5bd33d46ef
This has been approved as part of RFC T166010 Bug: T321882 Change-Id: I6bbdbbe6ea48cc1f50bc568bb8780fc7c5361a6f
27 lines
786 B
PHP
27 lines
786 B
PHP
<?php
|
|
|
|
namespace MediaWiki\Api\Hook;
|
|
|
|
use MediaWiki\Request\WebRequest;
|
|
|
|
/**
|
|
* This is a hook handler interface, see docs/Hooks.md.
|
|
* Use the hook name "RequestHasSameOriginSecurity" to register handlers implementing this interface.
|
|
*
|
|
* @stable to implement
|
|
* @ingroup Hooks
|
|
*/
|
|
interface RequestHasSameOriginSecurityHook {
|
|
/**
|
|
* Use this hook to determine if the request is somehow flagged to lack same-origin security.
|
|
* Note that if the "somehow" involves HTTP headers, you'll probably need to make sure
|
|
* the header is varied on.
|
|
*
|
|
* @since 1.35
|
|
*
|
|
* @param WebRequest $request
|
|
* @return bool|void True or no return value to continue, or false to indicate a lack of
|
|
* same-origin security
|
|
*/
|
|
public function onRequestHasSameOriginSecurity( $request );
|
|
}
|