Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
wiki.techinc.nl/includes/auth/AuthenticationProvider.php
Tim Starling d05729f101 Don't set AuthenticationRequest::$username on login 
When the user is already logged in, and attempts but fails to log in
again, the username in the PasswordAuthenticationRequest is the login
target, but the username in the RememberMeAuthenticationRequest is the
currently logged in user. The conflict causes $guessUserName to be set
to null. When the AuthManagerLoginAuthenticateAudit hook is called in
the fail case, the User is not sent, only $guessUserName, so LoginNotify
has no way to notify the target user of the failed attempt.

So, don't populate AuthenticationRequest::$username with the currently
logged-in username on login, by analogy with create account. Then
LoginNotify works as expected.

Are there unanticipated consequences? I think it should be generally
safe to treat the user as not logged in when they attempt to log in as
another user. ThrottlePreAuthenticationProvider is apparently trying to
use the target username for throttling, not the currently logged-in
user, which seems like a good policy.

I couldn't find a rationale in Gerrit for populating the username on
login. In PS72 of If89d24838e326fe25fe867d02, Gergő asked for
documentation, but not a rationale. It was convenient to treat login the
same as link/unlink/change. The lack of a test case suggests it was not
intentional.

Bug: T329774
Change-Id: Id11f3da62a7f4fb3571a605c62a3924d6a8ee50c
2023-09-05 10:59:04 +10:00

83 lines
3.1 KiB
PHP
Raw Blame History

<?php
/**
* Authentication provider interface
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License along
* with this program; if not, write to the Free Software Foundation, Inc.,
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
* http://www.gnu.org/copyleft/gpl.html
*
* @file
* @ingroup Auth
*/
namespace MediaWiki\Auth;
/**
* An AuthenticationProvider is used by AuthManager when authenticating users.
*
* This interface should not be implemented directly; use one of its children.
*
* Authentication providers can be registered via $wgAuthManagerAutoConfig.
*
* @ingroup Auth
* @since 1.27
*/
interface AuthenticationProvider {
/**
* Return a unique identifier for this instance
*
* This must be the same across requests. If multiple instances return the
* same ID, exceptions will be thrown from AuthManager.
*
* @return string
*/
public function getUniqueId();
/**
* Return the applicable list of AuthenticationRequests
*
* Possible values for $action depend on whether the implementing class is
* also a PreAuthenticationProvider, PrimaryAuthenticationProvider, or
* SecondaryAuthenticationProvider.
* - ACTION_LOGIN: Valid for passing to beginAuthentication. Called on all
* providers.
* - ACTION_CREATE: Valid for passing to beginAccountCreation. Called on
* all providers.
* - ACTION_LINK: Valid for passing to beginAccountLink. Called on linking
* primary providers only.
* - ACTION_CHANGE: Valid for passing to AuthManager::changeAuthenticationData
* to change credentials. Called on primary and secondary providers.
* - ACTION_REMOVE: Valid for passing to AuthManager::changeAuthenticationData
* to remove credentials. Must work without additional user input (i.e.
* without calling loadFromSubmission). Called on primary and secondary
* providers.
*
* @see AuthManager::getAuthenticationRequests()
* @param string $action
* @param array $options Options are:
* - username: Username related to the action, or null/unset if anon.
* - ACTION_LOGIN: The currently logged-in user, if any.
* - ACTION_CREATE: The account creator, if non-anonymous.
* - ACTION_LINK: The local user being linked to.
* - ACTION_CHANGE: The user having data changed.
* - ACTION_REMOVE: The user having data removed.
* If you leave the username property of the returned requests empty, this
* will automatically be copied there (except for ACTION_CREATE and
* ACTION_LOGIN).
* @return AuthenticationRequest[]
*/
public function getAuthenticationRequests( $action, array $options );
}
Reference in a new issue View git blame Copy permalink