f739a8f368
Add missing @return and @param to function docs and fixed some @param Change-Id: I810727961057cfdcc274428b239af5975c57468d
79 lines
2.2 KiB
PHP
79 lines
2.2 KiB
PHP
<?php
|
|
|
|
use MediaWiki\Auth\AuthenticationResponse;
|
|
use MediaWiki\Auth\AuthManager;
|
|
use MediaWiki\Session\SessionManager;
|
|
|
|
class SpecialUnlinkAccounts extends AuthManagerSpecialPage {
|
|
protected static $allowedActions = [ AuthManager::ACTION_UNLINK ];
|
|
|
|
public function __construct() {
|
|
parent::__construct( 'UnlinkAccounts' );
|
|
}
|
|
|
|
protected function getLoginSecurityLevel() {
|
|
return 'UnlinkAccount';
|
|
}
|
|
|
|
protected function getDefaultAction( $subPage ) {
|
|
return AuthManager::ACTION_UNLINK;
|
|
}
|
|
|
|
/**
|
|
* Under which header this special page is listed in Special:SpecialPages.
|
|
* @return string
|
|
*/
|
|
protected function getGroupName() {
|
|
return 'users';
|
|
}
|
|
|
|
public function isListed() {
|
|
return AuthManager::singleton()->canLinkAccounts();
|
|
}
|
|
|
|
protected function getRequestBlacklist() {
|
|
return $this->getConfig()->get( 'RemoveCredentialsBlacklist' );
|
|
}
|
|
|
|
public function execute( $subPage ) {
|
|
$this->setHeaders();
|
|
$this->loadAuth( $subPage );
|
|
$this->outputHeader();
|
|
|
|
$status = $this->trySubmit();
|
|
|
|
if ( $status === false || !$status->isOK() ) {
|
|
$this->displayForm( $status );
|
|
return;
|
|
}
|
|
|
|
/** @var AuthenticationResponse $response */
|
|
$response = $status->getValue();
|
|
|
|
if ( $response->status === AuthenticationResponse::FAIL ) {
|
|
$this->displayForm( StatusValue::newFatal( $response->message ) );
|
|
return;
|
|
}
|
|
|
|
$status = StatusValue::newGood();
|
|
$status->warning( wfMessage( 'unlinkaccounts-success' ) );
|
|
$this->loadAuth( $subPage, null, true ); // update requests so the unlinked one doesn't show up
|
|
|
|
// Reset sessions - if the user unlinked an account because it was compromised,
|
|
// log attackers out from sessions obtained via that account.
|
|
$session = $this->getRequest()->getSession();
|
|
$user = $this->getUser();
|
|
SessionManager::singleton()->invalidateSessionsForUser( $user );
|
|
$session->setUser( $user );
|
|
$session->resetId();
|
|
|
|
$this->displayForm( $status );
|
|
}
|
|
|
|
public function handleFormSubmit( $data ) {
|
|
// unlink requests do not accept user input so repeat parent code but skip call to
|
|
// AuthenticationRequest::loadRequestsFromSubmission
|
|
$response = $this->performAuthenticationStep( $this->authAction, $this->authRequests );
|
|
return Status::newGood( $response );
|
|
}
|
|
}
|