks Deprecate mBlock, mBlockedby and mHideName as public properties, since they allow the user to be put into an inconsistent state. These properties were previously used by now-deprecated hooks (bf5464614b, af24fc1a7a) and tests. Bug: T229035 Change-Id: Ia657eaf8b5e4a77ff9df84eb706de1030e17c3bd
2019-09-18 19:49:11 +00:00
/**
* @deprecated since 1.35. Instead, use User::getBlock to get the block,
* then AbstractBlock::getHideName to determine whether the block hides
* the user; or use the GetUserBlock hook to hide or unhide a user.
* @var bool
*/
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mHideName;
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
/** @var WebRequest */
* Pass the WebRequest object to User::newFromSession() and use it instead of $wgRequest (will still fall back to $wgRequest if not passed or another method to get an User object) * Always call User::newFromSession(), not only when not in CLI mode * Removed User::$mSkin, unused and not set
2011-07-06 16:42:16 +00:00
private $mRequest;
Documentation and explicit variable definitions Followup r80069, swap private to protected
2011-03-07 14:45:11 +00:00
Deprecate public User properties related to blocks Deprecate mBlock, mBlockedby and mHideName as public properties, since they allow the user to be put into an inconsistent state. These properties were previously used by now-deprecated hooks (bf5464614b, af24fc1a7a) and tests. Bug: T229035 Change-Id: Ia657eaf8b5e4a77ff9df84eb706de1030e17c3bd
2019-09-18 19:49:11 +00:00
/**
* @deprecated since 1.35. Instead, use User::getBlock to get the block;
* or the GetUserBlock hook to set or unset a block.
* @var AbstractBlock|null
*/
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
public $mBlock;
Documentation updates Add a couple of missing explicit class variables
2011-07-18 20:11:53 +00:00
Improve @var on User class Add missing @var tags with types or add missing types to @var Change-Id: I34eb4c26d34da072465f1b162fb2d0291610f564
2019-06-05 17:19:22 +00:00
/** @var AbstractBlock|bool */
Follow-up r84475 CR; and also documentation fixes; PhpStorm 2.1 is *even more* fussy about documentation format... :D
2011-06-26 23:01:29 +00:00
private $mBlockedFromCreateAccount = false;
Documentation and explicit variable definitions Followup r80069, swap private to protected
2011-03-07 14:45:11 +00:00
Use short type bool/int in param documentation Enable the phpcs sniffs for this and used phpcbf Change-Id: Iaa36687154ddd2bf663b9dd519f5c99409d37925
2017-08-20 11:20:59 +00:00
/** @var int User::READ_* constant bitfield used to load data */
Made user preferences load from the master by default * Warn when saving slave-loaded data in saveSettings() * Respect the loading $flags for preferences/groups * Fixed use of flags in addToDatabase() * Made loadFromCache() protected to make this mess easier to reason about (no callers found) * Added some doc comments Bug: T92232 Change-Id: Ic1dd66063cc2f98fc03861df1c523981f846a0be
2015-03-25 00:30:26 +00:00
protected $queryFlagsUsed = self::READ_NORMAL;
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
/** @var Authority|null lazy-initialized Authority of this user */
private $mThisAsAuthority;
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Lightweight constructor for an anonymous user.
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
User is not @newable in 1.36 Bug: T257464 Change-Id: I0d78cfb18166f46a65a65755ca2bef57d504a0b3
2020-07-16 11:46:28 +00:00
* @stable to call since 1.35
* @internal since 1.36, use the UserFactory service instead
*
* @see MediaWiki\User\UserFactory
Mark additional classes as newable for now. The following glasses are marked as newable per the Stable Interface Policy, even though logically, they should not be newable. This is done for classes that are currently instantiated by extensions, and lack an alternative. A better way for obtaining an instance of these classes should be created in the future. At that point, direct instantiation should be deprecated and replaced. - includes/ApiMain.php - needs factory - includes/media/BitmapMetadataHandler.php - should become a stateless service or use handler pattern - includes/GitInfo.php - should become a stateless service - includes/logging/LogPage.php - should become a stateless service or use command pattern - includes/logging/ManualLogEntry.php - should become a stateless service or use command pattern - includes/poolcounter/PoolCounterWorkViaCallback.php - needs a factory - includes/context/RequestContext.php - needs to be narrowed down, and should use a factory - includes/search/SearchHighlighter.php - should have a factory - includes/TitleArrayFromResult.php - should perhaps be part of TitleFactory - includes/user/User.php - should at least get a factory method for anons - includes/diff/Diff.php: needs a TextDiffGenerator service or a factory - includes/EditPage.php: needs a factory Bug: T247862 Change-Id: I033158e693c98630ee167d9528fc8c9936f978d4
2020-06-30 10:13:50 +00:00
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @see newFromName()
* @see newFromId()
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* @see newFromActorId()
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @see newFromConfirmationCode()
* @see newFromSession()
* @see newFromRow()
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Add visibility to User functions Change-Id: Ib2bea5ba8132e79345b46ec3e6db7576af07a007
2014-02-21 09:58:36 +00:00
public function __construct() {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->clearInstanceCache( 'defaults' );
Initial revision
2003-04-14 23:10:40 +00:00
}
Make UserIdentity objects aware of which wiki they belong to. Bug: T260933 Change-Id: Ic986640cc34e6ec6be239e410a8334f0e299c682
2021-01-27 04:25:24 +00:00
/**
* Returns self::LOCAL to indicate the user is associated with the local wiki.
*
* @since 1.36
* @return string|false
*/
public function getWikiId() {
return self::LOCAL;
}
Documentation updates Add a couple of missing explicit class variables
2011-07-18 20:11:53 +00:00
/**
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string
Documentation updates Add a couple of missing explicit class variables
2011-07-18 20:11:53 +00:00
*/
Add visibility to User functions Change-Id: Ib2bea5ba8132e79345b46ec3e6db7576af07a007
2014-02-21 09:58:36 +00:00
public function __toString() {
Add type hints for return types to methods on UserIdentity Bug: T273285 Change-Id: I0ffc4963e8362264d1f10455af0f6222c05be7d8
2021-02-02 17:21:48 +00:00
return $this->getName();
add __toString() call for User objects, returning User->getName(). Now that we require PHP 5.2+, we can do this with all our major classes... :D
2011-03-11 23:42:53 +00:00
}
User: support setting custom fields + array autocreation in non-existent field I889924037 added a __set method which did not actually handle fields being set. For better or worse, setting custom fields on ubiquitous objects like User is a common form of in-process caching, so this is a B/C break; restore for now. PHP allows creating an array in a previously non-existent object property with $o->foo['bar'] = $val, but doesn't properly handle that on objects which have magic getter/setter. Add an ugly hack to make it work (but warn). Depends on I15090ae9e4b66ac25f631f6179c4394ce8c445a9. Bug: T227688 Change-Id: I62b80ab4fa10de984cf2c879ab12d91b0fd9bc1c
2019-07-10 18:46:21 +00:00
public function &__get( $name ) {
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
// A shortcut for $mRights deprecation phase
if ( $name === 'mRights' ) {
Hard deprecate User::getRights() deprecated since 1.34 and unused in Wikimedia deployed repositories. Bug: T274211 Change-Id: If00e52255b8f555f0e60584c44970c42afe0270e
2021-05-20 15:14:28 +00:00
$copy = MediaWikiServices::getInstance()
->getPermissionManager()
->getUserPermissions( $this );
User: support setting custom fields + array autocreation in non-existent field I889924037 added a __set method which did not actually handle fields being set. For better or worse, setting custom fields on ubiquitous objects like User is a common form of in-process caching, so this is a B/C break; restore for now. PHP allows creating an array in a previously non-existent object property with $o->foo['bar'] = $val, but doesn't properly handle that on objects which have magic getter/setter. Add an ugly hack to make it work (but warn). Depends on I15090ae9e4b66ac25f631f6179c4394ce8c445a9. Bug: T227688 Change-Id: I62b80ab4fa10de984cf2c879ab12d91b0fd9bc1c
2019-07-10 18:46:21 +00:00
return $copy;
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
} elseif ( $name === 'mOptions' ) {
wfDeprecated( 'User::$mOptions', '1.35' );
Hard deprecate User ::isIP, ::getOptions Bug: T275602 Change-Id: Id4be13751ca0a900e51214c1855a4624077a5a62
2021-04-12 14:45:26 +00:00
$options = MediaWikiServices::getInstance()->getUserOptionsLookup()->getOptions( $this );
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
return $options;
User: support setting custom fields + array autocreation in non-existent field I889924037 added a __set method which did not actually handle fields being set. For better or worse, setting custom fields on ubiquitous objects like User is a common form of in-process caching, so this is a B/C break; restore for now. PHP allows creating an array in a previously non-existent object property with $o->foo['bar'] = $val, but doesn't properly handle that on objects which have magic getter/setter. Add an ugly hack to make it work (but warn). Depends on I15090ae9e4b66ac25f631f6179c4394ce8c445a9. Bug: T227688 Change-Id: I62b80ab4fa10de984cf2c879ab12d91b0fd9bc1c
2019-07-10 18:46:21 +00:00
} elseif ( !property_exists( $this, $name ) ) {
// T227688 - do not break $u->foo['bar'] = 1
wfLogWarning( 'tried to get non-existent property' );
$this->$name = null;
return $this->$name;
} else {
wfLogWarning( 'tried to get non-visible property' );
Upgrade phan config to 0.7.1 This allows us to remove many suppressions for phan false positives. Bug: T231636 Depends-On: I82a279e1f7b0fdefd3bb712e46c7d0665429d065 Change-Id: I5c251e9584a1ae9fb1577afcafb5001e0dcd41c7
2019-09-01 14:00:35 +00:00
$null = null;
return $null;
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
}
}
public function __set( $name, $value ) {
// A shortcut for $mRights deprecation phase, only known legitimate use was for
// testing purposes, other uses seem bad in principle
if ( $name === 'mRights' ) {
MediaWikiServices::getInstance()->getPermissionManager()->overrideUserRightsForTesting(
$this,
Use null coalecing operators everywhere consistenctly. Auto-generated with rector. Change-Id: I4f27e10cf029bb067b7bc57d82f7a64e21ea8d42
2021-06-04 04:12:21 +00:00
$value ?? []
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
);
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
} elseif ( $name === 'mOptions' ) {
wfDeprecated( 'User::$mOptions', '1.35' );
Drop User methods which were deprecated since 1.35 The following User methods, deprecated in 1.35, have been removed: - ::isIP, - ::isIPRange, - ::isValidUserName, - ::isUsableName, - ::isCreatableName, - ::getCanonicalName, - ::addAutopromoteOnceGroups, - ::getDefaultOptions, - ::getDefaultOption, - ::getOptions, - ::getBoolOption, - ::getIntOption, - ::setOption - ::listOptionKinds - ::getOptionKinds, - ::resetOptions, - ::getEffectiveGroups, - ::getAutomaticGroups, - ::getFormerGroups User::GETOPTIONS_EXCLUDE_DEFAULTS has been removed, since it is used only in the description of User::getOptions. Bug: T277511 Depends-On: Ida05c22f81b30d9b46678e8ede3d531c38855d83 Change-Id: I72bbc2336f8ddbc66ce67226cd2d5baaa2f807d8
2021-11-09 13:32:23 +00:00
$userOptionsManager = MediaWikiServices::getInstance()->getUserOptionsManager();
$userOptionsManager->clearUserOptionsCache( $this );
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
foreach ( $value as $key => $val ) {
Drop User methods which were deprecated since 1.35 The following User methods, deprecated in 1.35, have been removed: - ::isIP, - ::isIPRange, - ::isValidUserName, - ::isUsableName, - ::isCreatableName, - ::getCanonicalName, - ::addAutopromoteOnceGroups, - ::getDefaultOptions, - ::getDefaultOption, - ::getOptions, - ::getBoolOption, - ::getIntOption, - ::setOption - ::listOptionKinds - ::getOptionKinds, - ::resetOptions, - ::getEffectiveGroups, - ::getAutomaticGroups, - ::getFormerGroups User::GETOPTIONS_EXCLUDE_DEFAULTS has been removed, since it is used only in the description of User::getOptions. Bug: T277511 Depends-On: Ida05c22f81b30d9b46678e8ede3d531c38855d83 Change-Id: I72bbc2336f8ddbc66ce67226cd2d5baaa2f807d8
2021-11-09 13:32:23 +00:00
$userOptionsManager->setOption( $this, $key, $val );
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
}
User: support setting custom fields + array autocreation in non-existent field I889924037 added a __set method which did not actually handle fields being set. For better or worse, setting custom fields on ubiquitous objects like User is a common form of in-process caching, so this is a B/C break; restore for now. PHP allows creating an array in a previously non-existent object property with $o->foo['bar'] = $val, but doesn't properly handle that on objects which have magic getter/setter. Add an ugly hack to make it work (but warn). Depends on I15090ae9e4b66ac25f631f6179c4394ce8c445a9. Bug: T227688 Change-Id: I62b80ab4fa10de984cf2c879ab12d91b0fd9bc1c
2019-07-10 18:46:21 +00:00
} elseif ( !property_exists( $this, $name ) ) {
$this->$name = $value;
} else {
wfLogWarning( 'tried to set non-visible property' );
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
}
}
Drop mThisAsAuthority from User before serializing. User shouldn't be serialized, but it sometimes still is, so until we introduce NotSerializableTrait in User, clear-out Authority memoization. Change-Id: I641c2721de8c6ebe9bfcd87cfcebff60dc091126
2021-02-09 01:09:55 +00:00
public function __sleep(): array {
return array_diff(
array_keys( get_object_vars( $this ) ),
[
'mThisAsAuthority' // memoization, will be recreated on demand.
]
);
}
Add User::isSafeToLoad() and ParserOptions::newFromAnon() Useful for avoiding "User::loadFromSession called before the end of Setup.php". Bug: T124367 Change-Id: I0b018a623fc833ca95d249ee21667a8f5690d50e
2016-02-03 20:41:00 +00:00
/**
User::isSafeToLoad() should return false if MW_NO_SESSION Because it's never safe. Bug: T127233 Change-Id: Ieb5824f1668dc38d1be7c7cbf799da17e581c555
2016-02-23 22:05:15 +00:00
* Test if it's safe to load this User object.
*
* You should typically check this before using $wgUser or
* RequestContext::getUser in a method that might be called before the
* system has been fully initialized. If the object is unsafe, you should
* use an anonymous user:
Expand documentation of User::isSafeToLoad Change-Id: I7f018b7f7219e7a17a3059b3ec9cbdf1c2c1e043
2016-02-06 21:04:34 +00:00
* \code
* $user = $wgUser->isSafeToLoad() ? $wgUser : new User;
* \endcode
*
* @since 1.27
Add User::isSafeToLoad() and ParserOptions::newFromAnon() Useful for avoiding "User::loadFromSession called before the end of Setup.php". Bug: T124367 Change-Id: I0b018a623fc833ca95d249ee21667a8f5690d50e
2016-02-03 20:41:00 +00:00
* @return bool
*/
public function isSafeToLoad() {
global $wgFullyInitialised;
User::isSafeToLoad() should return false if MW_NO_SESSION Because it's never safe. Bug: T127233 Change-Id: Ieb5824f1668dc38d1be7c7cbf799da17e581c555
2016-02-23 22:05:15 +00:00
// The user is safe to load if:
// * MW_NO_SESSION is undefined AND $wgFullyInitialised is true (safe to use session data)
// * mLoadedItems === true (already loaded)
// * mFrom !== 'session' (sessions not involved at all)
return ( !defined( 'MW_NO_SESSION' ) && $wgFullyInitialised ) ||
$this->mLoadedItems === true || $this->mFrom !== 'session';
Add User::isSafeToLoad() and ParserOptions::newFromAnon() Useful for avoiding "User::loadFromSession called before the end of Setup.php". Bug: T124367 Change-Id: I0b018a623fc833ca95d249ee21667a8f5690d50e
2016-02-03 20:41:00 +00:00
}
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Load the user table data for this object from the source given by mFrom.
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
*
Use short type bool/int in param documentation Enable the phpcs sniffs for this and used phpcbf Change-Id: Iaa36687154ddd2bf663b9dd519f5c99409d37925
2017-08-20 11:20:59 +00:00
* @param int $flags User::READ_* constant bitfield
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Made User generally use DB_SLAVE by default * By default, users will load from the slave unless the thread did a recent DB write. This is to handle changes within a request. * ChronologyProtector should avoid staleness in common cases, and the CAS check on user_touched is a final barrier to block stale user object updates. * Note that passwords are not cached, so they hit the DB when ever needed. Passwords now load from slaves when possible, instead of the master. * This should get the code closer to handling user login and logged in users when the master is down. * Fixed loadFromId() when READ_LOCKING is used. * Also addressed TODO comment in load(). Bug: T92357 Change-Id: I0a8bdab720c19fe3fc2381799ae2e90ff09bb4cf
2015-03-29 01:01:27 +00:00
public function load( $flags = self::READ_NORMAL ) {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
global $wgFullyInitialised;
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
if ( $this->mLoadedItems === true ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
return;
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Set it now to avoid infinite recursion in accessors
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$oldLoadedItems = $this->mLoadedItems;
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
$this->mLoadedItems = true;
Made user preferences load from the master by default * Warn when saving slave-loaded data in saveSettings() * Respect the loading $flags for preferences/groups * Fixed use of flags in addToDatabase() * Made loadFromCache() protected to make this mess easier to reason about (no callers found) * Added some doc comments Bug: T92232 Change-Id: Ic1dd66063cc2f98fc03861df1c523981f846a0be
2015-03-25 00:30:26 +00:00
$this->queryFlagsUsed = $flags;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
// If this is called too early, things are likely to break.
Add User::isSafeToLoad() and ParserOptions::newFromAnon() Useful for avoiding "User::loadFromSession called before the end of Setup.php". Bug: T124367 Change-Id: I0b018a623fc833ca95d249ee21667a8f5690d50e
2016-02-03 20:41:00 +00:00
if ( !$wgFullyInitialised && $this->mFrom === 'session' ) {
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
LoggerFactory::getInstance( 'session' )
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
->warning( 'User::loadFromSession called before the end of Setup.php', [
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
'exception' => new Exception( 'User::loadFromSession called before the end of Setup.php' ),
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
] );
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$this->loadDefaults();
$this->mLoadedItems = $oldLoadedItems;
return;
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
switch ( $this->mFrom ) {
case 'defaults':
$this->loadDefaults();
break;
case 'id':
Force READ_LATEST for User::newFromId() if writes had been done The User::newFromName() case already does this, there seems to be no reason not to do it for User::newFromId() too. Bug: T188014 Change-Id: Ic7fdef0cc1f5750cb5e6b2a7f48f1549862b41cb
2018-02-23 18:25:10 +00:00
// Make sure this thread sees its own changes, if the ID isn't 0
if ( $this->mId != 0 ) {
$lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
ILoadBalancer/ILBFactory: Rename hasOrMadeRecentMasterChanges to hasOrMadeRecentPrimaryChanges Bug: T282894 Change-Id: I1d6130bcd09019f9e2de2974878902c7aafe8f0a
2021-09-02 19:35:05 +00:00
if ( $lb->hasOrMadeRecentPrimaryChanges() ) {
Force READ_LATEST for User::newFromId() if writes had been done The User::newFromName() case already does this, there seems to be no reason not to do it for User::newFromId() too. Bug: T188014 Change-Id: Ic7fdef0cc1f5750cb5e6b2a7f48f1549862b41cb
2018-02-23 18:25:10 +00:00
$flags |= self::READ_LATEST;
$this->queryFlagsUsed = $flags;
}
}
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
$this->loadFromId( $flags );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
break;
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
case 'actor':
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
case 'name':
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
// Make sure this thread sees its own changes
Replace wfGetLB @deprecated since 1.27 Change-Id: Ibdd49fdfc0d1511503e1ed2173a592c612996c53
2018-05-02 20:12:12 +00:00
$lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
ILoadBalancer/ILBFactory: Rename hasOrMadeRecentMasterChanges to hasOrMadeRecentPrimaryChanges Bug: T282894 Change-Id: I1d6130bcd09019f9e2de2974878902c7aafe8f0a
2021-09-02 19:35:05 +00:00
if ( $lb->hasOrMadeRecentPrimaryChanges() ) {
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
$flags |= self::READ_LATEST;
$this->queryFlagsUsed = $flags;
}
list( $index, $options ) = DBAccessObjectUtils::getDBOptions( $flags );
$row = wfGetDB( $index )->selectRow(
'actor',
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
[ 'actor_id', 'actor_user', 'actor_name' ],
Normalize IP addresses before writing/reading actor.actor_name This was almost always happening already but handling it in ActorMigration is less fragile. Also recover some lost tests. Bug: T272225 Change-Id: I24c82cfbd40595e79f64c6b0441c2cf789cfbbff
2021-01-26 04:22:57 +00:00
$this->mFrom === 'name'
// make sure to use normalized form of IP for anonymous users
? [ 'actor_name' => IPUtils::sanitizeIP( $this->mName ) ]
: [ 'actor_id' => $this->mActorId ],
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
__METHOD__,
$options
);
if ( !$row ) {
// Ugh.
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
$this->loadDefaults( $this->mFrom === 'name' ? $this->mName : false );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
} elseif ( $row->actor_user ) {
$this->mId = $row->actor_user;
$this->loadFromId( $flags );
} else {
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
$this->loadDefaults( $row->actor_name, $row->actor_id );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
}
break;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
case 'session':
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( !$this->loadFromSession() ) {
(bug 39674) Fixed loading User from session when hook aborts. Rather than have separate calls to User::loadDefaults() every time User::loadFromSession() fails, there is now just one call in User::load() if loadFromSession() returns false. This fixes the case where a UserLoadFromSession hook aborts loading from session, leaving the User object uninitialized. Change-Id: I8d1a114d7ec361b27b260791f742c473a1497f26 Signed-off-by: Tyler Anthony Romeo <tylerromeo@gmail.com>
2012-08-27 02:28:48 +00:00
// Loading from session failed. Load defaults.
$this->loadDefaults();
}
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserLoadAfterLoadFromSession( $this );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
break;
default:
Replace some MWException usage in User Change-Id: I61dbd6223354530311c497ad0f45ed49a573d0cb
2015-06-25 20:02:18 +00:00
throw new UnexpectedValueException(
"Unrecognised value for User->mFrom: \"{$this->mFrom}\"" );
* (bug 2629) Automatically capitalize usernames again instead of rejecting lowercase with a useless error message
2005-07-01 21:47:23 +00:00
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Load user table data, given mId has already been set.
Use short type bool/int in param documentation Enable the phpcs sniffs for this and used phpcbf Change-Id: Iaa36687154ddd2bf663b9dd519f5c99409d37925
2017-08-20 11:20:59 +00:00
* @param int $flags User::READ_* constant bitfield
Cleanup some docs (includes/*.php) - Swap "$variable type" to "type $variable" - Added missing types - Fixed spacing inside docs - Makes beginning of @param/@return/@var/@throws in capital - Changed some types to match the more common spelling Change-Id: I783e4dbfe5f6f98b32b9a03ccf6439e13e132bcc
2014-07-24 17:42:24 +00:00
* @return bool False if the ID does not exist, true otherwise
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Made User::loadFromId() use READ_NORMAL by default * This covers CentralAuthHooks::onUserLoadFromSession() among other cases (OAuth user loading, ect). Bug: T92357 Change-Id: I9c90027d8852ff8c1d626c03b5dbd765b95b0ce1
2015-06-25 20:03:43 +00:00
public function loadFromId( $flags = self::READ_NORMAL ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
if ( $this->mId == 0 ) {
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
// Anonymous users are not in the database (don't need cache)
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->loadDefaults();
return false;
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
}
* (bug 2943) AuthPlugin::getCanonicalName() name canonicalization hook, patch from robla http://bugzilla.wikimedia.org/show_bug.cgi?id=2943 http://bugzilla.wikimedia.org/attachment.cgi?id=739
2005-07-24 09:48:14 +00:00
More master -> primary documentation and internal var renaming Bug: T254646 Change-Id: I63cc8895033714bdfbf09aee933a8f0a43b387f3
2021-05-14 20:04:02 +00:00
// Try cache (unless this needs data from the primary DB).
Made User generally use DB_SLAVE by default * By default, users will load from the slave unless the thread did a recent DB write. This is to handle changes within a request. * ChronologyProtector should avoid staleness in common cases, and the CAS check on user_touched is a final barrier to block stale user object updates. * Note that passwords are not cached, so they hit the DB when ever needed. Passwords now load from slaves when possible, instead of the master. * This should get the code closer to handling user login and logged in users when the master is down. * Fixed loadFromId() when READ_LOCKING is used. * Also addressed TODO comment in load(). Bug: T92357 Change-Id: I0a8bdab720c19fe3fc2381799ae2e90ff09bb4cf
2015-03-29 01:01:27 +00:00
// NOTE: if this thread called saveSettings(), the cache was cleared.
Made User::loadFromId() skip cache with READ_LATEST * That flag is used for anti-dependencies and thus should never rely on cache Bug: T95839 Change-Id: I4ffc8325e55588ef649b96e7b90bc95282f765a9
2015-09-30 20:39:54 +00:00
$latest = DBAccessObjectUtils::hasFlags( $flags, self::READ_LATEST );
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
if ( $latest ) {
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
if ( !$this->loadFromDatabase( $flags ) ) {
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
// Can't load from ID
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
return false;
}
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
} else {
$this->loadFromCache();
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
}
Set $mLoadedItems to true in User::loadFromId() CentralAuth calls User::loadFromId() directly after calling setId(). This avoid having to load the object two times in this case. Change-Id: Iade37631a9346dff45e18acfa078af37c1fbbfab
2013-01-01 17:44:10 +00:00
$this->mLoadedItems = true;
Made user preferences load from the master by default * Warn when saving slave-loaded data in saveSettings() * Respect the loading $flags for preferences/groups * Fixed use of flags in addToDatabase() * Made loadFromCache() protected to make this mess easier to reason about (no callers found) * Added some doc comments Bug: T92232 Change-Id: Ic1dd66063cc2f98fc03861df1c523981f846a0be
2015-03-25 00:30:26 +00:00
$this->queryFlagsUsed = $flags;
Set $mLoadedItems to true in User::loadFromId() CentralAuth calls User::loadFromId() directly after calling setId(). This avoid having to load the object two times in this case. Change-Id: Iade37631a9346dff45e18acfa078af37c1fbbfab
2013-01-01 17:44:10 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
return true;
}
User: Migrate from foreign cache to global cache for UserRightsProxy Avoid having one wiki access another wiki's local keyspace. Instead, use the global keyspace to share values across wikis. Also, imitating wfMemcKey from wfForeignMemcKey was semantically incorrect due to $wgCachePrefix having precedence. Most interfaces (e.g. UserRightsProxy, FileRepo, JobQueue etc.) only have access to the wiki id (dbname + prefix). The local cache configuration for wgCachePrefix is not and shouldn't have to be exposed. Start enforcing that local cache keys are left private and to share keys, one must use global keys. Global keys (prefixed with "global:") have their own space and we can use the wiki-id as regular key segment for keys about users. Also: * Expose a method to keep formatting of this key in one place. As it used used in many different places in core, as well as in CentralAuth. * Make use of wfWikiId() in getDefaultKeyspace() to avoid duplicating this logic. Change-Id: I58836a24b9e239f460ab489bd2fe8ced8259833c
2015-10-27 23:43:40 +00:00
/**
* @since 1.27
Rename various $wikiId fields/parameters to $dbDomain in user classes Change-Id: I0d4455ff4a693de41b8985b1421b18d93527acd6
2019-06-28 01:23:18 +00:00
* @param string $dbDomain
Use short type bool/int in param documentation Enable the phpcs sniffs for this and used phpcbf Change-Id: Iaa36687154ddd2bf663b9dd519f5c99409d37925
2017-08-20 11:20:59 +00:00
* @param int $userId
User: Migrate from foreign cache to global cache for UserRightsProxy Avoid having one wiki access another wiki's local keyspace. Instead, use the global keyspace to share values across wikis. Also, imitating wfMemcKey from wfForeignMemcKey was semantically incorrect due to $wgCachePrefix having precedence. Most interfaces (e.g. UserRightsProxy, FileRepo, JobQueue etc.) only have access to the wiki id (dbname + prefix). The local cache configuration for wgCachePrefix is not and shouldn't have to be exposed. Start enforcing that local cache keys are left private and to share keys, one must use global keys. Global keys (prefixed with "global:") have their own space and we can use the wiki-id as regular key segment for keys about users. Also: * Expose a method to keep formatting of this key in one place. As it used used in many different places in core, as well as in CentralAuth. * Make use of wfWikiId() in getDefaultKeyspace() to avoid duplicating this logic. Change-Id: I58836a24b9e239f460ab489bd2fe8ced8259833c
2015-10-27 23:43:40 +00:00
*/
Rename various $wikiId fields/parameters to $dbDomain in user classes Change-Id: I0d4455ff4a693de41b8985b1421b18d93527acd6
2019-06-28 01:23:18 +00:00
public static function purge( $dbDomain, $userId ) {
Migrate some wfWikiId() callers to getLocalDomainID() Change-Id: I33fe222b7ca66babd61610febaebcf52d3806a7d
2018-10-15 22:20:50 +00:00
$cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
Rename various $wikiId fields/parameters to $dbDomain in user classes Change-Id: I0d4455ff4a693de41b8985b1421b18d93527acd6
2019-06-28 01:23:18 +00:00
$key = $cache->makeGlobalKey( 'user', 'id', $dbDomain, $userId );
Cache user data in memory Stores user data looked up in WAN cache in memory so that lookups in the same request do not result in new memcached lookups. Quick and dirty solution, but nicer ones are more difficult: * no idea what replacing WANObjectCache::get/set with getWithSetCallback (which has its own in-process cache) would do, the code is complex and completely different * would be nice to wrap the logic into a proxy object (like CachedBagOStuff) but WANObjectCache calls set() internally (and marks it final), so inheriting is not safe; the interface and implementation should be separated, and that means updating all external callers which do a type check. * ObjectCache::getInstance('hash') cannot be used because it has no item limit and this could eat up the memory with a script that iterates through lots of users The patch does not attempt to replicate tombstoning for User::clearSharedCache('refresh'). Based on Iec1504700a and Idef9a9d3. Change-Id: I419f356b0c306d16711b433da95dccdb44645154 Co-Authored-By: Ori Livneh <ori@wikimedia.org> Bug: T128157
2016-02-29 23:41:56 +00:00
$cache->delete( $key );
User: Migrate from foreign cache to global cache for UserRightsProxy Avoid having one wiki access another wiki's local keyspace. Instead, use the global keyspace to share values across wikis. Also, imitating wfMemcKey from wfForeignMemcKey was semantically incorrect due to $wgCachePrefix having precedence. Most interfaces (e.g. UserRightsProxy, FileRepo, JobQueue etc.) only have access to the wiki id (dbname + prefix). The local cache configuration for wgCachePrefix is not and shouldn't have to be exposed. Start enforcing that local cache keys are left private and to share keys, one must use global keys. Global keys (prefixed with "global:") have their own space and we can use the wiki-id as regular key segment for keys about users. Also: * Expose a method to keep formatting of this key in one place. As it used used in many different places in core, as well as in CentralAuth. * Make use of wfWikiId() in getDefaultKeyspace() to avoid duplicating this logic. Change-Id: I58836a24b9e239f460ab489bd2fe8ced8259833c
2015-10-27 23:43:40 +00:00
}
/**
* @since 1.27
* @param WANObjectCache $cache
* @return string
*/
protected function getCacheKey( WANObjectCache $cache ) {
Migrate some wfWikiId() callers to getLocalDomainID() Change-Id: I33fe222b7ca66babd61610febaebcf52d3806a7d
2018-10-15 22:20:50 +00:00
$lbFactory = MediaWikiServices::getInstance()->getDBLoadBalancerFactory();
return $cache->makeGlobalKey( 'user', 'id', $lbFactory->getLocalDomainID(), $this->mId );
User: Migrate from foreign cache to global cache for UserRightsProxy Avoid having one wiki access another wiki's local keyspace. Instead, use the global keyspace to share values across wikis. Also, imitating wfMemcKey from wfForeignMemcKey was semantically incorrect due to $wgCachePrefix having precedence. Most interfaces (e.g. UserRightsProxy, FileRepo, JobQueue etc.) only have access to the wiki id (dbname + prefix). The local cache configuration for wgCachePrefix is not and shouldn't have to be exposed. Start enforcing that local cache keys are left private and to share keys, one must use global keys. Global keys (prefixed with "global:") have their own space and we can use the wiki-id as regular key segment for keys about users. Also: * Expose a method to keep formatting of this key in one place. As it used used in many different places in core, as well as in CentralAuth. * Make use of wfWikiId() in getDefaultKeyspace() to avoid duplicating this logic. Change-Id: I58836a24b9e239f460ab489bd2fe8ced8259833c
2015-10-27 23:43:40 +00:00
}
objectcache: add WANObjectCacheReaper for assuring purges * This fixes keys based on some sort of change log. Updates are wrapped in a mutex and keep track of the last known good position. * Make WANObjectReapUpdate class that cleans up title related keys using the recentchanges table. This triggers as a deferred updates on RC view. Change-Id: I7f14b9ca2533032147e62b1a3cc004a23da86579
2016-09-03 04:43:16 +00:00
/**
* @param WANObjectCache $cache
* @return string[]
* @since 1.28
*/
public function getMutableCacheKeys( WANObjectCache $cache ) {
$id = $this->getId();
return $id ? [ $this->getCacheKey( $cache ) ] : [];
}
Move code to load User data from cache out of loadFromId This way, outside code can load data from cache only if present. E.g. when data for a lot of users is needed, it'd be preferable to batch-load all that is not yet in cache. Since there's currently no way to check for data in cache, one would have to load all User objects separately (which may result in lots of DB queries if nothing is in cache) or batch-load all of them (which may result in few DB queries, but ones that may not be needed if all data is already in cache) Change-Id: Ia22d04744760c3b6f3264786434e218b8aa88d53
2013-12-09 14:15:13 +00:00
/**
* Load user data from shared cache, given mId has already been set.
*
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
* @return bool True
Move code to load User data from cache out of loadFromId This way, outside code can load data from cache only if present. E.g. when data for a lot of users is needed, it'd be preferable to batch-load all that is not yet in cache. Since there's currently no way to check for data in cache, one would have to load all User objects separately (which may result in lots of DB queries if nothing is in cache) or batch-load all of them (which may result in few DB queries, but ones that may not be needed if all data is already in cache) Change-Id: Ia22d04744760c3b6f3264786434e218b8aa88d53
2013-12-09 14:15:13 +00:00
* @since 1.25
*/
Made user preferences load from the master by default * Warn when saving slave-loaded data in saveSettings() * Respect the loading $flags for preferences/groups * Fixed use of flags in addToDatabase() * Made loadFromCache() protected to make this mess easier to reason about (no callers found) * Added some doc comments Bug: T92232 Change-Id: Ic1dd66063cc2f98fc03861df1c523981f846a0be
2015-03-25 00:30:26 +00:00
protected function loadFromCache() {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
global $wgFullyInitialised;
Stop overwriting $cache in User::getCacheKey() Replace a few deprecated function calls Bug: T215483 Change-Id: I000b58d8bf67d9c1ea0123a7547b986e8ca69f25
2019-02-07 03:30:57 +00:00
$cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
$data = $cache->getWithSetCallback(
$this->getCacheKey( $cache ),
$cache::TTL_HOUR,
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
function ( $oldValue, &$ttl, array &$setOpts ) use ( $cache, $wgFullyInitialised ) {
Rename DB_SLAVE constant to DB_REPLICA This is more consistent with LoadBalancer, modern, and inclusive of master/master mysql, NDB cluster, and MariaDB galera cluster. The old constant is an alias now. Change-Id: I0b37299ecb439cc446ffbe8c341365d1eef45849
2016-09-05 19:55:19 +00:00
$setOpts += Database::getCacheSetOptions( wfGetDB( DB_REPLICA ) );
Remove terminating line breaks from debug messages A terminating line break has not been required in wfDebug() since 2014, however no migration was done. Some of these line breaks found their way into LoggerInterface::debug() calls, where they mess up the formatting of the debug log. So, remove terminating line breaks from wfDebug() and LoggerInterface::debug() calls. Also: * Fix the stripping of leading line breaks from the log header emitted by Setup.php. This feature, accidentally broken in 2014, allows requests to be distinguished in the log file. * Avoid using the global variable $self. * Move the logging of the client IP back to Setup.php. It was moved to WebRequest in the hopes that it would not always be needed, however $wgRequest->getIP() is now called unconditionally a few lines up in Setup.php. This means that it is put in its proper place after the "start request" message. * Wrap the log header code in a closure so that variables like $name do not leak into global scope. * In Linker.php, remove a few instances of an unnecessary second parameter to wfDebug(). Change-Id: I96651d3044a95b9d210b51cb8368edc76bebbb9e
2020-06-01 05:00:39 +00:00
wfDebug( "User: cache miss for user {$this->mId}" );
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
Use READ_NORMAL for User cache regenerations This fixes a regression from 3bbccc8da64b6. A large uptick in master queries showed in DBPerformance logs. Change-Id: I5cf07aba2c3f928005d3aba55554c406e87026e2
2016-06-09 07:15:20 +00:00
$this->loadFromDatabase( self::READ_NORMAL );
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
$data = [];
foreach ( self::$mCacheVars as $name ) {
$data[$name] = $this->$name;
}
Explicit cast TS_UNIX to int for arithmetic operations and int args When the called function has a doc of int, it should be cast to be explicit here. Also cast for arithmetic operations to be explicit about the number Change-Id: I905b78dfb66e66443e0e3203488bab5b548db543
2021-10-16 21:47:01 +00:00
$ttl = $cache->adaptiveTTL( (int)wfTimestamp( TS_UNIX, $this->mTouched ), $ttl );
objectcache: add and use adaptiveTTL() method * This better handles delayed/lost cache purges by having lower TTLs for entries that often changes. * Use this for foreign upload description page caches, we purges are never received from the source wiki. * Also use this for User and LocalFile cache TTLs. * Also move the Database::getCacheSetOptions() call in User *before* doing the queries, which is preferred. * Fixed some IDEA errors too, like the undeclared mApiBase field. Change-Id: I70f8ebb29ac853c2a530d9eedb9e7facc1b7b710
2016-08-21 21:53:55 +00:00
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
if ( $wgFullyInitialised ) {
$groupMemberships = MediaWikiServices::getInstance()
->getUserGroupManager()
->getUserGroupMemberships( $this, $this->queryFlagsUsed );
// if a user group membership is about to expire, the cache needs to
// expire at that time (T163691)
foreach ( $groupMemberships as $ugm ) {
if ( $ugm->getExpiry() ) {
$secondsUntilExpiry =
Explicit cast TS_UNIX to int for arithmetic operations and int args When the called function has a doc of int, it should be cast to be explicit here. Also cast for arithmetic operations to be explicit about the number Change-Id: I905b78dfb66e66443e0e3203488bab5b548db543
2021-10-16 21:47:01 +00:00
(int)wfTimestamp( TS_UNIX, $ugm->getExpiry() ) - time();
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
if ( $secondsUntilExpiry > 0 && $secondsUntilExpiry < $ttl ) {
$ttl = $secondsUntilExpiry;
}
Expire the cache of a User object when a group membership is set to expire To avoid user permissions persisting for up to 1 hour beyond their expiry time. Bug: T163691 Change-Id: I85b578e6b7816639c3d0101d66efb1efedb17af6
2017-04-25 03:55:26 +00:00
}
}
}
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
return $data;
},
[ 'pcTTL' => $cache::TTL_PROC_LONG, 'version' => self::VERSION ]
);
Move code to load User data from cache out of loadFromId This way, outside code can load data from cache only if present. E.g. when data for a lot of users is needed, it'd be preferable to batch-load all that is not yet in cache. Since there's currently no way to check for data in cache, one would have to load all User objects separately (which may result in lots of DB queries if nothing is in cache) or batch-load all of them (which may result in few DB queries, but ones that may not be needed if all data is already in cache) Change-Id: Ia22d04744760c3b6f3264786434e218b8aa88d53
2013-12-09 14:15:13 +00:00
// Restore from cache
foreach ( self::$mCacheVars as $name ) {
$this->$name = $data[$name];
}
return true;
}
Improve custom folding and grouping PHPStorm can use custom folding regions defined in either the VisualStudio style or the NetBeans style. The VisualStudio style is more pleasing to the eye and also works as a vim foldmarker. So get rid of the previous vim foldmarkers, and use region/endregion. region/endregion need to be in a single-line comment which is not a doc comment, and the rest of the comment is used as a region heading (by both PHPStorm and vim). So to retain Doxygen @name tags, it is necessary to repeat the section heading, once in a @name and once in a region. Establish a standard style for this, with a divider and three spaces before the heading, to better set off the heading name in plain text. Besides being the previous vim foldmarker, @{ is also a Doxygen grouping command. However, almost all prior usages of @{ ... @} in this sense were broken for one reason or another. It's necessary for the @{ to be in a doc comment, and DISTRIBUTE_GROUP_DOC doesn't work if any of the individual members in the group are separately documented. @name alone is sufficient to create a Doxygen section when the sections are adjacent, but if there is ungrouped content after the section, it is necessary to use @{ ... @} to avoid having the Doxygen group run on. So I retained, fixed or added @{ ... @} in certain cases. I wasn't able to test the changes to the trait documentation in Doxygen since trait syntax is not recognised and the output is badly broken. Change-Id: I7d819fdb376c861f40bfc01aed74cd3706141b20
2020-12-22 23:52:00 +00:00
/***************************************************************************/
// region newFrom*() static factory methods
/** @name newFrom*() static factory methods
* @{
*/
WARNING! NEEDS CAREFUL DEPLOYMENT * Bug 9213: Fixed the plainly broken user_newtalk updating and caching scheme. I tried to keep my changes roughly performance-neutral, but the update on Wikimedia should be watched carefully for performance problems. * Made UserMailer a class, use the autoloader to load it * General UserMailer refactoring * If the user has email-on-newtalk enabled, send them an email for every change, not just the first one before they view the page again. * Don't add a watchlist entry automatically on change of user talk page
2007-10-03 08:46:17 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
* @see UserFactory::newFromName
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*
User: soft deprecate a bunch of functions Replaced by relevant services * newFromName -> UserFactory * newFromId -> UserFactory * newFromActorId -> UserFactory * newFromIdentity -> UserFactory * newFromAnyId -> UserFactory * newFromConfirmationCode -> UserFactory * getFirstEditTimestamp -> UserEditTracker * getLatestEditTimestamp -> UserEditTracker Change-Id: Idc30fc1834ac02c29b66092cb2282fea8ae91987
2021-03-12 18:59:12 +00:00
* @deprecated since 1.36, use a UserFactory instead
*
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* This is slightly less efficient than newFromId(), so use newFromId() if
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* you have both an ID and a name handy.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $name Username, validated by Title::newFromText()
Drop User methods which were deprecated since 1.35 The following User methods, deprecated in 1.35, have been removed: - ::isIP, - ::isIPRange, - ::isValidUserName, - ::isUsableName, - ::isCreatableName, - ::getCanonicalName, - ::addAutopromoteOnceGroups, - ::getDefaultOptions, - ::getDefaultOption, - ::getOptions, - ::getBoolOption, - ::getIntOption, - ::setOption - ::listOptionKinds - ::getOptionKinds, - ::resetOptions, - ::getEffectiveGroups, - ::getAutomaticGroups, - ::getFormerGroups User::GETOPTIONS_EXCLUDE_DEFAULTS has been removed, since it is used only in the description of User::getOptions. Bug: T277511 Depends-On: Ida05c22f81b30d9b46678e8ede3d531c38855d83 Change-Id: I72bbc2336f8ddbc66ce67226cd2d5baaa2f807d8
2021-11-09 13:32:23 +00:00
* @param string|bool $validate Validate username.Type of validation to use:
* - false No validation
* - 'valid' Valid for batch processes
* - 'usable' Valid for batch processes and login
* - 'creatable' Valid for batch processes, login and account creation,
* except that true is accepted as an alias for 'valid', for BC.
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
*
Improve type hint Eclipse and phpstorm where showing 'User' as return type before, which causes me to not check for false somewhere and thus fatals happening :) Change-Id: Ibd5b5598f05e6b08481ad65060c7cae18762dc4e
2012-11-28 19:37:05 +00:00
* @return User|bool User object, or false if the username is invalid
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* (e.g. if it contains illegal characters or is an IP address). If the
* username is not present in the database, the result will be a user object
* with a name, zero user ID and default settings.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public static function newFromName( $name, $validate = 'valid' ) {
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
// Backwards compatibility with strings / false
$validationLevels = [
Add UserRigorOptions interface Bug: T253432 Change-Id: I6618fc862da7043449ffda02e4428a5df0303e1c
2020-09-29 17:04:22 +00:00
'valid' => UserFactory::RIGOR_VALID,
'usable' => UserFactory::RIGOR_USABLE,
'creatable' => UserFactory::RIGOR_CREATABLE
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
];
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
if ( $validate === true ) {
$validate = 'valid';
}
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
if ( $validate === false ) {
Add UserRigorOptions interface Bug: T253432 Change-Id: I6618fc862da7043449ffda02e4428a5df0303e1c
2020-09-29 17:04:22 +00:00
$validation = UserFactory::RIGOR_NONE;
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
} elseif ( array_key_exists( $validate, $validationLevels ) ) {
$validation = $validationLevels[ $validate ];
} else {
// Not a recognized value, probably a test for unsupported validation
// levels, regardless, just pass it along
$validation = $validate;
* Sensible error messages when illegal title chars given in username * Don't double the login form when asked to send pass for no email user Fixes bug 448: failure message on "mail password" is shown twice http://bugzilla.wikipedia.org/show_bug.cgi?id=448
2004-09-11 06:58:47 +00:00
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
$user = MediaWikiServices::getInstance()
->getUserFactory()
->newFromName( (string)$name, $validation );
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
// UserFactory returns null instead of false
if ( $user === null ) {
$user = false;
}
return $user;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Static factory method for creation from a given user ID.
*
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
* @see UserFactory::newFromId
*
User: soft deprecate a bunch of functions Replaced by relevant services * newFromName -> UserFactory * newFromId -> UserFactory * newFromActorId -> UserFactory * newFromIdentity -> UserFactory * newFromAnyId -> UserFactory * newFromConfirmationCode -> UserFactory * getFirstEditTimestamp -> UserEditTracker * getLatestEditTimestamp -> UserEditTracker Change-Id: Idc30fc1834ac02c29b66092cb2282fea8ae91987
2021-03-12 18:59:12 +00:00
* @deprecated since 1.36, use a UserFactory instead
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param int $id Valid user ID
Remove some more comments that literally repeat the code … including PHPDoc tags like `@return <type> $variableName`. A return value doesn't have a variable name. I can see that some people do this intentionally, repeating the variable name that was used in the final `return $var;` at the end of a method. This can indeed be helpful. I leave a lot of these untouched and removed them only when it's obviously wrong, or does not provide any additional information in addition to what the code already says. Change-Id: Ia18cd9f25ef658b08ad25b97a744897e2a8deffc
2021-06-17 14:32:05 +00:00
* @return User
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public static function newFromId( $id ) {
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
return MediaWikiServices::getInstance()
->getUserFactory()
->newFromId( (int)$id );
Initial revision
2003-04-14 23:10:40 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
/**
* Static factory method for creation from a given actor ID.
*
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
* @see UserFactory::newFromActorId
*
User: soft deprecate a bunch of functions Replaced by relevant services * newFromName -> UserFactory * newFromId -> UserFactory * newFromActorId -> UserFactory * newFromIdentity -> UserFactory * newFromAnyId -> UserFactory * newFromConfirmationCode -> UserFactory * getFirstEditTimestamp -> UserEditTracker * getLatestEditTimestamp -> UserEditTracker Change-Id: Idc30fc1834ac02c29b66092cb2282fea8ae91987
2021-03-12 18:59:12 +00:00
* @deprecated since 1.36, use a UserFactory instead
*
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* @since 1.31
* @param int $id Valid actor ID
Remove some more comments that literally repeat the code … including PHPDoc tags like `@return <type> $variableName`. A return value doesn't have a variable name. I can see that some people do this intentionally, repeating the variable name that was used in the final `return $var;` at the end of a method. This can indeed be helpful. I leave a lot of these untouched and removed them only when it's obviously wrong, or does not provide any additional information in addition to what the code already says. Change-Id: Ia18cd9f25ef658b08ad25b97a744897e2a8deffc
2021-06-17 14:32:05 +00:00
* @return User
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
*/
public static function newFromActorId( $id ) {
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
return MediaWikiServices::getInstance()
->getUserFactory()
->newFromActorId( (int)$id );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
}
[MCR] Factor PageUpdater out of WikiPage This introduces PageUpdater to replace WikiPage::doEditContent, and DerivedPageDataUpdater, to replace WikiPage::doEditUpdates and WikiPage::prepareContentForEdit. See docs/pageupdater.txt for a description of their functionality. MCR migration notes: * The interface of PageUpdater is expected to remain mostly stable after this patch. Code that has been using WikiPage::doEditContent can be confidently migrated to using the new mechanism for revision creation. * This patch keeps the code inside PageUpdater largely aligned with the old code in WikiPage, to make review easier to to avoid mistakes. It is intended to be refactored further, moving application logic into stateless services. * DerivedPageDataUpdate is intended as a stepping stone for further refactoring. Its behavior is designed to be compatible with callback code that currently relies on WikiPage::prepareContentForEdit. Much of the code that currently lives in DerivedPageDataUpdate should be factored out into services, all behavior relevant to calling code should be exposed via narrow interfaces. Bug: T174038 Bug: T196653 Change-Id: If610c68f4912e89af616cdcac1d35a1be3946afa
2018-01-27 01:48:19 +00:00
/**
* Returns a User object corresponding to the given UserIdentity.
*
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
* @see UserFactory::newFromUserIdentity
*
User: soft deprecate a bunch of functions Replaced by relevant services * newFromName -> UserFactory * newFromId -> UserFactory * newFromActorId -> UserFactory * newFromIdentity -> UserFactory * newFromAnyId -> UserFactory * newFromConfirmationCode -> UserFactory * getFirstEditTimestamp -> UserEditTracker * getLatestEditTimestamp -> UserEditTracker Change-Id: Idc30fc1834ac02c29b66092cb2282fea8ae91987
2021-03-12 18:59:12 +00:00
* @deprecated since 1.36, use a UserFactory instead
*
[MCR] Factor PageUpdater out of WikiPage This introduces PageUpdater to replace WikiPage::doEditContent, and DerivedPageDataUpdater, to replace WikiPage::doEditUpdates and WikiPage::prepareContentForEdit. See docs/pageupdater.txt for a description of their functionality. MCR migration notes: * The interface of PageUpdater is expected to remain mostly stable after this patch. Code that has been using WikiPage::doEditContent can be confidently migrated to using the new mechanism for revision creation. * This patch keeps the code inside PageUpdater largely aligned with the old code in WikiPage, to make review easier to to avoid mistakes. It is intended to be refactored further, moving application logic into stateless services. * DerivedPageDataUpdate is intended as a stepping stone for further refactoring. Its behavior is designed to be compatible with callback code that currently relies on WikiPage::prepareContentForEdit. Much of the code that currently lives in DerivedPageDataUpdate should be factored out into services, all behavior relevant to calling code should be exposed via narrow interfaces. Bug: T174038 Bug: T196653 Change-Id: If610c68f4912e89af616cdcac1d35a1be3946afa
2018-01-27 01:48:19 +00:00
* @since 1.32
*
* @param UserIdentity $identity
*
* @return User
*/
public static function newFromIdentity( UserIdentity $identity ) {
PermissionManagerTest cleanup, part 5 Split unit tests into a separate class Change-Id: I630d40b8093ff221337f47187246d9891adfaad6
2020-10-18 01:02:40 +00:00
// Don't use the service if we already have a User object,
// so that User::newFromIdentity calls don't break things in unit tests.
if ( $identity instanceof User ) {
return $identity;
}
Move User::newFromIdentity logic to UserFactory Simplest static constructor for Users, no dependencies on anything else Bug: T253432 Change-Id: Ibe422de4f1753334f2737bc39e077b1e4173ad45
2020-06-12 18:21:21 +00:00
return MediaWikiServices::getInstance()
->getUserFactory()
->newFromUserIdentity( $identity );
[MCR] Factor PageUpdater out of WikiPage This introduces PageUpdater to replace WikiPage::doEditContent, and DerivedPageDataUpdater, to replace WikiPage::doEditUpdates and WikiPage::prepareContentForEdit. See docs/pageupdater.txt for a description of their functionality. MCR migration notes: * The interface of PageUpdater is expected to remain mostly stable after this patch. Code that has been using WikiPage::doEditContent can be confidently migrated to using the new mechanism for revision creation. * This patch keeps the code inside PageUpdater largely aligned with the old code in WikiPage, to make review easier to to avoid mistakes. It is intended to be refactored further, moving application logic into stateless services. * DerivedPageDataUpdate is intended as a stepping stone for further refactoring. Its behavior is designed to be compatible with callback code that currently relies on WikiPage::prepareContentForEdit. Much of the code that currently lives in DerivedPageDataUpdate should be factored out into services, all behavior relevant to calling code should be exposed via narrow interfaces. Bug: T174038 Bug: T196653 Change-Id: If610c68f4912e89af616cdcac1d35a1be3946afa
2018-01-27 01:48:19 +00:00
}
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
/**
* Static factory method for creation from an ID, name, and/or actor ID
*
* This does not check that the ID, name, and actor ID all correspond to
* the same user.
*
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
* @see UserFactory::newFromAnyId
*
User: soft deprecate a bunch of functions Replaced by relevant services * newFromName -> UserFactory * newFromId -> UserFactory * newFromActorId -> UserFactory * newFromIdentity -> UserFactory * newFromAnyId -> UserFactory * newFromConfirmationCode -> UserFactory * getFirstEditTimestamp -> UserEditTracker * getLatestEditTimestamp -> UserEditTracker Change-Id: Idc30fc1834ac02c29b66092cb2282fea8ae91987
2021-03-12 18:59:12 +00:00
* @deprecated since 1.36, use a UserFactory instead
*
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* @since 1.31
* @param int|null $userId User ID, if known
* @param string|null $userName User name, if known
* @param int|null $actorId Actor ID, if known
Rename various $wikiId fields/parameters to $dbDomain in user classes Change-Id: I0d4455ff4a693de41b8985b1421b18d93527acd6
2019-06-28 01:23:18 +00:00
* @param bool|string $dbDomain remote wiki to which the User/Actor ID applies, or false if none
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* @return User
*/
Rename various $wikiId fields/parameters to $dbDomain in user classes Change-Id: I0d4455ff4a693de41b8985b1421b18d93527acd6
2019-06-28 01:23:18 +00:00
public static function newFromAnyId( $userId, $userName, $actorId, $dbDomain = false ) {
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
return MediaWikiServices::getInstance()
->getUserFactory()
->newFromAnyId( $userId, $userName, $actorId, $dbDomain );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
}
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* Factory method to fetch whichever user has a given email confirmation code.
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
* This code is generated when an account is created or its e-mail address
* has changed.
*
* If the code is invalid or has expired, returns NULL.
*
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
* @see UserFactory::newFromConfirmationCode
*
User: soft deprecate a bunch of functions Replaced by relevant services * newFromName -> UserFactory * newFromId -> UserFactory * newFromActorId -> UserFactory * newFromIdentity -> UserFactory * newFromAnyId -> UserFactory * newFromConfirmationCode -> UserFactory * getFirstEditTimestamp -> UserEditTracker * getLatestEditTimestamp -> UserEditTracker Change-Id: Idc30fc1834ac02c29b66092cb2282fea8ae91987
2021-03-12 18:59:12 +00:00
* @deprecated since 1.36, use a UserFactory instead
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $code Confirmation code
Make Special:ConfirmEmail load the user from the master * This can help guard against stale reads if the user was created or changed a second ago. Bug: T105896 Change-Id: Ib2a59762cd8f4a4b7ad86d0700f186bee1d5b2d1
2015-08-03 23:20:39 +00:00
* @param int $flags User::READ_* bitfield
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return User|null
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Use DBAccessObjectUtils in some User methods. Use DBAccessObjectUtils in these two User methods: * User::newFromConfirmationCode() and User::IdForname() Change-Id: I6c109d336debe1dc142479e43e613383a7b74325
2020-09-09 19:58:16 +00:00
public static function newFromConfirmationCode( $code, $flags = self::READ_NORMAL ) {
Migrate more User::newFrom* methods to UserFactory Bug: T253432 Depends-On: If5e76f2ae570ef4ae58cb77b5281c4446a1cadff Change-Id: I9286d4a69911a84661cba40c55c0a4e3f1b7f7f3
2020-10-02 02:46:22 +00:00
return MediaWikiServices::getInstance()
->getUserFactory()
->newFromConfirmationCode( (string)$code, $flags );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
__sleep() function, just like in 1.4, for the same reasons (i.e. caching bug)
2005-06-25 13:41:59 +00:00
/**
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* Create a new user object using data from session. If the login
* credentials are invalid, the result is an anonymous user.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*
Don't access $wgRequest from User Some User methods fail if they are called before $wgRequest is set. But according to the Setup.php comment, it is only set for b/c. The global request object can be lazy-initialised at any time. This is sufficient to avoid T263911 (loss/obfuscation of the $wgServer error message). In tests, try to keep $wgRequest and RequestContext::$request in sync. Introduce MediaWikiIntegrationTestCase::setRequest() which sets both at once, and use that instead of setMwGlobals() or direct assignment. BlockManagerTest was accidentally exploiting the fact that the global context request and $wgRequest were separate objects. Making them the same causes session cookies to appear in the response, breaking the cookie counts. Use a new response for the test. Bug: T263911 Bug: T245940 Change-Id: I2be99f7251a837bc6b62be0b152038157dec10f2
2020-12-15 09:47:15 +00:00
* @param WebRequest|null $request Object to use; the global request will be used if omitted.
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @return User
__sleep() function, just like in 1.4, for the same reasons (i.e. caching bug)
2005-06-25 13:41:59 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public static function newFromSession( WebRequest $request = null ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$user = new User;
$user->mFrom = 'session';
* Pass the WebRequest object to User::newFromSession() and use it instead of $wgRequest (will still fall back to $wgRequest if not passed or another method to get an User object) * Always call User::newFromSession(), not only when not in CLI mode * Removed User::$mSkin, unused and not set
2011-07-06 16:42:16 +00:00
$user->mRequest = $request;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
return $user;
__sleep() function, just like in 1.4, for the same reasons (i.e. caching bug)
2005-06-25 13:41:59 +00:00
}
Initial revision
2003-04-14 23:10:40 +00:00
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
/**
* Create a new user object from a user row.
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
* The row should have the following fields from the user table in it:
* - either user_name or user_id to load further data if needed (or both)
* - user_real_name
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
* - all other fields (email, etc.)
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
* It is useless to provide the remaining fields if either user_id,
* user_name and user_real_name are not provided because the whole row
* will be loaded once more from the database when accessing them.
*
Update documentation related to newFromRow and formatRow Change-Id: I65e5923c4dc3a63bd9cdbbc5fdcb572ab0cb9cae
2013-12-27 12:56:52 +00:00
* @param stdClass $row A row from the user table
Fix PhanTypeMismatchDeclaredParam Auto fix MediaWiki.Commenting.FunctionComment.DefaultNullTypeParam sniff Change-Id: I865323fd0295aabd06f3e3c75e0e5043fb31069e
2018-06-26 21:14:43 +00:00
* @param array|null $data Further data to load into the object
* (see User::loadFromRow for valid keys)
More documentation formatting
2011-01-06 15:55:56 +00:00
* @return User
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
*/
Make action=query&list=users use User::getRights() Made action=query&list=users use User::getRights() if usprop rights given. This not only removes redundant code, but makes it execute the UserGetRights hook, so that this now includes rights given by Extensions (eg. CentralAuth does that). Patch Set 2: Modified the User class to be able to inject further data into User::newFromRow() and using that to inject the groups taken out of one SQL query (for performance reasons). Furthermore I've split up the query in ApiQueryUsers.php into one for user data and one for the groups, to only have one row for each user. After all the perfomance of this should now be ok, not extremly good, but bearable (though I couldn't test it deeply, as I don't have much data in my CentralAuth environment). Change-Id: Ie5b2924abb82ac254c77e1d04cc4d5b308962dad
2012-09-11 23:45:35 +00:00
public static function newFromRow( $row, $data = null ) {
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
$user = new User;
Make action=query&list=users use User::getRights() Made action=query&list=users use User::getRights() if usprop rights given. This not only removes redundant code, but makes it execute the UserGetRights hook, so that this now includes rights given by Extensions (eg. CentralAuth does that). Patch Set 2: Modified the User class to be able to inject further data into User::newFromRow() and using that to inject the groups taken out of one SQL query (for performance reasons). Furthermore I've split up the query in ApiQueryUsers.php into one for user data and one for the groups, to only have one row for each user. After all the perfomance of this should now be ok, not extremly good, but bearable (though I couldn't test it deeply, as I don't have much data in my CentralAuth environment). Change-Id: Ie5b2924abb82ac254c77e1d04cc4d5b308962dad
2012-09-11 23:45:35 +00:00
$user->loadFromRow( $row, $data );
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
return $user;
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
/**
* Static factory method for creation of a "system" user from username.
*
* A "system" user is an account that's used to attribute logged actions
* taken by MediaWiki itself, as opposed to a bot or human user. Examples
* might include the 'Maintenance script' or 'Conversion script' accounts
* used by various scripts in the maintenance/ directory or accounts such
* as 'MediaWiki message delivery' used by the MassMessage extension.
*
* This can optionally create the user if it doesn't exist, and "steal" the
* account if it does exist.
*
Document what User::newSystemUser()'s "stealing" does Also improves a few other comments in the method. Change-Id: I87e293c0ef487ef15bee8fbe1085d530c99a7b07
2016-05-24 15:05:47 +00:00
* "Stealing" an existing user is intended to make it impossible for normal
* authentication processes to use the account, effectively disabling the
* account for normal use:
* - Email is invalidated, to prevent account recovery by emailing a
* temporary password and to disassociate the account from the existing
* human.
* - The token is set to a magic invalid value, to kill existing sessions
* and to prevent $this->setToken() calls from resetting the token to a
* valid value.
* - SessionManager is instructed to prevent new sessions for the user, to
* do things like deauthorizing OAuth consumers.
* - AuthManager is instructed to revoke access, to invalidate or remove
* passwords and other credentials.
*
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
* @param string $name Username
* @param array $options Options are:
Drop User methods which were deprecated since 1.35 The following User methods, deprecated in 1.35, have been removed: - ::isIP, - ::isIPRange, - ::isValidUserName, - ::isUsableName, - ::isCreatableName, - ::getCanonicalName, - ::addAutopromoteOnceGroups, - ::getDefaultOptions, - ::getDefaultOption, - ::getOptions, - ::getBoolOption, - ::getIntOption, - ::setOption - ::listOptionKinds - ::getOptionKinds, - ::resetOptions, - ::getEffectiveGroups, - ::getAutomaticGroups, - ::getFormerGroups User::GETOPTIONS_EXCLUDE_DEFAULTS has been removed, since it is used only in the description of User::getOptions. Bug: T277511 Depends-On: Ida05c22f81b30d9b46678e8ede3d531c38855d83 Change-Id: I72bbc2336f8ddbc66ce67226cd2d5baaa2f807d8
2021-11-09 13:32:23 +00:00
* - validate: Type of validation to use:
* - false No validation
* - 'valid' Valid for batch processes
* - 'usable' Valid for batch processes and login
* - 'creatable' Valid for batch processes, login and account creation,
* default 'valid'. Deprecated since 1.36.
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
* - create: Whether to create the user if it doesn't already exist, default true
Document what User::newSystemUser()'s "stealing" does Also improves a few other comments in the method. Change-Id: I87e293c0ef487ef15bee8fbe1085d530c99a7b07
2016-05-24 15:05:47 +00:00
* - steal: Whether to "disable" the account for normal use if it already
* exists, default false
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
* @return User|null
@since for User::newSystemUser Change-Id: Id67a8fcf2f1616e48268ca9105094a8a66b79d73
2016-05-14 08:06:55 +00:00
* @since 1.27
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
*/
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
public static function newSystemUser( $name, $options = [] ) {
$options += [
Clean up User::newSystemUser Prepare for eventual move to a service Change-Id: I4c7924ed0e49cef69dc8262e2f3bb80686866793
2020-11-23 00:37:17 +00:00
'validate' => UserNameUtils::RIGOR_VALID,
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
'create' => true,
'steal' => false,
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
];
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
Clean up User::newSystemUser Prepare for eventual move to a service Change-Id: I4c7924ed0e49cef69dc8262e2f3bb80686866793
2020-11-23 00:37:17 +00:00
// Username validation
// Backwards compatibility with strings / false
$validationLevels = [
'valid' => UserNameUtils::RIGOR_VALID,
'usable' => UserNameUtils::RIGOR_USABLE,
'creatable' => UserNameUtils::RIGOR_CREATABLE
];
$validate = $options['validate'];
// @phan-suppress-next-line PhanSuspiciousValueComparison
if ( $validate === false ) {
$validation = UserNameUtils::RIGOR_NONE;
} elseif ( array_key_exists( $validate, $validationLevels ) ) {
$validation = $validationLevels[ $validate ];
} else {
// Not a recognized value, probably a test for unsupported validation
// levels, regardless, just pass it along
$validation = $validate;
}
Hard-deprecate User::newSystemUser validation parameter. Broad goal: we would like to stardadize better on normalizing user names. Idea of this patch: 1. The 'validate' parameter is not used anywhere. 2. For possible validation levels: - NONE will create a user with non-canonicalized user name in DB, which in many codepaths will be inaccessible, since in many codepaths we canonicalize the user name. It could be potentially useful for creating system users with IP as a name, but I would argue it's a very bad idea. - VALID is the default. - USABLE/CREATABLE - these check for reserved user names, so most of the use-cases will want a system user with a reserved name. Passing USABLE/CREATABLE essentially means you want to subsume a usable non-reserved user account for system user, which is not a great idea. if some code ever needs to do it (now none passes these options) - then it can just use UserNameUtils and check explicitly. Bug: T273933 Change-Id: I6f17349d84bd558df41fecfd19895e8c0dde4067
2021-02-10 17:09:22 +00:00
if ( $validation !== UserNameUtils::RIGOR_VALID ) {
wfDeprecatedMsg(
__METHOD__ . ' options["validation"] parameter must be omitted or set to "valid".',
'1.36'
);
}
Clean up User::newSystemUser Prepare for eventual move to a service Change-Id: I4c7924ed0e49cef69dc8262e2f3bb80686866793
2020-11-23 00:37:17 +00:00
$services = MediaWikiServices::getInstance();
$userNameUtils = $services->getUserNameUtils();
$name = $userNameUtils->getCanonical( (string)$name, $validation );
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
if ( $name === false ) {
return null;
}
Clean up User::newSystemUser Prepare for eventual move to a service Change-Id: I4c7924ed0e49cef69dc8262e2f3bb80686866793
2020-11-23 00:37:17 +00:00
$loadBalancer = $services->getDBLoadBalancer();
$dbr = $loadBalancer->getConnectionRef( DB_REPLICA );
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
$userQuery = self::getQueryInfo();
Avoid DB_MASTER queries in User::newSystemUser() when possible Bug: T92357 Change-Id: I1c90fef9b4f3acc658f4911a8db6f985e7cc7c83
2017-05-14 23:56:04 +00:00
$row = $dbr->selectRow(
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
$userQuery['tables'],
$userQuery['fields'],
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
[ 'user_name' => $name ],
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
__METHOD__,
[],
$userQuery['joins']
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
);
Avoid DB_MASTER queries in User::newSystemUser() when possible Bug: T92357 Change-Id: I1c90fef9b4f3acc658f4911a8db6f985e7cc7c83
2017-05-14 23:56:04 +00:00
if ( !$row ) {
More master -> primary documentation and internal var renaming Bug: T254646 Change-Id: I63cc8895033714bdfbf09aee933a8f0a43b387f3
2021-05-14 20:04:02 +00:00
// Try the primary database...
Replace uses of DB_MASTER with DB_PRIMARY Just an auto-replace from codesniffer for now. Change-Id: I5240dc9ac5929d291b0ef1c743ea2bfd3f428266
2021-04-29 02:37:11 +00:00
$dbw = $loadBalancer->getConnectionRef( DB_PRIMARY );
Avoid DB_MASTER queries in User::newSystemUser() when possible Bug: T92357 Change-Id: I1c90fef9b4f3acc658f4911a8db6f985e7cc7c83
2017-05-14 23:56:04 +00:00
$row = $dbw->selectRow(
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
$userQuery['tables'],
$userQuery['fields'],
Avoid DB_MASTER queries in User::newSystemUser() when possible Bug: T92357 Change-Id: I1c90fef9b4f3acc658f4911a8db6f985e7cc7c83
2017-05-14 23:56:04 +00:00
[ 'user_name' => $name ],
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
__METHOD__,
[],
$userQuery['joins']
Avoid DB_MASTER queries in User::newSystemUser() when possible Bug: T92357 Change-Id: I1c90fef9b4f3acc658f4911a8db6f985e7cc7c83
2017-05-14 23:56:04 +00:00
);
}
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
if ( !$row ) {
// No user. Create it?
User: Allow newSystemUser() to create over anonymous actors Various maintenance scripts assume reserved usernames like "MediaWiki default" exist, but since they're reserved User::isUsableName() returns false and therefore the actor migration created them as anonymous actors. Which would then prevent those maintenance scripts from using User::newSystemUser() to ensure they actually exist. This adjusts User::newSystemUser() to be able to create users for those anonymous actors. This also adjusts uses of "MediaWiki default" in core to create it as a system user. Bug: T236444 Change-Id: I59a646df36ff9343cc43c05aa20b2b69b2ee124a
2019-10-28 15:51:05 +00:00
if ( !$options['create'] ) {
// No.
return null;
}
// If it's a reserved user that had an anonymous actor created for it at
// some point, we need special handling.
build: Upgrade mediawiki-codesniffer from v35.0.0 to v36.0.0 Change-Id: I8905d0d69738a1cd6997c104080fdf128d315e8b
2021-04-29 16:24:12 +00:00
return self::insertNewUser( static function ( UserIdentity $actor, IDatabase $dbw ) {
User: use ActorNormalization to insert actor While creating users, we have several interesting corner cases: - When creating a new User, we actually rely on the 'unique' constraint on actor_name. This is important if something calls 'User::createNew' with a name that is already occupied by an existing anon actor with no user. This is quite a weird corner case, but there's a test for that. We could probably assimilate this nicly in actor store by checking whether the user id in the database for the actor we found is the same as user id in the passed in user identity. - Even more interesting use-case is 'subsuming' existing actors with reserved user names. When we call User::newSystemUser, and there is already an actor with the same reserved name, we 'subsume' that actor and take over it's actor_id for our new system user. This can now be done with an upsert. This state of having reserved actor with no user is not easy to cause, but imports or updating from old MW versions seem to be able to produce this state. Archeology revealed that 'subsuming' existing actor was added for installer. Change-Id: I16b2f088217db0283215fc2ef5fb04a3742e1626
2021-04-07 17:32:17 +00:00
return MediaWikiServices::getInstance()->getActorStore()->acquireSystemActorId( $actor, $dbw );
}, $name, [ 'token' => self::INVALID_TOKEN ] );
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
}
Avoid DB_MASTER queries in User::newSystemUser() when possible Bug: T92357 Change-Id: I1c90fef9b4f3acc658f4911a8db6f985e7cc7c83
2017-05-14 23:56:04 +00:00
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
$user = self::newFromRow( $row );
Split out separate `User::isSystemUser` method. Drawing from comments associated with `User::newSystemUser` for checking if a user is a system user, a new method, `User:isSystemUser` is split out to avoid duplication elsewhere. Bug: T237356 Change-Id: I73f25a10df2c28a69f612eb1db3e91b7125383d9
2019-11-05 22:42:09 +00:00
if ( !$user->isSystemUser() ) {
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
// User exists. Steal it?
if ( !$options['steal'] ) {
return null;
}
Clean up User::newSystemUser Prepare for eventual move to a service Change-Id: I4c7924ed0e49cef69dc8262e2f3bb80686866793
2020-11-23 00:37:17 +00:00
$services->getAuthManager()->revokeAccessForUser( $name );
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
$user->invalidateEmail();
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
$user->mToken = self::INVALID_TOKEN;
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
$user->saveSettings();
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
SessionManager::singleton()->preventSessionsForUser( $user->getName() );
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
}
return $user;
}
Improve custom folding and grouping PHPStorm can use custom folding regions defined in either the VisualStudio style or the NetBeans style. The VisualStudio style is more pleasing to the eye and also works as a vim foldmarker. So get rid of the previous vim foldmarkers, and use region/endregion. region/endregion need to be in a single-line comment which is not a doc comment, and the rest of the comment is used as a region heading (by both PHPStorm and vim). So to retain Doxygen @name tags, it is necessary to repeat the section heading, once in a @name and once in a region. Establish a standard style for this, with a divider and three spaces before the heading, to better set off the heading name in plain text. Besides being the previous vim foldmarker, @{ is also a Doxygen grouping command. However, almost all prior usages of @{ ... @} in this sense were broken for one reason or another. It's necessary for the @{ to be in a doc comment, and DISTRIBUTE_GROUP_DOC doesn't work if any of the individual members in the group are separately documented. @name alone is sufficient to create a Doxygen section when the sections are adjacent, but if there is ungrouped content after the section, it is necessary to use @{ ... @} to avoid having the Doxygen group run on. So I retained, fixed or added @{ ... @} in certain cases. I wasn't able to test the changes to the trait documentation in Doxygen since trait syntax is not recognised and the output is badly broken. Change-Id: I7d819fdb376c861f40bfc01aed74cd3706141b20
2020-12-22 23:52:00 +00:00
/** @} */
// endregion -- end of newFrom*() static factory methods
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the username corresponding to a given user ID
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param int $id User ID
User: Improve doc of ::whoIs/whoIsReal and ::resetOptions Change-Id: I1bf2588d70ee85d62aad184f48c8ef1c6e6e375d
2021-06-28 20:03:47 +00:00
* @return string|false The corresponding username
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Revision objects now always use the current name of users, loading it on demand if necessary (e.g. when given a $row with no user_name but rev_user is not 0)
2011-10-21 23:20:52 +00:00
public static function whoIs( $id ) {
Added UserCache class for doing name/title batch lookups. * Made Special:ListFiles be the first user of this class. Change-Id: I2ea068d4765fe6ae12445786c38217119e79f823
2012-05-19 20:41:41 +00:00
return UserCache::singleton()->getProp( $id, 'name' );
Initial revision
2003-04-14 23:10:40 +00:00
}
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the real name of a user given their user ID
Tweak confusing comment for User::whoIsReal()
2007-08-14 01:17:08 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param int $id User ID
User: Improve doc of ::whoIs/whoIsReal and ::resetOptions Change-Id: I1bf2588d70ee85d62aad184f48c8ef1c6e6e375d
2021-06-28 20:03:47 +00:00
* @return string|false The corresponding user's real name
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public static function whoIsReal( $id ) {
Added UserCache class for doing name/title batch lookups. * Made Special:ListFiles be the first user of this class. Change-Id: I2ea068d4765fe6ae12445786c38217119e79f823
2012-05-19 20:41:41 +00:00
return UserCache::singleton()->getProp( $id, 'real_name' );
Changed Metadata to use users' real names, if provided. If not, use their user names, as "$wgSitename user Foo". Added a static method to the User class to fetch a real name given an ID, and added a pattern for specifying user names in Language.php.
2004-04-23 22:34:33 +00:00
}
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Phpdoc comments
2004-09-04 13:06:25 +00:00
* Get database id given a user name
Replace User::idFromName with ActorStore Depends-On: I87fdac02a88aba52a2174949f8736a9a36d3edf7 Depends-On: I812c49009665515778cd354d6c62a17ee24f3625 Change-Id: I5369e9714a3ec653c19ad81f02402e4aa1b22553
2021-04-06 20:53:56 +00:00
* @deprecated since 1.37. Use UserIdentityLookup::getUserIdentityByName instead.
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $name Username
Use short type bool/int in param documentation Enable the phpcs sniffs for this and used phpcbf Change-Id: Iaa36687154ddd2bf663b9dd519f5c99409d37925
2017-08-20 11:20:59 +00:00
* @param int $flags User::READ_* constant bitfield
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return int|null The corresponding user's ID, or null if user is nonexistent
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Made User generally use DB_SLAVE by default * By default, users will load from the slave unless the thread did a recent DB write. This is to handle changes within a request. * ChronologyProtector should avoid staleness in common cases, and the CAS check on user_touched is a final barrier to block stale user object updates. * Note that passwords are not cached, so they hit the DB when ever needed. Passwords now load from slaves when possible, instead of the master. * This should get the code closer to handling user login and logged in users when the master is down. * Fixed loadFromId() when READ_LOCKING is used. * Also addressed TODO comment in load(). Bug: T92357 Change-Id: I0a8bdab720c19fe3fc2381799ae2e90ff09bb4cf
2015-03-29 01:01:27 +00:00
public static function idFromName( $name, $flags = self::READ_NORMAL ) {
Replace User::idFromName with ActorStore Depends-On: I87fdac02a88aba52a2174949f8736a9a36d3edf7 Depends-On: I812c49009665515778cd354d6c62a17ee24f3625 Change-Id: I5369e9714a3ec653c19ad81f02402e4aa1b22553
2021-04-06 20:53:56 +00:00
$actor = MediaWikiServices::getInstance()
->getUserIdentityLookup()
->getUserIdentityByName( (string)$name, $flags );
if ( $actor && $actor->getId() ) {
return $actor->getId();
Add in-process caching to User::idFromName
2009-06-26 14:28:25 +00:00
}
Replace User::idFromName with ActorStore Depends-On: I87fdac02a88aba52a2174949f8736a9a36d3edf7 Depends-On: I812c49009665515778cd354d6c62a17ee24f3625 Change-Id: I5369e9714a3ec653c19ad81f02402e4aa1b22553
2021-04-06 20:53:56 +00:00
return null;
Initial revision
2003-04-14 23:10:40 +00:00
}
New update script, Version.php, new salted passwords, minor fixes.
2003-04-16 07:30:52 +00:00
Add User::findUsersByGroup() Needed by Iee6e0074d64. Change-Id: Idbaf2102410f82343ad38ff51ccb7ab70b15e654
2016-07-27 01:44:53 +00:00
/**
* Return the users who are members of the given group(s). In case of multiple groups,
* users who are members of at least one of them are returned.
*
* @param string|array $groups A single group name or an array of group names
* @param int $limit Max number of users to return. The actual limit will never exceed 5000
* records; larger values are ignored.
Fix PhanTypeMismatchDeclaredParam Auto fix MediaWiki.Commenting.FunctionComment.DefaultNullTypeParam sniff Change-Id: I865323fd0295aabd06f3e3c75e0e5043fb31069e
2018-06-26 21:14:43 +00:00
* @param int|null $after ID the user to start after
Fix User::findUsersByGroup() return type doc Bug: T189967 Change-Id: Ie4853e12abb32fe4fecfb5f1232015ea67223191
2021-03-14 06:25:18 +00:00
* @return UserArrayFromResult|ArrayIterator
Add User::findUsersByGroup() Needed by Iee6e0074d64. Change-Id: Idbaf2102410f82343ad38ff51ccb7ab70b15e654
2016-07-27 01:44:53 +00:00
*/
public static function findUsersByGroup( $groups, $limit = 5000, $after = null ) {
if ( $groups === [] ) {
return UserArrayFromResult::newFromIDs( [] );
}
$groups = array_unique( (array)$groups );
$limit = min( 5000, $limit );
$conds = [ 'ug_group' => $groups ];
if ( $after !== null ) {
$conds[] = 'ug_user > ' . (int)$after;
}
Rename DB_SLAVE constant to DB_REPLICA This is more consistent with LoadBalancer, modern, and inclusive of master/master mysql, NDB cluster, and MariaDB galera cluster. The old constant is an alias now. Change-Id: I0b37299ecb439cc446ffbe8c341365d1eef45849
2016-09-05 19:55:19 +00:00
$dbr = wfGetDB( DB_REPLICA );
Add User::findUsersByGroup() Needed by Iee6e0074d64. Change-Id: Idbaf2102410f82343ad38ff51ccb7ab70b15e654
2016-07-27 01:44:53 +00:00
$ids = $dbr->selectFieldValues(
'user_groups',
'ug_user',
$conds,
__METHOD__,
[
'DISTINCT' => true,
'ORDER BY' => 'ug_user',
'LIMIT' => $limit,
]
) ?: [];
return UserArray::newFromIDs( $ids );
}
* Fixed a bug that would occour if $wgCapitalLinks was set to false, a user agent could create a username that began with a lower case letter that was not in the ASCII character set ( now user $wgContLang->ucfirst() instead of PHP ucfirst() ) * Moved the user name / password validity checking from LoginForm::addNewAccountInternal() to two new functions, User::isValidUserName() and User::isValidPassword(), extensions can now do these checks without rewriting code.
2005-06-27 06:33:45 +00:00
/**
* Clean up User::isValidPassword() * Document 'isValidPassword' hook
2007-07-17 16:44:40 +00:00
* Is the input a valid password for this user?
* Fixed a bug that would occour if $wgCapitalLinks was set to false, a user agent could create a username that began with a lower case letter that was not in the ASCII character set ( now user $wgContLang->ucfirst() instead of PHP ucfirst() ) * Moved the user name / password validity checking from LoginForm::addNewAccountInternal() to two new functions, User::isValidUserName() and User::isValidPassword(), extensions can now do these checks without rewriting code.
2005-06-27 06:33:45 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $password Desired password
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
* Fixed a bug that would occour if $wgCapitalLinks was set to false, a user agent could create a username that began with a lower case letter that was not in the ASCII character set ( now user $wgContLang->ucfirst() instead of PHP ucfirst() ) * Moved the user name / password validity checking from LoginForm::addNewAccountInternal() to two new functions, User::isValidUserName() and User::isValidPassword(), extensions can now do these checks without rewriting code.
2005-06-27 06:33:45 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isValidPassword( $password ) {
Deprecate User::getPasswordValidity() Unused, the return format does not seem useful. Also improve the documentation of $wgPasswordPolicy and PasswordPolicyChecks. Change-Id: Ic01e80cfefc4cfb0eee1eccc6a66942f692278a0
2018-12-20 22:44:04 +00:00
// simple boolean wrapper for checkPasswordValidity
return $this->checkPasswordValidity( $password )->isGood();
* function isValidPassword modified to return boolean(true/false) * Added function getPasswordValidity return error message on failure for the given unvalidated password input. * Replaced isValidPassword() fn call to getPasswordValidity() in SpecialUserlogin.php
2009-10-19 03:01:11 +00:00
}
Refactor password validity checking Refactor the password checks to return a status object, so the function can handle the entire error message, or return multiple error messages. This patchset aims to keep the functionality identical. A followup patchset can further improve the functionality. E.g., although getPasswordValidity stated it could return an array of messages, it never did so except from the hook, so most callers expect and handle a single string. Change-Id: I87644486f5572dc067ebdbacd01fb39c67e5612a
2014-03-12 01:47:29 +00:00
/**
SECURITY: Set maximal password length for DoS Prevent DoS attacks caused by the amount of time it takes to hash long passwords by setting a limit on password length. Slightly restructures the behavior of User::checkPasswordValidity in order to accommodate for the difference between passwords the user should be able to log in with and passwords they should not. Bug: T64685 Change-Id: I24f33474c6f934fb8d94bb054dc23093abfebd5e
2014-12-26 16:29:15 +00:00
* Check if this is a valid password for this user
*
Add force option to password policy Adds a way to set an array of options for a password policy. Currently there is one option, 'forceChange', which forces the user to change their password (if it fails the given check) before logging in. Bug: T118774 Change-Id: I28c31fc4eae08c3ac44eff3a05f5e785ce4b9e01
2019-01-02 06:17:30 +00:00
* Returns a Status object with a set of messages describing
* problems with the password. If the return status is fatal,
* the action should be refused and the password should not be
* checked at all (this is mainly meant for DoS mitigation).
* If the return value is OK but not good, the password can be checked,
* but the user should not be able to set their password to this.
* The value of the returned Status object will be an array which
* can have the following fields:
* - forceChange (bool): if set to true, the user should not be
* allowed to log with this password unless they change it during
* the login process (see ResetPasswordSecondaryAuthenticationProvider).
Add password policy setting `suggestChangeOnLogin` Password policy checks that fail and have `suggestChangeOnLogin` set to true will prompt for a password change on login. Below are some rules that apply to this setting in different scenarios: - If only one policy fails and has `suggestChangeOnLogin = false`, a password change will not be requested - If more than one policy fails and one or more have `suggestChangeOnLogin` set to true`, a password change will be requested - If `forceChange` is present in any of the failing policies, `suggestChangeOnLogin` value will be ignored and password change will be enforced - if $wgInvalidPasswordReset is set to false `suggestChangeOnLogin` is ignored IMPORTANT** Before this patch, suggesting a password change was the default behavior (depending on $wgInvalidPasswordReset), which means that the necessary changes to $wgPasswordPolicy need to be in place before this patch is merged and gets to production. Bug: T211621 Change-Id: I7a4a0a06273fa4e8bd0da3dac54cf5a1b78bb3fd
2019-02-20 06:02:33 +00:00
* - suggestChangeOnLogin (bool): if set to true, the user should be prompted for
* a password change on login.
Refactor password validity checking Refactor the password checks to return a status object, so the function can handle the entire error message, or return multiple error messages. This patchset aims to keep the functionality identical. A followup patchset can further improve the functionality. E.g., although getPasswordValidity stated it could return an array of messages, it never did so except from the hook, so most callers expect and handle a single string. Change-Id: I87644486f5572dc067ebdbacd01fb39c67e5612a
2014-03-12 01:47:29 +00:00
*
* @param string $password Desired password
* @return Status
* @since 1.23
*/
Remove $purpose parameter from password validity check This was added in I56b6600 in an attempt to work around a bug in CentralAuth, but the bug has since been fixed in a better way. No hook functions in Gerrit use the parameter (or ever have, as far as I can tell), and anything that was passing a value other than the default 'login' has since been removed. So let's just get rid of it instead of keeping it around doing nothing. Change-Id: Ie604e03d268706221161ac93eb866f477e466fb4
2016-12-01 23:30:23 +00:00
public function checkPasswordValidity( $password ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$passwordPolicy = MediaWikiServices::getInstance()->getMainConfig()->get( 'PasswordPolicy' );
* Whitespace fixups * followup r66675 - Robla caught a problem with the parameter munging
2011-01-26 17:48:58 +00:00
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003
2015-04-23 01:48:48 +00:00
$upp = new UserPasswordPolicy(
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$passwordPolicy['policies'],
$passwordPolicy['checks']
Revert r75588 and r77381. Block just the tainted pairs of username/passwords until a proper solution for weak passwords is added, hopefully for 1.18.
2010-12-26 22:55:32 +00:00
);
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
Add force option to password policy Adds a way to set an array of options for a password policy. Currently there is one option, 'forceChange', which forces the user to change their password (if it fails the given check) before logging in. Bug: T118774 Change-Id: I28c31fc4eae08c3ac44eff3a05f5e785ce4b9e01
2019-01-02 06:17:30 +00:00
$status = Status::newGood( [] );
Fix issues identified by SpaceBeforeSingleLineComment sniff Change-Id: I048ccb1fa260e4b7152ca5f09b053defdd72d8f9
2015-09-11 13:44:59 +00:00
$result = false; // init $result to false for the internal checks
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
if ( !$this->getHookRunner()->onIsValidPassword( $password, $result, $this ) ) {
Refactor password validity checking Refactor the password checks to return a status object, so the function can handle the entire error message, or return multiple error messages. This patchset aims to keep the functionality identical. A followup patchset can further improve the functionality. E.g., although getPasswordValidity stated it could return an array of messages, it never did so except from the hook, so most callers expect and handle a single string. Change-Id: I87644486f5572dc067ebdbacd01fb39c67e5612a
2014-03-12 01:47:29 +00:00
$status->error( $result );
return $status;
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
}
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
* re-commit r58172 with the fix for the issue mentioned where users would not be able to log in
2009-10-28 17:53:36 +00:00
if ( $result === false ) {
Add force option to password policy Adds a way to set an array of options for a password policy. Currently there is one option, 'forceChange', which forces the user to change their password (if it fails the given check) before logging in. Bug: T118774 Change-Id: I28c31fc4eae08c3ac44eff3a05f5e785ce4b9e01
2019-01-02 06:17:30 +00:00
$status->merge( $upp->checkUserPassword( $this, $password ), true );
Password validity by policy per group Make password policies defined in a configurable policy, which is defined by group. A user's password policy will be the maximum of each group policy that the user belongs to. Bug: T94774 Change-Id: Iad8e49ffcffed38df6293db0ef31a227d3962003
2015-04-23 01:48:48 +00:00
return $status;
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
}
if ( $result === true ) {
Refactor password validity checking Refactor the password checks to return a status object, so the function can handle the entire error message, or return multiple error messages. This patchset aims to keep the functionality identical. A followup patchset can further improve the functionality. E.g., although getPasswordValidity stated it could return an array of messages, it never did so except from the hook, so most callers expect and handle a single string. Change-Id: I87644486f5572dc067ebdbacd01fb39c67e5612a
2014-03-12 01:47:29 +00:00
return $status;
(bug 19157) createAndPromote error on bad password * Tweak User::isValidPassword() and hook. Return a STRING msg key on failure, not false. Updated all callers to handle this * Split too-short/match username errors for clarity * Update docs, messages. * Merge fix for bug from maintenance-work branch
2009-06-27 16:53:27 +00:00
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
$status->error( $result );
return $status; // the isValidPassword hook set a string $result and returned true
* Fixed a bug that would occour if $wgCapitalLinks was set to false, a user agent could create a username that began with a lower case letter that was not in the ASCII character set ( now user $wgContLang->ucfirst() instead of PHP ucfirst() ) * Moved the user name / password validity checking from LoginForm::addNewAccountInternal() to two new functions, User::isValidUserName() and User::isValidPassword(), extensions can now do these checks without rewriting code.
2005-06-27 06:33:45 +00:00
}
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* Set cached properties to default.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* @note This no longer clears uncached lazy-initialised properties;
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* the constructor does that instead.
Documentation updates Add a couple of missing explicit class variables
2011-07-18 20:11:53 +00:00
*
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @param string|bool $name
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
* @param int|null $actorId
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
public function loadDefaults( $name = false, $actorId = null ) {
Moved user_newtalk fetch to later in execution, i.e. on demand. This should reduce total query count, and also allows connection errors to work again.
2004-10-23 08:26:48 +00:00
$this->mId = 0;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->mName = $name;
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
$this->mActorId = $actorId;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->mRealName = '';
$this->mEmail = '';
Much more graceful way of not showing logged-in pages to logged-out users
2005-01-18 03:06:20 +00:00
Enforce MW_NO_SESSION, add MW_NO_SESSION_HANDLER When an entry point specifies MW_NO_SESSION, actually enforce that by having both SessionManager and PHP's session handling (session_start() and friends) throw exceptions. If an entry point needs the old behavior of using PHP's default session handling (as defined in php.ini), it should define MW_NO_SESSION_HANDLER instead of or in addition to MW_NO_SESSION. This also makes PHPSessionHandler be installed in CLI mode, where it wasn't installed before. Bug: T127233 Change-Id: I2a3db06ee8e44a044096c57a819b5fd5e51c5c5c
2016-02-18 20:56:40 +00:00
$loggedOut = $this->mRequest && !defined( 'MW_NO_SESSION' )
? $this->mRequest->getSession()->getLoggedOutTimestamp() : 0;
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
if ( $loggedOut !== 0 ) {
* Pass the WebRequest object to User::newFromSession() and use it instead of $wgRequest (will still fall back to $wgRequest if not passed or another method to get an User object) * Always call User::newFromSession(), not only when not in CLI mode * Removed User::$mSkin, unused and not set
2011-07-06 16:42:16 +00:00
$this->mTouched = wfTimestamp( TS_MW, $loggedOut );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
} else {
(bug 40899) Cache resources for anonymous users Changes mTouched for anonymous users to '1' because '0' is treated as 'now' by wfTimestamp() Change-Id: If0d77f72dc776c4709a1e5da360fbd6273178b29
2012-10-09 22:20:05 +00:00
$this->mTouched = '1'; # Allow any pages to be cached
Much more graceful way of not showing logged-in pages to logged-out users
2005-01-18 03:06:20 +00:00
}
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
$this->mToken = null; // Don't run cryptographic functions till we need a token
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->mEmailAuthenticated = null;
$this->mEmailToken = '';
$this->mEmailTokenExpires = null;
* (bug 1735) Revamped protection interface * (bug 675) Add page protection level for unregistered/new accounts * User::isNewbie now uses the registration date and $wgAutoconfirmAge * Log views show message when no matches
2005-12-22 05:41:06 +00:00
$this->mRegistration = wfTimestamp( TS_MW );
* s~\t+$~~
2006-01-07 13:31:29 +00:00
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserLoadDefaults( $this, $name );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
/**
* Return whether an item has been loaded.
*
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @param string $item Item to check. Current possibilities:
* - id
* - name
* - realname
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $all 'all' to check if the whole object has been loaded
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* or any other string to check if only the item is available (e.g.
* for optimisation)
* @return bool
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
*/
public function isItemLoaded( $item, $all = 'all' ) {
return ( $this->mLoadedItems === true && $all === 'all' ) ||
( isset( $this->mLoadedItems[$item] ) && $this->mLoadedItems[$item] === true );
}
/**
* Set that an item has been loaded
*
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
* @internal Only public for use in UserFactory
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @param string $item
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
*/
Move User::newFromName logic to UserFactory Bug: T253432 Change-Id: I0df34c01fdaf139848be47178f7e26c9d63929d6
2020-09-27 02:08:38 +00:00
public function setItemLoaded( $item ) {
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
if ( is_array( $this->mLoadedItems ) ) {
$this->mLoadedItems[$item] = true;
}
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* Load user data from the session.
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if the user is logged in, false otherwise.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Method User::loadFromSession() is private. If you want to create a user object from a session, use the static method User::newFromSession().
2007-04-25 20:00:18 +00:00
private function loadFromSession() {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
// MediaWiki\Session\Session already did the necessary authentication of the user
// returned here, so just use it if applicable.
$session = $this->getRequest()->getSession();
$user = $session->getUser();
Swap out uses of User->isLoggedIn() with ->isRegistered() Bug: T270450 Change-Id: I90ff94a553ebae9a4ef97c25c333f067f19c327d
2020-12-17 23:10:11 +00:00
if ( $user->isRegistered() ) {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$this->loadFromUserObject( $user );
Defer cookie block checks to resolve a circular dependency User needs to load user preferences to get preferred language, which calls User::load() which calls User::loadFromSession(). User::loadFromSession() tries to load blocks which might use messages which need user language which calls User::load() because the previous call to it haven't completed yet... We have a protection against infinite recursion to prevent this from completely crashing MW, however this patch fixes the main issue: loading too much stuff when a User is initialized. Bug: T180050 Change-Id: I63af6d2239b36124d5ed382b8d2aab82c8d54d69
2019-06-26 06:00:07 +00:00
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
// Other code expects these to be set in the session, so set them.
$session->set( 'wsUserID', $this->getId() );
$session->set( 'wsUserName', $this->getName() );
$session->set( 'wsToken', $this->getToken() );
Send a cookie with IP/IP-Range blocks when blocking logged-out users A cookie will be set when ip users try to edit and their IP has been blocked or if they try to create an account and the block prevents account creation This feature is disabled by default and can be enabled by setting the new $wgCookieSetOnIpBlock config variable to true. Note: this is meant to discourage vandals that try to avoid blocks by switching their ip address while editing anonymously. Bug: T152462 Change-Id: I0b78a5e174bcd882edea39e868a08f9a347f5aba
2018-05-17 05:55:02 +00:00
Remove SessionManager, temporarily The plan here is to take it out of 1.27.0-wmf.12 and put it back in 1.27.0-wmf.13. Since BotPasswords depends on SessionManager, that's getting temporarily removed too. This reverts the following commits: * 6acd424e0dbc322e8b9a141bd2625453c1b9b6f1 SessionManager: Notify AuthPlugin before calling hooks * 4d1ad32d8acbd443346253d2f6a95024c833295c Close a loophole in CookieSessionProvider * fcdd643a46d87b677f6cdcc3ba9440e1472d8df7 SessionManager: Don't save non-persisted sessions to backend storage * 058aec4c76129b7ee8541692a8a48f8046e15bb6 MessageCache: Don't get a ParserOptions for $wgUser before the end of Setup.php * b5c0c03bb708f8dad6e404969df8addc123984db SessionManager: Save user name to metadata even if the user doesn't exist locally * 13f2f09a193215aa7a061d10a1955e172d06fa0a SECURITY: Fix User::setToken() call on User::newSystemUser * 305bc75b27903237a9683ec1f329bcbec0ecd266 SessionManager: Don't generate user tokens when checking the tokens * 7c4bd85d2152fd9fa975ea0fb5ffb1a0b804f99b RequestContext::exportSession() should only export persisted session IDs * 296ccfd4a9a6ad3ae412db7e2408c923aaa61f64 SessionManager: Save 'persisted' flag in session metadata * 94ba53f67731b0553a6178841d9506e384f74496 Move CSRF token handling into MediaWiki\Session\Session * 46a565d6b00174e631d2022b47677e1a78e73897 Avoid false "added in both Session and $_SESSION" when value is null * c00d0b5d94c946b8883dd7062bf7160a199aa5c2 Log backtrace for "User::loadFromSession called before the end of Setup.php" * 4eeff5b559e2ae7b8fa1f45572968ba28573a421 Use $wgSecureCookie to decide whether to actually mark secure cookies as 'secure' * 7491b52f700e220814a8190781fd794b4dd88a20 Call session_cache_limiter() before starting a session * 2c34aeea72471f9a598e67bdbf34bc5f9fb3f0c5 SessionManager: Abstract forceHTTPS cookie setting * 9aa53627a53aabec0273cecf45a86e77927ef406 Ignore auth cookies with value 'deleted' * 43f904b51a746d7f71ea2ab9951c5c98d269765b SessionManager: Kill getPersistedSessionId() * 50c52563528ba3d765c3762211f98d6f3c0e39fd SessionManager: Add SessionBackend::setProviderMetadata() * f640d403154bc0a2b4f6d399582797a9e3bc6fcb SessionManager: Notify AuthPlugin when auto-creating accounts * 70b05d1ac1e859bac2185b246e9b93ec9051e4d8 Add checks of $wgEnableBotPasswords in more places * bfed32eb78b6c720b16bc7ed60153fd2fe257a9e Do not raise a PHP warning when session write fails * 722a7331ad8d98228511f8da38adc7a3c64dd617 Only check LoggedOut timestamp on the user loaded from session * 4f5057b84b36eccd16627a6b29831dfdb4483b02 SessionManager: Change behavior of getSessionById() * 66e82e614e157e39b03d813e71ddf23f53cf640b Fix typo in [[MediaWiki:Botpasswords-editexisting/en]] * f9fd9516d922d36291037baca7205a2b0ac9f15f Add "bot passwords" * d7716f1df0b692902571bf415a0984071e3e9a60 Add missing argument for wfDebugLog * a73c5b7395a07d490f7052fd3b2491ebd656b190 Add SessionManager Change-Id: I2389a8133e25ab929e9f27f41fa9a05df8147a50
2016-02-01 17:28:29 +00:00
return true;
}
Send a cookie with IP/IP-Range blocks when blocking logged-out users A cookie will be set when ip users try to edit and their IP has been blocked or if they try to create an account and the block prevents account creation This feature is disabled by default and can be enabled by setting the new $wgCookieSetOnIpBlock config variable to true. Note: this is meant to discourage vandals that try to avoid blocks by switching their ip address while editing anonymously. Bug: T152462 Change-Id: I0b78a5e174bcd882edea39e868a08f9a347f5aba
2018-05-17 05:55:02 +00:00
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
return false;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
* Load user data from the database.
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
* $this->mId must be set, this is how the user is identified.
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
*
Use short type bool/int in param documentation Enable the phpcs sniffs for this and used phpcbf Change-Id: Iaa36687154ddd2bf663b9dd519f5c99409d37925
2017-08-20 11:20:59 +00:00
* @param int $flags User::READ_* constant bitfield
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if the user exists, false if the user is anonymous
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
public function loadFromDatabase( $flags = self::READ_LATEST ) {
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Paranoia
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->mId = intval( $this->mId );
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( !$this->mId ) {
User: Simplify process cache by using WANObjectCache::getWithSetCallback Follows-up 7d67b4d919, 9c733318. * Convert loadFromId() to use getWithSetCallback() and centralise cache access logic there instead of spread between loadFromCache() and saveToCache(). * Remove process cache from User class (added in 9c733318). Instead, tell WANObjectCache to process-cache the key for 30 seconds. * No need to deal with process cache in purge() because load uses slaves by default and may be lagged. Reads that require READ_LATEST already bypass the cache. * Remove saveToCache() and move logic to loadFromCache(). It was technically a public method, but marked private and no longer used in any extensions. * Remove redundant isAnon() check in loadFromCache(). This is already done by loadFromId() and loadFromDatabase(). * Remove hasOrMadeRecentMasterChanges() check. It was used to add READ_LATEST to the flags. However, this check only occurred if either READ_LATEST was already set, or after consulting cache. Which means in general, it never does anything. If we want to keep this, we should probably move it higher up. * Let WANObjectCache handle cache version. That way, there is no longer separate logic for "populate cache" and "cache lookup failed". Instead, there is just "get data" that tries cache first. I've considered moving the version into the cache key (like we do elsewhere) but that would be problematic here since User cache must be purgeable cross-wiki and other wikis may run a different version (either in general, or even just during a deployment). As such, the key must remain unchanged when the version changes so that purges from newer wikis affect what older wikis see and vice versa. Change-Id: Icfbc54dfd0ea594dd52fc1cfd403a7f66f1dd0b0
2016-02-27 19:35:21 +00:00
// Anonymous users are not in the database
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->loadDefaults();
return false;
}
Avoid CAS errors on double post to ApiOptions Bug: T95839 Change-Id: I62f8eea31164be1ab0eacf31c494f0b296b367f2
2015-09-25 06:19:06 +00:00
list( $index, $options ) = DBAccessObjectUtils::getDBOptions( $flags );
$db = wfGetDB( $index );
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
$userQuery = self::getQueryInfo();
Allow callers to load user objects from slaves if desired Bug: T92357 Change-Id: Ib9d21b8ee988c84e7b3d1676ad6cbbbf07f795a4
2015-03-24 00:39:48 +00:00
$s = $db->selectRow(
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
$userQuery['tables'],
$userQuery['fields'],
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
[ 'user_id' => $this->mId ],
Avoid key conflict errors in User::addToDatabase * Also cleaned up the IDBAccessObject constants to cover more cases. Bug: 66185 Change-Id: Ide28af552b3c59428923b373c0f5764414d50a1f
2014-06-24 00:40:08 +00:00
__METHOD__,
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
$options,
$userQuery['joins']
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
);
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
Made user preferences load from the master by default * Warn when saving slave-loaded data in saveSettings() * Respect the loading $flags for preferences/groups * Fixed use of flags in addToDatabase() * Made loadFromCache() protected to make this mess easier to reason about (no callers found) * Added some doc comments Bug: T92232 Change-Id: Ic1dd66063cc2f98fc03861df1c523981f846a0be
2015-03-25 00:30:26 +00:00
$this->queryFlagsUsed = $flags;
Hard deprecate UserLoadFromDatabase hook Completely unused per codesearch, so in theory it could be removed without deprecation, but there is no rush Bug: T277334 Change-Id: Id7e22c8e9f7f6ea6ed4c8c7cc10686ff58410694
2021-05-01 01:28:36 +00:00
// hook is hard deprecated since 1.37
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserLoadFromDatabase( $this, $s );
Add new hook 'UserLoadFromDatabase' that is called while loading a user from the database.
2009-01-16 23:34:38 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
if ( $s !== false ) {
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Initialise user table data
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
$this->loadFromRow( $s );
return true;
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
// Invalid user_id
$this->mId = 0;
User: Use "Unknown user" for bad user id Without this, a user created from an invalid user ID would end up representing the current requests IP address, which may lead to confusion. Using the reserved name "Unknown user" seems safer. Change-Id: Icbfe7c3a561ac927713b610ac9a0b5e6b88bf2f0
2020-09-24 19:50:32 +00:00
$this->loadDefaults( 'Unknown user' );
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
return false;
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
}
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Initialize this object from a row from the user table.
*
User::loadFromRow takes a stdClass object, not an array Change-Id: I8e0a56c02d474884a946d35dbab44bb39179d791
2013-12-19 18:25:33 +00:00
* @param stdClass $row Row from the user table to load.
Fix PhanTypeMismatchDeclaredParam Auto fix MediaWiki.Commenting.FunctionComment.DefaultNullTypeParam sniff Change-Id: I865323fd0295aabd06f3e3c75e0e5043fb31069e
2018-06-26 21:14:43 +00:00
* @param array|null $data Further user data to load into the object
Make action=query&list=users use User::getRights() Made action=query&list=users use User::getRights() if usprop rights given. This not only removes redundant code, but makes it execute the UserGetRights hook, so that this now includes rights given by Extensions (eg. CentralAuth does that). Patch Set 2: Modified the User class to be able to inject further data into User::newFromRow() and using that to inject the groups taken out of one SQL query (for performance reasons). Furthermore I've split up the query in ApiQueryUsers.php into one for user data and one for the groups, to only have one row for each user. After all the perfomance of this should now be ok, not extremly good, but bearable (though I couldn't test it deeply, as I don't have much data in my CentralAuth environment). Change-Id: Ie5b2924abb82ac254c77e1d04cc4d5b308962dad
2012-09-11 23:45:35 +00:00
*
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
* user_groups Array of arrays or stdClass result rows out of the user_groups
* table. Previously you were supposed to pass an array of strings
* here, but we also need expiry info nowadays, so an array of
* strings is ignored.
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
*/
Made User::loadFromRow protected for sanity * The loading logic is complex enough without more possible entry points to cover * No outside callers found Change-Id: I7e9bace35afb0a540993423cf1da98381a516ac5
2015-03-26 05:38:34 +00:00
protected function loadFromRow( $row, $data = null ) {
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
if ( !is_object( $row ) ) {
throw new InvalidArgumentException( '$row must be an object' );
}
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
$all = true;
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
if ( isset( $row->actor_id ) ) {
$this->mActorId = (int)$row->actor_id;
if ( $this->mActorId !== 0 ) {
$this->mFrom = 'actor';
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
}
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
$this->setItemLoaded( 'actor' );
} else {
$all = false;
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
}
if ( isset( $row->user_name ) && $row->user_name !== '' ) {
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
$this->mName = $row->user_name;
$this->mFrom = 'name';
$this->setItemLoaded( 'name' );
} else {
$all = false;
}
Fixing fixme in r87164 (wrong if check)
2011-06-04 14:04:33 +00:00
if ( isset( $row->user_real_name ) ) {
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
$this->mRealName = $row->user_real_name;
$this->setItemLoaded( 'realname' );
} else {
$all = false;
}
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
if ( isset( $row->user_id ) ) {
Added basic support for Wietse Venema's taint feature. Fixed a few instances of shoddy code that it turned up, no actual vulnerabilities yet.
2009-02-04 09:10:32 +00:00
$this->mId = intval( $row->user_id );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
if ( $this->mId !== 0 ) {
$this->mFrom = 'id';
}
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
$this->setItemLoaded( 'id' );
} else {
$all = false;
}
Load edit count separately. The logging system batch queries it for the user tool links, which uses it for coloring.
2011-09-07 15:39:01 +00:00
if ( isset( $row->user_editcount ) ) {
Remove or replace usages of "sanity" Bug: T254646 Change-Id: I2b120f0b9c9e1dc1a6c216bfefa3f2463efe1001
2021-11-19 23:19:42 +00:00
// Don't try to set edit count for anonymous users
Remove User::$mEditCount and internal caching UserEditTracker now returns null for anonymous users instead of throwing an exception. Added new UserEditTracker::setCachedUserEditCount() method (internal) to handle the user_editcount field in User::loadFromRow()'s row. This now means that the creation of one User object can set the cached value for any other object for the same underlying user - the alternative (just ignoring the value) would mean that an extra database read might be needed. This is only used for users created with a row that includes the user id - we silently discard the value if the row doesn't have a user id (or the user id is 0) to avoid issues with UserEditTracker trying to fetch the user id and potentially triggering another load. A follow-up will simplify the UserEditCountUpdate class to remove storing full UserIdentity objects now that only the id is needed. Follow-up: Ibf1482bcbcbf4d56fc06531bb3e17e2a6e3e2e6f Change-Id: Ie3fb4887d9f2d96b32598865030351bf3bf20ce5
2021-06-15 08:08:33 +00:00
// We check the id here and not in UserEditTracker because calling
// User::getId() can trigger some other loading. This will result in
// discarding the user_editcount field for rows if the id wasn't set.
if ( $this->mId !== null && $this->mId !== 0 ) {
MediaWikiServices::getInstance()
->getUserEditTracker()
->setCachedUserEditCount( $this, (int)$row->user_editcount );
}
Load edit count separately. The logging system batch queries it for the user tool links, which uses it for coloring.
2011-09-07 15:39:01 +00:00
} else {
$all = false;
}
User: Fix loading of user_touched Always load user_touched from the row if present, don't gate it on user_email being non-null. Bug: T124414 Change-Id: I68fcbb560ddfa349b83126298534161971a88871
2016-01-22 17:49:06 +00:00
if ( isset( $row->user_touched ) ) {
$this->mTouched = wfTimestamp( TS_MW, $row->user_touched );
} else {
$all = false;
}
User: Fix loading of user_token Similar to T124414, we should always load user_token from the row even if user_email is unset. Also, I notice that maintenance/tables.sql defines the column as "binary(32)", which is going to append ASCII NUL bytes to the default empty-string. And before that it was "char(32)", which will append spaces. So trim both of those off when reading the field so the following check for === '' actually works. The latter doesn't seem to affect *most* WMF wikis, since they have the column defined as "varbinary(32)" for some reason. But there are a few with "binary(32)", I have no idea why. Change-Id: I50a813bb530639275628d9560c79a773676aa36d
2016-01-28 18:46:22 +00:00
if ( isset( $row->user_token ) ) {
// The definition for the column is binary(32), so trim the NULs
// that appends. The previous definition was char(32), so trim
// spaces too.
$this->mToken = rtrim( $row->user_token, " \0" );
if ( $this->mToken === '' ) {
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
$this->mToken = null;
}
User: Fix loading of user_token Similar to T124414, we should always load user_token from the row even if user_email is unset. Also, I notice that maintenance/tables.sql defines the column as "binary(32)", which is going to append ASCII NUL bytes to the default empty-string. And before that it was "char(32)", which will append spaces. So trim both of those off when reading the field so the following check for === '' actually works. The latter doesn't seem to affect *most* WMF wikis, since they have the column defined as "varbinary(32)" for some reason. But there are a few with "binary(32)", I have no idea why. Change-Id: I50a813bb530639275628d9560c79a773676aa36d
2016-01-28 18:46:22 +00:00
} else {
$all = false;
}
if ( isset( $row->user_email ) ) {
$this->mEmail = $row->user_email;
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
$this->mEmailAuthenticated = wfTimestampOrNull( TS_MW, $row->user_email_authenticated );
$this->mEmailToken = $row->user_email_token;
$this->mEmailTokenExpires = wfTimestampOrNull( TS_MW, $row->user_email_token_expires );
$this->mRegistration = wfTimestampOrNull( TS_MW, $row->user_registration );
} else {
$all = false;
}
if ( $all ) {
$this->mLoadedItems = true;
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
}
Make action=query&list=users use User::getRights() Made action=query&list=users use User::getRights() if usprop rights given. This not only removes redundant code, but makes it execute the UserGetRights hook, so that this now includes rights given by Extensions (eg. CentralAuth does that). Patch Set 2: Modified the User class to be able to inject further data into User::newFromRow() and using that to inject the groups taken out of one SQL query (for performance reasons). Furthermore I've split up the query in ApiQueryUsers.php into one for user data and one for the groups, to only have one row for each user. After all the perfomance of this should now be ok, not extremly good, but bearable (though I couldn't test it deeply, as I don't have much data in my CentralAuth environment). Change-Id: Ie5b2924abb82ac254c77e1d04cc4d5b308962dad
2012-09-11 23:45:35 +00:00
if ( is_array( $data ) ) {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
Minor fixes to User and ApiQueryUsers I've fixed several PHP notices and the problem that rights returned by User::getRights() might have duplicates if altered by a hook (same for User::getEffectiveGroups). Change-Id: Id92af387d8c09414076bac40e83052cd6f913f42
2012-11-09 21:23:14 +00:00
if ( isset( $data['user_groups'] ) && is_array( $data['user_groups'] ) ) {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
MediaWikiServices::getInstance()
->getUserGroupManager()
UserGroupManager: Consider $queryFlags when caching Bug: T254282 Change-Id: I41a31ba6d597c11c7d7c8e753aa0e4c29303d5d9
2020-06-09 19:21:10 +00:00
->loadGroupMembershipsFromArray(
$this,
$data['user_groups'],
$this->queryFlagsUsed
);
Make action=query&list=users use User::getRights() Made action=query&list=users use User::getRights() if usprop rights given. This not only removes redundant code, but makes it execute the UserGetRights hook, so that this now includes rights given by Extensions (eg. CentralAuth does that). Patch Set 2: Modified the User class to be able to inject further data into User::newFromRow() and using that to inject the groups taken out of one SQL query (for performance reasons). Furthermore I've split up the query in ApiQueryUsers.php into one for user data and one for the groups, to only have one row for each user. After all the perfomance of this should now be ok, not extremly good, but bearable (though I couldn't test it deeply, as I don't have much data in my CentralAuth environment). Change-Id: Ie5b2924abb82ac254c77e1d04cc4d5b308962dad
2012-09-11 23:45:35 +00:00
}
}
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* Fix for bug 28534: IE 6 content type detection again * Fix for bug 28639: user object instance cache pollution * Release notes formatting tweak.
2011-05-05 05:29:50 +00:00
/**
More parameter documentation!!
2011-05-28 14:52:55 +00:00
* Load the data for this user object from another user object.
*
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @param User $user
* Fix for bug 28534: IE 6 content type detection again * Fix for bug 28639: user object instance cache pollution * Release notes formatting tweak.
2011-05-05 05:29:50 +00:00
*/
protected function loadFromUserObject( $user ) {
$user->load();
foreach ( self::$mCacheVars as $var ) {
$this->$var = $user->$var;
}
}
Disable CAS check when saving TestUser data. During testing, we are not worried about data loss, so we can safely bypass the CAS check when setting up a test fixture. This change was added to address sporadic test failures like the following: 18:03:38 1) ApiEchoMarkReadTest::testMarkReadWithList 18:03:38 MWException: CAS update failed on user_touched for user ID '2' (read from slave); the version of the user to be saved is older than the current version. 18:03:38 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/includes/user/User.php:3931 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/TestUser.php:83 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/api/ApiTestCase.php:30 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/extensions/Echo/tests/phpunit/api/ApiEchoMarkReadTest.php:11 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/MediaWikiTestCase.php:370 Bug: T131178 Change-Id: I99b43e0db85bc2c1cd335c82971df4e95520d34b
2016-05-19 12:51:04 +00:00
/**
* Builds update conditions. Additional conditions may be added to $conditions to
* protected against race conditions using a compare-and-set (CAS) mechanism
* based on comparing $this->mTouched with the user_touched field.
*
Fix phpdoc for type hint for User::makeUpdateConditions() Change-Id: I46b3842495b3b9b8d44d16f434de4b44c65c1d80
2019-04-08 03:46:22 +00:00
* @param IDatabase $db
Replace DatabaseBase:: with Database:: and update type hints Change-Id: I3919b04eb2de4fa0bf8a02239fb5bbf17d347511
2016-09-26 22:40:07 +00:00
* @param array $conditions WHERE conditions for use with Database::update
* @return array WHERE conditions for use with Database::update
Disable CAS check when saving TestUser data. During testing, we are not worried about data loss, so we can safely bypass the CAS check when setting up a test fixture. This change was added to address sporadic test failures like the following: 18:03:38 1) ApiEchoMarkReadTest::testMarkReadWithList 18:03:38 MWException: CAS update failed on user_touched for user ID '2' (read from slave); the version of the user to be saved is older than the current version. 18:03:38 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/includes/user/User.php:3931 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/TestUser.php:83 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/api/ApiTestCase.php:30 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/extensions/Echo/tests/phpunit/api/ApiEchoMarkReadTest.php:11 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/MediaWikiTestCase.php:370 Bug: T131178 Change-Id: I99b43e0db85bc2c1cd335c82971df4e95520d34b
2016-05-19 12:51:04 +00:00
*/
Change Database type hints to use IDatabase Change-Id: Ie1e86cd961a619335138402ba22fe2a73a3e62fd
2019-04-06 23:29:36 +00:00
protected function makeUpdateConditions( IDatabase $db, array $conditions ) {
Disable CAS check when saving TestUser data. During testing, we are not worried about data loss, so we can safely bypass the CAS check when setting up a test fixture. This change was added to address sporadic test failures like the following: 18:03:38 1) ApiEchoMarkReadTest::testMarkReadWithList 18:03:38 MWException: CAS update failed on user_touched for user ID '2' (read from slave); the version of the user to be saved is older than the current version. 18:03:38 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/includes/user/User.php:3931 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/TestUser.php:83 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/api/ApiTestCase.php:30 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/extensions/Echo/tests/phpunit/api/ApiEchoMarkReadTest.php:11 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/MediaWikiTestCase.php:370 Bug: T131178 Change-Id: I99b43e0db85bc2c1cd335c82971df4e95520d34b
2016-05-19 12:51:04 +00:00
if ( $this->mTouched ) {
// CAS check: only update if the row wasn't changed sicne it was loaded.
$conditions['user_touched'] = $db->timestamp( $this->mTouched );
}
return $conditions;
}
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
/**
* Bump user_touched if it didn't change since this object was loaded
*
* On success, the mTouched field is updated.
* The user serialization cache is always cleared.
*
Move User::addAutopromoteOnceGroups to UserGroupManager Additionally, User::checkAndSetTouched was made public and marked as @internal. Eventually, as User class refactoring continues, I would expect this to be replaced by some service. Bug: T252621 Change-Id: I53533f494950d08ee5ed1ec54d24958c21e7b3aa
2020-06-05 16:33:08 +00:00
* @internal
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
* @return bool Whether user_touched was actually updated
* @since 1.26
*/
Move User::addAutopromoteOnceGroups to UserGroupManager Additionally, User::checkAndSetTouched was made public and marked as @internal. Eventually, as User class refactoring continues, I would expect this to be replaced by some service. Bug: T252621 Change-Id: I53533f494950d08ee5ed1ec54d24958c21e7b3aa
2020-06-05 16:33:08 +00:00
public function checkAndSetTouched() {
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
$this->load();
if ( !$this->mId ) {
return false; // anon
}
// Get a new user_touched that is higher than the old one
$newTouched = $this->newTouchedTimestamp();
Replace uses of DB_MASTER with DB_PRIMARY Just an auto-replace from codesniffer for now. Change-Id: I5240dc9ac5929d291b0ef1c743ea2bfd3f428266
2021-04-29 02:37:11 +00:00
$dbw = wfGetDB( DB_PRIMARY );
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
$dbw->update( 'user',
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
[ 'user_touched' => $dbw->timestamp( $newTouched ) ],
Disable CAS check when saving TestUser data. During testing, we are not worried about data loss, so we can safely bypass the CAS check when setting up a test fixture. This change was added to address sporadic test failures like the following: 18:03:38 1) ApiEchoMarkReadTest::testMarkReadWithList 18:03:38 MWException: CAS update failed on user_touched for user ID '2' (read from slave); the version of the user to be saved is older than the current version. 18:03:38 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/includes/user/User.php:3931 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/TestUser.php:83 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/api/ApiTestCase.php:30 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/extensions/Echo/tests/phpunit/api/ApiEchoMarkReadTest.php:11 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/MediaWikiTestCase.php:370 Bug: T131178 Change-Id: I99b43e0db85bc2c1cd335c82971df4e95520d34b
2016-05-19 12:51:04 +00:00
$this->makeUpdateConditions( $dbw, [
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
'user_id' => $this->mId,
Disable CAS check when saving TestUser data. During testing, we are not worried about data loss, so we can safely bypass the CAS check when setting up a test fixture. This change was added to address sporadic test failures like the following: 18:03:38 1) ApiEchoMarkReadTest::testMarkReadWithList 18:03:38 MWException: CAS update failed on user_touched for user ID '2' (read from slave); the version of the user to be saved is older than the current version. 18:03:38 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/includes/user/User.php:3931 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/TestUser.php:83 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/includes/api/ApiTestCase.php:30 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/extensions/Echo/tests/phpunit/api/ApiEchoMarkReadTest.php:11 18:03:38 /mnt/jenkins-workspace/workspace/mediawiki-extensions-hhvm/src/tests/phpunit/MediaWikiTestCase.php:370 Bug: T131178 Change-Id: I99b43e0db85bc2c1cd335c82971df4e95520d34b
2016-05-19 12:51:04 +00:00
] ),
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
__METHOD__
);
$success = ( $dbw->affectedRows() > 0 );
if ( $success ) {
$this->mTouched = $newTouched;
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
$this->clearSharedCache( 'changed' );
Fixed sanity cache clear in User::saveSettings() * This works by adding a refresh mode to clearSharedCache() when we want to purge the cache in case it might stale to avoid further CAS errors. Because an exception will be thrown, the usual DB callback will not get fired, so avoid using commit hooks when doing these cache purges. * Also lowered the tombstone TTL for such purges, since no data actually changed. Bug: T114023 Change-Id: Iaad87b4ed24733dac40bc9607d3c97c940710087
2015-09-28 21:07:01 +00:00
} else {
// Clears on failure too since that is desired if the cache is stale
$this->clearSharedCache( 'refresh' );
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
}
return $success;
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Clear $this->mOptionsLoaded in User::clearInstanceCache() (bug 41198) If clearInstanceCache() is to clear cached user data apart from the data from the user table, as addToDatabase() expects, then $this->mOptionsLoaded needs to be set to false. Clearing $this->mOptions may reduce memory usage a bit, but is not sufficient. Change-Id: I6912415dc154d06f62839a1ee777c2c3747253d6
2012-10-19 03:02:39 +00:00
* Clear various cached data stored in this object. The cache of the user table
* data (i.e. self::$mCacheVars) is not cleared unless $reloadFrom is given.
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @param bool|string $reloadFrom Reload user and user_groups table data from a
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* given source. May be "name", "id", "actor", "defaults", "session", or false for no reload.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function clearInstanceCache( $reloadFrom = false ) {
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
global $wgFullyInitialised;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->mDatePreference = null;
$this->mBlockedby = -1; # Unset
$this->mHash = false;
Convert WikiPage to authority. Change-Id: Iba5e36e5a13c304be51b82a952b2a3044e122c8c
2021-02-23 01:24:29 +00:00
$this->mThisAsAuthority = null;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
if ( $wgFullyInitialised && $this->mFrom ) {
Add a new UserEditTracker service for user edit counts and timing Moved to the new service are the following User:: methods: * ::getEditCount * ::getFirstEditTimestamp * ::getLatestEditTimestamp * ::getEditTimestamp * ::initEditCountInternal A subsequent patch will replace existing uses in core and deprecate the User methods. The new service has 100% test coverage with pure Unit tests. Bug: T253431 Change-Id: If96f9d41026aa358c0fe269a3e078af5f6f058f2
2020-05-26 03:33:28 +00:00
$services = MediaWikiServices::getInstance();
$services->getPermissionManager()->invalidateUsersRightsCache( $this );
$services->getUserOptionsManager()->clearUserOptionsCache( $this );
$services->getTalkPageNotificationManager()->clearInstanceCache( $this );
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
$services->getUserGroupManager()->clearCache( $this );
Add a new UserEditTracker service for user edit counts and timing Moved to the new service are the following User:: methods: * ::getEditCount * ::getFirstEditTimestamp * ::getLatestEditTimestamp * ::getEditTimestamp * ::initEditCountInternal A subsequent patch will replace existing uses in core and deprecate the User methods. The new service has 100% test coverage with pure Unit tests. Bug: T253431 Change-Id: If96f9d41026aa358c0fe269a3e078af5f6f058f2
2020-05-26 03:33:28 +00:00
$services->getUserEditTracker()->clearUserEditCache( $this );
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
if ( $reloadFrom ) {
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
$this->mLoadedItems = [];
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->mFrom = $reloadFrom;
}
Initial revision
2003-04-14 23:10:40 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Phpdoc comments
2004-09-04 13:06:25 +00:00
* Get blocking information
Introduce a BlockManager service This introduces a minimal BlockManager service, for getting blocks that apply to a User. Move the part of User::getBlockedStatus that checks for the blocks into BlockManager::getUserBlock, and move the related helper methods from User to BlockManager. Hard deprecate or remove these helper methods, and move to private methods in the BlockManager: * User::getBlockFromCookieValue * User::isLocallyBlockedProxy * User::inDnsBlacklist Soft deprecate these helper methods, and move to public methods in the BlockManager: * User::isDnsBlacklisted Add tests to cover the methods moved to BlockManager. Bug: T219441 Change-Id: I0af658d71288376735cebe541215383b56bb72e5
2019-04-05 19:13:17 +00:00
*
* TODO: Move this into the BlockManager, along with block-related properties.
*
User::(get|is)Block*(): We don't need to prefix variables with their type… Change-Id: I38e10453051dd300217542de68daab352993b2a6
2019-03-18 22:17:50 +00:00
* @param bool $fromReplica Whether to check the replica DB first.
Change "slave" => "replica DB" in /includes Change-Id: Icb716219c9335ff8fa447b1733d04b71d9712bf9
2016-09-05 20:21:26 +00:00
* To improve performance, non-critical checks are done against replica DBs.
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
* Check when actually saving should be done against primary DB.
Fix fetching ipblock-exempt within BlockManager::getUserBlock Bug: T271551 Bug: T270145 Change-Id: I458b7b6b3f79c5961c01c35677b7b25021e316a0
2021-01-08 21:21:38 +00:00
* @param bool $disableIpBlockExemptChecking This is used internally to prevent
* a infinite recursion with autopromote. See T270145.
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Fix fetching ipblock-exempt within BlockManager::getUserBlock Bug: T271551 Bug: T270145 Change-Id: I458b7b6b3f79c5961c01c35677b7b25021e316a0
2021-01-08 21:21:38 +00:00
private function getBlockedStatus( $fromReplica = true, $disableIpBlockExemptChecking = false ) {
No yoda conditions Replace if ( 42 === $foo ) by if ( $foo === 42 ) Change-Id: Ice320ef1ae64a59ed035c20134326b35d454f943
2018-06-30 09:43:00 +00:00
if ( $this->mBlockedby != -1 ) {
Function names on queries, some debugging output (latter not by me)
2005-08-23 16:50:39 +00:00
return;
}
use tabs for indentation, and probably some trailing whitespace has been removed by my editor. I apologise for these triviality commits lately; I'll be more productive soon...
2004-08-14 22:30:10 +00:00
Debug: include username in User::getBlockedStatus wfDebug call Change-Id: I707ff54fe2e7bc32d35c68086ec9904c91f6e8e0
2020-06-26 00:56:45 +00:00
wfDebug( __METHOD__ . ": checking blocked status for " . $this->getName() );
Made BlockCache::loadFromDB() 100x faster. Wasn't an issue before ryo commented out the memcached bits, but since then, it was adding 1100ms to the save time
2005-08-21 06:07:48 +00:00
Trigger load of user data in User::getBlockStatus() before we start changing member variables. Otherwise something ends up stomping on $this->mBlockedby when things get lazy-loaded later, causing false positive block hits due to -1 !== 0. Probably session-related... Nothing should be overwriting mBlockedby, surely? This was giving me blank "you are blocked" messages.... but only when doing *section edits on SSL*, not regular edits, nor section edits on non-SSL wikipedia. Weeeeeeird
2008-05-14 23:42:15 +00:00
// Initialize data...
// Otherwise something ends up stomping on $this->mBlockedby when
// things get lazy-loaded later, causing false positive block hits
// due to -1 !== 0. Probably session-related... Nothing should be
// overwriting mBlockedby, surely?
$this->load();
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
Pass the user and request into BlockManager::getUserBlock Blocks are checked from the User object. Specifically, User::getBlockedStatus instantiates a BlockManager and calls BlockManager::getUserBlock. However, checking the block often depends on knowing more about the state than the User should know. As a result, the global user and request objects were passed into the block manager on construction. Whether the global request object should be passed into a service constructor is still up for debate, so this moves the check for the global state back to User::getBlockedStatus for now. (Note that it reintroduces the problem of the User knowing more about state than it should.) This change also makes clearer the cases in which BlockManager::getUserBlock is called from the User. Different blocks may be sought, depending on the user and their permissions. The user may be: (1) The global user (and can be affected by IP blocks). The global request object is needed for checking the IP address, the XFF header and the cookies. (2) The global user (and exempt from IP blocks). The global request object is needed for checking the cookies. (3) Another user (not the global user). No request object is available or needed; just look for a block against the user account. Cases #1 and #2 check whether the global user is blocked in practice; the block may due to their user account being blocked or to an IP address block or cookie block (or multiple of these). Case #3 simply checks whether a user's account is blocked, and does not determine whether the person using that account is affected in practice by any IP address or cookie blocks. Bug: T231919 Change-Id: I3f51fd3579514b83b567dfe20926df2f0930dc85
2019-08-23 16:11:45 +00:00
// TODO: Block checking shouldn't really be done from the User object. Block
// checking can involve checking for IP blocks, cookie blocks, and/or XFF blocks,
// which need more knowledge of the request context than the User should have.
// Since we do currently check blocks from the User, we have to do the following
// here:
// - Check if this is the user associated with the main request
// - If so, pass the relevant request information to the block manager
$request = null;
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
if ( $this->isGlobalSessionUser() ) {
Pass the user and request into BlockManager::getUserBlock Blocks are checked from the User object. Specifically, User::getBlockedStatus instantiates a BlockManager and calls BlockManager::getUserBlock. However, checking the block often depends on knowing more about the state than the User should know. As a result, the global user and request objects were passed into the block manager on construction. Whether the global request object should be passed into a service constructor is still up for debate, so this moves the check for the global state back to User::getBlockedStatus for now. (Note that it reintroduces the problem of the User knowing more about state than it should.) This change also makes clearer the cases in which BlockManager::getUserBlock is called from the User. Different blocks may be sought, depending on the user and their permissions. The user may be: (1) The global user (and can be affected by IP blocks). The global request object is needed for checking the IP address, the XFF header and the cookies. (2) The global user (and exempt from IP blocks). The global request object is needed for checking the cookies. (3) Another user (not the global user). No request object is available or needed; just look for a block against the user account. Cases #1 and #2 check whether the global user is blocked in practice; the block may due to their user account being blocked or to an IP address block or cookie block (or multiple of these). Case #3 simply checks whether a user's account is blocked, and does not determine whether the person using that account is affected in practice by any IP address or cookie blocks. Bug: T231919 Change-Id: I3f51fd3579514b83b567dfe20926df2f0930dc85
2019-08-23 16:11:45 +00:00
// This is the global user, so we need to pass the request
$request = $this->getRequest();
}
Introduce a BlockManager service This introduces a minimal BlockManager service, for getting blocks that apply to a User. Move the part of User::getBlockedStatus that checks for the blocks into BlockManager::getUserBlock, and move the related helper methods from User to BlockManager. Hard deprecate or remove these helper methods, and move to private methods in the BlockManager: * User::getBlockFromCookieValue * User::isLocallyBlockedProxy * User::inDnsBlacklist Soft deprecate these helper methods, and move to public methods in the BlockManager: * User::isDnsBlacklisted Add tests to cover the methods moved to BlockManager. Bug: T219441 Change-Id: I0af658d71288376735cebe541215383b56bb72e5
2019-04-05 19:13:17 +00:00
$block = MediaWikiServices::getInstance()->getBlockManager()->getUserBlock(
$this,
Pass the user and request into BlockManager::getUserBlock Blocks are checked from the User object. Specifically, User::getBlockedStatus instantiates a BlockManager and calls BlockManager::getUserBlock. However, checking the block often depends on knowing more about the state than the User should know. As a result, the global user and request objects were passed into the block manager on construction. Whether the global request object should be passed into a service constructor is still up for debate, so this moves the check for the global state back to User::getBlockedStatus for now. (Note that it reintroduces the problem of the User knowing more about state than it should.) This change also makes clearer the cases in which BlockManager::getUserBlock is called from the User. Different blocks may be sought, depending on the user and their permissions. The user may be: (1) The global user (and can be affected by IP blocks). The global request object is needed for checking the IP address, the XFF header and the cookies. (2) The global user (and exempt from IP blocks). The global request object is needed for checking the cookies. (3) Another user (not the global user). No request object is available or needed; just look for a block against the user account. Cases #1 and #2 check whether the global user is blocked in practice; the block may due to their user account being blocked or to an IP address block or cookie block (or multiple of these). Case #3 simply checks whether a user's account is blocked, and does not determine whether the person using that account is affected in practice by any IP address or cookie blocks. Bug: T231919 Change-Id: I3f51fd3579514b83b567dfe20926df2f0930dc85
2019-08-23 16:11:45 +00:00
$request,
Fix fetching ipblock-exempt within BlockManager::getUserBlock Bug: T271551 Bug: T270145 Change-Id: I458b7b6b3f79c5961c01c35677b7b25021e316a0
2021-01-08 21:21:38 +00:00
$fromReplica,
$disableIpBlockExemptChecking
Introduce a BlockManager service This introduces a minimal BlockManager service, for getting blocks that apply to a User. Move the part of User::getBlockedStatus that checks for the blocks into BlockManager::getUserBlock, and move the related helper methods from User to BlockManager. Hard deprecate or remove these helper methods, and move to private methods in the BlockManager: * User::getBlockFromCookieValue * User::isLocallyBlockedProxy * User::inDnsBlacklist Soft deprecate these helper methods, and move to public methods in the BlockManager: * User::isDnsBlacklisted Add tests to cover the methods moved to BlockManager. Bug: T219441 Change-Id: I0af658d71288376735cebe541215383b56bb72e5
2019-04-05 19:13:17 +00:00
);
Add $wgSoftBlockRanges This variable allows for blocking anonymous contributions from certain IP addresses. Account creation from these addresses will be allowed. The idea here is that, for example, Wikimedia could add 10.0.0.0/8 to prevent logged-out bots on labs from making confusing edits. See I74f5f4a3. The default for the new variable is empty to avoid causing issues on upgrade for wikis on private networks. Change-Id: I6c11a6b9e1a740de074e7ccd753418f94c4b6288
2016-11-23 19:51:30 +00:00
Add CompositeBlock class for enforcing multiple blocks Create a CompositeBlock class which extends AbstractBlock and adds the property $originalBlocks. This is for situations where more than one block applies to a user/IP, and avoids the need to choose just one of these blocks to enforce. Behaviour of the resulting block is determined by combining the strictest parameters of the original blocks. Also add DatabaseBlock::newListFromTarget, which is similar to DatabaseBlock::newFromTarget, but returns all relevant blocks, rather than choosing the most specific one. For tracking a CompositeBlock with a cookie, examine the original blocks and only track the first trackable block that is found. Bug: T206163 Change-Id: I088401105ac8ceb2c6117c6d2fcdb277c754d882
2019-03-19 18:56:10 +00:00
if ( $block ) {
* (bug 35303) Make proxy and DNS blacklist blocking work again
2012-03-18 22:19:00 +00:00
$this->mBlock = $block;
$this->mBlockedby = $block->getByName();
Remove reliance on Block properties being public Use getters and setters for $mReason, $mTimestamp, $mExpiry and $mHideName; use Block::getType to check if a block is an autoblock instead of checking $mAuto; no change needed for $mParentBlockId, which is not accessed externally. Change-Id: I767ed44ce4c2e21f53962d75fb86891add2282f6
2019-03-22 15:16:40 +00:00
$this->mBlockreason = $block->getReason();
$this->mHideName = $block->getHideName();
* (bug 35303) Make proxy and DNS blacklist blocking work again
2012-03-18 22:19:00 +00:00
} else {
User: Fully clear instance variables when loading not-blocked status If a block is deleted and ->clearInstanceCache() is called to try to make an existing User object reflect that fact, some methods are still reflecting the old block. To fix this, User::getBlockedStatus() needs to clear all the relevant instance variables if the user is found not to be blocked. Change-Id: I6ad8d5555a4c8519336aded3067e5034831dadf3
2018-03-22 16:52:59 +00:00
$this->mBlock = null;
* (bug 35303) Make proxy and DNS blacklist blocking work again
2012-03-18 22:19:00 +00:00
$this->mBlockedby = '';
User: Fully clear instance variables when loading not-blocked status If a block is deleted and ->clearInstanceCache() is called to try to make an existing User object reflect that fact, some methods are still reflecting the old block. To fix this, User::getBlockedStatus() needs to clear all the relevant instance variables if the user is found not to be blocked. Change-Id: I6ad8d5555a4c8519336aded3067e5034831dadf3
2018-03-22 16:52:59 +00:00
$this->mBlockreason = '';
Fix various real types related to scalar types Swap null/false or use real strings if needed Found by phan strict checks Change-Id: Id82ea609f05a76c5cb8c661d5cf2b7922d6cfbc1
2022-03-08 23:35:48 +00:00
$this->mHideName = false;
Support for SORBS DNSBL
2005-03-28 15:19:24 +00:00
}
Initial revision
2003-04-14 23:10:40 +00:00
}
*use $wgRateLimitsExcludedGroups for account creation (bug 9139) (patch by simetrical)
2007-03-06 04:29:37 +00:00
/**
* Is this user subject to rate limiting?
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if rate limited
*use $wgRateLimitsExcludedGroups for account creation (bug 9139) (patch by simetrical)
2007-03-06 04:29:37 +00:00
*/
public function isPingLimitable() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$rateLimitsExcludedIPs = MediaWikiServices::getInstance()->getMainConfig()->get( 'RateLimitsExcludedIPs' );
if ( IPUtils::isInRanges( $this->getRequest()->getIP(), $rateLimitsExcludedIPs ) ) {
Reintroduced $wgRateLimitsExcludedIPs from r47352 (removed in r51045). $wgAutopromote does not work for anonymous users.
2009-10-19 19:11:56 +00:00
// No other good way currently to disable rate limits
// for specific IPs. :P
// But this is a crappy hack and should die.
return false;
}
fix some spacing Change-Id: I8f976013f33c5818e4402604fe8610aa3f43b0c6
2013-02-03 20:05:24 +00:00
return !$this->isAllowed( 'noratelimit' );
*use $wgRateLimitsExcludedGroups for account creation (bug 9139) (patch by simetrical)
2007-03-06 04:29:37 +00:00
}
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
/**
* Primitive rate limits: enforce maximum actions per time period
* to put a brake on flooding.
*
User::pingLimiter() profiles per action as well We had an outage beginning of may that involved rate limiting of the 'renderfile-nonstandard' action. This makes User::pingLimiter() to record a per action profiling point in addition to the generic one, that would let us finely graph actions being throttled. Ref: https://wikitech.wikimedia.org/wiki/Incident_documentation/20140503-Thumbnails#What_can_be_improved Bug: 65477 Change-Id: Iac7930e85f7d9101663656ccb2bccdbebf908693
2014-05-19 10:45:11 +00:00
* The method generates both a generic profiling point and a per action one
user: Close a bracket in a User.php doc comment Change-Id: I3905a22201fc713f15aecaa50f20ec4fe23c8bad
2020-05-04 15:21:03 +00:00
* (suffix being "-$action").
User::pingLimiter() profiles per action as well We had an outage beginning of may that involved rate limiting of the 'renderfile-nonstandard' action. This makes User::pingLimiter() to record a per action profiling point in addition to the generic one, that would let us finely graph actions being throttled. Ref: https://wikitech.wikimedia.org/wiki/Incident_documentation/20140503-Thumbnails#What_can_be_improved Bug: 65477 Change-Id: Iac7930e85f7d9101663656ccb2bccdbebf908693
2014-05-19 10:45:11 +00:00
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @note When using a shared cache like memcached, IP-address
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
* last-hit counters will be shared across wikis.
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $action Action to enforce; 'edit' if unspecified
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @param int $incrBy Positive amount to increment counter by [defaults to 1]
User::pingLimiter: add user-global rate limit type "user" style rate limits can't be cross-site, since they are based on the user ID. "user-global" uses CentralIdLookup to allow cross-wiki rate limits. Bug: T251661 Change-Id: Id680b96be2ea81d29447c4c1abafc8f98a339626
2020-08-28 19:05:36 +00:00
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if a rate limiter was tripped
User::pingLimiter: add user-global rate limit type "user" style rate limits can't be cross-site, since they are based on the user ID. "user-global" uses CentralIdLookup to allow cross-wiki rate limits. Bug: T251661 Change-Id: Id680b96be2ea81d29447c4c1abafc8f98a339626
2020-08-28 19:05:36 +00:00
* @throws MWException
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
*/
Support rate limiting backlink purges, including null edits Change-Id: I86e45b7d0eba7d87f65150b34e190e04d8342b3e
2013-09-20 22:26:08 +00:00
public function pingLimiter( $action = 'edit', $incrBy = 1 ) {
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
$logger = LoggerFactory::getInstance( 'ratelimit' );
User: enforce pingLimiter() expiry time This makes User::pingLimiter() include the expiry time in the payload of the cache key that holds the current count. This allows us to ignore stale counts. Until now, we have been relying on the cache implementation to expire the relevant keys in time. This however seems to fail sometimes. Bug: T246991 Change-Id: Ifa3c558b4449f1ca133d0064781f26ac1bf59425
2020-08-26 11:18:46 +00:00
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Call the 'PingLimiter' hook
Introduce 'PingLimiter' hook for overriding the result of User::pingLimiter()
2006-12-22 20:21:14 +00:00
$result = false;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
if ( !$this->getHookRunner()->onPingLimiter( $this, $action, $result, $incrBy ) ) {
Introduce 'PingLimiter' hook for overriding the result of User::pingLimiter()
2006-12-22 20:21:14 +00:00
return $result;
}
YAY FOR PHP GLOBAL HANDLING (and thanks Rob)
2007-03-07 18:06:14 +00:00
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$rateLimits = MediaWikiServices::getInstance()->getMainConfig()->get( 'RateLimits' );
if ( !isset( $rateLimits[$action] ) ) {
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
return false;
}
YAY FOR PHP GLOBAL HANDLING (and thanks Rob)
2007-03-07 18:06:14 +00:00
wgRateLimits: Add configuration option to ignore 'noratelimit' right It may be reasonable to ignore the 'noratelimit' right granted to a user when perfuming some rate limit checks. As an example, a rate limit check on failed authentication attempts should not be bypassed. Add an optional '&can-bypass' configuration option for each $wgRateLimits action that can be set to false to disable checking User::isPingLimitable(). This bypasses both 'noratelimit' and $wgRateLimitsExcludedIPs exclusions. Depends-On: Iacdd1719d5f08eca91de0a35c0042ffee2136f34 Change-Id: Ia3add8bbbab0307f036e9b77e752c382da3a0d04
2016-10-04 04:46:30 +00:00
$limits = array_merge(
[ '&can-bypass' => true ],
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$rateLimits[$action]
wgRateLimits: Add configuration option to ignore 'noratelimit' right It may be reasonable to ignore the 'noratelimit' right granted to a user when perfuming some rate limit checks. As an example, a rate limit check on failed authentication attempts should not be bypassed. Add an optional '&can-bypass' configuration option for each $wgRateLimits action that can be set to false to disable checking User::isPingLimitable(). This bypasses both 'noratelimit' and $wgRateLimitsExcludedIPs exclusions. Depends-On: Iacdd1719d5f08eca91de0a35c0042ffee2136f34 Change-Id: Ia3add8bbbab0307f036e9b77e752c382da3a0d04
2016-10-04 04:46:30 +00:00
);
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Some groups shouldn't trigger the ping limiter, ever
wgRateLimits: Add configuration option to ignore 'noratelimit' right It may be reasonable to ignore the 'noratelimit' right granted to a user when perfuming some rate limit checks. As an example, a rate limit check on failed authentication attempts should not be bypassed. Add an optional '&can-bypass' configuration option for each $wgRateLimits action that can be set to false to disable checking User::isPingLimitable(). This bypasses both 'noratelimit' and $wgRateLimitsExcludedIPs exclusions. Depends-On: Iacdd1719d5f08eca91de0a35c0042ffee2136f34 Change-Id: Ia3add8bbbab0307f036e9b77e752c382da3a0d04
2016-10-04 04:46:30 +00:00
if ( $limits['&can-bypass'] && !$this->isPingLimitable() ) {
*use $wgRateLimitsExcludedGroups for account creation (bug 9139) (patch by simetrical)
2007-03-06 04:29:37 +00:00
return false;
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
}
YAY FOR PHP GLOBAL HANDLING (and thanks Rob)
2007-03-07 18:06:14 +00:00
User: enforce pingLimiter() expiry time This makes User::pingLimiter() include the expiry time in the payload of the cache key that holds the current count. This allows us to ignore stale counts. Until now, we have been relying on the cache implementation to expire the relevant keys in time. This however seems to fail sometimes. Bug: T246991 Change-Id: Ifa3c558b4449f1ca133d0064781f26ac1bf59425
2020-08-26 11:18:46 +00:00
$logger->debug( __METHOD__ . ": limiting $action rate for {$this->getName()}" );
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
$keys = [];
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
$id = $this->getId();
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
$isNewbie = $this->isNewbie();
User: Avoid deprecated wfMemcKey() Change-Id: Iffb4d85dfed740b01fcef5a25762dc751b292c41
2017-05-25 07:48:09 +00:00
$cache = ObjectCache::getLocalClusterInstance();
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
if ( $id == 0 ) {
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
// "shared anon" limit, for all anons combined
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
if ( isset( $limits['anon'] ) ) {
User: Avoid deprecated wfMemcKey() Change-Id: Iffb4d85dfed740b01fcef5a25762dc751b292c41
2017-05-25 07:48:09 +00:00
$keys[$cache->makeKey( 'limiter', $action, 'anon' )] = $limits['anon'];
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
}
User::pingLimiter: add user-global rate limit type "user" style rate limits can't be cross-site, since they are based on the user ID. "user-global" uses CentralIdLookup to allow cross-wiki rate limits. Bug: T251661 Change-Id: Id680b96be2ea81d29447c4c1abafc8f98a339626
2020-08-28 19:05:36 +00:00
} else {
// "global per name" limit, across sites
if ( isset( $limits['user-global'] ) ) {
Use CentralIdLookup service instead of static factory Change-Id: Ia0f263b4eff00cc6efee7a88c62d562dafd57950
2021-06-25 15:36:19 +00:00
$lookup = MediaWikiServices::getInstance()
->getCentralIdLookupFactory()
->getNonLocalLookup();
User::pingLimiter: add user-global rate limit type "user" style rate limits can't be cross-site, since they are based on the user ID. "user-global" uses CentralIdLookup to allow cross-wiki rate limits. Bug: T251661 Change-Id: Id680b96be2ea81d29447c4c1abafc8f98a339626
2020-08-28 19:05:36 +00:00
$centralId = $lookup
? $lookup->centralIdFromLocalUser( $this, CentralIdLookup::AUDIENCE_RAW )
: 0;
if ( $centralId ) {
// We don't have proper realms, use provider ID.
$realm = $lookup->getProviderId();
$globalKey = $cache->makeGlobalKey( 'limiter', $action, 'user-global',
$realm, $centralId );
} else {
// Fall back to a local key for a local ID
$globalKey = $cache->makeKey( 'limiter', $action, 'user-global',
'local', $id );
}
$keys[$globalKey] = $limits['user-global'];
}
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
}
if ( $isNewbie ) {
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
// "per ip" limit for anons and newbie users
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( isset( $limits['ip'] ) ) {
Make 'subnet' feature of $wgRateLimits work with IPv6 - 'subnet' will aggregate limits for a /64 subnet on IPv6 - Updated DefaultSettings.php to mention this - Only call WebRequest::getIP() when it will really be used Change-Id: Ia96800df5fb498a79e2c0527baee2392cd4623c7
2013-05-16 06:19:13 +00:00
$ip = $this->getRequest()->getIP();
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
$keys[$cache->makeGlobalKey( 'limiter', $action, 'ip', $ip )] = $limits['ip'];
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
}
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
// "per subnet" limit for anons and newbie users
Make 'subnet' feature of $wgRateLimits work with IPv6 - 'subnet' will aggregate limits for a /64 subnet on IPv6 - Updated DefaultSettings.php to mention this - Only call WebRequest::getIP() when it will really be used Change-Id: Ia96800df5fb498a79e2c0527baee2392cd4623c7
2013-05-16 06:19:13 +00:00
if ( isset( $limits['subnet'] ) ) {
$ip = $this->getRequest()->getIP();
Use namespaced IPUtils class Change-Id: I047e099a93203a59093946d336a143d899d0271f
2019-06-25 18:53:15 +00:00
$subnet = IPUtils::getSubnet( $ip );
Make 'subnet' feature of $wgRateLimits work with IPv6 - 'subnet' will aggregate limits for a /64 subnet on IPv6 - Updated DefaultSettings.php to mention this - Only call WebRequest::getIP() when it will really be used Change-Id: Ia96800df5fb498a79e2c0527baee2392cd4623c7
2013-05-16 06:19:13 +00:00
if ( $subnet !== false ) {
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
$keys[$cache->makeGlobalKey( 'limiter', $action, 'subnet', $subnet )] = $limits['subnet'];
Make 'subnet' feature of $wgRateLimits work with IPv6 - 'subnet' will aggregate limits for a /64 subnet on IPv6 - Updated DefaultSettings.php to mention this - Only call WebRequest::getIP() when it will really be used Change-Id: Ia96800df5fb498a79e2c0527baee2392cd4623c7
2013-05-16 06:19:13 +00:00
}
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
}
}
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
User: Move per-user logic in pingLimiter() closer together Clean up for readability, no behavioural difference. Bug: T246991 Change-Id: Icd4f22cbae7da2dfbca5abe348d91b55985c079a
2020-06-07 03:02:49 +00:00
// determine the "per user account" limit
$userLimit = false;
if ( $id !== 0 && isset( $limits['user'] ) ) {
// default limit for logged-in users
$userLimit = $limits['user'];
Allow rate limits to be specific to explicit groups
2008-05-21 03:13:24 +00:00
}
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
// limits for newbie logged-in users (overrides all the normal user limits)
SECURITY: Make 'newbie' limit in $wgRateLimits really override 'user' limit The order of operations was incorrect. Bug: T169545 Change-Id: Ia910aa2a494914d3b0017daac9ab294ea9fa8705
2018-03-13 18:43:30 +00:00
if ( $id !== 0 && $isNewbie && isset( $limits['newbie'] ) ) {
$userLimit = $limits['newbie'];
User: Move per-user logic in pingLimiter() closer together Clean up for readability, no behavioural difference. Bug: T246991 Change-Id: Icd4f22cbae7da2dfbca5abe348d91b55985c079a
2020-06-07 03:02:49 +00:00
} else {
// Check for group-specific limits
// If more than one group applies, use the highest allowance (if higher than the default)
Hard deprecate User group methods 1) The following methods were hard deprecated: - User::addAutopromoteOnceGroups - User::getEffectiveGroups - User::getAutomaticGroups - User::getFormerGroups 2) User ::getGroups, ::getGroupMemberships, ::addGroup, ::removeGroup were replaced in the production code, but they were not hard deprecated because of conflict with UserRightsProxy class. Bug: T275148 Change-Id: Ia69598316f5dc5dd9511f6112b5b13e1aa07575a
2021-07-01 10:32:24 +00:00
$userGroups = MediaWikiServices::getInstance()->getUserGroupManager()->getUserGroups( $this );
foreach ( $userGroups as $group ) {
User: Move per-user logic in pingLimiter() closer together Clean up for readability, no behavioural difference. Bug: T246991 Change-Id: Icd4f22cbae7da2dfbca5abe348d91b55985c079a
2020-06-07 03:02:49 +00:00
if ( isset( $limits[$group] ) ) {
if ( $userLimit === false
|| $limits[$group][0] / $limits[$group][1] > $userLimit[0] / $userLimit[1]
) {
$userLimit = $limits[$group];
}
}
}
SECURITY: Make 'newbie' limit in $wgRateLimits really override 'user' limit The order of operations was incorrect. Bug: T169545 Change-Id: Ia910aa2a494914d3b0017daac9ab294ea9fa8705
2018-03-13 18:43:30 +00:00
}
Allow rate limits to be specific to explicit groups
2008-05-21 03:13:24 +00:00
// Set the user limit key
if ( $userLimit !== false ) {
Fix/suppress phan errors related to arrays (#11) Change-Id: Ie5c05fbc88c51d493bc1462005d2f8dde5f72101
2019-04-07 07:11:39 +00:00
// phan is confused because &can-bypass's value is a bool, so it assumes
// that $userLimit is also a bool here.
// @phan-suppress-next-line PhanTypeInvalidExpressionArrayDestructuring
Fix debug log line for $userLimit. $userLimit was used inline in the message, causing an "array to string conversion" notice and a mangled log entry. Change-Id: I8c5199f1bf01b56e955d8d15c48061b5301b1745
2013-04-22 07:52:36 +00:00
list( $max, $period ) = $userLimit;
User: enforce pingLimiter() expiry time This makes User::pingLimiter() include the expiry time in the payload of the cache key that holds the current count. This allows us to ignore stale counts. Until now, we have been relying on the cache implementation to expire the relevant keys in time. This however seems to fail sometimes. Bug: T246991 Change-Id: Ifa3c558b4449f1ca133d0064781f26ac1bf59425
2020-08-26 11:18:46 +00:00
$logger->debug( __METHOD__ . ": effective user limit: $max in {$period}s" );
User: Avoid deprecated wfMemcKey() Change-Id: Iffb4d85dfed740b01fcef5a25762dc751b292c41
2017-05-25 07:48:09 +00:00
$keys[$cache->makeKey( 'limiter', $action, 'user', $id )] = $userLimit;
Allow rate limits to be specific to explicit groups
2008-05-21 03:13:24 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
// ip-based limits for all ping-limitable users
if ( isset( $limits['ip-all'] ) ) {
$ip = $this->getRequest()->getIP();
// ignore if user limit is more permissive
if ( $isNewbie || $userLimit === false
|| $limits['ip-all'][0] / $limits['ip-all'][1] > $userLimit[0] / $userLimit[1] ) {
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
$keys[$cache->makeGlobalKey( 'limiter', $action, 'ip-all', $ip )] = $limits['ip-all'];
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
}
}
// subnet-based limits for all ping-limitable users
if ( isset( $limits['subnet-all'] ) ) {
$ip = $this->getRequest()->getIP();
Use namespaced IPUtils class Change-Id: I047e099a93203a59093946d336a143d899d0271f
2019-06-25 18:53:15 +00:00
$subnet = IPUtils::getSubnet( $ip );
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
if ( $subnet !== false ) {
// ignore if user limit is more permissive
if ( $isNewbie || $userLimit === false
|| $limits['ip-all'][0] / $limits['ip-all'][1]
> $userLimit[0] / $userLimit[1] ) {
User: Fix pingLimiter() to use makeGlobalKey() for global rate limits It was previously forging keys without any makeKey() call in a way that does produce the same string regardless of wiki, however bypassing makeKey() means the cache key might end up containing illegal characters (and thus fatal). It also means that any logic for detecting local vs global keys for sharding purposes would wrongly intepret this as a wiki-local key which could cause split-brain scenarios. Bug: T246991 Change-Id: I83d0e11d84e3cdcfc8916b2a9b8d85db7c42d2a7
2020-06-07 03:00:18 +00:00
$keys[$cache->makeGlobalKey( 'limiter', $action, 'subnet-all', $subnet )] = $limits['subnet-all'];
Add $wgRateLimits types ip-all and subnet-all These apply to all ping-limitable users, unlike ip and subnet that apply only to anons and non-autoconfirmed users. However, if an autoconfirmed user is in a group with less restrictive limits, then those are ignored. This is necessary to move the account creation throttle into the ping limiter. Bug: T50373 Change-Id: Ifc70a605bb8848070bdf2af8f2c3f80f68dcc085
2016-01-25 23:52:56 +00:00
}
}
}
User: enforce pingLimiter() expiry time This makes User::pingLimiter() include the expiry time in the payload of the cache key that holds the current count. This allows us to ignore stale counts. Until now, we have been relying on the cache implementation to expire the relevant keys in time. This however seems to fail sometimes. Bug: T246991 Change-Id: Ifa3c558b4449f1ca133d0064781f26ac1bf59425
2020-08-26 11:18:46 +00:00
// XXX: We may want to use $cache->getCurrentTime() here, but that would make it
// harder to test for T246991. Also $cache->getCurrentTime() is documented
// as being for testing only, so it apparently should not be called here.
$now = MWTimestamp::time();
$clockFudge = 3; // avoid log spam when a clock is slightly off
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
$triggered = false;
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
foreach ( $keys as $key => $limit ) {
User: enforce pingLimiter() expiry time This makes User::pingLimiter() include the expiry time in the payload of the cache key that holds the current count. This allows us to ignore stale counts. Until now, we have been relying on the cache implementation to expire the relevant keys in time. This however seems to fail sometimes. Bug: T246991 Change-Id: Ifa3c558b4449f1ca133d0064781f26ac1bf59425
2020-08-26 11:18:46 +00:00
// Do the update in a merge callback, for atomicity.
// To use merge(), we need to explicitly track the desired expiry timestamp.
// This tracking was introduced to investigate T246991. Once it is no longer needed,
// we could go back to incrWithInit(), though that has more potential for race
// conditions between the get() and incrWithInit() calls.
$cache->merge(
$key,
function ( $cache, $key, $data, &$expiry )
use ( $action, $logger, &$triggered, $now, $clockFudge, $limit, $incrBy )
{
// phan is confused because &can-bypass's value is a bool, so it assumes
// that $userLimit is also a bool here.
// @phan-suppress-next-line PhanTypeInvalidExpressionArrayDestructuring
list( $max, $period ) = $limit;
$expiry = $now + (int)$period;
$count = 0;
// Already pinged?
if ( $data ) {
// NOTE: in order to investigate T246991, we write the expiry time
// into the payload, along with the count.
$fields = explode( '|', $data );
$storedCount = (int)( $fields[0] ?? 0 );
$storedExpiry = (int)( $fields[1] ?? PHP_INT_MAX );
// Found a stale entry. This should not happen!
if ( $storedExpiry < ( $now + $clockFudge ) ) {
$logger->info(
'User::pingLimiter: '
. 'Stale rate limit entry, cache key failed to expire (T246991)',
[
'action' => $action,
'user' => $this->getName(),
'limit' => $max,
'period' => $period,
'count' => $storedCount,
'key' => $key,
'expiry' => MWTimestamp::convert( TS_DB, $storedExpiry ),
]
);
} else {
// NOTE: We'll keep the original expiry when bumping counters,
// resulting in a kind of fixed-window throttle.
$expiry = min( $storedExpiry, $now + (int)$period );
$count = $storedCount;
}
}
// Limit exceeded!
if ( $count >= $max ) {
if ( !$triggered ) {
$logger->info(
'User::pingLimiter: User tripped rate limit',
[
'action' => $action,
'user' => $this->getName(),
'ip' => $this->getRequest()->getIP(),
'limit' => $max,
'period' => $period,
'count' => $count,
'key' => $key
]
);
}
$triggered = true;
}
$count += $incrBy;
$data = "$count|$expiry";
return $data;
Support rate limiting backlink purges, including null edits Change-Id: I86e45b7d0eba7d87f65150b34e190e04d8342b3e
2013-09-20 22:26:08 +00:00
}
User: enforce pingLimiter() expiry time This makes User::pingLimiter() include the expiry time in the payload of the cache key that holds the current count. This allows us to ignore stale counts. Until now, we have been relying on the cache implementation to expire the relevant keys in time. This however seems to fail sometimes. Bug: T246991 Change-Id: Ifa3c558b4449f1ca133d0064781f26ac1bf59425
2020-08-26 11:18:46 +00:00
);
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
* Simple rate limiter for edits and page moves; set $wgRateLimits (somewhat experimental; currently needs memcached) * Pretty up HTTP error output a bit (HTML instead of text/plain) * Genericise DNS blacklist support a bit, func for Blitzed OPM (not yet used)
2005-05-27 11:03:37 +00:00
return $triggered;
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
* Check if user is blocked
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
Deprecate User::isBlocked() The method User::isBlocked() attempts to answer two questions: (1) Does the user have a block? (2) Is the user prevented from performing this action? The method can answer #1, but it cannot answer #2. Since User::getBlock() can also answer #1, this method is redundant. The method cannot answer #2 because there is not enough context in order to answer that question. If access is being checked against a Title object, all access checks can be performed with PermissionManager:userCan() which will also check the user's blocks. If performing all access checks is not desirable, using PermissionManager::isBlockedFrom() is also acceptable for only checking if the user is blocked. This method does *not* determine if the action is allowed, only that the user's block applies to that Title. If access is being checked without an existing Title, User::getBlock() can be used to get the user's block. Then Block::appliesToRight() can be used to determine if the block applies explicitly to a right (or returns null if it is unknown or false if explicitly allowed). If the user is creating a new Title, but the text of the title is not yet known (as in the case of Wikibase), access should be checked with Block::appliesToNamespace(). Bug: T209004 Change-Id: Ic0ad1b92e957797fee8dcd00bd1092fe69fa58f1
2019-04-23 17:51:54 +00:00
* @deprecated since 1.34, use User::getBlock() or
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
* Authority:getBlock() or Authority:definitlyCan() or
* Authority:authorizeRead() or Authority:authorizeWrite() or
* PermissionManager::isBlockedFrom(), as appropriate.
Deprecate User::isBlocked() The method User::isBlocked() attempts to answer two questions: (1) Does the user have a block? (2) Is the user prevented from performing this action? The method can answer #1, but it cannot answer #2. Since User::getBlock() can also answer #1, this method is redundant. The method cannot answer #2 because there is not enough context in order to answer that question. If access is being checked against a Title object, all access checks can be performed with PermissionManager:userCan() which will also check the user's blocks. If performing all access checks is not desirable, using PermissionManager::isBlockedFrom() is also acceptable for only checking if the user is blocked. This method does *not* determine if the action is allowed, only that the user's block applies to that Title. If access is being checked without an existing Title, User::getBlock() can be used to get the user's block. Then Block::appliesToRight() can be used to determine if the block applies explicitly to a right (or returns null if it is unknown or false if explicitly allowed). If the user is creating a new Title, but the text of the title is not yet known (as in the case of Wikibase), access should be checked with Block::appliesToNamespace(). Bug: T209004 Change-Id: Ic0ad1b92e957797fee8dcd00bd1092fe69fa58f1
2019-04-23 17:51:54 +00:00
*
User::(get|is)Block*(): We don't need to prefix variables with their type… Change-Id: I38e10453051dd300217542de68daab352993b2a6
2019-03-18 22:17:50 +00:00
* @param bool $fromReplica Whether to check the replica DB instead of
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
* the primary DB. Hacked from false due to horrible probs on site.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if blocked, false otherwise
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
User::(get|is)Block*(): We don't need to prefix variables with their type… Change-Id: I38e10453051dd300217542de68daab352993b2a6
2019-03-18 22:17:50 +00:00
public function isBlocked( $fromReplica = true ) {
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
return $this->getBlock( $fromReplica ) !== null;
Implement an accessor for User->mBlock. Doing this separately as it would be nice to backport this to 1.18 for the purposes of updating extensions for 1.19.
2011-07-26 19:27:14 +00:00
}
/**
* Get the block affecting the user, or null if the user is not blocked
*
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
* @param int|bool $freshness One of the Authority::READ_XXX constants.
* For backwards compatibility, a boolean is also accepted,
* with true meaning READ_NORMAL and false meaning
* READ_LATEST.
Fix fetching ipblock-exempt within BlockManager::getUserBlock Bug: T271551 Bug: T270145 Change-Id: I458b7b6b3f79c5961c01c35677b7b25021e316a0
2021-01-08 21:21:38 +00:00
* @param bool $disableIpBlockExemptChecking This is used internally to prevent
* a infinite recursion with autopromote. See T270145.
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
*
* @return ?AbstractBlock
Implement an accessor for User->mBlock. Doing this separately as it would be nice to backport this to 1.18 for the purposes of updating extensions for 1.19.
2011-07-26 19:27:14 +00:00
*/
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
public function getBlock(
$freshness = self::READ_NORMAL,
$disableIpBlockExemptChecking = false
): ?Block {
if ( is_bool( $freshness ) ) {
$fromReplica = $freshness;
} else {
$fromReplica = ( $freshness !== self::READ_LATEST );
}
Fix fetching ipblock-exempt within BlockManager::getUserBlock Bug: T271551 Bug: T270145 Change-Id: I458b7b6b3f79c5961c01c35677b7b25021e316a0
2021-01-08 21:21:38 +00:00
$this->getBlockedStatus( $fromReplica, $disableIpBlockExemptChecking );
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
return $this->mBlock instanceof AbstractBlock ? $this->mBlock : null;
Initial revision
2003-04-14 23:10:40 +00:00
}
new feature: $wgBlockAllowsUTEdit
2005-07-07 21:40:25 +00:00
/**
* Check if user is blocked from editing a particular article
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
Remove Title from method signatures in User Bug: T278459 Change-Id: I78c6a1b57e1b8383905e6650ab16085d28a38769
2021-04-08 19:34:40 +00:00
* @param PageIdentity $title Title to check
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
* @param bool $fromReplica Whether to check the replica DB instead of the primary DB
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
Introduce PermissionManager service First iteration of adding a PermissionManager service as a replacement for Title::userCan and User::isBlockedFrom methods. - Created PermissionManager service - Migrated Title::userCan to PermissionManager::userCan and deprecated the first - Migrated Title::quickUserCan to PermissionManager::quickUserCan and deprecated the first - Migrated User::isBlockedFrom to PermissionManager::isBlockedFrom and deprecated the first Same for User::isBlockedFrom and PermissionManager::isBlockedFrom - the $user parameter is now required so the declaration is changed from isBlockedFrom( $title, ... ) to isBlockedFrom( $user, $title, .. ) which means before User::isBlockedFrom removal all calls to it need to be updated. Added PermissionManagerTest, it copies TitlePermissionTest but uses PermissionManager instance instead of Title methods, this way keeping both tests in place, we can ensure that nothing was broken and both are in working state during the deprecation phase. Bug: T208768 Change-Id: I94479b44afb3068695f8e327b46bda38e44e691f
2019-03-07 20:02:07 +00:00
*
* @deprecated since 1.33,
* use MediaWikiServices::getInstance()->getPermissionManager()->isBlockedFrom(..)
*
new feature: $wgBlockAllowsUTEdit
2005-07-07 21:40:25 +00:00
*/
doc: Modernise parameter names and documentation for 'replica' DBs Non-breaking change. Remaining uses are public interfaces (a constant, two globals, a config sub-parameter, SQL queries, storage function names), one i18n message key, and a whole lot of maintenance scripts with calls to the deprecated function wfWaitForSlaves(). Change-Id: I6ee5ca92ccf6a80c08f53d9efe38ebb4b05064d7
2018-10-31 17:36:48 +00:00
public function isBlockedFrom( $title, $fromReplica = false ) {
Introduce PermissionManager service First iteration of adding a PermissionManager service as a replacement for Title::userCan and User::isBlockedFrom methods. - Created PermissionManager service - Migrated Title::userCan to PermissionManager::userCan and deprecated the first - Migrated Title::quickUserCan to PermissionManager::quickUserCan and deprecated the first - Migrated User::isBlockedFrom to PermissionManager::isBlockedFrom and deprecated the first Same for User::isBlockedFrom and PermissionManager::isBlockedFrom - the $user parameter is now required so the declaration is changed from isBlockedFrom( $title, ... ) to isBlockedFrom( $user, $title, .. ) which means before User::isBlockedFrom removal all calls to it need to be updated. Added PermissionManagerTest, it copies TitlePermissionTest but uses PermissionManager instance instead of Title methods, this way keeping both tests in place, we can ensure that nothing was broken and both are in working state during the deprecation phase. Bug: T208768 Change-Id: I94479b44afb3068695f8e327b46bda38e44e691f
2019-03-07 20:02:07 +00:00
return MediaWikiServices::getInstance()->getPermissionManager()
->isBlockedFrom( $this, $title, $fromReplica );
new feature: $wgBlockAllowsUTEdit
2005-07-07 21:40:25 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* If user is blocked, return the name of the user who placed the block
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string Name of blocker
Hard deprecate User::blockedby(), User::getblockid() Bug: T290869 Change-Id: If2d96705223bd80ffd68526773a2c81aaeaa898d
2021-09-21 14:05:15 +00:00
* @deprecated since 1.38
* Hard deprecated since 1.38.
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function blockedBy() {
Hard deprecate User::blockedby(), User::getblockid() Bug: T290869 Change-Id: If2d96705223bd80ffd68526773a2c81aaeaa898d
2021-09-21 14:05:15 +00:00
wfDeprecated( __METHOD__, '1.38' );
Initial revision
2003-04-14 23:10:40 +00:00
$this->getBlockedStatus();
return $this->mBlockedby;
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
Revert "Revert "Store block reasons as CommentStoreComments in block classes"" This reverts commit 5f06efb318ba5abf2c97afde47c32f61a525ce8a, which reverted 9335363789009eabea57cc5550c96180508b2c9d, which makes the deprecated property AbstractBlock::mReason private. After 9335363789, AbstractBlock::mReason is obsolete, since the block reason is now stored as a CommentStoreComment, AbstractBlock::reason. Change-Id: Ica0a74be90383689ca8e4cfe6d0fb25c9a5942c5
2019-10-20 00:04:00 +00:00
* If user is blocked, return the specified reason for the block.
*
* @deprecated since 1.35 Use AbstractBlock::getReasonComment instead
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string Blocking reason
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function blockedFor() {
Initial revision
2003-04-14 23:10:40 +00:00
$this->getBlockedStatus();
return $this->mBlockreason;
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
(bug 17352) Improve review UI with regards to blocks
2009-02-04 18:23:26 +00:00
/**
* If user is blocked, return the ID for the block
user: Fix documentation of User::mBlock and related Change-Id: Ia71c81a96fe74bf8d75fe826af432b0e3ff4c52c
2019-09-19 11:05:36 +00:00
* @return int|false
Hard deprecate User::blockedby(), User::getblockid() Bug: T290869 Change-Id: If2d96705223bd80ffd68526773a2c81aaeaa898d
2021-09-21 14:05:15 +00:00
* @deprecated since 1.38
* Hard deprecated since 1.38.
(bug 17352) Improve review UI with regards to blocks
2009-02-04 18:23:26 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getBlockId() {
Hard deprecate User::blockedby(), User::getblockid() Bug: T290869 Change-Id: If2d96705223bd80ffd68526773a2c81aaeaa898d
2021-09-21 14:05:15 +00:00
wfDeprecated( __METHOD__, '1.38' );
(bug 17352) Improve review UI with regards to blocks
2009-02-04 18:23:26 +00:00
$this->getBlockedStatus();
Blame hashar for this giant commit; he teased me for making so many smaller ones earlier... :D * Internalise $mAddress/$mUser, $mBy/$mByName, $mEnableAutoblock, $mId as getTarget(), getBlockers(), isAutoblocking(), getId(). * This required editing AbuseFilter and CheckUser backwards-incompatibly, so push the rest of the changes out to those extensions. * Attack the evil 14-parameter constructor and gratuitously-confusing newFromDB( $notVeryImportantParameter, $moreImportantParameter) * Reimplement the hack for bug 13611 in a slightly less fragile fashion; could still do with further cleanup, but then again the login frontend is its own can of worms... :S * Remove transitionary getTargetAndType() and newFromTargetAndType() methods * Some optimisation in parseTarget() * Fix the broken phpunit test mentioned in r84251
2011-03-21 19:12:41 +00:00
return ( $this->mBlock ? $this->mBlock->getId() : false );
(bug 17352) Improve review UI with regards to blocks
2009-02-04 18:23:26 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
/**
* Check if user is blocked on all wikis.
* Do not use for actual edit permission checks!
Spellchecked /includes directory * Ran spell-checker over code comments in /includes/ * A few spellchecking fixes for wfDebug() calls Found one very strange (NOOP?) line in Linker.php - see "TODO: BUG?" Change-Id: Ibb86b51073b980eda9ecce2cf0b8dd33f058adbf
2013-03-13 07:42:41 +00:00
* This is intended for quick UI checks.
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $ip IP address, uses current client if none given
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if blocked, false otherwise
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isBlockedGlobally( $ip = '' ) {
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
return $this->getGlobalBlock( $ip ) instanceof AbstractBlock;
Check for global blocks Depends on GlobalBlocking change I2893b9e24173d21fe518c360f6c6add363cc7b23, where the Block object is added to the hook. Before this, it's only possible to check for globalblock status. It is not possible to print a proper error message without relying on the extension and manually calling its GlobalBlocking::getUserBlockErrors to fetch the actual error message. Bug: T111229 Depends-On: I2893b9e24173d21fe518c360f6c6add363cc7b23 Change-Id: I23d29c1a0e016de4e82d5b51afa94ae9afd70ee4
2016-04-13 14:24:30 +00:00
}
/**
* Check if user is blocked on all wikis.
* Do not use for actual edit permission checks!
* This is intended for quick UI checks.
*
* @param string $ip IP address, uses current client if none given
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
* @return AbstractBlock|null Block object if blocked, null otherwise
Check for global blocks Depends on GlobalBlocking change I2893b9e24173d21fe518c360f6c6add363cc7b23, where the Block object is added to the hook. Before this, it's only possible to check for globalblock status. It is not possible to print a proper error message without relying on the extension and manually calling its GlobalBlocking::getUserBlockErrors to fetch the actual error message. Bug: T111229 Depends-On: I2893b9e24173d21fe518c360f6c6add363cc7b23 Change-Id: I23d29c1a0e016de4e82d5b51afa94ae9afd70ee4
2016-04-13 14:24:30 +00:00
* @throws FatalError
* @throws MWException
*/
public function getGlobalBlock( $ip = '' ) {
if ( $this->mGlobalBlock !== null ) {
return $this->mGlobalBlock ?: null;
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
}
// User is already an IP?
Use namespaced IPUtils class Change-Id: I047e099a93203a59093946d336a143d899d0271f
2019-06-25 18:53:15 +00:00
if ( IPUtils::isIPAddress( $this->getName() ) ) {
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
$ip = $this->getName();
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
} elseif ( !$ip ) {
Moved wfGetIP() to WebRequest::getIP(): * Changed all calls in core to the latter * Also marked wfGetForwardedFor() as deprecated * Moved wfGetIP() tests to WebRequestTest
2011-08-18 20:03:30 +00:00
$ip = $this->getRequest()->getIP();
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
}
$blocked = false;
Check for global blocks Depends on GlobalBlocking change I2893b9e24173d21fe518c360f6c6add363cc7b23, where the Block object is added to the hook. Before this, it's only possible to check for globalblock status. It is not possible to print a proper error message without relying on the extension and manually calling its GlobalBlocking::getUserBlockErrors to fetch the actual error message. Bug: T111229 Depends-On: I2893b9e24173d21fe518c360f6c6add363cc7b23 Change-Id: I23d29c1a0e016de4e82d5b51afa94ae9afd70ee4
2016-04-13 14:24:30 +00:00
$block = null;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserIsBlockedGlobally( $this, $ip, $blocked, $block );
Check for global blocks Depends on GlobalBlocking change I2893b9e24173d21fe518c360f6c6add363cc7b23, where the Block object is added to the hook. Before this, it's only possible to check for globalblock status. It is not possible to print a proper error message without relying on the extension and manually calling its GlobalBlocking::getUserBlockErrors to fetch the actual error message. Bug: T111229 Depends-On: I2893b9e24173d21fe518c360f6c6add363cc7b23 Change-Id: I23d29c1a0e016de4e82d5b51afa94ae9afd70ee4
2016-04-13 14:24:30 +00:00
if ( $blocked && $block === null ) {
// back-compat: UserIsBlockedGlobally didn't have $block param first
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
$block = new SystemBlock( [
Add the concept of "system blocks" Blocks made for configured proxies, dnsbls, or the configured range soft-blocks being added in I6c11a6b9 aren't real blocks stored in the database. Let's actually flag these blocks as such and use a more appropriate message when displaying them to the user. Change-Id: I697e3eec2520792e98c193200c2b1c28c35bf382
2016-12-01 16:51:03 +00:00
'address' => $ip,
'systemBlock' => 'global-block'
] );
Check for global blocks Depends on GlobalBlocking change I2893b9e24173d21fe518c360f6c6add363cc7b23, where the Block object is added to the hook. Before this, it's only possible to check for globalblock status. It is not possible to print a proper error message without relying on the extension and manually calling its GlobalBlocking::getUserBlockErrors to fetch the actual error message. Bug: T111229 Depends-On: I2893b9e24173d21fe518c360f6c6add363cc7b23 Change-Id: I23d29c1a0e016de4e82d5b51afa94ae9afd70ee4
2016-04-13 14:24:30 +00:00
}
$this->mGlobalBlock = $blocked ? $block : false;
return $this->mGlobalBlock ?: null;
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
/**
* Check if user account is locked
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if locked, false otherwise
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isLocked() {
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( $this->mLocked !== null ) {
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
return $this->mLocked;
}
Drop AuthPlugin and related code, deprecated in 1.27 Bug: T215843 Depends-On: Ie49709faa6f67b0a31bd546823d29dbfea0a70eb Depends-On: If8109dbfdeeb88a6265f4cd79d1ae81bff48d934 Depends-On: I36b195fa2d6c23a76631ebaf869c787e44427d60 Depends-On: Iaa171b085fde331eab7d85c7de74523e27fc625a Change-Id: I330b30d6582034a233fed204c0680b1ce84eec6e
2019-02-11 21:18:13 +00:00
// Reset for hook
$this->mLocked = false;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserIsLocked( $this, $this->mLocked );
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
return $this->mLocked;
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
/**
* Check if user account is hidden
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True if hidden, false otherwise
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isHidden() {
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( $this->mHideName !== null ) {
Enforce partial blocks Enforce partial blocks and display a slightly different block notice depending on if the block is sitewide or not Bug: T197117 Depends-On: I675316dddf272fd0d6172ecad3882160752bf780 Change-Id: I8a3635a4a04a33912eb139b7b13c4bd874183d31
2018-08-27 01:45:18 +00:00
return (bool)$this->mHideName;
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
}
$this->getBlockedStatus();
Enforce partial blocks Enforce partial blocks and display a slightly different block notice depending on if the block is sitewide or not Bug: T197117 Depends-On: I675316dddf272fd0d6172ecad3882160752bf780 Change-Id: I8a3635a4a04a33912eb139b7b13c4bd874183d31
2018-08-27 01:45:18 +00:00
return (bool)$this->mHideName;
* Pull isLocked() and isHidden() up to User using callbacks * Add quick globalblock check function to User * Add 'locked'/'globally blocked' notices to checkuser (bug 15272) (bug 15792)
2008-10-02 01:12:07 +00:00
}
Initial revision
2003-04-14 23:10:40 +00:00
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the user's ID.
Avoid using UserIdentity::getUserId Replace UserIdentity::getUserId with ::getId Add $wikiId = self::LOCAL as an optinal parameter to User and UserIdentity Bug: T275482 Change-Id: I44494845c469a14284c3e23cb620e5a7cbf59cd5
2021-02-23 15:40:12 +00:00
* @param string|false $wikiId The wiki ID expected by the caller.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return int The user's ID; 0 if the user is anonymous or nonexistent
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
build: Updating dependencies composer: * mediawiki/mediawiki-codesniffer: 36.0.0 → 37.0.0 The following sniffs now pass and were enabled: * Generic.ControlStructures.InlineControlStructure * MediaWiki.PHPUnit.AssertCount.NotUsed npm: * svgo: 2.3.0 → 2.3.1 * https://npmjs.com/advisories/1754 (CVE-2021-33587) Change-Id: I2a9bbee2fecbf7259876d335f565ece4b3622426
2021-07-22 03:11:47 +00:00
public function getId( $wikiId = self::LOCAL ): int {
Avoid using UserIdentity::getUserId Replace UserIdentity::getUserId with ::getId Add $wikiId = self::LOCAL as an optinal parameter to User and UserIdentity Bug: T275482 Change-Id: I44494845c469a14284c3e23cb620e5a7cbf59cd5
2021-02-23 15:40:12 +00:00
$this->deprecateInvalidCrossWiki( $wikiId, '1.36' );
User::getID: Be lazier when fetching UserNameUtils Given that User::getID is a very common method, used very early during setup (e.g. during session initialization), only load its dependency when it's really needed. Bug: T282320 Change-Id: I6565426e9bf7084b1a33d39b2882639a03210460
2021-05-10 13:26:24 +00:00
if ( $this->mId === null && $this->mName !== null ) {
$userNameUtils = MediaWikiServices::getInstance()->getUserNameUtils();
if ( $userNameUtils->isIP( $this->mName ) || ExternalUserNames::isExternal( $this->mName ) ) {
// Special case, we know the user is anonymous
// Note that "external" users are "local" (they have an actor ID that is relative to
// the local wiki).
return 0;
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
}
if ( !$this->isItemLoaded( 'id' ) ) {
Optimize User::getID() for special cases, and User::isLoggedIn() generally (the latter seems to have always required a database query in the past, when in fact it never should).
2007-07-23 19:39:53 +00:00
// Don't load if this was initialized from an ID
$this->load();
}
Ensure that User::getId() returns int And document User::mId as such. Change-Id: I65a5a284257da50830675f074f890f27701900e0
2016-03-18 13:23:40 +00:00
return (int)$this->mId;
Initial revision
2003-04-14 23:10:40 +00:00
}
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Set the user and reload all fields according to a given ID
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param int $v User ID to reload
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function setId( $v ) {
Initial revision
2003-04-14 23:10:40 +00:00
$this->mId = $v;
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->clearInstanceCache( 'id' );
Initial revision
2003-04-14 23:10:40 +00:00
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the user name, or the IP of an anonymous user
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string User's name or IP address
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
build: Updating dependencies composer: * mediawiki/mediawiki-codesniffer: 36.0.0 → 37.0.0 The following sniffs now pass and were enabled: * Generic.ControlStructures.InlineControlStructure * MediaWiki.PHPUnit.AssertCount.NotUsed npm: * svgo: 2.3.0 → 2.3.1 * https://npmjs.com/advisories/1754 (CVE-2021-33587) Change-Id: I2a9bbee2fecbf7259876d335f565ece4b3622426
2021-07-22 03:11:47 +00:00
public function getName(): string {
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
if ( $this->isItemLoaded( 'name', 'only' ) ) {
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Special case optimisation
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
return $this->mName;
Deferred initialisation of $wgIP, because it's potentially slow, especially if and when we add the 200 NTL proxies to the trusted XFF list. I was hoping to avoid initialisation altogether for anonymous page views, but that turns out to be difficult because of user_newtalk. It is, however, avoided for action=raw. Tested page view, newtalk, IP registration in history and recentchanges, IP block, autoblock and Special:Version. Also moved the old proxy scan code from EditPage.php to a more appropriate location in ProxyTools.php.
2005-09-05 02:22:20 +00:00
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
$this->load();
if ( $this->mName === false ) {
// Clean up IPs
Use namespaced IPUtils class Change-Id: I047e099a93203a59093946d336a143d899d0271f
2019-06-25 18:53:15 +00:00
$this->mName = IPUtils::sanitizeIP( $this->getRequest()->getIP() );
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
}
return $this->mName;
Initial revision
2003-04-14 23:10:40 +00:00
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* Set the user name.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* This does not reload fields from the database according to the given
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* name. Rather, it is used to create a temporary "nonexistent user" for
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* later addition to the database. It can also be used to set the IP
* address for an anonymous user to something other than the current
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* remote IP.
*
Spellchecked /includes directory * Ran spell-checker over code comments in /includes/ * A few spellchecking fixes for wfDebug() calls Found one very strange (NOOP?) line in Linker.php - see "TODO: BUG?" Change-Id: Ibb86b51073b980eda9ecce2cf0b8dd33f058adbf
2013-03-13 07:42:41 +00:00
* @note User::newFromName() has roughly the same function, when the named user
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* does not exist.
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $str New user name to set
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function setName( $str ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Initial revision
2003-04-14 23:10:40 +00:00
$this->mName = $str;
}
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
/**
* Get the user's actor ID.
* @since 1.31
Remove $actor field from UsererIdentityValue Code that needs to store an actor ID in the database to represent a UserIdentity, or needs to construct a UserIdentity based on an actor ID loaded from the database, should use the ActorNormalization service. Note: The getActorId() method is removed from the UserIdentity interface, but all concrete classes continue to support it for now. UsererIdentityValue::getActorId() is hard deprecated and should be removed in 1.37. It always returns 0. User::getActorId() is not deprecated at this point. Bug: T274179 Depends-On: Id2b3ddf6a2a7cdf90f8936a69148d2cce6fde237 Change-Id: I9925906d11e47efaec3c1f48d5cb3f9896a982c1
2021-02-15 18:58:09 +00:00
* @note This method was removed from the UserIdentity interface in 1.36,
Deprecate UserIdentity::getActorId() Note: User::getActorId() is not (yet) deprecated. Bug: T274179 Change-Id: Ic2ca6d489db821fc2334e53bf2496c7b0d3ea5b1
2021-02-20 21:51:37 +00:00
* but remains supported in the User class for now.
* New code should use ActorNormalization::findActorId() or
* ActorNormalization::acquireActorId() instead.
Remove $actor field from UsererIdentityValue Code that needs to store an actor ID in the database to represent a UserIdentity, or needs to construct a UserIdentity based on an actor ID loaded from the database, should use the ActorNormalization service. Note: The getActorId() method is removed from the UserIdentity interface, but all concrete classes continue to support it for now. UsererIdentityValue::getActorId() is hard deprecated and should be removed in 1.37. It always returns 0. User::getActorId() is not deprecated at this point. Bug: T274179 Depends-On: Id2b3ddf6a2a7cdf90f8936a69148d2cce6fde237 Change-Id: I9925906d11e47efaec3c1f48d5cb3f9896a982c1
2021-02-15 18:58:09 +00:00
* @param IDatabase|string|false $dbwOrWikiId Deprecated since 1.36.
* If a database connection is passed, a new actor ID is assigned if needed.
* ActorNormalization::acquireActorId() should be used for that purpose instead.
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
* @return int The actor's ID, or 0 if no actor ID exists and $dbw was null
Make UserIdentity objects aware of which wiki they belong to. Bug: T260933 Change-Id: Ic986640cc34e6ec6be239e410a8334f0e299c682
2021-01-27 04:25:24 +00:00
* @throws PreconditionException if $dbwOrWikiId is a string and does not match the local wiki
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
*/
build: Updating dependencies composer: * mediawiki/mediawiki-codesniffer: 36.0.0 → 37.0.0 The following sniffs now pass and were enabled: * Generic.ControlStructures.InlineControlStructure * MediaWiki.PHPUnit.AssertCount.NotUsed npm: * svgo: 2.3.0 → 2.3.1 * https://npmjs.com/advisories/1754 (CVE-2021-33587) Change-Id: I2a9bbee2fecbf7259876d335f565ece4b3622426
2021-07-22 03:11:47 +00:00
public function getActorId( $dbwOrWikiId = self::LOCAL ): int {
Remove $actor field from UsererIdentityValue Code that needs to store an actor ID in the database to represent a UserIdentity, or needs to construct a UserIdentity based on an actor ID loaded from the database, should use the ActorNormalization service. Note: The getActorId() method is removed from the UserIdentity interface, but all concrete classes continue to support it for now. UsererIdentityValue::getActorId() is hard deprecated and should be removed in 1.37. It always returns 0. User::getActorId() is not deprecated at this point. Bug: T274179 Depends-On: Id2b3ddf6a2a7cdf90f8936a69148d2cce6fde237 Change-Id: I9925906d11e47efaec3c1f48d5cb3f9896a982c1
2021-02-15 18:58:09 +00:00
if ( $dbwOrWikiId ) {
wfDeprecatedMsg( 'Passing a parameter to getActorId() is deprecated', '1.36' );
}
if ( is_string( $dbwOrWikiId ) ) {
Make UserIdentity objects aware of which wiki they belong to. Bug: T260933 Change-Id: Ic986640cc34e6ec6be239e410a8334f0e299c682
2021-01-27 04:25:24 +00:00
$this->assertWiki( $dbwOrWikiId );
}
Hard-deprecate IDatabase parameter for UserIdentity:getActorId() Bug: T273576 Change-Id: I0df4a2749afae74671dc4c49bac4e18309677703
2021-02-15 22:26:08 +00:00
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
if ( !$this->isItemLoaded( 'actor' ) ) {
$this->load();
}
Make UserIdentity objects aware of which wiki they belong to. Bug: T260933 Change-Id: Ic986640cc34e6ec6be239e410a8334f0e299c682
2021-01-27 04:25:24 +00:00
if ( !$this->mActorId && $dbwOrWikiId instanceof IDatabase ) {
Introduce ActorStore, ActorLookup and ActorFactory. The ActorNormalization factory methods create UserIdentityValue from the database rows, either via fields of a joined table, or via a row from actor table. They assume that the actor_id exist and throw othervise. ActorNormalization is a storage-layer service providing access to finding and acquiring actor_id. The UserIdentityLookup methods do not instantiate new actor on demand, they just find an appropriate row in the actor table and return the result. Bug: T272689 Depends-On: I74d81f3f0233efb17fc8df5178e4c477cc669c6f Change-Id: Icfa1daca960c696a8cef8adab5eab53985802858
2021-01-22 19:51:43 +00:00
MediaWikiServices::getInstance()
->getActorStoreFactory()
->getActorNormalization( $dbwOrWikiId->getDomainID() )
->acquireActorId( $this, $dbwOrWikiId );
// acquireActorId will call setActorId on $this
Assert::postcondition(
$this->mActorId !== null,
"Failed to acquire actor ID for user id {$this->mId} name {$this->mName}"
);
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
}
return (int)$this->mActorId;
}
Introduce ActorStore, ActorLookup and ActorFactory. The ActorNormalization factory methods create UserIdentityValue from the database rows, either via fields of a joined table, or via a row from actor table. They assume that the actor_id exist and throw othervise. ActorNormalization is a storage-layer service providing access to finding and acquiring actor_id. The UserIdentityLookup methods do not instantiate new actor on demand, they just find an appropriate row in the actor table and return the result. Bug: T272689 Depends-On: I74d81f3f0233efb17fc8df5178e4c477cc669c6f Change-Id: Icfa1daca960c696a8cef8adab5eab53985802858
2021-01-22 19:51:43 +00:00
/**
* Sets the actor id.
Remove $actor field from UsererIdentityValue Code that needs to store an actor ID in the database to represent a UserIdentity, or needs to construct a UserIdentity based on an actor ID loaded from the database, should use the ActorNormalization service. Note: The getActorId() method is removed from the UserIdentity interface, but all concrete classes continue to support it for now. UsererIdentityValue::getActorId() is hard deprecated and should be removed in 1.37. It always returns 0. User::getActorId() is not deprecated at this point. Bug: T274179 Depends-On: Id2b3ddf6a2a7cdf90f8936a69148d2cce6fde237 Change-Id: I9925906d11e47efaec3c1f48d5cb3f9896a982c1
2021-02-15 18:58:09 +00:00
* For use by ActorStore only.
* Should be removed once callers of getActorId() have been migrated to using ActorNormalization.
Introduce ActorStore, ActorLookup and ActorFactory. The ActorNormalization factory methods create UserIdentityValue from the database rows, either via fields of a joined table, or via a row from actor table. They assume that the actor_id exist and throw othervise. ActorNormalization is a storage-layer service providing access to finding and acquiring actor_id. The UserIdentityLookup methods do not instantiate new actor on demand, they just find an appropriate row in the actor table and return the result. Bug: T272689 Depends-On: I74d81f3f0233efb17fc8df5178e4c477cc669c6f Change-Id: Icfa1daca960c696a8cef8adab5eab53985802858
2021-01-22 19:51:43 +00:00
*
* @internal
* @deprecated since 1.36
* @param int $actorId
*/
public function setActorId( int $actorId ) {
$this->mActorId = $actorId;
$this->setItemLoaded( 'actor' );
}
Add User::getTitleKey() to encapsulate the user name -> title DB key conversions being performed everywhere. Code cleanup and style tweaks on new enotif-changed code.
2004-12-18 10:21:03 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the user's name escaped by underscores.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string Username escaped by underscores.
Add User::getTitleKey() to encapsulate the user name -> title DB key conversions being performed everywhere. Code cleanup and style tweaks on new enotif-changed code.
2004-12-18 10:21:03 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getTitleKey() {
Add User::getTitleKey() to encapsulate the user name -> title DB key conversions being performed everywhere. Code cleanup and style tweaks on new enotif-changed code.
2004-12-18 10:21:03 +00:00
return str_replace( ' ', '_', $this->getName() );
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
/**
* Generate a current or new-future timestamp to be stored in the
* user_touched field when we update things.
User: Remove redundant wgClockSkewFudge code Ensuring the new value is at least as high as 1 second higher than the current value is sufficient. The main code paths using this are checkAndSetTouched (for user group changes) and saveSettings(), both of which use makeUpdateConditions() which ensures we bail out if something else already wrote to it in the mean time. As such, there is no longer a need to make sure our time is higher than something another server may have written, given that is no longer something we support. This variable was introduced in 2005 (MW 1.4) with r9403 (1d12276bcb3), and factored out as newTouchedTimestamp() in 2007 (MW 1.8) with r16772 (c1094ba9876). Change-Id: I940fb0dd125286a4a348c11e2c8d197f9288a75d
2019-03-15 00:05:52 +00:00
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string Timestamp in TS_MW format
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
*/
Made User::newTouchedTimestamp handle clock skew a bit better * This does not handle race conditions, but is a prelude to using CAS style logic on save using the timestamp. Change-Id: I9c31c272fcf77b686764b7c3a6a32ac29576347c
2015-04-06 18:12:41 +00:00
private function newTouchedTimestamp() {
Explicit cast TS_UNIX to int for arithmetic operations and int args When the called function has a doc of int, it should be cast to be explicit here. Also cast for arithmetic operations to be explicit about the number Change-Id: I905b78dfb66e66443e0e3203488bab5b548db543
2021-10-16 21:47:01 +00:00
$time = (int)ConvertibleTimestamp::now( TS_UNIX );
User: Remove redundant wgClockSkewFudge code Ensuring the new value is at least as high as 1 second higher than the current value is sufficient. The main code paths using this are checkAndSetTouched (for user group changes) and saveSettings(), both of which use makeUpdateConditions() which ensures we bail out if something else already wrote to it in the mean time. As such, there is no longer a need to make sure our time is higher than something another server may have written, given that is no longer something we support. This variable was introduced in 2005 (MW 1.4) with r9403 (1d12276bcb3), and factored out as newTouchedTimestamp() in 2007 (MW 1.8) with r16772 (c1094ba9876). Change-Id: I940fb0dd125286a4a348c11e2c8d197f9288a75d
2019-03-15 00:05:52 +00:00
if ( $this->mTouched ) {
Explicit cast TS_UNIX to int for arithmetic operations and int args When the called function has a doc of int, it should be cast to be explicit here. Also cast for arithmetic operations to be explicit about the number Change-Id: I905b78dfb66e66443e0e3203488bab5b548db543
2021-10-16 21:47:01 +00:00
$time = max( $time, (int)ConvertibleTimestamp::convert( TS_UNIX, $this->mTouched ) + 1 );
Made User::newTouchedTimestamp handle clock skew a bit better * This does not handle race conditions, but is a prelude to using CAS style logic on save using the timestamp. Change-Id: I9c31c272fcf77b686764b7c3a6a32ac29576347c
2015-04-06 18:12:41 +00:00
}
Reapply "Update user_touched after saving user options." This reverts commit 4d19d06455874730fe8020f071b2bcbe2f12b5a9. Reason for revert: CenralAuth tests fixed Bug: T284354 Depends-On: I9d681baeca0df4808335e7bececfd114cdad2f0e Change-Id: I483b8f61dcfae70c5a50399391b361cf5310ae24
2021-10-25 19:56:47 +00:00
return ConvertibleTimestamp::convert( TS_MW, $time );
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
/**
Fixed sanity cache clear in User::saveSettings() * This works by adding a refresh mode to clearSharedCache() when we want to purge the cache in case it might stale to avoid further CAS errors. Because an exception will be thrown, the usual DB callback will not get fired, so avoid using commit hooks when doing these cache purges. * Also lowered the tombstone TTL for such purges, since no data actually changed. Bug: T114023 Change-Id: Iaad87b4ed24733dac40bc9607d3c97c940710087
2015-09-28 21:07:01 +00:00
* Clear user data from memcached
*
* Use after applying updates to the database; caller's
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
* responsibility to update user_touched if appropriate.
*
* Called implicitly from invalidateCache() and saveSettings().
Fixed sanity cache clear in User::saveSettings() * This works by adding a refresh mode to clearSharedCache() when we want to purge the cache in case it might stale to avoid further CAS errors. Because an exception will be thrown, the usual DB callback will not get fired, so avoid using commit hooks when doing these cache purges. * Also lowered the tombstone TTL for such purges, since no data actually changed. Bug: T114023 Change-Id: Iaad87b4ed24733dac40bc9607d3c97c940710087
2015-09-28 21:07:01 +00:00
*
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
* @param string $mode Use 'refresh' to clear now or 'changed' to clear before DB commit
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
*/
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
public function clearSharedCache( $mode = 'refresh' ) {
User: Migrate from foreign cache to global cache for UserRightsProxy Avoid having one wiki access another wiki's local keyspace. Instead, use the global keyspace to share values across wikis. Also, imitating wfMemcKey from wfForeignMemcKey was semantically incorrect due to $wgCachePrefix having precedence. Most interfaces (e.g. UserRightsProxy, FileRepo, JobQueue etc.) only have access to the wiki id (dbname + prefix). The local cache configuration for wgCachePrefix is not and shouldn't have to be exposed. Start enforcing that local cache keys are left private and to share keys, one must use global keys. Global keys (prefixed with "global:") have their own space and we can use the wiki-id as regular key segment for keys about users. Also: * Expose a method to keep formatting of this key in one place. As it used used in many different places in core, as well as in CentralAuth. * Make use of wfWikiId() in getDefaultKeyspace() to avoid duplicating this logic. Change-Id: I58836a24b9e239f460ab489bd2fe8ced8259833c
2015-10-27 23:43:40 +00:00
if ( !$this->getId() ) {
Updated key WANObjectCache::delete() callers to avoid races * They now issue the delete() write before COMMIT of the relevant DB (or immediately if no trx is active) * This can avoid some stale write race conditions * Updated the WAN cache delete() docs Change-Id: Id54887976051120b76528070d5f2ceb357d57897
2015-09-24 22:25:44 +00:00
return;
* (bug 4201) Fix user-talk mode for Enotif, and general code cleanup - treat NULL properly in watchlist lookup for notification sending - consolidate a lot of ugly code that fiddles in those tables - use user_newtalk consistently in enotif mode; watchlist for email notifications, user_newtalk for on-screen message and status check - clean up handling of other peoples' user_talk pages when in the talk-only limited enotif: only your own will get sent, not other people watching your page - and others watching your page _will_ work in watchable enotif mode - add a watch on page + talk page consistently for the auto-add of the user talk page, not just half the page - don't unwatch the user talk page on view! that's just wacky - removed UserTalkUpdate, now redundant - have User::setNewTalk() apply immediately - clear newtalk from User::clearNotification() and User::clearAllNotifications()
2005-12-07 11:52:34 +00:00
}
Updated key WANObjectCache::delete() callers to avoid races * They now issue the delete() write before COMMIT of the relevant DB (or immediately if no trx is active) * This can avoid some stale write race conditions * Updated the WAN cache delete() docs Change-Id: Id54887976051120b76528070d5f2ceb357d57897
2015-09-24 22:25:44 +00:00
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
$lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
Stop overwriting $cache in User::getCacheKey() Replace a few deprecated function calls Bug: T215483 Change-Id: I000b58d8bf67d9c1ea0123a7547b986e8ca69f25
2019-02-07 03:30:57 +00:00
$cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
User: Migrate from foreign cache to global cache for UserRightsProxy Avoid having one wiki access another wiki's local keyspace. Instead, use the global keyspace to share values across wikis. Also, imitating wfMemcKey from wfForeignMemcKey was semantically incorrect due to $wgCachePrefix having precedence. Most interfaces (e.g. UserRightsProxy, FileRepo, JobQueue etc.) only have access to the wiki id (dbname + prefix). The local cache configuration for wgCachePrefix is not and shouldn't have to be exposed. Start enforcing that local cache keys are left private and to share keys, one must use global keys. Global keys (prefixed with "global:") have their own space and we can use the wiki-id as regular key segment for keys about users. Also: * Expose a method to keep formatting of this key in one place. As it used used in many different places in core, as well as in CentralAuth. * Make use of wfWikiId() in getDefaultKeyspace() to avoid duplicating this logic. Change-Id: I58836a24b9e239f460ab489bd2fe8ced8259833c
2015-10-27 23:43:40 +00:00
$key = $this->getCacheKey( $cache );
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
Fixed sanity cache clear in User::saveSettings() * This works by adding a refresh mode to clearSharedCache() when we want to purge the cache in case it might stale to avoid further CAS errors. Because an exception will be thrown, the usual DB callback will not get fired, so avoid using commit hooks when doing these cache purges. * Also lowered the tombstone TTL for such purges, since no data actually changed. Bug: T114023 Change-Id: Iaad87b4ed24733dac40bc9607d3c97c940710087
2015-09-28 21:07:01 +00:00
if ( $mode === 'refresh' ) {
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
$cache->delete( $key, 1 ); // low tombstone/"hold-off" TTL
Fixed sanity cache clear in User::saveSettings() * This works by adding a refresh mode to clearSharedCache() when we want to purge the cache in case it might stale to avoid further CAS errors. Because an exception will be thrown, the usual DB callback will not get fired, so avoid using commit hooks when doing these cache purges. * Also lowered the tombstone TTL for such purges, since no data actually changed. Bug: T114023 Change-Id: Iaad87b4ed24733dac40bc9607d3c97c940710087
2015-09-28 21:07:01 +00:00
} else {
Replace uses of DB_MASTER with DB_PRIMARY Just an auto-replace from codesniffer for now. Change-Id: I5240dc9ac5929d291b0ef1c743ea2bfd3f428266
2021-04-29 02:37:11 +00:00
$lb->getConnectionRef( DB_PRIMARY )->onTransactionPreCommitOrIdle(
Use static closures where safe to use This is micro-optimization of closure code to avoid binding the closure to $this where it is not needed. Created by I25a17fb22b6b669e817317a0f45051ae9c608208 Change-Id: I0ffc6200f6c6693d78a3151cb8cea7dce7c21653
2021-02-10 22:31:02 +00:00
static function () use ( $cache, $key ) {
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
$cache->delete( $key );
},
__METHOD__
);
Fixed sanity cache clear in User::saveSettings() * This works by adding a refresh mode to clearSharedCache() when we want to purge the cache in case it might stale to avoid further CAS errors. Because an exception will be thrown, the usual DB callback will not get fired, so avoid using commit hooks when doing these cache purges. * Also lowered the tombstone TTL for such purges, since no data actually changed. Bug: T114023 Change-Id: Iaad87b4ed24733dac40bc9607d3c97c940710087
2015-09-28 21:07:01 +00:00
}
Initial revision
2003-04-14 23:10:40 +00:00
}
New update script, Version.php, new salted passwords, minor fixes.
2003-04-16 07:30:52 +00:00
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
/**
Made User::invalidateCache() use touch() instead of the DB query * This method is used for clearing the User cache as well as bumping the value of getTouched() for HTTP 304 logic. These do not need to do the actual user_touched update. * This also avoids problems with setting mTouched but deferring the update. That confused the CAS update logic since it expects mTouched to be in the DB. Change-Id: I96b30f5c9c8b4714e6663b187f741954a13312cf
2015-04-08 02:58:40 +00:00
* Immediately touch the user data cache for this account
*
* Calls touch() and removes account data from memcached
* Do fewer unnecessary full writes of user rows; only update user_touched for watch/unwatch, group membership change, and login operations
2006-10-03 22:30:40 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function invalidateCache() {
Made User::invalidateCache() use touch() instead of the DB query * This method is used for clearing the User cache as well as bumping the value of getTouched() for HTTP 304 logic. These do not need to do the actual user_touched update. * This also avoids problems with setting mTouched but deferring the update. That confused the CAS update logic since it expects mTouched to be in the DB. Change-Id: I96b30f5c9c8b4714e6663b187f741954a13312cf
2015-04-08 02:58:40 +00:00
$this->touch();
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
$this->clearSharedCache( 'changed' );
Initial revision
2003-04-14 23:10:40 +00:00
}
New update script, Version.php, new salted passwords, minor fixes.
2003-04-16 07:30:52 +00:00
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
/**
* Update the "touched" timestamp for the user
*
* This is useful on various login/logout events when making sure that
* a browser or proxy that has multiple tenants does not suffer cache
* pollution where the new user sees the old users content. The value
* of getTouched() is checked when determining 304 vs 200 responses.
* Unlike invalidateCache(), this preserves the User object cache and
* avoids database writes.
*
* @since 1.25
*/
public function touch() {
Made User::touch no longer call load() * Just reset mQuickTouched instead of guessing a new value in touch() for simplicity Change-Id: Ibfe551cf061919ab18c4ff634d8db8f3c0eaf0a5
2015-06-02 00:23:06 +00:00
$id = $this->getId();
if ( $id ) {
User: Avoid deprecated wfMemcKey() And ObjectCache::getMainWANInstance() while we're at it. Change-Id: Id0280aec72202f3b3098c9c3b563541c2c0f2900
2017-05-25 19:17:27 +00:00
$cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
$key = $cache->makeKey( 'user-quicktouched', 'id', $id );
$cache->touchCheckKey( $key );
Made User::touch no longer call load() * Just reset mQuickTouched instead of guessing a new value in touch() for simplicity Change-Id: Ibfe551cf061919ab18c4ff634d8db8f3c0eaf0a5
2015-06-02 00:23:06 +00:00
$this->mQuickTouched = null;
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
}
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Validate the cache for this account.
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $timestamp A timestamp in TS_MW format
Documentation updates Add a couple of missing explicit class variables
2011-07-18 20:11:53 +00:00
* @return bool
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function validateCache( $timestamp ) {
Made User::validateCache account for mQuickTouched Change-Id: I3b733a0221462350f3a24d54ffe814357f379512
2015-03-30 16:36:49 +00:00
return ( $timestamp >= $this->getTouched() );
Initial revision
2003-04-14 23:10:40 +00:00
}
New update script, Version.php, new salted passwords, minor fixes.
2003-04-16 07:30:52 +00:00
* Generalised OutputPage::checkLastModified() to allow it to easily handle more than three types of modified timestamp. Added OutputPageCheckLastModified hook. * Flattened out the structure of that function with early returns, to avoid ugly deep nesting.
2008-08-29 08:40:13 +00:00
/**
* Get the user touched timestamp
Made WANObjectCache::getCheckKey() automatically init the key * This still allows If-Modified-Since logic but does not need to broadcast initialization values just because a key fell out of cache. The value can differ between DCs anyway via skew, this just lets them drift more. Actual purge events are still broadcasted, which is what matters. * The User class has now been simplified given this change. * Added more general comments to getCheckKeyTime(). Change-Id: Ic1f4bbb1947e0d1dd47499c9e9dc86991c30580c
2015-05-22 05:46:25 +00:00
*
* Use this value only to validate caches via inequalities
* such as in the case of HTTP If-Modified-Since response logic
*
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
* @return string TS_MW Timestamp
* Generalised OutputPage::checkLastModified() to allow it to easily handle more than three types of modified timestamp. Added OutputPageCheckLastModified hook. * Flattened out the structure of that function with early returns, to avoid ugly deep nesting.
2008-08-29 08:40:13 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getTouched() {
* Generalised OutputPage::checkLastModified() to allow it to easily handle more than three types of modified timestamp. Added OutputPageCheckLastModified hook. * Flattened out the structure of that function with early returns, to avoid ugly deep nesting.
2008-08-29 08:40:13 +00:00
$this->load();
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
if ( $this->mId ) {
if ( $this->mQuickTouched === null ) {
User: Avoid deprecated wfMemcKey() And ObjectCache::getMainWANInstance() while we're at it. Change-Id: Id0280aec72202f3b3098c9c3b563541c2c0f2900
2017-05-25 19:17:27 +00:00
$cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
$key = $cache->makeKey( 'user-quicktouched', 'id', $this->mId );
Converted User touched key to using the WAN cache Bug: T93141 Change-Id: Id5478d3007bde3f621b4c3ffe9950a654e0ac30a
2015-04-27 23:57:08 +00:00
Made WANObjectCache::getCheckKey() automatically init the key * This still allows If-Modified-Since logic but does not need to broadcast initialization values just because a key fell out of cache. The value can differ between DCs anyway via skew, this just lets them drift more. Actual purge events are still broadcasted, which is what matters. * The User class has now been simplified given this change. * Added more general comments to getCheckKeyTime(). Change-Id: Ic1f4bbb1947e0d1dd47499c9e9dc86991c30580c
2015-05-22 05:46:25 +00:00
$this->mQuickTouched = wfTimestamp( TS_MW, $cache->getCheckKeyTime( $key ) );
Introduced User::touch() method to bump the getTouched() value using memcached * This lets some callers avoid the heavyweight invalidateCache() method Bug: T91279 Bug: T92357 Change-Id: I8c1c7ff9c5574f0eca23e7effde199ab13a19231
2015-03-26 05:19:32 +00:00
}
return max( $this->mTouched, $this->mQuickTouched );
}
* Generalised OutputPage::checkLastModified() to allow it to easily handle more than three types of modified timestamp. Added OutputPageCheckLastModified hook. * Flattened out the structure of that function with early returns, to avoid ugly deep nesting.
2008-08-29 08:40:13 +00:00
return $this->mTouched;
}
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
/**
* Get the user_touched timestamp field (time of last DB updates)
* @return string TS_MW Timestamp
* @since 1.26
*/
Use less fuzzy User::getDBTouched() in ApiStashEdit::getStashKey() * The getTouched() value can bump more often or vary in DCs Change-Id: Idffa22c9dde7c7950943b104ed61f5779636b7e7
2015-05-21 23:24:42 +00:00
public function getDBTouched() {
Added CAS logic to User::addAutopromoteOnceGroups * This should avoid duplicate logging events on races or when the cache fails to update. * Also added getDBTouched() method to get user_touched itself. Bug: T48834 Change-Id: Ib2cd0a2c72629fa4e13dcff4d2d6fbac8e690b32
2015-04-07 20:50:00 +00:00
$this->load();
return $this->mTouched;
}
Add new convenience User method for authentication data change Also update createAndPromote.php to use it so it can display errors. Note that there are two possible approaches. The other is to do the update for all requests for which the test passed, even if some tests fail. The approach of the patch seems more manageable from the caller's point of view (either the operation was a success, or it failed and nothing happened). Change-Id: I86abed4b80472cd888337444fac0cbcb870b1246
2016-06-08 20:08:45 +00:00
/**
* Changes credentials of the user.
*
* This is a convenience wrapper around AuthManager::changeAuthenticationData.
* Note that this can return a status that isOK() but not isGood() on certain types of failures,
* e.g. when no provider handled the change.
*
* @param array $data A set of authentication data in fieldname => value format. This is the
* same data you would pass the changeauthenticationdata API - 'username', 'password' etc.
* @return Status
* @since 1.27
*/
public function changeAuthenticationData( array $data ) {
Use MediaWikiServices::getAuthManager instead of AuthManager::singleton Change-Id: I92c31b963095eab751df9f8c1715e8e23b7e8485
2020-03-31 18:51:49 +00:00
$manager = MediaWikiServices::getInstance()->getAuthManager();
Add new convenience User method for authentication data change Also update createAndPromote.php to use it so it can display errors. Note that there are two possible approaches. The other is to do the update for all requests for which the test passed, even if some tests fail. The approach of the patch seems more manageable from the caller's point of view (either the operation was a success, or it failed and nothing happened). Change-Id: I86abed4b80472cd888337444fac0cbcb870b1246
2016-06-08 20:08:45 +00:00
$reqs = $manager->getAuthenticationRequests( AuthManager::ACTION_CHANGE, $this );
$reqs = AuthenticationRequest::loadRequestsFromSubmission( $reqs, $data );
$status = Status::newGood( 'ignored' );
foreach ( $reqs as $req ) {
$status->merge( $manager->allowsAuthenticationDataChange( $req ), true );
}
if ( $status->getValue() === 'ignored' ) {
$status->warning( 'authenticationdatachange-ignored' );
}
if ( $status->isGood() ) {
foreach ( $reqs as $req ) {
$manager->changeAuthenticationData( $req );
}
}
return $status;
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the user's current token.
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
* @param bool $forceCreation Force the generation of a new token if the
* user doesn't have one (default=true for backwards compatibility).
Add $wgAuthenticationTokenVersion This allows for quickly invalidating everyone's session all at once by changing a single value. As a side effect, setting this also stops the user_token field from the database from being served to the user as a cookie. This mitigates but doesn't completely solve T49490, as it allows for invalidating all existing sessions and token-cookies but does not help if the user_token field in the database was leaked. Bug: T49490 Change-Id: I9d316a6bbb36278d138f39a89125ebb8cc71b28f
2016-02-01 20:07:09 +00:00
* @return string|null Token
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
public function getToken( $forceCreation = true ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$authenticationTokenVersion = MediaWikiServices::getInstance()
->getMainConfig()->get( 'AuthenticationTokenVersion' );
Add $wgAuthenticationTokenVersion This allows for quickly invalidating everyone's session all at once by changing a single value. As a side effect, setting this also stops the user_token field from the database from being served to the user as a cookie. This mitigates but doesn't completely solve T49490, as it allows for invalidating all existing sessions and token-cookies but does not help if the user_token field in the database was leaked. Bug: T49490 Change-Id: I9d316a6bbb36278d138f39a89125ebb8cc71b28f
2016-02-01 20:07:09 +00:00
(bug 14335) Use proper $wgUser methods instead of using $_SESSION
2008-05-29 18:57:06 +00:00
$this->load();
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
if ( !$this->mToken && $forceCreation ) {
$this->setToken();
}
Add $wgAuthenticationTokenVersion This allows for quickly invalidating everyone's session all at once by changing a single value. As a side effect, setting this also stops the user_token field from the database from being served to the user as a cookie. This mitigates but doesn't completely solve T49490, as it allows for invalidating all existing sessions and token-cookies but does not help if the user_token field in the database was leaked. Bug: T49490 Change-Id: I9d316a6bbb36278d138f39a89125ebb8cc71b28f
2016-02-01 20:07:09 +00:00
if ( !$this->mToken ) {
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
// The user doesn't have a token, return null to indicate that.
Add $wgAuthenticationTokenVersion This allows for quickly invalidating everyone's session all at once by changing a single value. As a side effect, setting this also stops the user_token field from the database from being served to the user as a cookie. This mitigates but doesn't completely solve T49490, as it allows for invalidating all existing sessions and token-cookies but does not help if the user_token field in the database was leaked. Bug: T49490 Change-Id: I9d316a6bbb36278d138f39a89125ebb8cc71b28f
2016-02-01 20:07:09 +00:00
return null;
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
}
if ( $this->mToken === self::INVALID_TOKEN ) {
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
// We return a random value here so existing token checks are very
// likely to fail.
return MWCryptRand::generateHex( self::TOKEN_LENGTH );
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
}
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( $authenticationTokenVersion === null ) {
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
// $wgAuthenticationTokenVersion not in use, so return the raw secret
Add $wgAuthenticationTokenVersion This allows for quickly invalidating everyone's session all at once by changing a single value. As a side effect, setting this also stops the user_token field from the database from being served to the user as a cookie. This mitigates but doesn't completely solve T49490, as it allows for invalidating all existing sessions and token-cookies but does not help if the user_token field in the database was leaked. Bug: T49490 Change-Id: I9d316a6bbb36278d138f39a89125ebb8cc71b28f
2016-02-01 20:07:09 +00:00
return $this->mToken;
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
// $wgAuthenticationTokenVersion in use, so hmac it.
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$ret = MWCryptHash::hmac( $authenticationTokenVersion, $this->mToken, false );
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
// The raw hash can be overly long. Shorten it up.
$len = max( 32, self::TOKEN_LENGTH );
if ( strlen( $ret ) < $len ) {
// Should never happen, even md5 is 128 bits
throw new \UnexpectedValueException( 'Hmac returned less than 128 bits' );
}
return substr( $ret, -$len );
(bug 14335) Use proper $wgUser methods instead of using $_SESSION
2008-05-29 18:57:06 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
* Set the random token (used for persistent authentication)
* Called from loadDefaults() among other places.
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string|bool $token If specified, set the token to this value
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function setToken( $token = false ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
if ( $this->mToken === self::INVALID_TOKEN ) {
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
LoggerFactory::getInstance( 'session' )
Introduce User::INVALID_TOKEN To avoid having to have SessionManager try to reset sessions on every request, we set the user_token to a special value. When that value is present, User::getToken() returns a different value every time (so existing checks will fail) and User::setToken() refuses to alter it. Bug: T124414 Change-Id: Ie4c84ce993e40a081288cf5a543f8ba99f98806a
2016-02-01 21:59:27 +00:00
->debug( __METHOD__ . ": Ignoring attempt to set token for system user \"$this\"" );
} elseif ( !$token ) {
Clean up user version constants - Two global constants unused outside of this class so removed - Shorten name since MW and USER are redundant since it's in a class - Use class constant instead of global define consistently Change-Id: I0e8b05372512de568a230a6e5026751aa37c4c4e
2014-07-24 00:26:27 +00:00
$this->mToken = MWCryptRand::generateHex( self::TOKEN_LENGTH );
Improved security: don't send out password hashes or store them in the session, use random tokens instead (from REL1_3A)
2004-09-26 08:25:12 +00:00
} else {
$this->mToken = $token;
}
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the user's e-mail address
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string User's email address
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Make stricter type checks on user email and real name Currently both email and real name are documented as non-nullable, but it seems there's code that breaks this contract. Try stricter type checks. Depends-On: Ie8fa1e7881e1b016dccdc9097a1763a07cc140b9 Depends-On: Id3bf35fe56c459597ed6a602bdf6ca4860271f6e Change-Id: I2f4b7b3500a2b25f7d5cf25147f65ad412d61955
2021-04-01 19:33:20 +00:00
public function getEmail(): string {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Make UserGetEmail hook more robust When a hook handler returns something else, e.g. null, this will be stored in $this->mEmail and cause unexpected errors (most notably type mistatches) later. This was not a problem as long as we didn't use strict `string` type hints. But now we do. Change-Id: Iae9806304d8c39496b6d8e49e700f3a2c55520db
2021-05-12 07:17:12 +00:00
$email = $this->mEmail;
$this->getHookRunner()->onUserGetEmail( $this, $email );
// In case a hook handler returns e.g. null
$this->mEmail = is_string( $email ) ? $email : '';
Initial revision
2003-04-14 23:10:40 +00:00
return $this->mEmail;
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the timestamp of the user's e-mail authentication
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string TS_MW timestamp
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getEmailAuthenticationTimestamp() {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserGetEmailAuthenticationTimestamp(
$this, $this->mEmailAuthenticated );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
return $this->mEmailAuthenticated;
(bug 454) Merge e-notif 2.00 From http://bugzilla.wikipedia.org/attachment.cgi?id=171&action=view and extra files from http://www.tgries.de/mw/cvs15+enea200-minus-cvs.tgz Undid a couple minor bits like the broken changing of minoreditletter. Have not yet made general corrections/reworkings. Since this changes the user and watchlist tables, you must run the updaters (installer or update.php) on an existing database.
2004-12-18 03:47:11 +00:00
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Set the user's e-mail address
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $str New e-mail address
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Make stricter type checks on user email and real name Currently both email and real name are documented as non-nullable, but it seems there's code that breaks this contract. Try stricter type checks. Depends-On: Ie8fa1e7881e1b016dccdc9097a1763a07cc140b9 Depends-On: Id3bf35fe56c459597ed6a602bdf6ca4860271f6e Change-Id: I2f4b7b3500a2b25f7d5cf25147f65ad412d61955
2021-04-01 19:33:20 +00:00
public function setEmail( string $str ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Use User::getEmail() not mEmail The email address needs to be loaded from the CentralAuth hook, it's not populated by User::load(). Fixed in isEmailConfirmed(), which is the subject of the bug, and also two other places that looked relatively obvious and harmless. I'm not fixing it in saveSettings() and addToDatabase() since the effect is not so obvious. It's a bit of a can of worms. Bug: T239523 Change-Id: I51b127ff92c6c3efe98c70e7590d43c7e7734568
2021-01-12 21:47:48 +00:00
if ( $str == $this->getEmail() ) {
* (bug 32960) remove EmailAuthenticationTimestamp from database when a email address is removed In Preferences::trySetUserEmail no point trying to reset the users email if it's the same Same for User::setEmail After setting the email though, invalidate email auth tokens
2011-12-11 15:31:17 +00:00
return;
}
$this->invalidateEmail();
Unsetting the email address for a user when the email address is invalidated. Change-Id: I2a8445745f04540e7962695c3116bb247d81fd94
2013-05-01 22:17:02 +00:00
$this->mEmail = $str;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserSetEmail( $this, $this->mEmail );
Initial revision
2003-04-14 23:10:40 +00:00
}
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
/**
* Set the user's e-mail address and a confirmation mail if needed.
*
Per Siebrand, follow-up I55939bb5295e73594c3fdf7287dddbc16a233ce4 (r4099): * Add message documentation * Changed 'emaildisabled' wording for better understandability * Added @since comment in User::setEmailWithConfirmation() and @deprecated in Preferences::trySetUserEmail() Change-Id: I73c4b82ff2493a26ffbab426f30cd9af5680e503
2012-04-03 16:44:06 +00:00
* @since 1.20
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $str New e-mail address
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
* @return Status
*/
Make stricter type checks on user email and real name Currently both email and real name are documented as non-nullable, but it seems there's code that breaks this contract. Try stricter type checks. Depends-On: Ie8fa1e7881e1b016dccdc9097a1763a07cc140b9 Depends-On: Id3bf35fe56c459597ed6a602bdf6ca4860271f6e Change-Id: I2f4b7b3500a2b25f7d5cf25147f65ad412d61955
2021-04-01 19:33:20 +00:00
public function setEmailWithConfirmation( string $str ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$enableEmail = MediaWikiServices::getInstance()->getMainConfig()->get( 'EnableEmail' );
$emailAuthentication = MediaWikiServices::getInstance()->getMainConfig()->get( 'EmailAuthentication' );
if ( !$enableEmail ) {
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
return Status::newFatal( 'emaildisabled' );
}
$oldaddr = $this->getEmail();
if ( $str === $oldaddr ) {
return Status::newGood( true );
}
User.php: Update 'setEmailWithConfirmation' for notification email In order to minimise the chances of successful account cracking, a notification email should be sent to the user on their previous registered email address, informing them of the change in the registered email address of their account. Bug: T31856 Change-Id: Ib1ef76d7eb45ed0fa7ee0c2e7e39af21289367d2
2016-03-10 20:19:41 +00:00
$type = $oldaddr != '' ? 'changed' : 'set';
$notificationResult = null;
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( $emailAuthentication && $type === 'changed' ) {
User.php: Update 'setEmailWithConfirmation' for notification email In order to minimise the chances of successful account cracking, a notification email should be sent to the user on their previous registered email address, informing them of the change in the registered email address of their account. Bug: T31856 Change-Id: Ib1ef76d7eb45ed0fa7ee0c2e7e39af21289367d2
2016-03-10 20:19:41 +00:00
// Send the user an email notifying the user of the change in registered
// email address on their previous email address
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
$change = $str != '' ? 'changed' : 'removed';
$notificationResult = $this->sendMail(
wfMessage( 'notificationemail_subject_' . $change )->text(),
wfMessage( 'notificationemail_body_' . $change,
$this->getRequest()->getIP(),
$this->getName(),
$str )->text()
);
User.php: Update 'setEmailWithConfirmation' for notification email In order to minimise the chances of successful account cracking, a notification email should be sent to the user on their previous registered email address, informing them of the change in the registered email address of their account. Bug: T31856 Change-Id: Ib1ef76d7eb45ed0fa7ee0c2e7e39af21289367d2
2016-03-10 20:19:41 +00:00
}
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
$this->setEmail( $str );
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( $str !== '' && $emailAuthentication ) {
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
// Send a confirmation request to the new address if needed
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
$result = $this->sendConfirmationMail( $type );
User.php: Update 'setEmailWithConfirmation' for notification email In order to minimise the chances of successful account cracking, a notification email should be sent to the user on their previous registered email address, informing them of the change in the registered email address of their account. Bug: T31856 Change-Id: Ib1ef76d7eb45ed0fa7ee0c2e7e39af21289367d2
2016-03-10 20:19:41 +00:00
if ( $notificationResult !== null ) {
$result->merge( $notificationResult );
}
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
if ( $result->isGood() ) {
User.php: Update 'setEmailWithConfirmation' for notification email In order to minimise the chances of successful account cracking, a notification email should be sent to the user on their previous registered email address, informing them of the change in the registered email address of their account. Bug: T31856 Change-Id: Ib1ef76d7eb45ed0fa7ee0c2e7e39af21289367d2
2016-03-10 20:19:41 +00:00
// Say to the caller that a confirmation and notification mail has been sent
Fix error from I55939bb5295e73594c3fdf7287dddbc16a233ce4 (r4099) pointed out by Nikerabbit The error is "PHP Strict Standards: Creating default object from empty value in includes/User.php on line 2142"; the problem was that I forgot to renamed an instance of that variable while refactoring the code. Change-Id: I4e32311693708ec5a0227d60f7818b374fccd4cc
2012-04-05 18:02:59 +00:00
$result->value = 'eauth';
Moved Preferences::trySetUserEmail() to User::setEmailWithConfirmation() * Much more easier to find it in the User class than in Preferences and it's general enough to be in that class. * Rewrote the function for better readbility * It now always return a Status object so that it's easier to interpret its result. * Update the only caller in core (in Special:ChangeEmail) and moved the PrefsEmailAdit hook there Change-Id: I55939bb5295e73594c3fdf7287dddbc16a233ce4
2012-04-02 15:57:00 +00:00
}
} else {
$result = Status::newGood( true );
}
return $result;
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the user's real name
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string User's real name
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Make stricter type checks on user email and real name Currently both email and real name are documented as non-nullable, but it seems there's code that breaks this contract. Try stricter type checks. Depends-On: Ie8fa1e7881e1b016dccdc9097a1763a07cc140b9 Depends-On: Id3bf35fe56c459597ed6a602bdf6ca4860271f6e Change-Id: I2f4b7b3500a2b25f7d5cf25147f65ad412d61955
2021-04-01 19:33:20 +00:00
public function getRealName(): string {
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
if ( !$this->isItemLoaded( 'realname' ) ) {
$this->load();
}
Added a user_real_name column to the user table, and added a patch SQL file to add this field. User.php stores and fetches the field, and has accessors for it. User login allows setting the field on account creation. The Preferences page allows changing the real name. The labels are available for the real name, and the explanation of the email field on login has been expanded to include an explanation of the real name field, too. Update script checks for the field, and adds it if it's missing.
2004-04-18 02:28:35 +00:00
return $this->mRealName;
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Set the user's real name
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $str New real name
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Make stricter type checks on user email and real name Currently both email and real name are documented as non-nullable, but it seems there's code that breaks this contract. Try stricter type checks. Depends-On: Ie8fa1e7881e1b016dccdc9097a1763a07cc140b9 Depends-On: Id3bf35fe56c459597ed6a602bdf6ca4860271f6e Change-Id: I2f4b7b3500a2b25f7d5cf25147f65ad412d61955
2021-04-01 19:33:20 +00:00
public function setRealName( string $str ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Added a user_real_name column to the user table, and added a patch SQL file to add this field. User.php stores and fetches the field, and has accessors for it. User login allows setting the field on account creation. The Preferences page allows changing the real name. The labels are available for the real name, and the explanation of the email field on login has been expanded to include an explanation of the real name field, too. Update script checks for the field, and adds it if it's missing.
2004-04-18 02:28:35 +00:00
$this->mRealName = $str;
}
* New function: User::getBoolOption() that wraps User::getOption, casts its output to bool and returns it * Documentation: Documented User::getBoolOption() and User::getOption()
2006-01-08 03:40:48 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the user's current setting for a given option.
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $oname The option to check
Clarify docs for User::getOption $defaultOverride parameter The name of the parameter makes it sound like it overrides the default value for that option, but it actually doesn't. Change-Id: I9797696990aafad4b5fc2a62ace739d485315b73
2020-02-05 03:20:05 +00:00
* @param mixed|null $defaultOverride A default value returned if the option does not exist.
* Default values set via $wgDefaultUserOptions / UserGetDefaultOptions take precedence.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @param bool $ignoreHidden Whether to ignore the effects of $wgHiddenPrefs
Use type mixed|null for $defaultOverride in User::getOption Extension Gadgets use a boolean value for $defaultOverride. Also fix the return type for getOption and getDefaultOption. This change is needed to pass the tests in I255237574e76f1c0d92f376bc8cbb81f7cb4ed14. Change-Id: I92ecaa9c14e5c8ba32d152a9e2246a2144b1c7da
2019-12-21 12:58:31 +00:00
* @return mixed|null User's current value for the option
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
* @deprecated since 1.35 Use UserOptionsLookup::getOption instead
* New function: User::getBoolOption() that wraps User::getOption, casts its output to bool and returns it * Documentation: Documented User::getBoolOption() and User::getOption()
2006-01-08 03:40:48 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getOption( $oname, $defaultOverride = null, $ignoreHidden = false ) {
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
if ( $oname === null ) {
return null; // b/c
Initial revision
2003-04-14 23:10:40 +00:00
}
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
return MediaWikiServices::getInstance()
->getUserOptionsLookup()
->getOption( $this, $oname, $defaultOverride, $ignoreHidden );
Initial revision
2003-04-14 23:10:40 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
/**
* Get a token stored in the preferences (like the watchlist one),
* resetting it if it's empty (and saving changes).
*
* @param string $oname The option name to retrieve the token from
* @return string|bool User's current value for the option, or false if this option is disabled.
* @see resetTokenFromOption()
* @see getOption()
Canonicalise '@deprecated since' doc comments Change-Id: I440041512feb47a998efb45e76e3fd00e0655752
2016-08-02 21:53:25 +00:00
* @deprecated since 1.26 Applications should use the OAuth extension
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
*/
public function getTokenFromOption( $oname ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$hiddenPrefs = MediaWikiServices::getInstance()->getMainConfig()->get( 'HiddenPrefs' );
Default the "watchlisttoken" value to a derived HMAC value * This got created if unset on API or GUI preferences access, which leads to writes on GET requests. Try to avoid that deriving it from user_token, unless overriden. This also means that changing the password always resets the key, which is how these things work on most sites anyway. * The whole getTokenFromOption() method is deprecated, and this functionality is already in OAuth. Bug: T92357 Change-Id: I96c0d6f6e535e67545049f01205430249eea8da0
2015-09-03 00:02:38 +00:00
$id = $this->getId();
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( !$id || in_array( $oname, $hiddenPrefs ) ) {
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
return false;
}
$token = $this->getOption( $oname );
if ( !$token ) {
Default the "watchlisttoken" value to a derived HMAC value * This got created if unset on API or GUI preferences access, which leads to writes on GET requests. Try to avoid that deriving it from user_token, unless overriden. This also means that changing the password always resets the key, which is how these things work on most sites anyway. * The whole getTokenFromOption() method is deprecated, and this functionality is already in OAuth. Bug: T92357 Change-Id: I96c0d6f6e535e67545049f01205430249eea8da0
2015-09-03 00:02:38 +00:00
// Default to a value based on the user token to avoid space
// wasted on storing tokens for all users. When this option
// is set manually by the user, only then is it stored.
$token = hash_hmac( 'sha1', "$oname:$id", $this->getToken() );
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
}
Default the "watchlisttoken" value to a derived HMAC value * This got created if unset on API or GUI preferences access, which leads to writes on GET requests. Try to avoid that deriving it from user_token, unless overriden. This also means that changing the password always resets the key, which is how these things work on most sites anyway. * The whole getTokenFromOption() method is deprecated, and this functionality is already in OAuth. Bug: T92357 Change-Id: I96c0d6f6e535e67545049f01205430249eea8da0
2015-09-03 00:02:38 +00:00
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
return $token;
}
/**
* Reset a token stored in the preferences (like the watchlist one).
* *Does not* save user's preferences (similarly to setOption()).
*
* @param string $oname The option name to reset the token in
* @return string|bool New token value, or false if this option is disabled.
* @see getTokenFromOption()
* @see setOption()
*/
public function resetTokenFromOption( $oname ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$hiddenPrefs = MediaWikiServices::getInstance()->getMainConfig()->get( 'HiddenPrefs' );
if ( in_array( $oname, $hiddenPrefs ) ) {
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
return false;
}
$token = MWCryptRand::generateHex( 40 );
Hard deprecate User::setOption() deprecated since 1.35 Bug: T277818 Change-Id: Ic251d624e5d6fa857aa92f9c5dd3df44714ac610
2021-09-10 14:06:51 +00:00
MediaWikiServices::getInstance()
->getUserOptionsManager()
->setOption( $this, $oname, $token );
Refactor watchlist token handling Do not allow the user to change it directly; instead create a form where they can reset it. (The token can still be changed via the API.) The token is autogenerated whenever it is shown or otherwise used. This really should have never used the preferences; however, trying to change that now would be lots of work for very little gain, so this keeps using that mechanism, adding a little abstraction over it. It's not unconceivable that similar tokens could be used for other pieces of data, like Echo's notifications; this enables that with one new hook. ---- Things done here: * Add getTokenFromOption() and resetTokenFromOption() methods to User, abstracting out the get-and-generate-if-empty process of handling tokens. Respect $wgHiddenPrefs (Watchlist didn't do that previously). * Create Special:ResetTokens, inspired by Special:Preferences and Special:ChangeEmail, presenting the token resetting interface (HTMLForm-based with CSRF protection). * Create a new hook, SpecialResetTokensTokens, allowing extensions to register tokens to be shown in the resetting form. Each token needs information about the preference it corresponds to and a short description (used for checkbox label). * Hide the preference on Special:Preferences (use type=api to achieve this), display a link to aforementioned special page instead. Move info blurb to its own section at the bottom. Bug: 21912 Change-Id: I0bdd2469972c4af81bfb480e9dde58cdd14c67a8
2013-06-14 16:59:59 +00:00
return $token;
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the user's preferred date format.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string User's preferred date format
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getDatePreference() {
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
// Important migration for old data rows
Coding style: Auto-fix MediaWiki.Usage.IsNull.IsNull Change-Id: I90cfe8366c0245c9c67e598d17800684897a4e27
2020-01-09 23:48:34 +00:00
if ( $this->mDatePreference === null ) {
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
global $wgLang;
$value = $this->getOption( 'date' );
$map = $wgLang->getDatePreferenceMigrationMap();
if ( isset( $map[$value] ) ) {
$value = $map[$value];
}
$this->mDatePreference = $value;
}
return $this->mDatePreference;
}
Change secure login to use a user preference Removed the wpStickHTTPS checkbox from the login form, and instead just use the user's preferences along with whether they came from HTTPS or not to determine if they should stay in HTTPS. Bug: 29898 Bug: 52283 Change-Id: I69e9cb23b8d700e821b8a961c672958e4e19e4f8
2013-02-01 17:25:53 +00:00
/**
* Determine based on the wiki configuration and the user's options,
* whether this user must be over HTTPS no matter what.
*
* @return bool
*/
public function requiresHTTPS() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$forceHTTPS = MediaWikiServices::getInstance()->getMainConfig()->get( 'ForceHTTPS' );
$secureLogin = MediaWikiServices::getInstance()->getMainConfig()->get( 'SecureLogin' );
if ( $forceHTTPS ) {
Introduce $wgForceHTTPS Add $wgForceHTTPS. When set to true: * It makes the HTTP to HTTPS redirect unconditional and suppresses the forceHTTPS cookie. * It makes session cookies be secure. * In the Action API, it triggers the existing deprecation warning and avoids more expensive user/session checks. * In login and signup, it suppresses the old hidden form fields for protocol switching. * It hides the prefershttps user preference. Other changes: * Factor out the HTTPS redirect in MediaWiki::main() into maybeDoHttpsRedirect() and shouldDoHttpRedirect(). Improve documentation. * User::requiresHTTPS() reflects $wgForceHTTPS whereas the Session concept of "force HTTPS" does not. The documentation of User::requiresHTTPS() says that it includes configuration, and retaining this definition was beneficial for some callers. Whereas Session::shouldForceHTTPS() was used fairly narrowly as the value of the forceHTTPS cookie, and injecting configuration into it is not so easy or beneficial, so I left it as it was, except for clarifying the documentation. * Deprecate the following hooks: BeforeHttpsRedirect, UserRequiresHTTPS, CanIPUseHTTPS. No known extension uses them, and they're not compatible with the long-term goal of ending support for mixed-protocol wikis. BeforeHttpsRedirect was documented as unstable from its inception. CanIPUseHTTPS was a WMF config hack now superseded by GFOC's SNI sniffing. * For tests which failed with $wgForceHTTPS=true, I mostly split the tests, testing each configuration value separately. * Add ArrayUtils::cartesianProduct() as a helper for generating combinations of boolean options in the session tests. Bug: T256095 Change-Id: Iefb5ba55af35350dfc7c050f9fb8f4e8a79751cb
2020-06-24 00:56:46 +00:00
return true;
}
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( !$secureLogin ) {
Change secure login to use a user preference Removed the wpStickHTTPS checkbox from the login form, and instead just use the user's preferences along with whether they came from HTTPS or not to determine if they should stay in HTTPS. Bug: 29898 Bug: 52283 Change-Id: I69e9cb23b8d700e821b8a961c672958e4e19e4f8
2013-02-01 17:25:53 +00:00
return false;
}
Hard deprecate User::getBoolOption() deprecated since 1.35 Bug: T277600 Change-Id: I54cea0dc589dc5bb7ed3b4ecceaa62b693b104d7
2021-08-29 16:51:22 +00:00
return MediaWikiServices::getInstance()
->getUserOptionsLookup()
->getBoolOption( $this, 'prefershttps' );
Change secure login to use a user preference Removed the wpStickHTTPS checkbox from the login form, and instead just use the user's preferences along with whether they came from HTTPS or not to determine if they should stay in HTTPS. Bug: 29898 Bug: 52283 Change-Id: I69e9cb23b8d700e821b8a961c672958e4e19e4f8
2013-02-01 17:25:53 +00:00
}
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
/**
* Get the list of explicit group memberships this user has.
* The implicit * and user groups are not included.
user: Ensure returned user groups are sorted Without it, Special:UserRights sometimes fails with a bogus conflict error just because groups are somehow ordered differently. Bug: T164211 Change-Id: I9c7f51338e0849d9e134dc780eb13c542960c655
2017-04-28 21:08:32 +00:00
*
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
* @deprecated since 1.35 Use UserGroupManager::getUserGroups instead.
*
user: Ensure returned user groups are sorted Without it, Special:UserRights sometimes fails with a bogus conflict error just because groups are somehow ordered differently. Bug: T164211 Change-Id: I9c7f51338e0849d9e134dc780eb13c542960c655
2017-04-28 21:08:32 +00:00
* @return string[] Array of internal group names (sorted since 1.33)
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getGroups() {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
return MediaWikiServices::getInstance()
->getUserGroupManager()
->getUserGroups( $this, $this->queryFlagsUsed );
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
}
/**
* Get the list of explicit group memberships this user has, stored as
* UserGroupMembership objects. Implicit groups are not included.
*
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
* @deprecated since 1.35 Use UserGroupManager::getUserGroupMemberships instead
*
Document "arrays of UserGroupMembership objects" as such Change-Id: I3c60fb977a329e39933d50e275a738296bc17599
2017-12-27 11:40:19 +00:00
* @return UserGroupMembership[] Associative array of (group name => UserGroupMembership object)
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
* @since 1.29
*/
public function getGroupMemberships() {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
return MediaWikiServices::getInstance()
->getUserGroupManager()
->getUserGroupMemberships( $this, $this->queryFlagsUsed );
New userlevel feature. Sysop only, for testing. NO FORM IS VALIDATED : use at your own risks
2004-10-01 15:57:09 +00:00
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the user's edit count.
Cleanup some docs (includes/*.php) - Swap "$variable type" to "type $variable" - Added missing types - Fixed spacing inside docs - Makes beginning of @param/@return/@var/@throws in capital - Changed some types to match the more common spelling Change-Id: I783e4dbfe5f6f98b32b9a03ccf6439e13e132bcc
2014-07-24 17:42:24 +00:00
* @return int|null Null for anonymous users
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getEditCount() {
Remove User::$mEditCount and internal caching UserEditTracker now returns null for anonymous users instead of throwing an exception. Added new UserEditTracker::setCachedUserEditCount() method (internal) to handle the user_editcount field in User::loadFromRow()'s row. This now means that the creation of one User object can set the cached value for any other object for the same underlying user - the alternative (just ignoring the value) would mean that an extra database read might be needed. This is only used for users created with a row that includes the user id - we silently discard the value if the row doesn't have a user id (or the user id is 0) to avoid issues with UserEditTracker trying to fetch the user id and potentially triggering another load. A follow-up will simplify the UserEditCountUpdate class to remove storing full UserIdentity objects now that only the id is needed. Follow-up: Ibf1482bcbcbf4d56fc06531bb3e17e2a6e3e2e6f Change-Id: Ie3fb4887d9f2d96b32598865030351bf3bf20ce5
2021-06-15 08:08:33 +00:00
return MediaWikiServices::getInstance()
->getUserEditTracker()
->getUserEditCount( $this );
* store user_editcount inside cached user object * load editcount together with user.*, avoid multiple queries -- this removes additional query (or queries)
2007-02-15 14:27:15 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
/**
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
* Add the user to the given group. This takes immediate effect.
* If the user is already in the group, the expiry time will be updated to the new
* expiry time. (If $expiry is omitted or null, the membership will be altered to
* never expire.)
*
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
* @deprecated since 1.35 Use UserGroupManager::addUserToGroup instead
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $group Name of the group to add
Fix PhanTypeMismatchDeclaredParam Auto fix MediaWiki.Commenting.FunctionComment.DefaultNullTypeParam sniff Change-Id: I865323fd0295aabd06f3e3c75e0e5043fb31069e
2018-06-26 21:14:43 +00:00
* @param string|null $expiry Optional expiry timestamp in any format acceptable to
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
* wfTimestamp(), or null if the group assignment should not expire
Use: addGroup() and removeGroup() should return boolean Have User::addGroup() and User::removeGroup() methoids return a boolean when their respective hooks return the respective boolean. Fix SpecialUserrights to respect this return vale and update the add/remove arrays accordingly. This resolves an issue where a hook that prevents a group from being added or removed still shows that group being changed in the Userrights log. Change-Id: I7621cc22b04ff41cf67bd434a1f89d31bdc2cffd
2014-12-16 22:34:12 +00:00
* @return bool
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
*/
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
public function addGroup( $group, $expiry = null ) {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
return MediaWikiServices::getInstance()
->getUserGroupManager()
Followups for UserGroupManager 1. User::addGroup has to be allowed to update the old group 2. Replace use of string constants to identify cache class, that's prone to typos and errors. Instead, use private constants 3. Update cached user group memberships in place upon modification. Before UserGroupManager, we've used to do that - this saves some DB queries, and is better for correctness - for example UserrightsPage is adding new memberships and then immediately reads from replica, expecting it's changes to be there already. We do not know however how many other cases there are which rely on this pattern, so implement in-place cache update. Bug: T255330 Change-Id: Ia5ae0e22d4156fd5e4b9aa7eeb801902e79803d1
2020-06-13 14:32:59 +00:00
->addUserToGroup( $this, $group, $expiry, true );
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
/**
* Remove the user from the given group.
* This takes immediate effect.
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
*
* @deprecated since 1.35 Use UserGroupManager::removeUserFromGroup instead.
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $group Name of the group to remove
Use: addGroup() and removeGroup() should return boolean Have User::addGroup() and User::removeGroup() methoids return a boolean when their respective hooks return the respective boolean. Fix SpecialUserrights to respect this return vale and update the add/remove arrays accordingly. This resolves an issue where a hook that prevents a group from being added or removed still shows that group being changed in the Userrights log. Change-Id: I7621cc22b04ff41cf67bd434a1f89d31bdc2cffd
2014-12-16 22:34:12 +00:00
* @return bool
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function removeGroup( $group ) {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
return MediaWikiServices::getInstance()
->getUserGroupManager()
->removeUserFromGroup( $this, $group );
New userlevel feature. Sysop only, for testing. NO FORM IS VALIDATED : use at your own risks
2004-10-01 15:57:09 +00:00
}
Convert WatchedItem and friends to UserIdentity I wasn't able to port some places that rely on isAllowed, getOption, or related methods. This adds isRegistered() to UserIdentity, which works like User::isLoggedIn() but with a better name. I also cleaned up User mocks in WatchedItemQueryServiceUnitTest in the course of debugging test failures when switching them to UserIdentityValue instead of mock Users where possible. They now specify explicitly which methods are allowed to be called on their User objects, which I believe is good practice for mocks (and unfortunately PHPUnit makes it awkward). Bug: T207972 Depends-On: I883d506197a011fe4c102b72df4d9deb58ab5ca2 Change-Id: Iadbf7bc31a496899dbef44e49065ff89f37aea89
2019-04-28 11:07:18 +00:00
/**
Swap out uses of User->isLoggedIn() with ->isRegistered() Bug: T270450 Change-Id: I90ff94a553ebae9a4ef97c25c333f067f19c327d
2020-12-17 23:10:11 +00:00
* Get whether the user is registered.
Convert WatchedItem and friends to UserIdentity I wasn't able to port some places that rely on isAllowed, getOption, or related methods. This adds isRegistered() to UserIdentity, which works like User::isLoggedIn() but with a better name. I also cleaned up User mocks in WatchedItemQueryServiceUnitTest in the course of debugging test failures when switching them to UserIdentityValue instead of mock Users where possible. They now specify explicitly which methods are allowed to be called on their User objects, which I believe is good practice for mocks (and unfortunately PHPUnit makes it awkward). Bug: T207972 Depends-On: I883d506197a011fe4c102b72df4d9deb58ab5ca2 Change-Id: Iadbf7bc31a496899dbef44e49065ff89f37aea89
2019-04-28 11:07:18 +00:00
*
* @return bool True if user is registered on this wiki, i.e., has a user ID. False if user is
* anonymous or has no local account (which can happen when importing). This is equivalent to
* getId() != 0 and is provided for code readability.
* @since 1.34
*/
build: Updating dependencies composer: * mediawiki/mediawiki-codesniffer: 36.0.0 → 37.0.0 The following sniffs now pass and were enabled: * Generic.ControlStructures.InlineControlStructure * MediaWiki.PHPUnit.AssertCount.NotUsed npm: * svgo: 2.3.0 → 2.3.1 * https://npmjs.com/advisories/1754 (CVE-2021-33587) Change-Id: I2a9bbee2fecbf7259876d335f565ece4b3622426
2021-07-22 03:11:47 +00:00
public function isRegistered(): bool {
Convert WatchedItem and friends to UserIdentity I wasn't able to port some places that rely on isAllowed, getOption, or related methods. This adds isRegistered() to UserIdentity, which works like User::isLoggedIn() but with a better name. I also cleaned up User mocks in WatchedItemQueryServiceUnitTest in the course of debugging test failures when switching them to UserIdentityValue instead of mock Users where possible. They now specify explicitly which methods are allowed to be called on their User objects, which I believe is good practice for mocks (and unfortunately PHPUnit makes it awkward). Bug: T207972 Depends-On: I883d506197a011fe4c102b72df4d9deb58ab5ca2 Change-Id: Iadbf7bc31a496899dbef44e49065ff89f37aea89
2019-04-28 11:07:18 +00:00
return $this->getId() != 0;
}
De-cruftification continues. * Replacing Namespace:: functions with NS_ constants * Replacing make*Link() on strings with make*LinkObj() on Title objects * Using more legible convenience methods on User and Title * Start using a common Linker::commentBlock() to wrap the formatComment() bits in the surrounding formatting
2005-02-21 12:23:52 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get whether the user is anonymous
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
De-cruftification continues. * Replacing Namespace:: functions with NS_ constants * Replacing make*Link() on strings with make*LinkObj() on Title objects * Using more legible convenience methods on User and Title * Start using a common Linker::commentBlock() to wrap the formatComment() bits in the surrounding formatting
2005-02-21 12:23:52 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isAnon() {
Convert WatchedItem and friends to UserIdentity I wasn't able to port some places that rely on isAllowed, getOption, or related methods. This adds isRegistered() to UserIdentity, which works like User::isLoggedIn() but with a better name. I also cleaned up User mocks in WatchedItemQueryServiceUnitTest in the course of debugging test failures when switching them to UserIdentityValue instead of mock Users where possible. They now specify explicitly which methods are allowed to be called on their User objects, which I believe is good practice for mocks (and unfortunately PHPUnit makes it awkward). Bug: T207972 Depends-On: I883d506197a011fe4c102b72df4d9deb58ab5ca2 Change-Id: Iadbf7bc31a496899dbef44e49065ff89f37aea89
2019-04-28 11:07:18 +00:00
return !$this->isRegistered();
De-cruftification continues. * Replacing Namespace:: functions with NS_ constants * Replacing make*Link() on strings with make*LinkObj() on Title objects * Using more legible convenience methods on User and Title * Start using a common Linker::commentBlock() to wrap the formatComment() bits in the surrounding formatting
2005-02-21 12:23:52 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Add User::isBot() method Global group and other extensions can hook into the hook to flag global bots and the like. Change-Id: I1290932fccb62508d2a8b7f94f056badadf6fdfc
2016-05-08 09:11:14 +00:00
/**
* @return bool Whether this user is flagged as being a bot role account
* @since 1.28
*/
public function isBot() {
Hard deprecate User group methods 1) The following methods were hard deprecated: - User::addAutopromoteOnceGroups - User::getEffectiveGroups - User::getAutomaticGroups - User::getFormerGroups 2) User ::getGroups, ::getGroupMemberships, ::addGroup, ::removeGroup were replaced in the production code, but they were not hard deprecated because of conflict with UserRightsProxy class. Bug: T275148 Change-Id: Ia69598316f5dc5dd9511f6112b5b13e1aa07575a
2021-07-01 10:32:24 +00:00
$userGroupManager = MediaWikiServices::getInstance()->getUserGroupManager();
if ( in_array( 'bot', $userGroupManager->getUserGroups( $this ) ) && $this->isAllowed( 'bot' ) ) {
Make User::isBot() also check the "bot" right for sanity Change-Id: I835cc23719c1975bb86f642d3ede36c882ce2e9b
2016-05-12 20:02:41 +00:00
return true;
Add User::isBot() method Global group and other extensions can hook into the hook to flag global bots and the like. Change-Id: I1290932fccb62508d2a8b7f94f056badadf6fdfc
2016-05-08 09:11:14 +00:00
}
Make User::isBot() also check the "bot" right for sanity Change-Id: I835cc23719c1975bb86f642d3ede36c882ce2e9b
2016-05-12 20:02:41 +00:00
$isBot = false;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserIsBot( $this, $isBot );
Make User::isBot() also check the "bot" right for sanity Change-Id: I835cc23719c1975bb86f642d3ede36c882ce2e9b
2016-05-12 20:02:41 +00:00
return $isBot;
Add User::isBot() method Global group and other extensions can hook into the hook to flag global bots and the like. Change-Id: I1290932fccb62508d2a8b7f94f056badadf6fdfc
2016-05-08 09:11:14 +00:00
}
Split out separate `User::isSystemUser` method. Drawing from comments associated with `User::newSystemUser` for checking if a user is a system user, a new method, `User:isSystemUser` is split out to avoid duplication elsewhere. Bug: T237356 Change-Id: I73f25a10df2c28a69f612eb1db3e91b7125383d9
2019-11-05 22:42:09 +00:00
/**
* Get whether the user is a system user
*
* A user is considered to exist as a non-system user if it can
* authenticate, or has an email set, or has a non-invalid token.
*
* @return bool Whether this user is a system user
* @since 1.35
*/
public function isSystemUser() {
$this->load();
Use User::getEmail() not mEmail The email address needs to be loaded from the CentralAuth hook, it's not populated by User::load(). Fixed in isEmailConfirmed(), which is the subject of the bug, and also two other places that looked relatively obvious and harmless. I'm not fixing it in saveSettings() and addToDatabase() since the effect is not so obvious. It's a bit of a can of worms. Bug: T239523 Change-Id: I51b127ff92c6c3efe98c70e7590d43c7e7734568
2021-01-12 21:47:48 +00:00
if ( $this->getEmail() || $this->mToken !== self::INVALID_TOKEN ||
Use MediaWikiServices::getAuthManager instead of AuthManager::singleton Change-Id: I92c31b963095eab751df9f8c1715e8e23b7e8485
2020-03-31 18:51:49 +00:00
MediaWikiServices::getInstance()->getAuthManager()->userCanAuthenticate( $this->mName )
Split out separate `User::isSystemUser` method. Drawing from comments associated with `User::newSystemUser` for checking if a user is a system user, a new method, `User:isSystemUser` is split out to avoid duplication elsewhere. Bug: T237356 Change-Id: I73f25a10df2c28a69f612eb1db3e91b7125383d9
2019-11-05 22:42:09 +00:00
) {
return false;
}
return true;
}
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
public function isAllowedAny( ...$permissions ): bool {
return $this->getThisAsAuthority()->isAllowedAny( ...$permissions );
Allow User::isAllowed() to take varargs. "is allowed X or Y" is by far the more common multiple permission check in core, so this is now the behaviour of isAllowed( X, Y ); also add isAllowedAll(...) for testing "is allowed X and Y". Has the nice side effect of adding visibility to a very old function.
2011-03-18 14:48:21 +00:00
}
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
public function isAllowedAll( ...$permissions ): bool {
return $this->getThisAsAuthority()->isAllowedAll( ...$permissions );
Allow User::isAllowed() to take varargs. "is allowed X or Y" is by far the more common multiple permission check in core, so this is now the behaviour of isAllowed( X, Y ); also add isAllowedAll(...) for testing "is allowed X and Y". Has the nice side effect of adding visibility to a very old function.
2011-03-18 14:48:21 +00:00
}
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
public function isAllowed( string $permission ): bool {
return $this->getThisAsAuthority()->isAllowed( $permission );
Implementing user levels management. This is only a very basic interface and several things need to be done! A tracking bug is at http://bugzilla.wikipedia.org/show_bug.cgi?id=767
2004-10-24 19:14:48 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* Move useRCPatrol() to User * Add useNPPatrol()
2008-04-13 17:37:41 +00:00
/**
coding style tweaks
2009-10-04 13:32:48 +00:00
* Check whether to enable recent changes patrol features for this user
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @return bool True or false
coding style tweaks
2009-10-04 13:32:48 +00:00
*/
* Move useRCPatrol() to User * Add useNPPatrol()
2008-04-13 17:37:41 +00:00
public function useRCPatrol() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$useRCPatrol = MediaWikiServices::getInstance()->getMainConfig()->get( 'UseRCPatrol' );
return $useRCPatrol && $this->isAllowedAny( 'patrol', 'patrolmarks' );
* Move useRCPatrol() to User * Add useNPPatrol()
2008-04-13 17:37:41 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* Move useRCPatrol() to User * Add useNPPatrol()
2008-04-13 17:37:41 +00:00
/**
coding style tweaks
2009-10-04 13:32:48 +00:00
* Check whether to enable new pages patrol features for this user
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool True or false
coding style tweaks
2009-10-04 13:32:48 +00:00
*/
* Move useRCPatrol() to User * Add useNPPatrol()
2008-04-13 17:37:41 +00:00
public function useNPPatrol() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$useRCPatrol = MediaWikiServices::getInstance()->getMainConfig()->get( 'UseRCPatrol' );
$useNPPatrol = MediaWikiServices::getInstance()->getMainConfig()->get( 'UseNPPatrol' );
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
return (
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
( $useRCPatrol || $useNPPatrol )
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
&& ( $this->isAllowedAny( 'patrol', 'patrolmarks' ) )
);
* Move useRCPatrol() to User * Add useNPPatrol()
2008-04-13 17:37:41 +00:00
}
Implementing user levels management. This is only a very basic interface and several things need to be done! A tracking bug is at http://bugzilla.wikipedia.org/show_bug.cgi?id=767
2004-10-24 19:14:48 +00:00
Allow patrol of uploads This allows to patrol file uploads, both new files and new file versions, from the description page, provided $wgUseFilePatrol is set to true. Special:NewFiles can be filtered to hide patrolled files. Bug: T11501 Change-Id: If71af58719a4461f12d125455b7bef07164525ca
2015-05-17 15:36:29 +00:00
/**
* Check whether to enable new files patrol features for this user
* @return bool True or false
*/
public function useFilePatrol() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$useRCPatrol = MediaWikiServices::getInstance()->getMainConfig()->get( 'UseRCPatrol' );
$useFilePatrol = MediaWikiServices::getInstance()->getMainConfig()->get( 'UseFilePatrol' );
Allow patrol of uploads This allows to patrol file uploads, both new files and new file versions, from the description page, provided $wgUseFilePatrol is set to true. Special:NewFiles can be filtered to hide patrolled files. Bug: T11501 Change-Id: If71af58719a4461f12d125455b7bef07164525ca
2015-05-17 15:36:29 +00:00
return (
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
( $useRCPatrol || $useFilePatrol )
Allow patrol of uploads This allows to patrol file uploads, both new files and new file versions, from the description page, provided $wgUseFilePatrol is set to true. Special:NewFiles can be filtered to hide patrolled files. Bug: T11501 Change-Id: If71af58719a4461f12d125455b7bef07164525ca
2015-05-17 15:36:29 +00:00
&& ( $this->isAllowedAny( 'patrol', 'patrolmarks' ) )
);
}
* Pass the WebRequest object to User::newFromSession() and use it instead of $wgRequest (will still fall back to $wgRequest if not passed or another method to get an User object) * Always call User::newFromSession(), not only when not in CLI mode * Removed User::$mSkin, unused and not set
2011-07-06 16:42:16 +00:00
/**
* Get the WebRequest object to use with this object
*
* @return WebRequest
*/
public function getRequest() {
if ( $this->mRequest ) {
return $this->mRequest;
}
Don't access $wgRequest from User Some User methods fail if they are called before $wgRequest is set. But according to the Setup.php comment, it is only set for b/c. The global request object can be lazy-initialised at any time. This is sufficient to avoid T263911 (loss/obfuscation of the $wgServer error message). In tests, try to keep $wgRequest and RequestContext::$request in sync. Introduce MediaWikiIntegrationTestCase::setRequest() which sets both at once, and use that instead of setMwGlobals() or direct assignment. BlockManagerTest was accidentally exploiting the fact that the global context request and $wgRequest were separate objects. Making them the same causes session cookies to appear in the response, breaking the cookie counts. Use a new response for the test. Bug: T263911 Bug: T245940 Change-Id: I2be99f7251a837bc6b62be0b152038157dec10f2
2020-12-15 09:47:15 +00:00
return RequestContext::getMain()->getRequest();
* Pass the WebRequest object to User::newFromSession() and use it instead of $wgRequest (will still fall back to $wgRequest if not passed or another method to get an User object) * Always call User::newFromSession(), not only when not in CLI mode * Removed User::$mSkin, unused and not set
2011-07-06 16:42:16 +00:00
}
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
/**
* Compute experienced level based on edit count and registration date.
*
Compute experience level correctly for accounts without registration date These accounts are usually very old and User::getRegistration returns null for them because user_registration is null. Treat these accounts as old enough to be in the most experienced group and only decide on edit count. Fix queries in recent changes to avoid comparisons with nulls as well. Also improve documentation of User::getExperienceLevel. Change-Id: I6090cf9b9097069469e8e547b217f0d16f0fe372
2020-12-12 11:24:19 +00:00
* @return string|false 'newcomer', 'learner', or 'experienced', false for anonymous users
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
*/
public function getExperienceLevel() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$mainConfig = MediaWikiServices::getInstance()->getMainConfig();
$learnerEdits = $mainConfig->get( 'LearnerEdits' );
$experiencedUserEdits = $mainConfig->get( 'ExperiencedUserEdits' );
$learnerMemberSince = $mainConfig->get( 'LearnerMemberSince' );
$experiencedUserMemberSince = $mainConfig->get( 'ExperiencedUserMemberSince' );
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
if ( $this->isAnon() ) {
return false;
}
$editCount = $this->getEditCount();
$registration = $this->getRegistration();
$now = time();
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$learnerRegistration = wfTimestamp( TS_MW, $now - $learnerMemberSince * 86400 );
$experiencedRegistration = wfTimestamp( TS_MW, $now - $experiencedUserMemberSince * 86400 );
Compute experience level correctly for accounts without registration date These accounts are usually very old and User::getRegistration returns null for them because user_registration is null. Treat these accounts as old enough to be in the most experienced group and only decide on edit count. Fix queries in recent changes to avoid comparisons with nulls as well. Also improve documentation of User::getExperienceLevel. Change-Id: I6090cf9b9097069469e8e547b217f0d16f0fe372
2020-12-12 11:24:19 +00:00
if ( $registration === null ) {
// for some very old accounts, this information is missing in the database
// treat them as old enough to be 'experienced'
$registration = $experiencedRegistration;
}
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( $editCount < $learnerEdits ||
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
$registration > $learnerRegistration ) {
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
return 'newcomer';
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
}
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( $editCount > $experiencedUserEdits &&
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
$registration <= $experiencedRegistration
) {
return 'experienced';
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
return 'learner';
RCFilters UI: Highlight behavior Let there be highlight! and there were highlights And RCFilters separated the highlight from the darkness And it defined highlights as five colors The lights are called yellow and green, and the darks red and blue And there were colors and there were circles; one highlight. This is the commit that adds highlight support for filters both in the backend and the UI. The backend tags results based on which filter they fit and the front end paints those results according to the color chosen by the user. Highlights can be toggled off and on. Also added circle indicators to the capsule items and each line of results to indicate whether the line has more than one color affecting it. Bug: T149467 Bug: T156164 Change-Id: I341c3f7c224271a18d455b9e5f5457ec43de802d
2017-02-10 14:18:02 +00:00
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* Persist this user's session (e.g. set cookies)
Follow-up r83080: make ApiUploadTest really work this time
2011-03-11 20:04:17 +00:00
*
Don't access $wgRequest from User Some User methods fail if they are called before $wgRequest is set. But according to the Setup.php comment, it is only set for b/c. The global request object can be lazy-initialised at any time. This is sufficient to avoid T263911 (loss/obfuscation of the $wgServer error message). In tests, try to keep $wgRequest and RequestContext::$request in sync. Introduce MediaWikiIntegrationTestCase::setRequest() which sets both at once, and use that instead of setMwGlobals() or direct assignment. BlockManagerTest was accidentally exploiting the fact that the global context request and $wgRequest were separate objects. Making them the same causes session cookies to appear in the response, breaking the cookie counts. Use a new response for the test. Bug: T263911 Bug: T245940 Change-Id: I2be99f7251a837bc6b62be0b152038157dec10f2
2020-12-15 09:47:15 +00:00
* @param WebRequest|null $request WebRequest object to use; the global request
* will be used if null is passed.
Fix PhanTypeMismatchDeclaredParam Auto fix MediaWiki.Commenting.FunctionComment.DefaultNullTypeParam sniff Change-Id: I865323fd0295aabd06f3e3c75e0e5043fb31069e
2018-06-26 21:14:43 +00:00
* @param bool|null $secure Whether to force secure/insecure cookies or use default
Removed 'Remember my login' preference Removed 'Remember my login' from Preferences, as it was unwanted. It adds to the complexity of the user preferences Bug: 52342 Co-Author: Tyler Romeo <tylerromeo@gmail.com> Change-Id: I7c957e1e1aaecf47f7c47bc063b5d3b364644afc
2013-11-10 14:38:34 +00:00
* @param bool $rememberMe Whether to add a Token cookie for elongated sessions
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Removed 'Remember my login' preference Removed 'Remember my login' from Preferences, as it was unwanted. It adds to the complexity of the user preferences Bug: 52342 Co-Author: Tyler Romeo <tylerromeo@gmail.com> Change-Id: I7c957e1e1aaecf47f7c47bc063b5d3b364644afc
2013-11-10 14:38:34 +00:00
public function setCookies( $request = null, $secure = null, $rememberMe = false ) {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
No yoda conditions Replace if ( 42 === $foo ) by if ( $foo === 42 ) Change-Id: Ice320ef1ae64a59ed035c20134326b35d454f943
2018-06-30 09:43:00 +00:00
if ( $this->mId == 0 ) {
Few minor parameter type hints in documentation Change-Id: Ibcaad4427375b9aa39bb2b333b72a0beb9a3620c
2013-03-06 01:17:31 +00:00
return;
}
Add SessionManager SessionManager is a general-purpose session management framework, rather than the cookie-based sessions that PHP wants to provide us. While fallback is provided for using $_SESSION and other PHP session management functions, they should be avoided in favor of using SessionManager directly. For proof-of-concept extensions, see OAuth change Ib40b221 and CentralAuth change I27ccabdb. Bug: T111296 Change-Id: Ic1ffea74f3ccc8f93c8a23b795ecab6f06abca72
2015-09-22 14:33:24 +00:00
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$session = $this->getRequest()->getSession();
if ( $request && $session->getRequest() !== $request ) {
$session = $session->sessionWithRequest( $request );
Remove SessionManager, temporarily The plan here is to take it out of 1.27.0-wmf.12 and put it back in 1.27.0-wmf.13. Since BotPasswords depends on SessionManager, that's getting temporarily removed too. This reverts the following commits: * 6acd424e0dbc322e8b9a141bd2625453c1b9b6f1 SessionManager: Notify AuthPlugin before calling hooks * 4d1ad32d8acbd443346253d2f6a95024c833295c Close a loophole in CookieSessionProvider * fcdd643a46d87b677f6cdcc3ba9440e1472d8df7 SessionManager: Don't save non-persisted sessions to backend storage * 058aec4c76129b7ee8541692a8a48f8046e15bb6 MessageCache: Don't get a ParserOptions for $wgUser before the end of Setup.php * b5c0c03bb708f8dad6e404969df8addc123984db SessionManager: Save user name to metadata even if the user doesn't exist locally * 13f2f09a193215aa7a061d10a1955e172d06fa0a SECURITY: Fix User::setToken() call on User::newSystemUser * 305bc75b27903237a9683ec1f329bcbec0ecd266 SessionManager: Don't generate user tokens when checking the tokens * 7c4bd85d2152fd9fa975ea0fb5ffb1a0b804f99b RequestContext::exportSession() should only export persisted session IDs * 296ccfd4a9a6ad3ae412db7e2408c923aaa61f64 SessionManager: Save 'persisted' flag in session metadata * 94ba53f67731b0553a6178841d9506e384f74496 Move CSRF token handling into MediaWiki\Session\Session * 46a565d6b00174e631d2022b47677e1a78e73897 Avoid false "added in both Session and $_SESSION" when value is null * c00d0b5d94c946b8883dd7062bf7160a199aa5c2 Log backtrace for "User::loadFromSession called before the end of Setup.php" * 4eeff5b559e2ae7b8fa1f45572968ba28573a421 Use $wgSecureCookie to decide whether to actually mark secure cookies as 'secure' * 7491b52f700e220814a8190781fd794b4dd88a20 Call session_cache_limiter() before starting a session * 2c34aeea72471f9a598e67bdbf34bc5f9fb3f0c5 SessionManager: Abstract forceHTTPS cookie setting * 9aa53627a53aabec0273cecf45a86e77927ef406 Ignore auth cookies with value 'deleted' * 43f904b51a746d7f71ea2ab9951c5c98d269765b SessionManager: Kill getPersistedSessionId() * 50c52563528ba3d765c3762211f98d6f3c0e39fd SessionManager: Add SessionBackend::setProviderMetadata() * f640d403154bc0a2b4f6d399582797a9e3bc6fcb SessionManager: Notify AuthPlugin when auto-creating accounts * 70b05d1ac1e859bac2185b246e9b93ec9051e4d8 Add checks of $wgEnableBotPasswords in more places * bfed32eb78b6c720b16bc7ed60153fd2fe257a9e Do not raise a PHP warning when session write fails * 722a7331ad8d98228511f8da38adc7a3c64dd617 Only check LoggedOut timestamp on the user loaded from session * 4f5057b84b36eccd16627a6b29831dfdb4483b02 SessionManager: Change behavior of getSessionById() * 66e82e614e157e39b03d813e71ddf23f53cf640b Fix typo in [[MediaWiki:Botpasswords-editexisting/en]] * f9fd9516d922d36291037baca7205a2b0ac9f15f Add "bot passwords" * d7716f1df0b692902571bf415a0984071e3e9a60 Add missing argument for wfDebugLog * a73c5b7395a07d490f7052fd3b2491ebd656b190 Add SessionManager Change-Id: I2389a8133e25ab929e9f27f41fa9a05df8147a50
2016-02-01 17:28:29 +00:00
}
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$delay = $session->delaySave();
if ( !$session->getUser()->equals( $this ) ) {
if ( !$session->canSetUser() ) {
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
LoggerFactory::getInstance( 'session' )
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
->warning( __METHOD__ .
": Cannot save user \"$this\" to a user \"{$session->getUser()}\"'s immutable session"
);
return;
* Fix CentralAuth logout, was mostly broken. * Allow the image returned by Special:AutoLogin to be customised. Feature in progress.
2008-05-29 07:50:27 +00:00
}
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$session->setUser( $this );
Initial revision
2003-04-14 23:10:40 +00:00
}
(bug 29898) Set cookie to force HTTPS from HTTP Sets a cookie on user login (removed on logout) if wpStickHTTPS was checked, which causes the browser to get a redirect if they visit the HTTP version of the site. Change-Id: I60f44a1062a93d15198edae6674bb3310a148b2d
2012-09-17 18:10:30 +00:00
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$session->setRememberUser( $rememberMe );
if ( $secure !== null ) {
$session->setForceHTTPS( $secure );
(bug 29898) Set cookie to force HTTPS from HTTP Sets a cookie on user login (removed on logout) if wpStickHTTPS was checked, which causes the browser to get a redirect if they visit the HTTP version of the site. Change-Id: I60f44a1062a93d15198edae6674bb3310a148b2d
2012-09-17 18:10:30 +00:00
}
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$session->persist();
ScopedCallback::consume( $delay );
Initial revision
2003-04-14 23:10:40 +00:00
}
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Log this user out.
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function logout() {
Remove &$this usage Replaced &$this to avoid PHP 7.1 warning of passing $this by reference Bug: T153505 Change-Id: I3e9bc59dc8cefac0108482afeb9cc9a274e2e54b
2016-12-22 10:31:10 +00:00
// Avoid PHP 7.1 warning of passing $this by reference
$user = $this;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
if ( $this->getHookRunner()->onUserLogout( $user ) ) {
API: add action=logout
2008-01-08 18:10:58 +00:00
$this->doLogout();
}
}
/**
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* Clear the user's session, and reset the instance cache.
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @see logout()
API: add action=logout
2008-01-08 18:10:58 +00:00
*/
It seems people don't either pay attention to code comments, or those comments lie r92461
2011-07-18 22:01:40 +00:00
public function doLogout() {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$session = $this->getRequest()->getSession();
if ( !$session->canSetUser() ) {
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
LoggerFactory::getInstance( 'session' )
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
->warning( __METHOD__ . ": Cannot log out of an immutable session" );
Log logouts Not terribly useful but we log all other auth events so why not. Bug: T125184 Change-Id: I636f0eb5e1e9ffc49023941801c7c286410514d8
2016-02-12 21:47:31 +00:00
$error = 'immutable';
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
} elseif ( !$session->getUser()->equals( $this ) ) {
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
LoggerFactory::getInstance( 'session' )
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
->warning( __METHOD__ .
": Cannot log user \"$this\" out of a user \"{$session->getUser()}\"'s session"
);
// But we still may as well make this user object anon
$this->clearInstanceCache( 'defaults' );
Log logouts Not terribly useful but we log all other auth events so why not. Bug: T125184 Change-Id: I636f0eb5e1e9ffc49023941801c7c286410514d8
2016-02-12 21:47:31 +00:00
$error = 'wronguser';
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
} else {
$this->clearInstanceCache( 'defaults' );
$delay = $session->delaySave();
Unpersist the session on logout Clearing the cookies in this case is probably a good idea. This also clears cookies when a non-persisted session's metadata is dirty, for parallelism with what happens to persisted sessions. Bug: T127436 Change-Id: I76897eaac063e5e3c3563398d0f4cb36cf93783b
2016-02-26 21:17:37 +00:00
$session->unpersist(); // Clear cookies (T127436)
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
$session->setLoggedOutTimestamp( time() );
$session->setUser( new User );
$session->set( 'wsUserID', 0 ); // Other code expects this
Reset all tokens on login Bug: T122056 Change-Id: I03739e942b6c182ed9cbcd0d9615dcd799e8baed
2016-05-31 19:20:05 +00:00
$session->resetAllTokens();
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
ScopedCallback::consume( $delay );
Log logouts Not terribly useful but we log all other auth events so why not. Bug: T125184 Change-Id: I636f0eb5e1e9ffc49023941801c7c286410514d8
2016-02-12 21:47:31 +00:00
$error = false;
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
}
User: remove unneeded full qualified name of LoggerFactory Has a use statement Change-Id: I02e2502682cf6b8c4de5a3445358f885c08d553b
2021-03-15 15:25:33 +00:00
LoggerFactory::getInstance( 'authevents' )->info( 'Logout', [
Log logouts Not terribly useful but we log all other auth events so why not. Bug: T125184 Change-Id: I636f0eb5e1e9ffc49023941801c7c286410514d8
2016-02-12 21:47:31 +00:00
'event' => 'logout',
'successful' => $error === false,
'status' => $error ?: 'success',
] );
Initial revision
2003-04-14 23:10:40 +00:00
}
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Save this user's settings into the database.
Documentation tweaks to help documentation systems (Doxygen + PHPDocumentor) pick up the appropriate tags, and documentation blobs for classes. This is the same as per r20769, but with the grouping changes (e.g. removing "@{{") omitted. Please be advised that more related documentation tweaks may follow later - e.g. Doxygen generates a log file of warnings that is 574 Kb in size, when run over the just the trunk/phase3 code ... eek! Thankfully, much of that is just whining about functions without documentation ;-)
2007-04-04 05:22:37 +00:00
* @todo Only rarely do all these fields need to be set!
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function saveSettings() {
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( wfReadOnly() ) {
Log when User::saveSettings is called in read-only mode Change-Id: I56a1760f2e6bbda889590777b553a8dfda587590
2015-04-06 18:26:42 +00:00
// @TODO: caller should deal with this instead!
// This should really just be an exception.
MWExceptionHandler::logException( new DBExpectedError(
null,
"Could not update user with ID '{$this->mId}'; DB is read-only."
) );
return;
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
}
Added read-only checks around User::saveSettings where they belong * Ideally saveSettings() would not just silently do nothing in read-only mode as not all callers expect that behavior. This change is just the first step. Change-Id: Ieeaf531dac3027ddba89c60159b98f9c04de78d3
2015-03-30 19:00:07 +00:00
$this->load();
No yoda conditions Replace if ( 42 === $foo ) by if ( $foo === 42 ) Change-Id: Ice320ef1ae64a59ed035c20134326b35d454f943
2018-06-30 09:43:00 +00:00
if ( $this->mId == 0 ) {
Added CAS-style logic to User::saveSettings as a final sanity check * This should prevent lag or race conditions from rolling back data Change-Id: I5e70975f4e4010fea7af0801bc11dda887df55f4
2015-03-30 20:37:21 +00:00
return; // anon
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
Added CAS-style logic to User::saveSettings as a final sanity check * This should prevent lag or race conditions from rolling back data Change-Id: I5e70975f4e4010fea7af0801bc11dda887df55f4
2015-03-30 20:37:21 +00:00
// Get a new user_touched that is higher than the old one.
// This will be used for a CAS check as a last-resort safety
Change "slave" => "replica DB" in /includes Change-Id: Icb716219c9335ff8fa447b1733d04b71d9712bf9
2016-09-05 20:21:26 +00:00
// check against race conditions and replica DB lag.
Made saveSettings() CAS check handle caught DB exceptions better Change-Id: I8e9e75af437e00a76e4184908c579a6702c9023a
2015-04-16 17:54:26 +00:00
$newTouched = $this->newTouchedTimestamp();
Added CAS-style logic to User::saveSettings as a final sanity check * This should prevent lag or race conditions from rolling back data Change-Id: I5e70975f4e4010fea7af0801bc11dda887df55f4
2015-03-30 20:37:21 +00:00
Replace uses of DB_MASTER with DB_PRIMARY Just an auto-replace from codesniffer for now. Change-Id: I5240dc9ac5929d291b0ef1c743ea2bfd3f428266
2021-04-29 02:37:11 +00:00
$dbw = wfGetDB( DB_PRIMARY );
Add missing IDatabase type hints to all doAtomicSection() calls Change-Id: I11061c358013fc67ec7a8ded54aeddcb7ff4910b
2019-04-30 15:08:48 +00:00
$dbw->doAtomicSection( __METHOD__, function ( IDatabase $dbw, $fname ) use ( $newTouched ) {
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
$dbw->update( 'user',
[ /* SET */
'user_name' => $this->mName,
'user_real_name' => $this->mRealName,
'user_email' => $this->mEmail,
'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
'user_touched' => $dbw->timestamp( $newTouched ),
'user_token' => strval( $this->mToken ),
'user_email_token' => $this->mEmailToken,
'user_email_token_expires' => $dbw->timestampOrNull( $this->mEmailTokenExpires ),
], $this->makeUpdateConditions( $dbw, [ /* WHERE */
'user_id' => $this->mId,
] ), $fname
);
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
if ( !$dbw->affectedRows() ) {
// Maybe the problem was a missed cache update; clear it to be safe
$this->clearSharedCache( 'refresh' );
// User was changed in the meantime or loaded with stale data
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
$from = ( $this->queryFlagsUsed & self::READ_LATEST ) ? 'primary' : 'replica';
user: Allow "CAS update failed" exceptions to be normalised Take the user_id variable out of the exception message. To compensate and still allow one to correlate patterns relating to a specific user (e.g. a bot), add a warning message that still contains the variable via context. This way that warning will also be normalised/grouped, but with the extra context. This is separate because exceptions do not currently support context placeholders. Bug: T202149 Change-Id: Ic0c25f66f23fdc65821da12f949c6224bc03f9b3
2018-09-12 17:33:34 +00:00
LoggerFactory::getInstance( 'preferences' )->warning(
"CAS update failed on user_touched for user ID '{user_id}' ({db_flag} read)",
[ 'user_id' => $this->mId, 'db_flag' => $from ]
);
throw new MWException( "CAS update failed on user_touched. " .
"The version of the user to be saved is older than the current version."
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
);
}
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
$dbw->update(
'actor',
[ 'actor_name' => $this->mName ],
[ 'actor_user' => $this->mId ],
$fname
);
Keep ActorStore caches consistent on user rename Multi-key in-memory keys for the actors is complicated enough to have it's own small abstraction. Change-Id: Id0e091504b71a44ce52d418c5737d64ac70495e9
2021-04-16 04:16:55 +00:00
MediaWikiServices::getInstance()->getActorStore()->deleteUserIdentityFromCache( $this );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
} );
Added CAS-style logic to User::saveSettings as a final sanity check * This should prevent lag or race conditions from rolling back data Change-Id: I5e70975f4e4010fea7af0801bc11dda887df55f4
2015-03-30 20:37:21 +00:00
Made saveSettings() CAS check handle caught DB exceptions better Change-Id: I8e9e75af437e00a76e4184908c579a6702c9023a
2015-04-16 17:54:26 +00:00
$this->mTouched = $newTouched;
Reapply "Update user_touched after saving user options." This reverts commit 4d19d06455874730fe8020f071b2bcbe2f12b5a9. Reason for revert: CenralAuth tests fixed Bug: T284354 Depends-On: I9d681baeca0df4808335e7bececfd114cdad2f0e Change-Id: I483b8f61dcfae70c5a50399391b361cf5310ae24
2021-10-25 19:56:47 +00:00
MediaWikiServices::getInstance()->getUserOptionsManager()->saveOptionsInternal( $this, $dbw );
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserSaveSettings( $this );
Alter two uses of hasOrMadeRecentMasterChanges() for consistency Rather than have the behavior vary and possibly break code or tests when small changes happen, make User/NameTableStore more explicit about when cache key purges happens. This should reduce problems with certain fragile tests, such as those that could be affected by 03908112635f when --use-normal tables is not used. Ideally, any fragility should be ironed out of effected code. Change-Id: Ibe5d1bb4bece2526bc0da99648f7ba73bdc0ffa5
2019-03-19 03:31:54 +00:00
$this->clearSharedCache( 'changed' );
Add small HtmlCacheUpdater service class to normalize purging code (2) This is a re-submit of 35da1bbd7cb, which was accidentally merged before CR (and reverted with aa4da3c2e8e). The purge() method handles purging of both file cache and CDN, using a PRESEND deferred update. This avoids code duplication and missing file cache purge calls. Also: * Migrate HTMLCacheUpdate callers to just directly using HTMLCacheUpdateJob * Add HtmlFileCacheUpdate class and defer such updates just like with CDN * Simplify HTMLCacheUpdate constructor parameters * Remove BacklinkCache::clear() calls which do nothing since the backlink query does not actually happen until the job runs Bug: T230025 Change-Id: Ic1005e70e2c22d5bd1ca36dcdb618108ebe290f3
2019-03-15 00:23:26 +00:00
$hcu = MediaWikiServices::getInstance()->getHtmlCacheUpdater();
$hcu->purgeTitleUrls( $this->getUserPage(), $hcu::PURGE_INTENT_TXROUND_REFLECTED );
Initial revision
2003-04-14 23:10:40 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* If only this user's username is known, and it exists, return the user ID.
Made the prior user existence check in LoginForm use DB_MASTER * This helps if multiple account creation attempts were made in a row and the slave selected was lagged (either too much for Chronology Protector or the user did not resend the cookies to link the session). * The locking also better handles concurrent attempt to make another account, especially with CentralAuth trying to make external accounts. This assumes that the rate of concurrent account creations with close names is low enough given trx speed to avoid gap locking issues. This will need to be confirmed with low error log rates to be sure. * The User::idFromName() method now includes a $flags parameter. Bug: T104615 Change-Id: I8385526a19efc528a016ad2bbf376b377138966b
2015-07-10 23:18:23 +00:00
*
* @param int $flags Bitfield of User:READ_* constants; useful for existence checks
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return int
Changing comments layout preparing for generated documentation with Phpdocumentor
2004-09-02 23:28:24 +00:00
*/
Use DBAccessObjectUtils in some User methods. Use DBAccessObjectUtils in these two User methods: * User::newFromConfirmationCode() and User::IdForname() Change-Id: I6c109d336debe1dc142479e43e613383a7b74325
2020-09-09 19:58:16 +00:00
public function idForName( $flags = self::READ_NORMAL ) {
Deferred initialisation of $wgIP, because it's potentially slow, especially if and when we add the 200 NTL proxies to the trusted XFF list. I was hoping to avoid initialisation altogether for anonymous page views, but that turns out to be difficult because of user_newtalk. It is, however, avoided for action=raw. Tested page view, newtalk, IP registration in history and recentchanges, IP block, autoblock and Special:Version. Also moved the old proxy scan code from EditPage.php to a more appropriate location in ProxyTools.php.
2005-09-05 02:22:20 +00:00
$s = trim( $this->getName() );
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( $s === '' ) {
return 0;
}
use tabs for indentation, and probably some trailing whitespace has been removed by my editor. I apologise for these triviality commits lately; I'll be more productive soon...
2004-08-14 22:30:10 +00:00
Use DBAccessObjectUtils in some User methods. Use DBAccessObjectUtils in these two User methods: * User::newFromConfirmationCode() and User::IdForname() Change-Id: I6c109d336debe1dc142479e43e613383a7b74325
2020-09-09 19:58:16 +00:00
list( $index, $options ) = DBAccessObjectUtils::getDBOptions( $flags );
$db = wfGetDB( $index );
Made the prior user existence check in LoginForm use DB_MASTER * This helps if multiple account creation attempts were made in a row and the slave selected was lagged (either too much for Chronology Protector or the user did not resend the cookies to link the session). * The locking also better handles concurrent attempt to make another account, especially with CentralAuth trying to make external accounts. This assumes that the rate of concurrent account creations with close names is low enough given trx speed to avoid gap locking issues. This will need to be confirmed with low error log rates to be sure. * The User::idFromName() method now includes a $flags parameter. Bug: T104615 Change-Id: I8385526a19efc528a016ad2bbf376b377138966b
2015-07-10 23:18:23 +00:00
Tweaked User::READ_LOCKING to use LOCK IN SHARE MODE * This better alignes with IDBAccessObject docs and still locks out INSERTs Change-Id: Ib8713938e0afa14bee6f90bc51d6331eaf356447
2015-07-14 18:13:01 +00:00
$id = $db->selectField( 'user',
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
'user_id', [ 'user_name' => $s ], __METHOD__, $options );
Made the prior user existence check in LoginForm use DB_MASTER * This helps if multiple account creation attempts were made in a row and the slave selected was lagged (either too much for Chronology Protector or the user did not resend the cookies to link the session). * The locking also better handles concurrent attempt to make another account, especially with CentralAuth trying to make external accounts. This assumes that the rate of concurrent account creations with close names is low enough given trx speed to avoid gap locking issues. This will need to be confirmed with low error log rates to be sure. * The User::idFromName() method now includes a $flags parameter. Bug: T104615 Change-Id: I8385526a19efc528a016ad2bbf376b377138966b
2015-07-10 23:18:23 +00:00
Tweaked User::READ_LOCKING to use LOCK IN SHARE MODE * This better alignes with IDBAccessObject docs and still locks out INSERTs Change-Id: Ib8713938e0afa14bee6f90bc51d6331eaf356447
2015-07-14 18:13:01 +00:00
return (int)$id;
Initial revision
2003-04-14 23:10:40 +00:00
}
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
* Add a user to the database, return the user object
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $name Username to add
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
* @param array $params Array of Strings Non-default parameters to save to
* the database as user_* fields:
* - email: The user's email address.
* - email_authenticated: The email authentication timestamp.
* - real_name: The user's real name.
* - options: An associative array of non-default options.
* - token: Random authentication token. Do not set.
* - registration: Registration timestamp. Do not set.
* @return User|null User object, or null if the username already exists.
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
public static function createNew( $name, $params = [] ) {
build: Upgrade mediawiki-codesniffer from v35.0.0 to v36.0.0 Change-Id: I8905d0d69738a1cd6997c104080fdf128d315e8b
2021-04-29 16:24:12 +00:00
return self::insertNewUser( static function ( UserIdentity $actor, IDatabase $dbw ) {
User: use ActorNormalization to insert actor While creating users, we have several interesting corner cases: - When creating a new User, we actually rely on the 'unique' constraint on actor_name. This is important if something calls 'User::createNew' with a name that is already occupied by an existing anon actor with no user. This is quite a weird corner case, but there's a test for that. We could probably assimilate this nicly in actor store by checking whether the user id in the database for the actor we found is the same as user id in the passed in user identity. - Even more interesting use-case is 'subsuming' existing actors with reserved user names. When we call User::newSystemUser, and there is already an actor with the same reserved name, we 'subsume' that actor and take over it's actor_id for our new system user. This can now be done with an upsert. This state of having reserved actor with no user is not easy to cause, but imports or updating from old MW versions seem to be able to produce this state. Archeology revealed that 'subsuming' existing actor was added for installer. Change-Id: I16b2f088217db0283215fc2ef5fb04a3742e1626
2021-04-07 17:32:17 +00:00
return MediaWikiServices::getInstance()->getActorStore()->createNewActor( $actor, $dbw );
}, $name, $params );
}
/**
* See ::createNew
* @param callable $insertActor ( UserIdentity $actor, IDatabase $dbw ): int actor ID,
* @param string $name
* @param array $params
* @return User|null
*/
private static function insertNewUser( callable $insertActor, $name, $params = [] ) {
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
foreach ( [ 'password', 'newpassword', 'newpass_time', 'password_expires' ] as $field ) {
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
if ( isset( $params[$field] ) ) {
wfDeprecated( __METHOD__ . " with param '$field'", '1.27' );
unset( $params[$field] );
}
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$user = new User;
$user->load();
Init the user token before adding users. * The DB column has garbage padding as the default value, which was intented to just be "". Since the the insert functions cast the value to a string, inserting a user without creating a token causes garbage to be inserted. The logic to automatically fix empty tokens does not trigger. This fixes createNew() to set the token and makes sure that addToDatabase() does. Change-Id: I3529fe8afbc62bac37063217d5aa0179a4a6e169
2013-02-27 00:17:58 +00:00
$user->setToken(); // init token
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
if ( isset( $params['options'] ) ) {
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
MediaWikiServices::getInstance()
->getUserOptionsManager()
->loadUserOptions( $user, $user->queryFlagsUsed, $params['options'] );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
unset( $params['options'] );
}
Replace uses of DB_MASTER with DB_PRIMARY Just an auto-replace from codesniffer for now. Change-Id: I5240dc9ac5929d291b0ef1c743ea2bfd3f428266
2021-04-29 02:37:11 +00:00
$dbw = wfGetDB( DB_PRIMARY );
revert r82283, loads of unrelated changes
2011-02-16 19:51:25 +00:00
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
$noPass = PasswordFactory::newInvalidPassword()->toString();
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
$fields = [
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
'user_name' => $name,
User: Mostly remove password handling AuthManager is coming, which will make it easier to add alternative methods of authentication. But in order to do that, we need to finally get around to ripping the password-related bits out of the User class. The password expiration handling isn't used anywhere in core or extensions in Gerrit beyond testing for expired passwords on login and resetting the expiry date on password change. Those bits have been inlined and the functions removed; AuthManager will allow each "authentication provider" to handle its own password expiration. The methods for fetching passwords, including the fact that mPassword and other fields are public, has also been removed. This is already broken in combination with basically any extension that messes with authentication, and the major use outside of that was in creating system users like MassMessage's "MediaWiki message delivery" user. Password setting methods are silently deprecated, since most of the replacements won't be available until AuthManager. But uses in unit testing can be replaced with TestUser::setPasswordForUser() immediately. User::randomPassword() and User::getPasswordFactory() don't really belong in User either. For the former a new PasswordFactory method has been created, while the latter should just be replaced by the two lines to create a PasswordFactory via its constructor. Bug: T47716 Change-Id: I2c736ad72d946fa9b859e6cd335fa58aececc0d5
2015-09-04 16:17:42 +00:00
'user_password' => $noPass,
'user_newpassword' => $noPass,
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
'user_email' => $user->mEmail,
'user_email_authenticated' => $dbw->timestampOrNull( $user->mEmailAuthenticated ),
'user_real_name' => $user->mRealName,
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
'user_token' => strval( $user->mToken ),
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
'user_registration' => $dbw->timestamp( $user->mRegistration ),
* Initialize user_editcount to 0 instead of NULL for newly created accounts
2006-12-22 23:46:08 +00:00
'user_editcount' => 0,
Made User::newTouchedTimestamp handle clock skew a bit better * This does not handle race conditions, but is a prelude to using CAS style logic on save using the timestamp. Change-Id: I9c31c272fcf77b686764b7c3a6a32ac29576347c
2015-04-06 18:12:41 +00:00
'user_touched' => $dbw->timestamp( $user->newTouchedTimestamp() ),
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
];
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
foreach ( $params as $name => $value ) {
$fields["user_$name"] = $value;
}
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
User: use ActorNormalization to insert actor While creating users, we have several interesting corner cases: - When creating a new User, we actually rely on the 'unique' constraint on actor_name. This is important if something calls 'User::createNew' with a name that is already occupied by an existing anon actor with no user. This is quite a weird corner case, but there's a test for that. We could probably assimilate this nicly in actor store by checking whether the user id in the database for the actor we found is the same as user id in the passed in user identity. - Even more interesting use-case is 'subsuming' existing actors with reserved user names. When we call User::newSystemUser, and there is already an actor with the same reserved name, we 'subsume' that actor and take over it's actor_id for our new system user. This can now be done with an upsert. This state of having reserved actor with no user is not easy to cause, but imports or updating from old MW versions seem to be able to produce this state. Archeology revealed that 'subsuming' existing actor was added for installer. Change-Id: I16b2f088217db0283215fc2ef5fb04a3742e1626
2021-04-07 17:32:17 +00:00
return $dbw->doAtomicSection( __METHOD__, function ( IDatabase $dbw, $fname ) use ( $fields, $insertActor ) {
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
$dbw->insert( 'user', $fields, $fname, [ 'IGNORE' ] );
if ( $dbw->affectedRows() ) {
$newUser = self::newFromId( $dbw->insertId() );
ActorMigration: Remove possibility of read-both When this was originally written, the plan was to read both the old and new fields during the transition period, while stopping writes to them midway through. It turns out that the WHERE conditions to do read-both correctly are generally not handled well by the database and working around that would require a lot of complicated code (see what's being removed from ApiQueryUserContribs here, for example). We can simplify things greatly by instead having it write both fields during the transition period, reading from the old for the first part and the new for the second part, as is being done for MCR. Bug: T204669 Change-Id: I4764c1c7883dc1003cb12729455c8107319f70b1 Depends-On: I845f6ae462f2539ebd35cbb5f2ca8b5714e2c1fb Depends-On: I88b31b977543fdbdf69f8c1158e77e448df94e11
2018-09-18 18:21:20 +00:00
$newUser->mName = $fields['user_name'];
User: use ActorNormalization to insert actor While creating users, we have several interesting corner cases: - When creating a new User, we actually rely on the 'unique' constraint on actor_name. This is important if something calls 'User::createNew' with a name that is already occupied by an existing anon actor with no user. This is quite a weird corner case, but there's a test for that. We could probably assimilate this nicly in actor store by checking whether the user id in the database for the actor we found is the same as user id in the passed in user identity. - Even more interesting use-case is 'subsuming' existing actors with reserved user names. When we call User::newSystemUser, and there is already an actor with the same reserved name, we 'subsume' that actor and take over it's actor_id for our new system user. This can now be done with an upsert. This state of having reserved actor with no user is not easy to cause, but imports or updating from old MW versions seem to be able to produce this state. Archeology revealed that 'subsuming' existing actor was added for installer. Change-Id: I16b2f088217db0283215fc2ef5fb04a3742e1626
2021-04-07 17:32:17 +00:00
// Don't pass $this, since calling ::getId, ::getName might force ::load
// and this user might not be ready for the yet.
$newUser->mActorId = $insertActor( new UserIdentityValue( $newUser->mId, $newUser->mName ), $dbw );
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
// Load the user from primary DB to avoid replica lag
Have User::createNew() load the object from master When the new User is created, it's leaving it to be lazy-loaded from a replica. That seems to be causing attempts to add groups immediately after creation to fail because the load-from-replica doesn't find the just-created master row. Bug: T188014 Change-Id: I841c434086bfaaca1cf1ce23673f32dc5a77915d
2018-02-23 18:24:47 +00:00
$newUser->load( self::READ_LATEST );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
} else {
$newUser = null;
}
return $newUser;
} );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
Remove a bunch of trailing spaces and unneeded newlines Change-Id: I7db616db8c969567d420c0161fa207b366e292b6
2012-10-19 20:03:05 +00:00
* Add this existing user object to the database. If the user already
* exists, a fatal status object is returned, and the user object is
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
* initialised with the data from the database.
*
* Previously, this function generated a DB error due to a key conflict
* if the user already existed. Many extension callers use this function
* in code along the lines of:
*
* $user = User::newFromName( $name );
Swap out uses of User->isLoggedIn() with ->isRegistered() Bug: T270450 Change-Id: I90ff94a553ebae9a4ef97c25c333f067f19c327d
2020-12-17 23:10:11 +00:00
* if ( !$user->isRegistered() ) {
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
* $user->addToDatabase();
* }
* // do something with $user...
*
includes: Replace implicit Bugzilla bug numbers with Phab ones It's unreasonable to expect newbies to know that "bug 12345" means "Task T14345" except where it doesn't, so let's just standardise on the real numbers. Change-Id: I6f59febaf8fc96e80f8cfc11f4356283f461142a
2017-02-20 22:44:19 +00:00
* However, this was vulnerable to a race condition (T18020). By
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
* initialising the user object if the user exists, we aim to support this
* calling sequence as far as possible.
*
* Note that if the user exists, this function will acquire a write lock,
Swap out uses of User->isLoggedIn() with ->isRegistered() Bug: T270450 Change-Id: I90ff94a553ebae9a4ef97c25c333f067f19c327d
2020-12-17 23:10:11 +00:00
* so it is still advisable to make the call conditional on isRegistered(),
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
* and to commit the transaction after calling.
*
Add numerous missing @throws to method documentation Change-Id: Iba868e82a75fef7c7d011bc5be192bf059d037c0
2012-12-09 03:09:48 +00:00
* @throws MWException
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
* @return Status
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function addToDatabase() {
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Init the user token before adding users. * The DB column has garbage padding as the default value, which was intented to just be "". Since the the insert functions cast the value to a string, inserting a user without creating a token causes garbage to be inserted. The logic to automatically fix empty tokens does not trigger. This fixes createNew() to set the token and makes sure that addToDatabase() does. Change-Id: I3529fe8afbc62bac37063217d5aa0179a4a6e169
2013-02-27 00:17:58 +00:00
if ( !$this->mToken ) {
$this->setToken(); // init token
}
Revert r113650 and reapply r113619 and r113649 with one modification: User::createNew() was missing a DatabaseBase::timestamp() call
2012-03-12 21:17:23 +00:00
Use test user helper methods in UserGroupMembershipTest/UserTest This avoids postgres failures when trying to insert users with name "false" (cast to 0, which fails since integer != text type). Bug: T75174 Change-Id: I809edd94117811d22492eaba440fad6aaea1195b
2017-05-18 20:16:55 +00:00
if ( !is_string( $this->mName ) ) {
throw new RuntimeException( "User name field is not set." );
}
Made User::newTouchedTimestamp handle clock skew a bit better * This does not handle race conditions, but is a prelude to using CAS style logic on save using the timestamp. Change-Id: I9c31c272fcf77b686764b7c3a6a32ac29576347c
2015-04-06 18:12:41 +00:00
$this->mTouched = $this->newTouchedTimestamp();
Revert r113650 and reapply r113619 and r113649 with one modification: User::createNew() was missing a DatabaseBase::timestamp() call
2012-03-12 21:17:23 +00:00
Replace uses of DB_MASTER with DB_PRIMARY Just an auto-replace from codesniffer for now. Change-Id: I5240dc9ac5929d291b0ef1c743ea2bfd3f428266
2021-04-29 02:37:11 +00:00
$dbw = wfGetDB( DB_PRIMARY );
Add missing IDatabase type hints to all doAtomicSection() calls Change-Id: I11061c358013fc67ec7a8ded54aeddcb7ff4910b
2019-04-30 15:08:48 +00:00
$status = $dbw->doAtomicSection( __METHOD__, function ( IDatabase $dbw, $fname ) {
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
$noPass = PasswordFactory::newInvalidPassword()->toString();
$dbw->insert( 'user',
[
'user_name' => $this->mName,
'user_password' => $noPass,
'user_newpassword' => $noPass,
'user_email' => $this->mEmail,
'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
'user_real_name' => $this->mRealName,
'user_token' => strval( $this->mToken ),
'user_registration' => $dbw->timestamp( $this->mRegistration ),
'user_editcount' => 0,
'user_touched' => $dbw->timestamp( $this->mTouched ),
], $fname,
[ 'IGNORE' ]
Remove commit() hack from User::addToDatabase() This is likely not needed anymore to avoid deadlocks anymore as AuthManagar uses a lock in autoCreateUser() before hand. Change-Id: I19ae6562011854495efcb0dd832b7ae99ebbb224
2016-08-21 21:03:24 +00:00
);
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
if ( !$dbw->affectedRows() ) {
// Use locking reads to bypass any REPEATABLE-READ snapshot.
$this->mId = $dbw->selectField(
'user',
'user_id',
[ 'user_name' => $this->mName ],
Fix caller name in User::addToDatabase Seeing {closure} in the logs as caller is not helpful Change-Id: I876877046ae4bd1756c13e04892c1381904566de
2018-09-30 13:22:29 +00:00
$fname,
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
[ 'LOCK IN SHARE MODE' ]
);
$loaded = false;
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
if ( $this->mId && $this->loadFromDatabase( IDBAccessObject::READ_LOCKING ) ) {
Collapse some nested if statements Change-Id: I9a97325d738d09370d29d35d5254bc0dadc57ff4
2019-03-29 20:12:24 +00:00
$loaded = true;
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
}
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
if ( !$loaded ) {
Fix caller name in User::addToDatabase Seeing {closure} in the logs as caller is not helpful Change-Id: I876877046ae4bd1756c13e04892c1381904566de
2018-09-30 13:22:29 +00:00
throw new MWException( $fname . ": hit a key conflict attempting " .
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
"to insert user '{$this->mName}' row, but it was not present in select!" );
}
return Status::newFatal( 'userexists' );
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
}
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
$this->mId = $dbw->insertId();
User: use ActorNormalization to insert actor While creating users, we have several interesting corner cases: - When creating a new User, we actually rely on the 'unique' constraint on actor_name. This is important if something calls 'User::createNew' with a name that is already occupied by an existing anon actor with no user. This is quite a weird corner case, but there's a test for that. We could probably assimilate this nicly in actor store by checking whether the user id in the database for the actor we found is the same as user id in the passed in user identity. - Even more interesting use-case is 'subsuming' existing actors with reserved user names. When we call User::newSystemUser, and there is already an actor with the same reserved name, we 'subsume' that actor and take over it's actor_id for our new system user. This can now be done with an upsert. This state of having reserved actor with no user is not easy to cause, but imports or updating from old MW versions seem to be able to produce this state. Archeology revealed that 'subsuming' existing actor was added for installer. Change-Id: I16b2f088217db0283215fc2ef5fb04a3742e1626
2021-04-07 17:32:17 +00:00
// Don't pass $this, since calling ::getId, ::getName might force ::load
// and this user might not be ready for the yet.
$this->mActorId = MediaWikiServices::getInstance()
->getActorNormalization()
->acquireActorId( new UserIdentityValue( $this->mId, $this->mName ), $dbw );
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
return Status::newGood();
} );
if ( !$status->isGood() ) {
return $status;
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
}
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
// Clear instance cache other than user table data and actor, which is already accurate
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->clearInstanceCache();
Random eol whitespace found while treking through files. Removing unused call to $wgContLang->getFormattedNsText() from addNewUserLogEntry()
2010-01-06 03:42:30 +00:00
Introduce UserOptionsManager and DefaultOptionsManager This converts user options management to a separate service for use in DI context. User options are accessed quite early on in installation process and full-on options management depends on the database. Prior we have protected from accessing the DB by setting a hacky $wgUser with 0 id, and relying on the implementation that it doesn't go into the database to get the default user options. Now we can't really do that since DBLoadBalancer is required to instantiate the options manager. Instead, we redefine the options manager with a DefaultOptionsManager, that only provides access to default options and doesn't require DB access. UserOptionsManager uses PreferencesFactory, however injecting it will produce a cyclic dependency. The problem is that we separate options to different kinds, which are inferred from the PreferencesFactory declaration for those options (e.g. if it's a radio button in the UI declaration, the option is of multiselect kind). This is plain wrong, the dependency should be wise versa. This will be addressed separately, since it's requires larger refactoring. For now the PreferencesFactory is obtained on demand. This will be addressed in a followup. Bug: T248527 Change-Id: I74917c5eaec184d188911a319895b941ed55ee87
2020-01-17 06:21:28 +00:00
MediaWikiServices::getInstance()->getUserOptionsManager()->saveOptions( $this );
(bug 16020) Fix race condition in User::addToDatabase() Fix the DB error which comes from User::addToDatabase() if it is called when the user already exists. This is the most common DB error we log at WMF in normal operation, perhaps because of double clicks on the "create account" button, or perhaps due to CentralAuth autocreation when multiple pages on another wiki are opened in the browser simultaneously, as the bug reporter suggests. See the doc comment for the interface rationale. Patched Special:Userlogin to be aware of the new return value. Most extension callers will continue to work, I will patch a couple that need it in subsequent commits. Change-Id: I1f6ef5e6319bfe692fb82a3fa50dc66c9fde8f15
2012-10-08 22:45:03 +00:00
return Status::newGood();
Initial revision
2003-04-14 23:10:40 +00:00
}
Undelete bug partially fixed; Sysop ability to block users; various code formatting changes
2003-08-31 14:30:24 +00:00
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
/**
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
* If this user is logged-in and blocked,
* block any IP address they've successfully logged in from.
* @return bool A block was spread
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
*/
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
public function spreadAnyEditBlock() {
Swap out uses of User->isLoggedIn() with ->isRegistered() Bug: T270450 Change-Id: I90ff94a553ebae9a4ef97c25c333f067f19c327d
2020-12-17 23:10:11 +00:00
if ( $this->isRegistered() && $this->getBlock() ) {
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
return $this->spreadBlock();
}
Make spreadAnyEditBlock() calls respect read-only mode Bug: T129968 Change-Id: Ib391bd880fa9e04777a355634035183065de5b0a
2016-03-18 01:16:18 +00:00
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
return false;
}
/**
* If this (non-anonymous) user is blocked,
* block the IP address they've successfully logged in from.
* @return bool A block was spread
*/
protected function spreadBlock() {
Remove terminating line breaks from debug messages A terminating line break has not been required in wfDebug() since 2014, however no migration was done. Some of these line breaks found their way into LoggerInterface::debug() calls, where they mess up the formatting of the debug log. So, remove terminating line breaks from wfDebug() and LoggerInterface::debug() calls. Also: * Fix the stripping of leading line breaks from the log header emitted by Setup.php. This feature, accidentally broken in 2014, allows requests to be distinguished in the log file. * Avoid using the global variable $self. * Move the logging of the client IP back to Setup.php. It was moved to WebRequest in the hopes that it would not always be needed, however $wgRequest->getIP() is now called unconditionally a few lines up in Setup.php. This means that it is put in its proper place after the "start request" message. * Wrap the log header code in a closure so that variables like $name do not leak into global scope. * In Linker.php, remove a few instances of an unnecessary second parameter to wfDebug(). Change-Id: I96651d3044a95b9d210b51cb8368edc76bebbb9e
2020-06-01 05:00:39 +00:00
wfDebug( __METHOD__ . "()" );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
new Block object, block expiry, optional sysop blocks
2003-09-01 13:13:56 +00:00
if ( $this->mId == 0 ) {
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
return false;
Undelete bug partially fixed; Sysop ability to block users; various code formatting changes
2003-08-31 14:30:24 +00:00
}
use tabs for indentation, and probably some trailing whitespace has been removed by my editor. I apologise for these triviality commits lately; I'll be more productive soon...
2004-08-14 22:30:10 +00:00
Rename Block to MediaWiki\Block\DatabaseBlock Keep Block as a deprecated class alias for DatabaseBlock. Update calls to the Block constructor and Block static methods from external classes. Also update documentation in several places that refer to blocks as Blocks. Bug: T222737 Change-Id: I6d96b63ca0a84bee19486471e0a16a53a79d768a
2019-05-13 14:18:07 +00:00
$userblock = DatabaseBlock::newFromTarget( $this->getName() );
* Allow blocks on anonymous users only. * Allow or disallow account creation from blocked IP addressess on a per-block basis. * Prevent duplicate blocks. * Fixed the problem of expiry and unblocking erroneously affecting multiple blocks. * Fixed confusing lack of error message when a blocked user attempts to create an account. * Fixed inefficiency of Special:Ipblocklist in the presence of large numbers of blocks; added indexes and implemented an indexed pager.
2006-07-10 06:30:03 +00:00
if ( !$userblock ) {
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
return false;
Undelete bug partially fixed; Sysop ability to block users; various code formatting changes
2003-08-31 14:30:24 +00:00
}
use tabs for indentation, and probably some trailing whitespace has been removed by my editor. I apologise for these triviality commits lately; I'll be more productive soon...
2004-08-14 22:30:10 +00:00
* Only spread blocks on page edit/move attempts via spreadAnyEditBlock(). We don't want to spread everytime the user's block status is checked as the user may just be viewing something rather than attempting to do anything. For example, if the 'edit' tab were changed to reflect block status, the autoblocks would trigger by a user just *looking* at the page. An example "in the wild" would be the UI checks in r93246. * Made spreadBlock() protected, no outside callers.
2011-10-08 20:22:53 +00:00
return (bool)$userblock->doAutoblock( $this->getRequest()->getIP() );
Undelete bug partially fixed; Sysop ability to block users; various code formatting changes
2003-08-31 14:30:24 +00:00
}
Moved some code to User.php, where it belongs.
2003-09-10 01:18:23 +00:00
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get whether the user is explicitly blocked from account creation.
Move AuthManager::checkAccountCreatePermissions to Authority. Change-Id: I8d223508ccec7122eef5e0bf136964ad65d64ab7
2021-04-21 16:25:17 +00:00
* @deprecated since 1.37. Instead use Authority::authorize* for createaccount permission.
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
* @return bool|AbstractBlock
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isBlockedFromCreateAccount() {
* Allow blocks on anonymous users only. * Allow or disallow account creation from blocked IP addressess on a per-block basis. * Prevent duplicate blocks. * Fixed the problem of expiry and unblocking erroneously affecting multiple blocks. * Fixed confusing lack of error message when a blocked user attempts to create an account. * Fixed inefficiency of Special:Ipblocklist in the presence of large numbers of blocks; added indexes and implemented an indexed pager.
2006-07-10 06:30:03 +00:00
$this->getBlockedStatus();
Separate out different functionalities of Block::prevents Block::prevents plays several different roles: * acts as get/setter for Boolean properties that correspond to ipb_create_account, ipb_block_email and ipb_allow_usertalk * calculates whether a block blocks a given right, based on Block properties, global configs, white/blacklists and anonymous user rights * decides whether a block prevents editing of the target's own user talk page (listed separately because 'editownusertalk' is not a right) This patch: * renames mDisableUsertalk to allowEditUsertalk (and reverses the value), to match the field ipb_allow_usertalk and make this logic easier to follow * renames mCreateAccount to blockCreateAccount, to make it clear that the flag blocks account creation when true, and make this logic easier to follow * decouples the block that is stored in the database (which now reflects the form that the admin submitted) and the behaviour of the block on enforcement (since the properties set by the admin can be overridden by global configs) - so if the global configs change, the block behaviour could too * creates get/setters for blockCreateAccount, mBlockEmail and allowEditUsertalk properties * creates appliesToRight, exclusively for checking whether the block blocks a given right, taking into account the block properties, global configs and anonymous user rights * creates appliesToUsertalk, for checking whether the block blocks a user from editing their own talk page. The block is unaware of the user trying to make the edit, and this user is not always the same as the block target, e.g. if the block target is an IP range. Therefore the user's talk page is passed in to this method. appliesToUsertalk can be called from anywhere where the user is known * uses the get/setters wherever Block::prevents was being used as such * uses appliesToRight whenever Block::prevents was being used to determine if the block blocks a given right * uses appliesToUsertalk in User::isBlockedFrom Bug: T211578 Bug: T214508 Change-Id: I0e131696419211319082cb454f4f05297e55d22e
2019-02-09 12:17:54 +00:00
if ( $this->mBlock && $this->mBlock->appliesToRight( 'createaccount' ) ) {
Blame hashar for this giant commit; he teased me for making so many smaller ones earlier... :D * Internalise $mAddress/$mUser, $mBy/$mByName, $mEnableAutoblock, $mId as getTarget(), getBlockers(), isAutoblocking(), getId(). * This required editing AbuseFilter and CheckUser backwards-incompatibly, so push the rest of the changes out to those extensions. * Attack the evil 14-parameter constructor and gratuitously-confusing newFromDB( $notVeryImportantParameter, $moreImportantParameter) * Reimplement the hack for bug 13611 in a slightly less fragile fashion; could still do with further cleanup, but then again the login frontend is its own can of worms... :S * Remove transitionary getTargetAndType() and newFromTargetAndType() methods * Some optimisation in parseTarget() * Fix the broken phpunit test mentioned in r84251
2011-03-21 19:12:41 +00:00
return $this->mBlock;
}
includes: Replace implicit Bugzilla bug numbers with Phab ones It's unreasonable to expect newbies to know that "bug 12345" means "Task T14345" except where it doesn't, so let's just standardise on the real numbers. Change-Id: I6f59febaf8fc96e80f8cfc11f4356283f461142a
2017-02-20 22:44:19 +00:00
# T15611: if the IP address the user is trying to create an account from is
Blame hashar for this giant commit; he teased me for making so many smaller ones earlier... :D * Internalise $mAddress/$mUser, $mBy/$mByName, $mEnableAutoblock, $mId as getTarget(), getBlockers(), isAutoblocking(), getId(). * This required editing AbuseFilter and CheckUser backwards-incompatibly, so push the rest of the changes out to those extensions. * Attack the evil 14-parameter constructor and gratuitously-confusing newFromDB( $notVeryImportantParameter, $moreImportantParameter) * Reimplement the hack for bug 13611 in a slightly less fragile fashion; could still do with further cleanup, but then again the login frontend is its own can of worms... :S * Remove transitionary getTargetAndType() and newFromTargetAndType() methods * Some optimisation in parseTarget() * Fix the broken phpunit test mentioned in r84251
2011-03-21 19:12:41 +00:00
# blocked with createaccount disabled, prevent new account creation there even
# when the user is logged in
Don't apply IP blocks to users with "ipblock-exempt" rights when creating an account So that this check is consistent with the one in User::getBlockedStatus(). Change-Id: Ibcadb15b87794cfe59fc42d862728e5fd46c3413
2013-01-12 18:21:04 +00:00
if ( $this->mBlockedFromCreateAccount === false && !$this->isAllowed( 'ipblock-exempt' ) ) {
Rename Block to MediaWiki\Block\DatabaseBlock Keep Block as a deprecated class alias for DatabaseBlock. Update calls to the Block constructor and Block static methods from external classes. Also update documentation in several places that refer to blocks as Blocks. Bug: T222737 Change-Id: I6d96b63ca0a84bee19486471e0a16a53a79d768a
2019-05-13 14:18:07 +00:00
$this->mBlockedFromCreateAccount = DatabaseBlock::newFromTarget(
null, $this->getRequest()->getIP()
);
Blame hashar for this giant commit; he teased me for making so many smaller ones earlier... :D * Internalise $mAddress/$mUser, $mBy/$mByName, $mEnableAutoblock, $mId as getTarget(), getBlockers(), isAutoblocking(), getId(). * This required editing AbuseFilter and CheckUser backwards-incompatibly, so push the rest of the changes out to those extensions. * Attack the evil 14-parameter constructor and gratuitously-confusing newFromDB( $notVeryImportantParameter, $moreImportantParameter) * Reimplement the hack for bug 13611 in a slightly less fragile fashion; could still do with further cleanup, but then again the login frontend is its own can of worms... :S * Remove transitionary getTargetAndType() and newFromTargetAndType() methods * Some optimisation in parseTarget() * Fix the broken phpunit test mentioned in r84251
2011-03-21 19:12:41 +00:00
}
Separate Block into AbstractBlock, Block and SystemBlock This commit splits the existing Block class into AbstractBlock, Block and SystemBlock. Before this patch, the Block class represents several types of blocks, which can be separated into blocks stored in the database, and temporary blocks created by the system. These are now represented by Block and SystemBlock, which inherit from AbstractBlock. This lays the foundations for: * enforcing block parameters from multiple blocks that apply to a user/IP address * improvements to the Block API, including the addition of services Breaking changes: functions expecting a Block object should still expect a Block object if it came from the database, but other functions may now need to expect an AbstractBlock or SystemBlock object. (Note that an alternative naming scheme, in which the abstract class is called Block and the subclasses are DatabaseBlock and SystemBlock, avoids this breakage. However, it introduces more breakages to calls to static Block methods and new Block instantiations.) Changes to tests: system blocks don't set the $blockCreateAccount or $mExipry block properties, so remove/change any tests that assume they do. Bug: T222737 Change-Id: I83bceb5e5049e254c90ace060f8f8fad44696c67
2019-03-18 22:09:49 +00:00
return $this->mBlockedFromCreateAccount instanceof AbstractBlock
Separate out different functionalities of Block::prevents Block::prevents plays several different roles: * acts as get/setter for Boolean properties that correspond to ipb_create_account, ipb_block_email and ipb_allow_usertalk * calculates whether a block blocks a given right, based on Block properties, global configs, white/blacklists and anonymous user rights * decides whether a block prevents editing of the target's own user talk page (listed separately because 'editownusertalk' is not a right) This patch: * renames mDisableUsertalk to allowEditUsertalk (and reverses the value), to match the field ipb_allow_usertalk and make this logic easier to follow * renames mCreateAccount to blockCreateAccount, to make it clear that the flag blocks account creation when true, and make this logic easier to follow * decouples the block that is stored in the database (which now reflects the form that the admin submitted) and the behaviour of the block on enforcement (since the properties set by the admin can be overridden by global configs) - so if the global configs change, the block behaviour could too * creates get/setters for blockCreateAccount, mBlockEmail and allowEditUsertalk properties * creates appliesToRight, exclusively for checking whether the block blocks a given right, taking into account the block properties, global configs and anonymous user rights * creates appliesToUsertalk, for checking whether the block blocks a user from editing their own talk page. The block is unaware of the user trying to make the edit, and this user is not always the same as the block target, e.g. if the block target is an IP range. Therefore the user's talk page is passed in to this method. appliesToUsertalk can be called from anywhere where the user is known * uses the get/setters wherever Block::prevents was being used as such * uses appliesToRight whenever Block::prevents was being used to determine if the block blocks a given right * uses appliesToUsertalk in User::isBlockedFrom Bug: T211578 Bug: T214508 Change-Id: I0e131696419211319082cb454f4f05297e55d22e
2019-02-09 12:17:54 +00:00
&& $this->mBlockedFromCreateAccount->appliesToRight( 'createaccount' )
Follow-up r84475 CR; and also documentation fixes; PhpStorm 2.1 is *even more* fussy about documentation format... :D
2011-06-26 23:01:29 +00:00
? $this->mBlockedFromCreateAccount
Blame hashar for this giant commit; he teased me for making so many smaller ones earlier... :D * Internalise $mAddress/$mUser, $mBy/$mByName, $mEnableAutoblock, $mId as getTarget(), getBlockers(), isAutoblocking(), getId(). * This required editing AbuseFilter and CheckUser backwards-incompatibly, so push the rest of the changes out to those extensions. * Attack the evil 14-parameter constructor and gratuitously-confusing newFromDB( $notVeryImportantParameter, $moreImportantParameter) * Reimplement the hack for bug 13611 in a slightly less fragile fashion; could still do with further cleanup, but then again the login frontend is its own can of worms... :S * Remove transitionary getTargetAndType() and newFromTargetAndType() methods * Some optimisation in parseTarget() * Fix the broken phpunit test mentioned in r84251
2011-03-21 19:12:41 +00:00
: false;
* Allow blocks on anonymous users only. * Allow or disallow account creation from blocked IP addressess on a per-block basis. * Prevent duplicate blocks. * Fixed the problem of expiry and unblocking erroneously affecting multiple blocks. * Fixed confusing lack of error message when a blocked user attempts to create an account. * Fixed inefficiency of Special:Ipblocklist in the presence of large numbers of blocks; added indexes and implemented an indexed pager.
2006-07-10 06:30:03 +00:00
}
(bug 7997) Added ability to Special:Blockip to block users from using Special:Emailuser.
2007-06-07 17:31:08 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get whether the user is blocked from using Special:Emailuser.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
(bug 7997) Added ability to Special:Blockip to block users from using Special:Emailuser.
2007-06-07 17:31:08 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isBlockedFromEmailuser() {
(bug 7997) Added ability to Special:Blockip to block users from using Special:Emailuser.
2007-06-07 17:31:08 +00:00
$this->getBlockedStatus();
Separate out different functionalities of Block::prevents Block::prevents plays several different roles: * acts as get/setter for Boolean properties that correspond to ipb_create_account, ipb_block_email and ipb_allow_usertalk * calculates whether a block blocks a given right, based on Block properties, global configs, white/blacklists and anonymous user rights * decides whether a block prevents editing of the target's own user talk page (listed separately because 'editownusertalk' is not a right) This patch: * renames mDisableUsertalk to allowEditUsertalk (and reverses the value), to match the field ipb_allow_usertalk and make this logic easier to follow * renames mCreateAccount to blockCreateAccount, to make it clear that the flag blocks account creation when true, and make this logic easier to follow * decouples the block that is stored in the database (which now reflects the form that the admin submitted) and the behaviour of the block on enforcement (since the properties set by the admin can be overridden by global configs) - so if the global configs change, the block behaviour could too * creates get/setters for blockCreateAccount, mBlockEmail and allowEditUsertalk properties * creates appliesToRight, exclusively for checking whether the block blocks a given right, taking into account the block properties, global configs and anonymous user rights * creates appliesToUsertalk, for checking whether the block blocks a user from editing their own talk page. The block is unaware of the user trying to make the edit, and this user is not always the same as the block target, e.g. if the block target is an IP range. Therefore the user's talk page is passed in to this method. appliesToUsertalk can be called from anywhere where the user is known * uses the get/setters wherever Block::prevents was being used as such * uses appliesToRight whenever Block::prevents was being used to determine if the block blocks a given right * uses appliesToUsertalk in User::isBlockedFrom Bug: T211578 Bug: T214508 Change-Id: I0e131696419211319082cb454f4f05297e55d22e
2019-02-09 12:17:54 +00:00
return $this->mBlock && $this->mBlock->appliesToRight( 'sendemail' );
(bug 7997) Added ability to Special:Blockip to block users from using Special:Emailuser.
2007-06-07 17:31:08 +00:00
}
Enforce partial blocks Enforce partial blocks and display a slightly different block notice depending on if the block is sitewide or not Bug: T197117 Depends-On: I675316dddf272fd0d6172ecad3882160752bf780 Change-Id: I8a3635a4a04a33912eb139b7b13c4bd874183d31
2018-08-27 01:45:18 +00:00
/**
* Get whether the user is blocked from using Special:Upload
*
Add @since tags to new public methods related to partial blocks Bug: T210369 Change-Id: I20197ceee8e5e43fac20addc494b841519b915c8
2019-01-08 12:44:33 +00:00
* @since 1.33
Enforce partial blocks Enforce partial blocks and display a slightly different block notice depending on if the block is sitewide or not Bug: T197117 Depends-On: I675316dddf272fd0d6172ecad3882160752bf780 Change-Id: I8a3635a4a04a33912eb139b7b13c4bd874183d31
2018-08-27 01:45:18 +00:00
* @return bool
*/
public function isBlockedFromUpload() {
$this->getBlockedStatus();
Separate out different functionalities of Block::prevents Block::prevents plays several different roles: * acts as get/setter for Boolean properties that correspond to ipb_create_account, ipb_block_email and ipb_allow_usertalk * calculates whether a block blocks a given right, based on Block properties, global configs, white/blacklists and anonymous user rights * decides whether a block prevents editing of the target's own user talk page (listed separately because 'editownusertalk' is not a right) This patch: * renames mDisableUsertalk to allowEditUsertalk (and reverses the value), to match the field ipb_allow_usertalk and make this logic easier to follow * renames mCreateAccount to blockCreateAccount, to make it clear that the flag blocks account creation when true, and make this logic easier to follow * decouples the block that is stored in the database (which now reflects the form that the admin submitted) and the behaviour of the block on enforcement (since the properties set by the admin can be overridden by global configs) - so if the global configs change, the block behaviour could too * creates get/setters for blockCreateAccount, mBlockEmail and allowEditUsertalk properties * creates appliesToRight, exclusively for checking whether the block blocks a given right, taking into account the block properties, global configs and anonymous user rights * creates appliesToUsertalk, for checking whether the block blocks a user from editing their own talk page. The block is unaware of the user trying to make the edit, and this user is not always the same as the block target, e.g. if the block target is an IP range. Therefore the user's talk page is passed in to this method. appliesToUsertalk can be called from anywhere where the user is known * uses the get/setters wherever Block::prevents was being used as such * uses appliesToRight whenever Block::prevents was being used to determine if the block blocks a given right * uses appliesToUsertalk in User::isBlockedFrom Bug: T211578 Bug: T214508 Change-Id: I0e131696419211319082cb454f4f05297e55d22e
2019-02-09 12:17:54 +00:00
return $this->mBlock && $this->mBlock->appliesToRight( 'upload' );
Enforce partial blocks Enforce partial blocks and display a slightly different block notice depending on if the block is sitewide or not Bug: T197117 Depends-On: I675316dddf272fd0d6172ecad3882160752bf780 Change-Id: I8a3635a4a04a33912eb139b7b13c4bd874183d31
2018-08-27 01:45:18 +00:00
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get whether the user is allowed to create an account.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Add visibility to User functions Change-Id: Ib2bea5ba8132e79345b46ec3e6db7576af07a007
2014-02-21 09:58:36 +00:00
public function isAllowedToCreateAccount() {
* Allow blocks on anonymous users only. * Allow or disallow account creation from blocked IP addressess on a per-block basis. * Prevent duplicate blocks. * Fixed the problem of expiry and unblocking erroneously affecting multiple blocks. * Fixed confusing lack of error message when a blocked user attempts to create an account. * Fixed inefficiency of Special:Ipblocklist in the presence of large numbers of blocks; added indexes and implemented an indexed pager.
2006-07-10 06:30:03 +00:00
return $this->isAllowed( 'createaccount' ) && !$this->isBlockedFromCreateAccount();
Moved some code to User.php, where it belongs.
2003-09-10 01:18:23 +00:00
}
Remove some cruft from skins... sooooo much cruft yet to go
2005-02-21 11:28:07 +00:00
/**
* Get this user's personal page title.
*
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @return Title User's personal page title
Remove some cruft from skins... sooooo much cruft yet to go
2005-02-21 11:28:07 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getUserPage() {
Deferred initialisation of $wgIP, because it's potentially slow, especially if and when we add the 200 NTL proxies to the trusted XFF list. I was hoping to avoid initialisation altogether for anonymous page views, but that turns out to be difficult because of user_newtalk. It is, however, avoided for action=raw. Tested page view, newtalk, IP registration in history and recentchanges, IP block, autoblock and Special:Version. Also moved the old proxy scan code from EditPage.php to a more appropriate location in ProxyTools.php.
2005-09-05 02:22:20 +00:00
return Title::makeTitle( NS_USER, $this->getName() );
Skin updates: * Add 'pagetitle' message to customize the HTML page title format (eg, "$1 - Wikipedia Encyclopedia") * Some XHTML fixes to Nostalgia skin, prefs * Removing the unfinished Smarty skins, renamed Standard to Classic * Remove "gnunote" message in favor of general "copyright" msg, which is filled with the link & name in $wgRightsPage/$wgRightsURL and $wgRightsText * Support a copyright-related icon as $wgRightsIcon (includes sample gnu-fdl.png) * Show "Powered by MediaWiki" icon in footer (poweredby_mediawiki_88x31.png by Dan Carlson)
2004-04-11 01:25:00 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Remove some cruft from skins... sooooo much cruft yet to go
2005-02-21 11:28:07 +00:00
/**
* Get this user's talk page title.
*
Remove some more comments that literally repeat the code … including PHPDoc tags like `@return <type> $variableName`. A return value doesn't have a variable name. I can see that some people do this intentionally, repeating the variable name that was used in the final `return $var;` at the end of a method. This can indeed be helpful. I leave a lot of these untouched and removed them only when it's obviously wrong, or does not provide any additional information in addition to what the code already says. Change-Id: Ia18cd9f25ef658b08ad25b97a744897e2a8deffc
2021-06-17 14:32:05 +00:00
* @return Title
Remove some cruft from skins... sooooo much cruft yet to go
2005-02-21 11:28:07 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function getTalkPage() {
Remove some cruft from skins... sooooo much cruft yet to go
2005-02-21 11:28:07 +00:00
$title = $this->getUserPage();
return $title->getTalkPage();
}
newbie detector
2004-06-26 01:48:39 +00:00
Phpdoc comments
2004-09-04 13:06:25 +00:00
/**
expand comment for isNewbie(), and spelling corrections
2004-09-04 14:21:45 +00:00
* Determine whether the user is a newbie. Newbies are either
* Fix autoconfirm check for old accounts
2005-12-23 01:27:27 +00:00
* anonymous IPs, or the most recently created accounts.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
Phpdoc comments
2004-09-04 13:06:25 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isNewbie() {
* (bug 1735) Revamped protection interface * (bug 675) Add page protection level for unregistered/new accounts * User::isNewbie now uses the registration date and $wgAutoconfirmAge * Log views show message when no matches
2005-12-22 05:41:06 +00:00
return !$this->isAllowed( 'autoconfirmed' );
newbie detector
2004-06-26 01:48:39 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
we want to get the edit token, not edit the token...
2011-10-19 19:38:17 +00:00
/**
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* Initialize (if necessary) and return a session token value
* which can be used in edit forms to show that the user's
* login credentials aren't being hijacked with a foreign form
* submission.
we want to get the edit token, not edit the token...
2011-10-19 19:38:17 +00:00
*
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
* @since 1.27
Move CRSF token generation to CsrfTokenSet Change-Id: Idf68f1cc63fb2e01e004ff353fcda026fa4ec10f
2021-06-02 22:13:53 +00:00
* @deprecated since 1.37. Use CsrfTokenSet::getToken instead
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* @param string|string[] $salt Optional function-specific data for hashing
Don't access $wgRequest from User Some User methods fail if they are called before $wgRequest is set. But according to the Setup.php comment, it is only set for b/c. The global request object can be lazy-initialised at any time. This is sufficient to avoid T263911 (loss/obfuscation of the $wgServer error message). In tests, try to keep $wgRequest and RequestContext::$request in sync. Introduce MediaWikiIntegrationTestCase::setRequest() which sets both at once, and use that instead of setMwGlobals() or direct assignment. BlockManagerTest was accidentally exploiting the fact that the global context request and $wgRequest were separate objects. Making them the same causes session cookies to appear in the response, breaking the cookie counts. Use a new response for the test. Bug: T263911 Bug: T245940 Change-Id: I2be99f7251a837bc6b62be0b152038157dec10f2
2020-12-15 09:47:15 +00:00
* @param WebRequest|null $request WebRequest object to use, or null to use the global request
Change \\ to \ in phpdoc Remove "\\" in namespacing. This is a Doxygen compatibility hack but does not seem needed anymore, Doxygen reads namespaced class names correctly, see e.g. https://doc.wikimedia.org/mediawiki-core/master/php/classMediaWiki_1_1Services_1_1ServiceContainer.html PHP IDEs, on the other hand, were broken by the double backslash. As an unrelated small doc fix, add parameter docs to PermissionError constructor (parent has different arguments so the inherited documentation is wrong). Change-Id: I6da0f512b8c84f65fd20e90e4617108fe6a8fcd2
2016-04-06 22:22:33 +00:00
* @return MediaWiki\Session\Token The new edit token
Revert last checkin by Nicolas Weeger which caused massive corruption of the file.
2005-02-15 00:28:55 +00:00
*/
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
public function getEditTokenObject( $salt = '', $request = null ) {
* Make $wgUser->editToken() work for either logged-in or logged-out users. * Fix escaping of edit tokens, removed FIXME note. * Added + to EDIT_TOKEN_SUFFIX on report of broken proxy from mutante * Two random minor changes
2007-06-23 10:15:10 +00:00
if ( $this->isAnon() ) {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
return new LoggedOutEditToken();
}
if ( !$request ) {
$request = $this->getRequest();
Revert last checkin by Nicolas Weeger which caused massive corruption of the file.
2005-02-15 00:28:55 +00:00
}
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
return $request->getSession()->getToken( $salt );
Revert last checkin by Nicolas Weeger which caused massive corruption of the file.
2005-02-15 00:28:55 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Allow for time-limited tokens Tokens returned from User::getEditToken will now include an encoded timestamp (and therefore will be up to 16 bytes longer). User::matchEditToken and User::matchEditTokenNoSuffix are gaining a "maxage" parameter: when specified, only tokens with an encoded timestamp within $maxage seconds will be accepted. Change-Id: Ic4cf148cc1fa9d0561aac0bd2d68a09c7851896d
2014-08-26 18:12:32 +00:00
/**
* Initialize (if necessary) and return a session token value
* which can be used in edit forms to show that the user's
* login credentials aren't being hijacked with a foreign form
* submission.
*
Note that you shouldn't use a custom $salt for 'edit' or 'csrf' Change-Id: I795b3a17791a9e16382a7c6379b0e7a4a498d32e
2016-08-16 22:11:35 +00:00
* The $salt for 'edit' and 'csrf' tokens is the default (empty string).
*
Allow for time-limited tokens Tokens returned from User::getEditToken will now include an encoded timestamp (and therefore will be up to 16 bytes longer). User::matchEditToken and User::matchEditTokenNoSuffix are gaining a "maxage" parameter: when specified, only tokens with an encoded timestamp within $maxage seconds will be accepted. Change-Id: Ic4cf148cc1fa9d0561aac0bd2d68a09c7851896d
2014-08-26 18:12:32 +00:00
* @since 1.19
Move CRSF token generation to CsrfTokenSet Change-Id: Idf68f1cc63fb2e01e004ff353fcda026fa4ec10f
2021-06-02 22:13:53 +00:00
* @deprecated since 1.37. Use CsrfTokenSet::getToken instead
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* @param string|string[] $salt Optional function-specific data for hashing
Don't access $wgRequest from User Some User methods fail if they are called before $wgRequest is set. But according to the Setup.php comment, it is only set for b/c. The global request object can be lazy-initialised at any time. This is sufficient to avoid T263911 (loss/obfuscation of the $wgServer error message). In tests, try to keep $wgRequest and RequestContext::$request in sync. Introduce MediaWikiIntegrationTestCase::setRequest() which sets both at once, and use that instead of setMwGlobals() or direct assignment. BlockManagerTest was accidentally exploiting the fact that the global context request and $wgRequest were separate objects. Making them the same causes session cookies to appear in the response, breaking the cookie counts. Use a new response for the test. Bug: T263911 Bug: T245940 Change-Id: I2be99f7251a837bc6b62be0b152038157dec10f2
2020-12-15 09:47:15 +00:00
* @param WebRequest|null $request WebRequest object to use, or null to use the global request
Allow for time-limited tokens Tokens returned from User::getEditToken will now include an encoded timestamp (and therefore will be up to 16 bytes longer). User::matchEditToken and User::matchEditTokenNoSuffix are gaining a "maxage" parameter: when specified, only tokens with an encoded timestamp within $maxage seconds will be accepted. Change-Id: Ic4cf148cc1fa9d0561aac0bd2d68a09c7851896d
2014-08-26 18:12:32 +00:00
* @return string The new edit token
*/
public function getEditToken( $salt = '', $request = null ) {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
return $this->getEditTokenObject( $salt, $request )->toString();
Allow for time-limited tokens Tokens returned from User::getEditToken will now include an encoded timestamp (and therefore will be up to 16 bytes longer). User::matchEditToken and User::matchEditTokenNoSuffix are gaining a "maxage" parameter: when specified, only tokens with an encoded timestamp within $maxage seconds will be accepted. Change-Id: Ic4cf148cc1fa9d0561aac0bd2d68a09c7851896d
2014-08-26 18:12:32 +00:00
}
Revert last checkin by Nicolas Weeger which caused massive corruption of the file.
2005-02-15 00:28:55 +00:00
/**
* Check given value against the token value stored in the session.
* A match should confirm that the form was submitted from the
* user's own login session, not a form submission from a third-party
* site.
*
Move CRSF token generation to CsrfTokenSet Change-Id: Idf68f1cc63fb2e01e004ff353fcda026fa4ec10f
2021-06-02 22:13:53 +00:00
* @deprecated since 1.37. Use CsrfTokenSet::matchToken instead
Fix various documentation related to null types (part II) The functions returning null or the class property is set explict null. Some function should not accept null or return null. Found by phan strict checks Change-Id: Ie50f23249282cdb18caa332f562a3945a58d86ff
2022-03-01 21:42:03 +00:00
* @param string|null $val Input value to compare
Fix parameter doc type for matchEditToken I noticed it while fixing some AbuseFilter errors. matchEditToken simply calls getEditTokenObject, which accepts string|array as $salt. Change-Id: I36497eb8797ee60759c5109b699643635bba9174
2018-04-20 08:16:55 +00:00
* @param string|array $salt Optional function-specific data for hashing
Don't access $wgRequest from User Some User methods fail if they are called before $wgRequest is set. But according to the Setup.php comment, it is only set for b/c. The global request object can be lazy-initialised at any time. This is sufficient to avoid T263911 (loss/obfuscation of the $wgServer error message). In tests, try to keep $wgRequest and RequestContext::$request in sync. Introduce MediaWikiIntegrationTestCase::setRequest() which sets both at once, and use that instead of setMwGlobals() or direct assignment. BlockManagerTest was accidentally exploiting the fact that the global context request and $wgRequest were separate objects. Making them the same causes session cookies to appear in the response, breaking the cookie counts. Use a new response for the test. Bug: T263911 Bug: T245940 Change-Id: I2be99f7251a837bc6b62be0b152038157dec10f2
2020-12-15 09:47:15 +00:00
* @param WebRequest|null $request Object to use, or null to use the global request
Fix PhanTypeMismatchDeclaredParam Auto fix MediaWiki.Commenting.FunctionComment.DefaultNullTypeParam sniff Change-Id: I865323fd0295aabd06f3e3c75e0e5043fb31069e
2018-06-26 21:14:43 +00:00
* @param int|null $maxage Fail tokens older than this, in seconds
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @return bool Whether the token matches
Revert last checkin by Nicolas Weeger which caused massive corruption of the file.
2005-02-15 00:28:55 +00:00
*/
Allow for time-limited tokens Tokens returned from User::getEditToken will now include an encoded timestamp (and therefore will be up to 16 bytes longer). User::matchEditToken and User::matchEditTokenNoSuffix are gaining a "maxage" parameter: when specified, only tokens with an encoded timestamp within $maxage seconds will be accepted. Change-Id: Ic4cf148cc1fa9d0561aac0bd2d68a09c7851896d
2014-08-26 18:12:32 +00:00
public function matchEditToken( $val, $salt = '', $request = null, $maxage = null ) {
Revert "Remove SessionManager, temporarily" This reverts commit 823db5d63dd5200d04c63da50ba6bf16f928e70b. Change-Id: Ibb3e023e4eb6715295586dea87d0725c344a8271
2016-02-01 20:44:03 +00:00
return $this->getEditTokenObject( $salt, $request )->match( $val, $maxage );
Revert last checkin by Nicolas Weeger which caused massive corruption of the file.
2005-02-15 00:28:55 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
* Generate a new e-mail confirmation token and send a confirmation/invalidation
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
* mail to the user's given address.
*
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @param string $type Message to send, either "created", "changed" or "set"
* @return Status
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function sendConfirmationMail( $type = 'created' ) {
* (bug 13540) Date format in confirmation e-mail now matches message language
2008-03-28 20:17:55 +00:00
global $wgLang;
Completing code housekeeping stuff for rest of includes/ directory: removing unused local vars, removing unused globals, replacing extract() where simple to do, declaring output arrays before calling preg_match(), and so forth.
2006-11-29 11:43:58 +00:00
$expiration = null; // gets passed-by-ref and defined in next line.
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
$token = $this->confirmationToken( $expiration );
$url = $this->confirmationTokenUrl( $token );
$invalidateURL = $this->invalidationTokenUrl( $token );
Fix regression with confirmation e-mails sent via Special:Confirmemail. Recent changes to User object made User::sendConfirmationEmail() *not* save the new confirmation token to the database, which seems rather odd. As a result, you got a mail with a bogus value. Since the function has side-effects, it pretty clearly needs to be saving its changes. Went ahead and had it do that rather than forcing all callers to fix its internal failing.
2008-04-22 23:47:27 +00:00
$this->saveSettings();
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* (bug 22606) Follow-up r63059: don't send the "someone registred an account" message when setting email address (i.e. old one empty) in user preferences
2011-01-29 09:32:02 +00:00
if ( $type == 'created' || $type === false ) {
$message = 'confirmemail_body';
Add UserSendConfirmationMail hook Allow extensions to modify the confirmation email. Bug: T215665 Change-Id: I4bcf76699a5114292fc19085fe441de8b898a8d3
2019-02-27 02:16:49 +00:00
$type = 'created';
* (bug 22606) Follow-up r63059: don't send the "someone registred an account" message when setting email address (i.e. old one empty) in user preferences
2011-01-29 09:32:02 +00:00
} elseif ( $type === true ) {
$message = 'confirmemail_body_changed';
Add UserSendConfirmationMail hook Allow extensions to modify the confirmation email. Bug: T215665 Change-Id: I4bcf76699a5114292fc19085fe441de8b898a8d3
2019-02-27 02:16:49 +00:00
$type = 'changed';
* (bug 22606) Follow-up r63059: don't send the "someone registred an account" message when setting email address (i.e. old one empty) in user preferences
2011-01-29 09:32:02 +00:00
} else {
doc: Remove repetitive "Give grep a chance" phrase from comments * Follows-up b2e2b2e016. * Minor clean up of surrounding documentation comments. * Fixed missing keys for messages in WebInstallerPage Change-Id: Iaa692064262f3c0e10cfa5e4b1ec8c86e5d02362
2013-08-28 00:38:27 +00:00
// Messages: confirmemail_body_changed, confirmemail_body_set
* (bug 22606) Follow-up r63059: don't send the "someone registred an account" message when setting email address (i.e. old one empty) in user preferences
2011-01-29 09:32:02 +00:00
$message = 'confirmemail_body_' . $type;
}
Add UserSendConfirmationMail hook Allow extensions to modify the confirmation email. Bug: T215665 Change-Id: I4bcf76699a5114292fc19085fe441de8b898a8d3
2019-02-27 02:16:49 +00:00
$mail = [
'subject' => wfMessage( 'confirmemail_subject' )->text(),
'body' => wfMessage( $message,
Moved wfGetIP() to WebRequest::getIP(): * Changed all calls in core to the latter * Also marked wfGetForwardedFor() as deprecated * Moved wfGetIP() tests to WebRequestTest
2011-08-18 20:03:30 +00:00
$this->getRequest()->getIP(),
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
$this->getName(),
$url,
Adjust datetime in email confirmation email Use the correct timezone when setting the expiry timestamp in the email confirmation. Using Language::userDateAndTime to avoid indirect use of $wgUser, so it is always the timezone used of the user the message gets send for. Bug: T29158 Change-Id: Ieb74b72a4255d9d652f828d1879882dff4b45379
2015-11-30 20:38:12 +00:00
$wgLang->userTimeAndDate( $expiration, $this ),
Message 'confirmemail_body' - date and time separated as of request by user "Der Umherirrende" at http://translatewiki.net/w/i.php?title=Support&oldid=1243738#split_date_and_time
2009-06-01 20:57:11 +00:00
$invalidateURL,
Adjust datetime in email confirmation email Use the correct timezone when setting the expiry timestamp in the email confirmation. Using Language::userDateAndTime to avoid indirect use of $wgUser, so it is always the timezone used of the user the message gets send for. Bug: T29158 Change-Id: Ieb74b72a4255d9d652f828d1879882dff4b45379
2015-11-30 20:38:12 +00:00
$wgLang->userDate( $expiration, $this ),
Add UserSendConfirmationMail hook Allow extensions to modify the confirmation email. Bug: T215665 Change-Id: I4bcf76699a5114292fc19085fe441de8b898a8d3
2019-02-27 02:16:49 +00:00
$wgLang->userTime( $expiration, $this ) )->text(),
'from' => null,
'replyTo' => null,
];
$info = [
'type' => $type,
'ip' => $this->getRequest()->getIP(),
'confirmURL' => $url,
'invalidateURL' => $invalidateURL,
'expiration' => $expiration
];
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserSendConfirmationMail( $this, $mail, $info );
Add UserSendConfirmationMail hook Allow extensions to modify the confirmation email. Bug: T215665 Change-Id: I4bcf76699a5114292fc19085fe441de8b898a8d3
2019-02-27 02:16:49 +00:00
return $this->sendMail( $mail['subject'], $mail['body'], $mail['from'], $mail['replyTo'] );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
* Send an e-mail to this user's account. Does not check for
* confirmed status or validity.
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $subject Message subject
* @param string $body Message body
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
* @param User|null $from Optional sending user; if unspecified, default
Make phpcs-strict pass on includes/ (3/~10) Change-Id: Ibf86d03b5479c47ee72c0dafea6777ef8178fe68
2014-05-11 15:34:14 +00:00
* $wgPasswordSender will be used.
Add UserSendConfirmationMail hook Allow extensions to modify the confirmation email. Bug: T215665 Change-Id: I4bcf76699a5114292fc19085fe441de8b898a8d3
2019-02-27 02:16:49 +00:00
* @param MailAddress|null $replyto Reply-To address
More documentation formatting
2011-01-06 15:55:56 +00:00
* @return Status
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function sendMail( $subject, $body, $from = null, $replyto = null ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$passwordSender = MediaWikiServices::getInstance()->getMainConfig()->get( 'PasswordSender' );
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
if ( $from instanceof User ) {
$sender = MailAddress::newFromUser( $from );
} else {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$sender = new MailAddress( $passwordSender,
Deprecate $wgPasswordSenderName The sender name for system mailings can now be configured locally by modifying the system message "emailsender". The new default sender name is simply "{{SITENAME}}". Added to release notes. Also modify UserMailer to strip CR/LF linebreaks from header values to prevent mail header injection now that the sender name can be modified. Bug: 32770 Change-Id: Ibfd28cd181365c8c0b5f3e8ffe8f5de8c89844a3
2013-12-31 06:12:09 +00:00
wfMessage( 'emailsender' )->inContentLanguage()->text() );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
Add MailAddress::newFromUser() And tests! Change-Id: I5214c50855f6bc756f6d748e435ae2124b2264c1
2014-09-13 03:25:19 +00:00
$to = MailAddress::newFromUser( $this );
Fixed User class IDE warnings Change-Id: I68c30fd81a266aa1acdf74162bfa864b67922347
2015-07-13 21:18:55 +00:00
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
return UserMailer::send( $to, $sender, $subject, $body, [
Clean up UserMailer::send() parameters $replyto and $contentType should now be passed as an array of $options. This will make it easier to add more options in the future without having a long list of optional parameters. Change-Id: I2c38bb438bd01e0ed2552024a40311f3e8e2dc08
2015-07-12 05:07:18 +00:00
'replyTo' => $replyto,
Convert all array() syntax to [] Per wikitech-l consensus: https://lists.wikimedia.org/pipermail/wikitech-l/2016-February/084821.html Notes: * Disabled CallTimePassByReference due to false positives (T127163) Change-Id: I2c8ce713ce6600a0bb7bf67537c87044c7a45c4b
2016-02-17 09:09:32 +00:00
] );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
* Generate, store, and return a new e-mail confirmation code.
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* A hash (unsalted, since it's used as a key) is stored.
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @note Call saveSettings() after calling this function to commit
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
* this change to the database.
*
Fix some @params documentation in includes/{GlobalFunctions,User.php} Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in capital. Change-Id: If8c0cf4627fc62ff288d33658e327ae80548f5c5
2014-04-23 09:41:35 +00:00
* @param string &$expiration Accepts the expiration time
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string New token
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Changing "private" to "protected" on a few functions in User.php This is required for auth plugins to be able to send customized email confirmation and migration emails. For example, we need to send emails from CentralAuth that will both confirm the email address and then run through Special:MergeAccount attempting to attach as many local accounts as possible. Change-Id: If281aa6219e5a0b80252b0deac7ee0c4f74c3d58
2013-05-16 22:18:57 +00:00
protected function confirmationToken( &$expiration ) {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$userEmailConfirmationTokenExpiry = MediaWikiServices::getInstance()
->getMainConfig()->get( 'UserEmailConfirmationTokenExpiry' );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
$now = time();
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$expires = $now + $userEmailConfirmationTokenExpiry;
Fix broken email confirmation expiration caused by MWCryptRand changes. Change-Id: I7ef0913074f372b5ace3d14993e0e3a914b9f22c
2012-03-26 03:44:57 +00:00
$expiration = wfTimestamp( TS_MW, $expires );
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
$this->load();
* Removed the $method parameters from MWCryptRand. Apparently Dantman didn't know about our awesome debug traceback functions like wfGetAllCallers(). The weird optional-middle-parameter calling convention thankfully disappears as a consequence. * Reduced the amount of debug log noise slightly, removing a few redundant messages.
2012-03-21 10:27:34 +00:00
$token = MWCryptRand::generateHex( 32 );
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
$hash = md5( $token );
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
$this->mEmailToken = $hash;
Fix broken email confirmation expiration caused by MWCryptRand changes. Change-Id: I7ef0913074f372b5ace3d14993e0e3a914b9f22c
2012-03-26 03:44:57 +00:00
$this->mEmailTokenExpires = $expiration;
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
return $token;
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
Fix align of block comments Change-Id: I88ea33a125a71671886b49e4ebf4c1d0a1cce572
2013-03-07 16:27:38 +00:00
* Return a URL the user can use to confirm their email address.
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $token Accepts the email confirmation token
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string New token URL
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Changing "private" to "protected" on a few functions in User.php This is required for auth plugins to be able to send customized email confirmation and migration emails. For example, we need to send emails from CentralAuth that will both confirm the email address and then run through Special:MergeAccount attempting to attach as many local accounts as possible. Change-Id: If281aa6219e5a0b80252b0deac7ee0c4f74c3d58
2013-05-16 22:18:57 +00:00
protected function confirmationTokenUrl( $token ) {
* (bug 6957) E-mail confirmation links now using English special page name for better compatibility and keeping the links shorter. Avoids problem with corrupt links in Gmail on IE 6.
2008-05-28 18:33:09 +00:00
return $this->getTokenUrl( 'ConfirmEmail', $token );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
coding style tweaks
2009-10-04 13:32:48 +00:00
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
/**
* Return a URL the user can use to invalidate their email address.
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $token Accepts the email confirmation token
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string New token URL
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
*/
Changing "private" to "protected" on a few functions in User.php This is required for auth plugins to be able to send customized email confirmation and migration emails. For example, we need to send emails from CentralAuth that will both confirm the email address and then run through Special:MergeAccount attempting to attach as many local accounts as possible. Change-Id: If281aa6219e5a0b80252b0deac7ee0c4f74c3d58
2013-05-16 22:18:57 +00:00
protected function invalidationTokenUrl( $token ) {
Use CamelCase in both ConfirmEmail and InvalidateEmail page names. Change-Id: I2685023eff58479f0eecd3d6ff416cbe22ee425a
2012-05-08 09:25:03 +00:00
return $this->getTokenUrl( 'InvalidateEmail', $token );
* (bug 6957) E-mail confirmation links now using English special page name for better compatibility and keeping the links shorter. Avoids problem with corrupt links in Gmail on IE 6.
2008-05-28 18:33:09 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
* (bug 6957) E-mail confirmation links now using English special page name for better compatibility and keeping the links shorter. Avoids problem with corrupt links in Gmail on IE 6.
2008-05-28 18:33:09 +00:00
/**
* Internal function to format the e-mail validation/invalidation URLs.
Followup r95002: unbreak getTokenUrl() by using a simpler hack that doesn't involve $wgArticlePath
2011-08-31 18:08:13 +00:00
* This uses a quickie hack to use the
* (bug 6957) E-mail confirmation links now using English special page name for better compatibility and keeping the links shorter. Avoids problem with corrupt links in Gmail on IE 6.
2008-05-28 18:33:09 +00:00
* hardcoded English names of the Special: pages, for ASCII safety.
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @note Since these URLs get dropped directly into emails, using the
Remove or replace usages of "sane" Bug: T254646 Change-Id: I096b2cf738a1395a14f1d47bcbed0c2c686c2581
2021-11-22 13:35:17 +00:00
* short English names avoids really long URL-encoded links, which
* (bug 6957) E-mail confirmation links now using English special page name for better compatibility and keeping the links shorter. Avoids problem with corrupt links in Gmail on IE 6.
2008-05-28 18:33:09 +00:00
* also sometimes can get corrupted in some browsers/mailers
includes: Replace implicit Bugzilla bug numbers with Phab ones It's unreasonable to expect newbies to know that "bug 12345" means "Task T14345" except where it doesn't, so let's just standardise on the real numbers. Change-Id: I6f59febaf8fc96e80f8cfc11f4356283f461142a
2017-02-20 22:44:19 +00:00
* (T8957 with Gmail and Internet Explorer).
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $page Special page
Remove @param comments that literally repeat what the code says These comments do not add anything. I argue they are worse than having no comments, because I have to read them first to understand they actually don't explain anything. Removing them makes room for actual improvements in the future (if needed). Change-Id: Iee70aad681b3385e9af282d5581c10addbb91ac4
2017-12-28 15:06:10 +00:00
* @param string $token
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string Formatted URL
* (bug 6957) E-mail confirmation links now using English special page name for better compatibility and keeping the links shorter. Avoids problem with corrupt links in Gmail on IE 6.
2008-05-28 18:33:09 +00:00
*/
protected function getTokenUrl( $page, $token ) {
Followup r95002: unbreak getTokenUrl() by using a simpler hack that doesn't involve $wgArticlePath
2011-08-31 18:08:13 +00:00
// Hack to bypass localization of 'Special:'
$title = Title::makeTitle( NS_MAIN, "Special:$page/$token" );
Fix case of some Title methods Change-Id: I37ce7fe392f4941c500fa0a88007664501d7e338
2013-03-27 13:36:05 +00:00
return $title->getCanonicalURL();
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
* Mark the e-mail address confirmed.
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @note Call saveSettings() after calling this function to commit the change.
Documentation updates Add a couple of missing explicit class variables
2011-07-18 20:11:53 +00:00
*
Fixing some of the "@return true" or "@return false", need to be "@return bool" and then the metadata can say true if foo, false if bar Other documentation improvements
2012-02-09 17:41:50 +00:00
* @return bool
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function confirmEmail() {
If isConfirmedEmail (already confirmed), skip dbtouch/hook call Bug: 46655 Change-Id: I5ea64611f68e01b1e82cd9dbe564123e81b17ed9
2013-03-28 22:29:22 +00:00
// Check if it's already confirmed, so we don't touch the database
// and fire the ConfirmEmailComplete hook on redundant confirmations.
if ( !$this->isEmailConfirmed() ) {
$this->setEmailAuthenticationTimestamp( wfTimestampNow() );
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onConfirmEmailComplete( $this );
If isConfirmedEmail (already confirmed), skip dbtouch/hook call Bug: 46655 Change-Id: I5ea64611f68e01b1e82cd9dbe564123e81b17ed9
2013-03-28 22:29:22 +00:00
}
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
return true;
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Invalidate the user's e-mail confirmation, and unauthenticate the e-mail
* address if it was already confirmed.
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @note Call saveSettings() after calling this function to commit the change.
Documentation followups from lastnight
2012-02-10 15:37:33 +00:00
* @return bool Returns true
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
*/
Add visibility to User functions Change-Id: Ib2bea5ba8132e79345b46ec3e6db7576af07a007
2014-02-21 09:58:36 +00:00
public function invalidateEmail() {
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
$this->load();
$this->mEmailToken = null;
$this->mEmailTokenExpires = null;
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
$this->setEmailAuthenticationTimestamp( null );
Unsetting the email address for a user when the email address is invalidated. Change-Id: I2a8445745f04540e7962695c3116bb247d81fd94
2013-05-01 22:17:02 +00:00
$this->mEmail = '';
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onInvalidateEmailComplete( $this );
* (bug 13450) Email confirmation can now be canceled before the expiration patch by MrZ-man - https://bugzilla.wikimedia.org/attachment.cgi?id=4764 Plus text strings copied back from https://bugzilla.wikimedia.org/attachment.cgi?id=4761
2008-03-25 22:03:00 +00:00
return true;
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Set the e-mail authentication timestamp.
Allow null on User::setEmailAuthenticationTimestamp Called from User::invalidateEmail Change-Id: Ief9a9d19bbeecd29ab13244e18eeabc0aa08a520
2019-12-28 22:16:36 +00:00
* @param string|null $timestamp TS_MW timestamp
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Add visibility to User functions Change-Id: Ib2bea5ba8132e79345b46ec3e6db7576af07a007
2014-02-21 09:58:36 +00:00
public function setEmailAuthenticationTimestamp( $timestamp ) {
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
$this->load();
$this->mEmailAuthenticated = $timestamp;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
$this->getHookRunner()->onUserSetEmailAuthenticationTimestamp(
$this, $this->mEmailAuthenticated );
In User: * Defer load of groups data * Introduce newFromRow()/loadFromRow() to allow bulk loading of user objects from a result set * Hook email and email authentication save/load to allow CentralAuth to provide a global email address * Defer save of user data after confirmEmail() and invalidateEmail(). Caller must now also call saveSettings(). This reduces the master query count in some code paths. Elsewhere: * Introduce UserArray class, for bulk loading of user objects. Immediately useful in email notification, potentially useful for proposed user alias feature. * In Special:Confirmemail, remove useless handling for impossible false return from confirmEmail()/invalidateEmail().
2008-04-15 09:04:45 +00:00
}
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
* Is this user allowed to send e-mails within limits of current
* site configuration?
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function canSendEmail() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$enableEmail = MediaWikiServices::getInstance()->getMainConfig()->get( 'EnableEmail' );
$enableUserEmail = MediaWikiServices::getInstance()->getMainConfig()->get( 'EnableUserEmail' );
if ( !$enableEmail || !$enableUserEmail || !$this->isAllowed( 'sendemail' ) ) {
* (bug 1306) 'Email user' link no longer shown on user page when emailing is not available due to lack of confirmed address or disabled preference
2008-10-17 22:20:07 +00:00
return false;
}
Fix documentation for hook error in UserCanSendEmailHook Use the documentation for EmailUserPermissionsErrorsHook, because both are called with the same argument on SpecialEmailUser Rename variable to match all usages Change-Id: Ie1f4a9ad15da3818632141b84b3dfdf6aa4f076c
2021-03-07 10:56:14 +00:00
$hookErr = $this->isEmailConfirmed();
$this->getHookRunner()->onUserCanSendEmail( $this, $hookErr );
return $hookErr;
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
* Is this user allowed to receive e-mails within limits of current
* site configuration?
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function canReceiveEmail() {
Apply live hack from Wikimedia codebase: add a hook UserCanSendEmail to override User::canSendEmail(); make canReceiveEmail() indenpedent of sending permission check.
2008-01-29 00:29:38 +00:00
return $this->isEmailConfirmed() && !$this->getOption( 'disablemail' );
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
allow 'uselang' and 'useskin' to be specified in the URL parameters, with some obvious effect.
2005-07-24 06:55:45 +00:00
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
/**
* Is this user's e-mail address valid-looking and confirmed within
* limits of the current site configuration?
*
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* @note If $wgEmailAuthentication is on, this may require the user to have
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
* confirmed their address by returning a code or using a password
* sent to the address from the wiki.
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
*/
Convert mail namespace to Authority/UserIdentity Change-Id: I1e1ea72f94735ddaf66eab29aad1296e1abffb9b
2021-03-26 01:50:30 +00:00
public function isEmailConfirmed(): bool {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$emailAuthentication = MediaWikiServices::getInstance()->getMainConfig()->get( 'EmailAuthentication' );
Converted User to use lazy initialisation. This is to avoid unstub loops, and also for performance. Interfaces and semantics have been largely preserved, except for a minor change involving setLoaded().
2006-10-14 06:58:19 +00:00
$this->load();
Remove &$this usage Replaced &$this to avoid PHP 7.1 warning of passing $this by reference Bug: T153505 Change-Id: I3e9bc59dc8cefac0108482afeb9cc9a274e2e54b
2016-12-22 10:31:10 +00:00
// Avoid PHP 7.1 warning of passing $this by reference
$user = $this;
Add 'EmailConfirmed' hook
2006-05-02 20:05:25 +00:00
$confirmed = true;
Hooks::run() call site migration Migrate all callers of Hooks::run() to use the new HookContainer/HookRunner system. General principles: * Use DI if it is already used. We're not changing the way state is managed in this patch. * HookContainer is always injected, not HookRunner. HookContainer is a service, it's a more generic interface, it is the only thing that provides isRegistered() which is needed in some cases, and a HookRunner can be efficiently constructed from it (confirmed by benchmark). Because HookContainer is needed for object construction, it is also needed by all factories. * "Ask your friendly local base class". Big hierarchies like SpecialPage and ApiBase have getHookContainer() and getHookRunner() methods in the base class, and classes that extend that base class are not expected to know or care where the base class gets its HookContainer from. * ProtectedHookAccessorTrait provides protected getHookContainer() and getHookRunner() methods, getting them from the global service container. The point of this is to ease migration to DI by ensuring that call sites ask their local friendly base class rather than getting a HookRunner from the service container directly. * Private $this->hookRunner. In some smaller classes where accessor methods did not seem warranted, there is a private HookRunner property which is accessed directly. Very rarely (two cases), there is a protected property, for consistency with code that conventionally assumes protected=private, but in cases where the class might actually be overridden, a protected accessor is preferred over a protected property. * The last resort: Hooks::runner(). Mostly for static, file-scope and global code. In a few cases it was used for objects with broken construction schemes, out of horror or laziness. Constructors with new required arguments: * AuthManager * BadFileLookup * BlockManager * ClassicInterwikiLookup * ContentHandlerFactory * ContentSecurityPolicy * DefaultOptionsManager * DerivedPageDataUpdater * FullSearchResultWidget * HtmlCacheUpdater * LanguageFactory * LanguageNameUtils * LinkRenderer * LinkRendererFactory * LocalisationCache * MagicWordFactory * MessageCache * NamespaceInfo * PageEditStash * PageHandlerFactory * PageUpdater * ParserFactory * PermissionManager * RevisionStore * RevisionStoreFactory * SearchEngineConfig * SearchEngineFactory * SearchFormWidget * SearchNearMatcher * SessionBackend * SpecialPageFactory * UserNameUtils * UserOptionsManager * WatchedItemQueryService * WatchedItemStore Constructors with new optional arguments: * DefaultPreferencesFactory * Language * LinkHolderArray * MovePage * Parser * ParserCache * PasswordReset * Router setHookContainer() now required after construction: * AuthenticationProvider * ResourceLoaderModule * SearchEngine Change-Id: Id442b0dbe43aba84bd5cf801d86dedc768b082c7
2020-03-19 02:42:09 +00:00
if ( $this->getHookRunner()->onEmailConfirmed( $user, $confirmed ) ) {
Fixed spacing in files direct in includes folder Added spaces before if, foreach Added some braces for one line statements Change-Id: Ibb8dd102db045522d12ff939075ba7420d95ab6b
2013-04-20 22:49:30 +00:00
if ( $this->isAnon() ) {
Add 'EmailConfirmed' hook
2006-05-02 20:05:25 +00:00
return false;
Update calls to deprecated User::isValidEmailAddr Fix trailing whitespace Some minor documentation fixes
2011-06-26 19:16:04 +00:00
}
Use User::getEmail() not mEmail The email address needs to be loaded from the CentralAuth hook, it's not populated by User::load(). Fixed in isEmailConfirmed(), which is the subject of the bug, and also two other places that looked relatively obvious and harmless. I'm not fixing it in saveSettings() and addToDatabase() since the effect is not so obvious. It's a bit of a can of worms. Bug: T239523 Change-Id: I51b127ff92c6c3efe98c70e7590d43c7e7734568
2021-01-12 21:47:48 +00:00
if ( !Sanitizer::validateEmail( $this->getEmail() ) ) {
Add 'EmailConfirmed' hook
2006-05-02 20:05:25 +00:00
return false;
Update calls to deprecated User::isValidEmailAddr Fix trailing whitespace Some minor documentation fixes
2011-06-26 19:16:04 +00:00
}
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
if ( $emailAuthentication && !$this->getEmailAuthenticationTimestamp() ) {
Add 'EmailConfirmed' hook
2006-05-02 20:05:25 +00:00
return false;
Update calls to deprecated User::isValidEmailAddr Fix trailing whitespace Some minor documentation fixes
2011-06-26 19:16:04 +00:00
}
Add 'EmailConfirmed' hook
2006-05-02 20:05:25 +00:00
return true;
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
return $confirmed;
Clean up e-mail authentication code. * Add Special:Confirmemail unlisted page for requesting confirmation emails and as the destination * There is now a confirmation token separate from the login password, which is cleaner and hopefully a lot less confusing. * Confirmation token expires after 7 days * Added support functions for nullable timestamp columns: wfTimestampOrNull and Database::timestampOrNull * userMailer now returns WikiError objects * Added convenience functions to User for email management, consolidated some checks There are changes to the user table, so run update.php
2005-04-25 18:38:43 +00:00
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* Add a notification about the confirmation mail sent during account creation, so people don't immediately go off to request a second one. * Add a warning on Special:Confirmemail if a code was already sent and has not yet expired.
2006-12-14 00:31:16 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Check whether there is an outstanding request for e-mail confirmation.
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return bool
* Add a notification about the confirmation mail sent during account creation, so people don't immediately go off to request a second one. * Add a warning on Special:Confirmemail if a code was already sent and has not yet expired.
2006-12-14 00:31:16 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public function isEmailConfirmationPending() {
Refactor global variables to use MediaWikiServices instead Automatically refactors wg prefixed globals to use MediaWikiServices config using Rector. Doesn't include files that set globals or files that fail CI. Rector Gist: https://gist.github.com/tchin25/7cc54f6d23aedef010b22e4dfbead228 * This patch uses a modified source code rector library for our specific use case and the rector will have different effects without it. A writeup for future reference is here: https://meta.wikimedia.org/wiki/User:TChin_(WMF)/Using_Rector_On_MediaWiki Change-Id: I1a691f01cd82e60bf41207d32501edb4b9835e37
2022-01-06 18:44:56 +00:00
$emailAuthentication = MediaWikiServices::getInstance()->getMainConfig()->get( 'EmailAuthentication' );
return $emailAuthentication &&
* Add a notification about the confirmation mail sent during account creation, so people don't immediately go off to request a second one. * Add a warning on Special:Confirmemail if a code was already sent and has not yet expired.
2006-12-14 00:31:16 +00:00
!$this->isEmailConfirmed() &&
$this->mEmailToken &&
$this->mEmailTokenExpires > wfTimestamp();
}
* remove end of line whitespace * remove empty lines at end of file * remove "?>" where still present
2008-04-14 07:45:50 +00:00
* Introduce 'UserEffectiveGroups' hook; see docs/hooks.txt for more information * Add User::getRegistration() accessor
2007-06-27 14:32:31 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the timestamp of account creation.
* Introduce 'UserEffectiveGroups' hook; see docs/hooks.txt for more information * Add User::getRegistration() accessor
2007-06-27 14:32:31 +00:00
*
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string|bool|null Timestamp of account creation, false for
* non-existent/anonymous user accounts, or null if existing account
* but information is not in database.
* Introduce 'UserEffectiveGroups' hook; see docs/hooks.txt for more information * Add User::getRegistration() accessor
2007-06-27 14:32:31 +00:00
*/
public function getRegistration() {
Recommit r87129 and follow-ups but with a fix for the bug Brion found (sorry)
2011-04-30 14:08:12 +00:00
if ( $this->isAnon() ) {
return false;
}
$this->load();
return $this->mRegistration;
* Introduce 'UserEffectiveGroups' hook; see docs/hooks.txt for more information * Add User::getRegistration() accessor
2007-06-27 14:32:31 +00:00
}
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
/**
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* Get the permissions associated with a given list of groups
*
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
* @deprecated since 1.34, use GroupPermissionsLookup::getGroupPermissions() instead in 1.36+,
* or PermissionManager::getGroupPermisions() in 1.34 and 1.35
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
*
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* @param string[] $groups internal group names
* @return string[] permission key names for given groups combined
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
*/
Reverted r92364 (per-namespace permissions). This is the wrong configuration format for such a feature, and the wrong interface. We already have certain per-namespace permissions in the Title class, and we didn't need to add extra formal parameters to a whole lot of User methods in order to get them. The feature should be implemented wholly in Title, and the concept of user rights should remain relatively simple and easy to understand, and independent of its many applications, i.e. a user either has a right or doesn't. Rights are just a tool for developing access policies; the complexity should be in the caller. The revert was mostly done by hand, since there were a lot of conflicts. I tried to preserve the gist of conflicting changes in r102187 and r102873. The test changes are not simple reverts, rather I just edited out the per-namespace tests. I reverted the followups r92589 and r104310.
2011-12-12 06:03:01 +00:00
public static function getGroupPermissions( $groups ) {
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
return MediaWikiServices::getInstance()->getGroupPermissionsLookup()->getGroupPermissions( $groups );
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
}
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
Reimplement User::, now with less crappy name and only taking one permission at a time. :)
2008-08-04 05:14:33 +00:00
/**
* Get all the groups who have a given permission
* Add autopromote condition APCOND_BLOCKED to autopromote blocked users to various user groups. * Add $wgRemoveGroups as a means of restricting a group's rights. The syntax is identical to $wgGroupPermissions, but users in these groups will have these rights stripped from them. * Modify Special:ListGroupRights so that it displays revoked permissions as well (the display of assigned vs. revoked is changeable via css). * Bump $wgStyleVersion
2009-06-18 02:50:16 +00:00
*
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
* @deprecated since 1.34, use GroupPermissionsLookup::getGroupsWithPermission() instead in 1.36+,
* or PermissionManager::getGroupsWithPermission() in 1.34 and 1.35
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
*
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $role Role to check
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* @return string[] internal group names with the given permission
Reimplement User::, now with less crappy name and only taking one permission at a time. :)
2008-08-04 05:14:33 +00:00
*/
Reverted r92364 (per-namespace permissions). This is the wrong configuration format for such a feature, and the wrong interface. We already have certain per-namespace permissions in the Title class, and we didn't need to add extra formal parameters to a whole lot of User methods in order to get them. The feature should be implemented wholly in Title, and the concept of user rights should remain relatively simple and easy to understand, and independent of its many applications, i.e. a user either has a right or doesn't. Rights are just a tool for developing access policies; the complexity should be in the caller. The revert was mostly done by hand, since there were a lot of conflicts. I tried to preserve the gist of conflicting changes in r102187 and r102873. The test changes are not simple reverts, rather I just edited out the per-namespace tests. I reverted the followups r92589 and r104310.
2011-12-12 06:03:01 +00:00
public static function getGroupsWithPermission( $role ) {
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
return MediaWikiServices::getInstance()->getGroupPermissionsLookup()->getGroupsWithPermission( $role );
Reimplement User::, now with less crappy name and only taking one permission at a time. :)
2008-08-04 05:14:33 +00:00
}
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
Avoid direct access to $wgGroupPermissions Created a new method User::groupHasPermission and check also $wgRevokePermissions for the given right Change-Id: I41edb091fa35c8c68b6f95cc5fd208ea99418cdb
2012-10-04 16:17:46 +00:00
/**
* Check, if the given group has the given permission
*
Add User::isEveryoneAllowed function User::groupHasPermission is used for various purposes, from checking whether it makes sense to show a "hide logged-in users" on Special:NewPages to showing different error messages in some places when 'user' or 'autoconfirmed' is allowed the action to avoiding unstubbing $wgUser to check $wgUser->isAllowed( 'read' ) in the common case where 'read' permission is granted to everyone. For the OAuth work, we need to be able to catch that last type of use without interfering with the others. This change introduces User::isEveryoneAllowed() to be used for that type of check, which both makes sure the right granted to '*' isn't revoked from any group and calls a hook to allow extensions to indicate that they might remove the right. Change-Id: Idfee1b4d0613aaf52e143164acd6022459415c49
2013-07-12 15:06:41 +00:00
* If you're wanting to check whether all users have a permission, use
Hard deprecate User::isEveryoneAllowed The method was soft-deprecated in 1.34. It's not used in any WMF installed extensions or the tarball, so it can be hard deprecated. Bug: T220191 Change-Id: I2f48d62a8dd3592918a6197168d31a1e08bd2a3e
2019-10-30 02:10:20 +00:00
* PermissionManager::isEveryoneAllowed() instead. That properly checks if it's revoked
Add User::isEveryoneAllowed function User::groupHasPermission is used for various purposes, from checking whether it makes sense to show a "hide logged-in users" on Special:NewPages to showing different error messages in some places when 'user' or 'autoconfirmed' is allowed the action to avoiding unstubbing $wgUser to check $wgUser->isAllowed( 'read' ) in the common case where 'read' permission is granted to everyone. For the OAuth work, we need to be able to catch that last type of use without interfering with the others. This change introduces User::isEveryoneAllowed() to be used for that type of check, which both makes sure the right granted to '*' isn't revoked from any group and calls a hook to allow extensions to indicate that they might remove the right. Change-Id: Idfee1b4d0613aaf52e143164acd6022459415c49
2013-07-12 15:06:41 +00:00
* from anyone.
*
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
* @deprecated since 1.34, use GroupPermissionsLookup::groupHasPermission() instead in 1.36+,
* or PermissionManager::groupHasPermission() in 1.34 and 1.35
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
*
Add @since line for User::groupHasPermission() Change-Id: Ibcd20a3921058a010334e0e0983e2d9541aea734 Follows-up: I41edb091fa35c8c68b6f95cc5fd208ea99418cdb
2013-04-11 02:18:43 +00:00
* @since 1.21
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $group Group to check
* @param string $role Role to check
Avoid direct access to $wgGroupPermissions Created a new method User::groupHasPermission and check also $wgRevokePermissions for the given right Change-Id: I41edb091fa35c8c68b6f95cc5fd208ea99418cdb
2012-10-04 16:17:46 +00:00
* @return bool
*/
public static function groupHasPermission( $group, $role ) {
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
return MediaWikiServices::getInstance()->getGroupPermissionsLookup()
Re-apply: Factors out permissions check from User into PermissionManager service Was reverted by I549810a4cd2e424cc4a438887d2f24614a24cc00 due to T224607. Original change by Vedmaka Wakalaka was Ia0d840b772ea5f20c9594ce151cc57adc270e48b. Original commit message: The following methods should are factored out of the User class into PermissionManager, leaving only deprecated stubs: - User::isAllowed -> PermissionManager::userHasRight - User::getRights -> PermissionManager::getUserPermissions - User::groupHasPermission -> PermissionManager::groupHasPermission - User::getGroupPermissions -> PermissionManager::getGroupPermissions -User::getGroupsWithPermission -> PermissionManager::getGroupsWithPermission - User::groupHasPermission -> PermissionManager::groupHasPermission - User::isEveryoneAllowed -> PermissionManager::isEveryoneAllowed - User::getAllRights -> PermissionManager::getAllPermissions Depends-On: I7909e9bd6bbfbd708c0a00b861a9b22a38c6665d Bug: T218558 Bug: T223294 Change-Id: I8899240378f636ea70f447616710516c0a3c5c31
2019-04-09 06:58:04 +00:00
->groupHasPermission( $group, $role );
Avoid direct access to $wgGroupPermissions Created a new method User::groupHasPermission and check also $wgRevokePermissions for the given right Change-Id: I41edb091fa35c8c68b6f95cc5fd208ea99418cdb
2012-10-04 16:17:46 +00:00
}
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
/**
* Return the set of defined explicit groups.
Remove emailconfirmed group from comment.
2008-05-05 18:04:48 +00:00
* The implicit groups (by default *, 'user' and 'autoconfirmed')
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
* are not included, as they are defined automatically, not in the database.
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
* @deprecated since 1.35, use UserGroupManager::listAllGroups instead
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* @return string[] internal group names
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public static function getAllGroups() {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
return MediaWikiServices::getInstance()
->getUserGroupManager()
->listAllGroups();
* (bug 10859) Introduce 'UserGetImplicitGroups' hook; see docs/hooks.txt for more information * Move the list of implicit groups in User::getAllGroups() to a new User::getImplicitGroups() method so there's no confusion over where to add these
2007-08-09 16:36:15 +00:00
}
/**
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
* @deprecated since 1.35, use UserGroupManager::listAllImplicitGroups() instead
Update a lot of unspecific "array" types in PHPDocs This includes fixing some mistakes, as well as removing redundant text that doesn't add new information, either because it literally repeats what the code already says, or is actually duplicated. Change-Id: I3a8dd8ce57192deda8916cc444c87d7ab1a36515
2020-10-28 10:01:33 +00:00
* @return string[] internal group names
* (bug 10859) Introduce 'UserGetImplicitGroups' hook; see docs/hooks.txt for more information * Move the list of implicit groups in User::getAllGroups() to a new User::getImplicitGroups() method so there's no confusion over where to add these
2007-08-09 16:36:15 +00:00
*/
public static function getImplicitGroups() {
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
return MediaWikiServices::getInstance()
->getUserGroupManager()
->listAllImplicitGroups();
Rework the user_groups system, again, into something that seems to actually more or less work for now. * user_groups ur_group is now a short string key ('sysop' etc) * groups table is gone * user_rights table is gone * Permissions for groups are for now set in $wgGroupPermissions. An in-database management system could be re-added in the future if it's really needed, but for now it's mostly just been screwing things up. * Group.php and Special:Groups are deprecated; will probably die. * User group memberships are set explicitly through addGroup and removeGroup methods instead of being re-saved on every change to the user record. Group keys are migrated from user_rights at upgrade time for older wikis. The fields in prior 1.5alpha tables were too screwed up and will need to manually have sysops re-assigned. The Makesysop extension will need some minor tweaks.
2005-06-09 09:49:10 +00:00
}
Adding static functions to User to create links to groups in either HTML or Wikitext; using the HTML function in Special:Listusers; using the Wikitext function in Special:Statistics instead of a raw link to the sysops page (kept for backwards compatibility); several code fixes.
2006-08-12 09:24:18 +00:00
Avoid deadlocks in User::incEditCount * This makes concurrent editing less problematic Change-Id: I930222d5e831bb3729194abbdcb3cab194c70494
2015-04-13 23:02:16 +00:00
/**
Move user_editcount updates to a mergeable deferred update This should reduce excess contention and lock timeouts. Previously, it used a pre-commit hook which ran just before the end of the DB transaction round. Also removed unused User::incEditCountImmediate() method. Bug: T202715 Depends-on: I6d239a5ea286afb10d9e317b2ee1436de60f7e4f Depends-on: I0ad3d17107efc7b0e59f1dd54d5733cd1572a2b7 Change-Id: I0d6d7ddd91bbb21995142808248d162e05696d47
2018-10-22 22:58:02 +00:00
* Schedule a deferred update to update the user's edit count
Accept UserIdentity in code to manage edit counts - UserEditCountUpdate: accept UserIdentity instead of User - Move User::incEditCount() to UserEditTracker Change-Id: Ibf1482bcbcbf4d56fc06531bb3e17e2a6e3e2e6f
2021-04-24 04:54:48 +00:00
* @deprecated since 1.37
Avoid deadlocks in User::incEditCount * This makes concurrent editing less problematic Change-Id: I930222d5e831bb3729194abbdcb3cab194c70494
2015-04-13 23:02:16 +00:00
*/
public function incEditCount() {
Accept UserIdentity in code to manage edit counts - UserEditCountUpdate: accept UserIdentity instead of User - Move User::incEditCount() to UserEditTracker Change-Id: Ibf1482bcbcbf4d56fc06531bb3e17e2a6e3e2e6f
2021-04-24 04:54:48 +00:00
MediaWikiServices::getInstance()->getUserEditTracker()->incrementUserEditCount( $this );
Avoid deadlocks in User::incEditCount * This makes concurrent editing less problematic Change-Id: I930222d5e831bb3729194abbdcb3cab194c70494
2015-04-13 23:02:16 +00:00
}
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
/**
* Get the description of a given right
*
Use isDisabled() instead of isBlank() in getGrantName in User.php Bug: T151956 Change-Id: Ic23c75b784c725f8f73eb1cf98d2bdb3763ab09d
2016-11-29 22:36:21 +00:00
* @since 1.29
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param string $right Right to query
User: Clean up coding style and documentation * Parameter type hint should be a variable type or a class name. Types Null, Bool, Boolean, Int, Integer, String do not exist and are invalid values. Changed to their PHP type names (basically just lowercase). * Made inline comments consistently use "//" instead of "#". * Removed various odd spurious spaces sequences in @param lines. They are sometimes used to pretty-align multi-line descriptions. Though I think that is silly, I've left those alone. I've only removed the spaces where it seems arbitrary and not aligning with anything. Last I checked the common convention for multi-line descriptions is to simply continue on the next line with one extra space as indention. * Swapped "$var Type" in cases where the surrounding @param's already use "Type $var". Change-Id: I6b315e308271194815879c509d3ac6aeb409851b
2013-06-03 22:02:10 +00:00
* @return string Localized description of the right
Documented User.php in depth; added useful aliases to Doxyfile
2008-08-05 13:42:02 +00:00
*/
Set explicit public modifier Swap @private to private
2011-07-18 19:56:16 +00:00
public static function getRightDescription( $right ) {
Also, include includes when committing changes (haw haw)
2008-04-24 08:58:39 +00:00
$key = "right-$right";
Simplify message existence checks by using wfMessage() instead of wfEmptyMsg()
2011-05-24 17:28:21 +00:00
$msg = wfMessage( $key );
Use isDisabled() instead of isBlank() in getGrantName in User.php Bug: T151956 Change-Id: Ic23c75b784c725f8f73eb1cf98d2bdb3763ab09d
2016-11-29 22:36:21 +00:00
return $msg->isDisabled() ? $right : $msg->text();
Also, include includes when committing changes (haw haw)
2008-04-24 08:58:39 +00:00
}
* Changed password hash format, see wikitech-l * Made the PasswordReset and Maintenance extensions, and maintenance/changePassword.php work with CentralAuth, by calling User::setPassword() instead of updating the database directly. They work now even if you use an object cache. * Don't automatically log in as the user in question when CentralAuthUser::setPassword() is called, it's kind of uncool when an administrator is setting the password of another user. * Fix bug 14330 by setting the local passwords on demerge
2008-06-05 12:58:02 +00:00
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
/**
* Return the tables, fields, and join conditions to be selected to create
* a new user object.
* @since 1.31
* @return array With three keys:
* - tables: (string[]) to include in the `$table` to `IDatabase->select()`
* - fields: (string[]) to include in the `$vars` to `IDatabase->select()`
* - joins: (array) to include in the `$join_conds` to `IDatabase->select()`
*/
public static function getQueryInfo() {
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
$ret = [
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
'tables' => [ 'user', 'user_actor' => 'actor' ],
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
'fields' => [
'user_id',
'user_name',
'user_real_name',
'user_email',
'user_touched',
'user_token',
'user_email_authenticated',
'user_email_token',
'user_email_token_expires',
'user_registration',
'user_editcount',
Mostly drop old pre-actor user schemas This removes most of the pre-actor user and user_text columns, and the $wgActorTableSchemaMigrationStage setting that used to determine whether the columns were used. rev_user and rev_user_text remain in the code, as on Wikimedia wikis the revision table is too large to alter at this time. A future change will combine that with the removal of rev_comment, rev_content_model, and rev_content_format (and the addition of rev_comment_id and rev_actor). ActorMigration's constructor continues to take a $stage parameter, and continues to have the logic for handling it, for the benefit of extensions that might need their own migration process. Code using ActorMigration for accessing the core fields should be updated to use the new actor fields directly. That will be done for in a followup. Bug: T188327 Change-Id: Id35544b879af1cd708f3efd303fce8d9a1b9eb02
2019-07-23 17:40:52 +00:00
'user_actor.actor_id',
],
'joins' => [
'user_actor' => [ 'JOIN', 'user_actor.actor_user = user_id' ],
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
],
];
ActorMigration: Remove possibility of read-both When this was originally written, the plan was to read both the old and new fields during the transition period, while stopping writes to them midway through. It turns out that the WHERE conditions to do read-both correctly are generally not handled well by the database and working around that would require a lot of complicated code (see what's being removed from ApiQueryUserContribs here, for example). We can simplify things greatly by instead having it write both fields during the transition period, reading from the old for the first part and the new for the second part, as is being done for MCR. Bug: T204669 Change-Id: I4764c1c7883dc1003cb12729455c8107319f70b1 Depends-On: I845f6ae462f2539ebd35cbb5f2ca8b5714e2c1fb Depends-On: I88b31b977543fdbdf69f8c1158e77e448df94e11
2018-09-18 18:21:20 +00:00
Add `actor` table and code to start using it Storing the user name or IP in every row in large tables like revision and logging takes up space and makes operations on these tables slower. This patch begins the process of moving those into one "actor" table which other tables can reference with a single integer field. A subsequent patch will remove the old columns. Bug: T167246 Depends-On: I9293fd6e0f958d87e52965de925046f1bb8f8a50 Change-Id: I8d825eb02c69cc66d90bd41325133fd3f99f0226
2017-09-12 17:12:29 +00:00
return $ret;
Replace selectFields() methods with getQueryInfo() Several classes have a "selectFields()" static method to tell callers which fields to select from the database. With the recent comment table change and the upcoming actor table change, this pattern has become too simplistic as a SELECT will need to join several tables to be able to retrieve all the needed fields. Thus, we deprecate the selectFields() methods in favor of getQueryInfo() methods that return tables and join conditions in addition to the fields. Change-Id: Idcfd15568489d9f03a7ba4460e96610d33bc4089
2017-10-06 17:03:55 +00:00
}
Add user rights 'viewmywatchlist', 'editmywatchlist' These are needed for OAuth grants. Note that, even if 'editmywatchlist' is not granted, various actions will still allow for adding but not removing of pages. Change-Id: Ie33446a228dd6ed0114730935c1bf65667f5ce01
2013-06-13 18:02:55 +00:00
/**
* Factory function for fatal permission-denied errors
*
* @since 1.22
* @param string $permission User right required
* @return Status
*/
Fix more Squiz.Scope.MethodScope.Missing Change-Id: I44cd7ba39a898a27f0f66cf34238ab95370d2279
2020-05-17 23:02:18 +00:00
public static function newFatalPermissionDeniedStatus( $permission ) {
Add user rights 'viewmywatchlist', 'editmywatchlist' These are needed for OAuth grants. Note that, even if 'editmywatchlist' is not granted, various actions will still allow for adding but not removing of pages. Change-Id: Ie33446a228dd6ed0114730935c1bf65667f5ce01
2013-06-13 18:02:55 +00:00
global $wgLang;
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
$groups = [];
Remove deprecated User groups/permission static calls. Bug: T220191 Change-Id: Ifa8afa90c432723b0bba0033a46b6a499c77e6fc
2019-08-22 02:22:26 +00:00
foreach ( MediaWikiServices::getInstance()
Replace deprecated uses of PermissionManager with GroupPermissionsLookup In a few places where a PermissionManager is used but only GroupPermissionsLookup is needed Also update references to the class in PermissionManager that referred to it as GroupPermissionLookup Change-Id: I5d7a13900852a38768a106aeee1ce012c3a04ea2
2021-05-26 05:12:16 +00:00
->getGroupPermissionsLookup()
Create UserGroupManager Introduce a UserGroupManagerFactory and UserGroupManager. The factory utilizes the same pattern as RevisionStore for access to user groups of a foreign wiki. Some user group related methods were ported from User and UserGroupMembership and deprecated, more methods to be moved over in future patches, not to make this one to large. Eventually as all the group-related methods are moved and their usages are replaced, the need for the UserRightsProxy will disappear, thus it also will be deprecated and removed. Currently for backwards compatibility, I've had to create artificial UserIdentityValue objects in some of the deprecated methods to avoid making transitional temporary methods in the UserGroupManager that would take user ID instead of the UserIdentity. All of this will go away once migration to UserGroupManager is completed. Bug: T234921 Change-Id: If29c6a03dfdbb80b2e846243f7e384b334da9f07
2019-10-24 03:14:31 +00:00
->getGroupsWithPermission( $permission ) as $group ) {
User group memberships that expire This patch adds an ug_expiry column to the user_groups table, a timestamp giving a date when the user group expires. A new UserGroupMembership class, based on the Block class, manages entries in this table. When the expiry date passes, the row in user_groups is ignored, and will eventually be purged from the DB when UserGroupMembership::insert is next called. Old, expired user group memberships are not kept; instead, the log entries are available to find the history of these memberships, similar to the way it has always worked for blocks and protections. Anyone getting user group info through the User object will get correct information. However, code that reads the user_groups table directly will now need to skip over rows with ug_expiry < wfTimestampNow(). See UsersPager for an example of how to do this. NULL is used to represent infinite (no) expiry, rather than a string 'infinity' or similar (except in the API). This allows existing user group assignments and log entries, which are all infinite in duration, to be treated the same as new, infinite-length memberships, without special casing everything. The whole thing is behind the temporary feature flag $wgDisableUserGroupExpiry, in accordance with the WMF schema change policy. The opportunity has been taken to refactor some static user-group-related functions out of User into UserGroupMembership, and also to add a primary key (ug_user, ug_group) to the user_groups table. There are a few breaking changes: - UserRightsProxy-like objects are now required to have a getGroupMemberships() function. - $user->mGroups (on a User object) is no longer present. - Some protected functions in UsersPager are altered or removed. - The UsersPagerDoBatchLookups hook (unused in any Wikimedia Git-hosted extension) has a change of parameter. Bug: T12493 Depends-On: Ia9616e1e35184fed9058d2d39afbe1038f56d7fa Depends-On: I86eb1d5619347ce54a5f33a591417742ebe5d6f8 Change-Id: I93c955dc7a970f78e32aa503c01c67da30971d1a
2017-01-12 06:07:56 +00:00
$groups[] = UserGroupMembership::getLink( $group, RequestContext::getMain(), 'wiki' );
}
Add user rights 'viewmywatchlist', 'editmywatchlist' These are needed for OAuth grants. Note that, even if 'editmywatchlist' is not granted, various actions will still allow for adding but not removing of pages. Change-Id: Ie33446a228dd6ed0114730935c1bf65667f5ce01
2013-06-13 18:02:55 +00:00
if ( $groups ) {
return Status::newFatal( 'badaccess-groups', $wgLang->commaList( $groups ), count( $groups ) );
}
Collapse some else statements and nested if statements Change-Id: Idd4d751e149e2ee11b8749ba847323f189b6ae51
2019-02-07 03:28:29 +00:00
return Status::newFatal( 'badaccess-group0' );
Add user rights 'viewmywatchlist', 'editmywatchlist' These are needed for OAuth grants. Note that, even if 'editmywatchlist' is not granted, various actions will still allow for adding but not removing of pages. Change-Id: Ie33446a228dd6ed0114730935c1bf65667f5ce01
2013-06-13 18:02:55 +00:00
}
Add User::equals Seems stupid omission. Title has one. Why do I need to think how to determine how to users objects point to the same user. Allows more expressive code. Also fixes a bug in multiple places where users "0" and "00" were considered equal. Change-Id: I682392e564b332b77ab489f2ad394fa2d28098a5
2014-12-11 08:59:28 +00:00
Avoid "CAS updated failed" errors on Special:Preferences double post * This does the same thing ApiOptions does to avoid these errors. A new getInstanceForUpdate() method is now in the User class to simplify this pattern. * Avoid overriding $user in ApiOptions for code readability. * Fixed IDEA errors around Preferences::getFormObject() return type. Bug: T95839 Change-Id: If2385b7486c043bd70d7031ff35e37dfb079a4d2
2015-12-13 04:35:22 +00:00
/**
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
* Get a new instance of this user that was loaded from the primary DB via a locking read
Avoid "CAS updated failed" errors on Special:Preferences double post * This does the same thing ApiOptions does to avoid these errors. A new getInstanceForUpdate() method is now in the User class to simplify this pattern. * Avoid overriding $user in ApiOptions for code readability. * Fixed IDEA errors around Preferences::getFormObject() return type. Bug: T95839 Change-Id: If2385b7486c043bd70d7031ff35e37dfb079a4d2
2015-12-13 04:35:22 +00:00
*
* Use this instead of the main context User when updating that user. This avoids races
docs: Change wording master to primary in comments and log text Bug: T254646 Change-Id: I5379dc79be60c99f0a30f74e5d624f81fe6f921b
2021-09-01 21:04:40 +00:00
* where that user was loaded from a replica DB or even the primary DB but without proper locks.
Avoid "CAS updated failed" errors on Special:Preferences double post * This does the same thing ApiOptions does to avoid these errors. A new getInstanceForUpdate() method is now in the User class to simplify this pattern. * Avoid overriding $user in ApiOptions for code readability. * Fixed IDEA errors around Preferences::getFormObject() return type. Bug: T95839 Change-Id: If2385b7486c043bd70d7031ff35e37dfb079a4d2
2015-12-13 04:35:22 +00:00
*
* @return User|null Returns null if the user was not found in the DB
* @since 1.27
*/
public function getInstanceForUpdate() {
if ( !$this->getId() ) {
return null; // anon
}
$user = self::newFromId( $this->getId() );
Authority: expose user block info Expose info about user blocks from Authority. This allows calling code to provide more detailed information to the user about why they are denied some action on the wiki. Bug: T271494 Change-Id: Ia84e469888866d72752aad355292666c31e12bad
2021-03-10 19:40:33 +00:00
if ( !$user->loadFromId( IDBAccessObject::READ_EXCLUSIVE ) ) {
Avoid "CAS updated failed" errors on Special:Preferences double post * This does the same thing ApiOptions does to avoid these errors. A new getInstanceForUpdate() method is now in the User class to simplify this pattern. * Avoid overriding $user in ApiOptions for code readability. * Fixed IDEA errors around Preferences::getFormObject() return type. Bug: T95839 Change-Id: If2385b7486c043bd70d7031ff35e37dfb079a4d2
2015-12-13 04:35:22 +00:00
return null;
}
return $user;
}
Add User::equals Seems stupid omission. Title has one. Why do I need to think how to determine how to users objects point to the same user. Allows more expressive code. Also fixes a bug in multiple places where users "0" and "00" were considered equal. Change-Id: I682392e564b332b77ab489f2ad394fa2d28098a5
2014-12-11 08:59:28 +00:00
/**
* Checks if two user objects point to the same user.
*
Add equals() to UserIdentity Change-Id: Ia2f33d551e96bd6f58ba9414049449282575a63b
2018-05-08 14:31:03 +00:00
* @since 1.25 ; takes a UserIdentity instead of a User since 1.32
Deprecate File::getUser in favor of File::getUploader Change-Id: I8a45a8fdfa827f203e6bc123cb685d02c3612bb0
2021-05-27 16:56:43 +00:00
* @param UserIdentity|null $user
Add User::equals Seems stupid omission. Title has one. Why do I need to think how to determine how to users objects point to the same user. Allows more expressive code. Also fixes a bug in multiple places where users "0" and "00" were considered equal. Change-Id: I682392e564b332b77ab489f2ad394fa2d28098a5
2014-12-11 08:59:28 +00:00
* @return bool
*/
build: Updating dependencies composer: * mediawiki/mediawiki-codesniffer: 36.0.0 → 37.0.0 The following sniffs now pass and were enabled: * Generic.ControlStructures.InlineControlStructure * MediaWiki.PHPUnit.AssertCount.NotUsed npm: * svgo: 2.3.0 → 2.3.1 * https://npmjs.com/advisories/1754 (CVE-2021-33587) Change-Id: I2a9bbee2fecbf7259876d335f565ece4b3622426
2021-07-22 03:11:47 +00:00
public function equals( ?UserIdentity $user ): bool {
Deprecate File::getUser in favor of File::getUploader Change-Id: I8a45a8fdfa827f203e6bc123cb685d02c3612bb0
2021-05-27 16:56:43 +00:00
if ( !$user ) {
return false;
}
Add equals() to UserIdentity Change-Id: Ia2f33d551e96bd6f58ba9414049449282575a63b
2018-05-08 14:31:03 +00:00
// XXX it's not clear whether central ID providers are supposed to obey this
Add User::equals Seems stupid omission. Title has one. Why do I need to think how to determine how to users objects point to the same user. Allows more expressive code. Also fixes a bug in multiple places where users "0" and "00" were considered equal. Change-Id: I682392e564b332b77ab489f2ad394fa2d28098a5
2014-12-11 08:59:28 +00:00
return $this->getName() === $user->getName();
}
Introduce PermissionManager service First iteration of adding a PermissionManager service as a replacement for Title::userCan and User::isBlockedFrom methods. - Created PermissionManager service - Migrated Title::userCan to PermissionManager::userCan and deprecated the first - Migrated Title::quickUserCan to PermissionManager::quickUserCan and deprecated the first - Migrated User::isBlockedFrom to PermissionManager::isBlockedFrom and deprecated the first Same for User::isBlockedFrom and PermissionManager::isBlockedFrom - the $user parameter is now required so the declaration is changed from isBlockedFrom( $title, ... ) to isBlockedFrom( $user, $title, .. ) which means before User::isBlockedFrom removal all calls to it need to be updated. Added PermissionManagerTest, it copies TitlePermissionTest but uses PermissionManager instance instead of Title methods, this way keeping both tests in place, we can ensure that nothing was broken and both are in working state during the deprecation phase. Bug: T208768 Change-Id: I94479b44afb3068695f8e327b46bda38e44e691f
2019-03-07 20:02:07 +00:00
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
/**
Remove unstable marker from Authority interface NOTE: this should be backported to 1.36 before the RC0 release! Bug: T275768 Change-Id: I86c1f6e497dcda820944be5adfd80aed7b9c63bb
2021-04-13 18:38:36 +00:00
* @note This is only here for compatibility with the Authority interface.
* @since 1.36
* @return UserIdentity $this
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
*/
Rename Authority::getPerformer() to ::getUser() We started to call Authority argument $performer everywhere, and $performer->getPerformer() doesn't look that good. Change-Id: Id2cf3f27b18340314e4ed1ea9931ad9404b4df6f
2021-03-04 19:45:28 +00:00
public function getUser(): UserIdentity {
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
return $this;
}
/**
Remove unstable marker from Authority interface NOTE: this should be backported to 1.36 before the RC0 release! Bug: T275768 Change-Id: I86c1f6e497dcda820944be5adfd80aed7b9c63bb
2021-04-13 18:38:36 +00:00
* @since 1.36
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
* @param string $action
* @param PageIdentity $target
* @param PermissionStatus|null $status
* @return bool
*/
public function probablyCan( string $action, PageIdentity $target, PermissionStatus $status = null ): bool {
return $this->getThisAsAuthority()->probablyCan( $action, $target, $status );
}
/**
Remove unstable marker from Authority interface NOTE: this should be backported to 1.36 before the RC0 release! Bug: T275768 Change-Id: I86c1f6e497dcda820944be5adfd80aed7b9c63bb
2021-04-13 18:38:36 +00:00
* @since 1.36
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
* @param string $action
* @param PageIdentity $target
* @param PermissionStatus|null $status
* @return bool
*/
public function definitelyCan( string $action, PageIdentity $target, PermissionStatus $status = null ): bool {
return $this->getThisAsAuthority()->definitelyCan( $action, $target, $status );
}
/**
Remove unstable marker from Authority interface NOTE: this should be backported to 1.36 before the RC0 release! Bug: T275768 Change-Id: I86c1f6e497dcda820944be5adfd80aed7b9c63bb
2021-04-13 18:38:36 +00:00
* @since 1.36
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
* @param string $action
* @param PageIdentity $target
* @param PermissionStatus|null $status
* @return bool
*/
public function authorizeRead( string $action, PageIdentity $target, PermissionStatus $status = null
): bool {
return $this->getThisAsAuthority()->authorizeRead( $action, $target, $status );
}
/**
Remove unstable marker from Authority interface NOTE: this should be backported to 1.36 before the RC0 release! Bug: T275768 Change-Id: I86c1f6e497dcda820944be5adfd80aed7b9c63bb
2021-04-13 18:38:36 +00:00
* @since 1.36
Make User implement Authority Ideally, only User associated with the global request should be associated with UserAuthority. For a random user instance, not the current performer, checking permissions should be based solely on user groups and perhaps an existing block. Right now however, PermissionManager is coupled with global request, so we still instantiate a UserAuthority for non-current users. This mimics the behaviour we've had before. As we refactor PermissionManager, we will be able to replace Authority implementation in this case, or even entirely prohibit non-performer authority. Bug: T271459 Depends-On: Iebf2dca34eea751391d9740443c195287399aa5c Change-Id: Ib094e498fd883db23f2763f171281b1c9e99217e
2021-01-07 20:57:19 +00:00
* @param string $action
* @param PageIdentity $target
* @param PermissionStatus|null $status
* @return bool
*/
public function authorizeWrite( string $action, PageIdentity $target, PermissionStatus $status = null ): bool {
return $this->getThisAsAuthority()->authorizeWrite( $action, $target, $status );
}
/**
* Returns the Authority of this User if it's the main request context user.
* This is intended to exist only for the period of transition to Authority.
* @return Authority
*/
private function getThisAsAuthority(): Authority {
if ( !$this->mThisAsAuthority ) {
// TODO: For users that are not User::isGlobalSessionUser,
// creating a UserAuthority here is incorrect, since it depends
// on global WebRequest, but that is what we've used to do before Authority.
// When PermissionManager is refactored into Authority, we need
// to provide base implementation, based on just user groups/rights,
// and use it here.
$this->mThisAsAuthority = new UserAuthority(
$this,
MediaWikiServices::getInstance()->getPermissionManager()
);
}
return $this->mThisAsAuthority;
}
/**
* Check whether this is the global session user.
* @return bool
*/
private function isGlobalSessionUser(): bool {
// The session user is set up towards the end of Setup.php. Until then,
// assume it's a logged-out user.
$sessionUser = RequestContext::getMain()->getUser();
$globalUserName = $sessionUser->isSafeToLoad()
? $sessionUser->getName()
: IPUtils::sanitizeIP( $sessionUser->getRequest()->getIP() );
return $this->getName() === $globalUserName;
}
Add newlines back to eof.
2009-04-20 14:35:35 +00:00
}
Reference in a new issue Copy permalink