194 lines
5.1 KiB
PHP
194 lines
5.1 KiB
PHP
<?php
|
|
/**
|
|
* MediaWiki session user info
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
* http://www.gnu.org/copyleft/gpl.html
|
|
*
|
|
* @file
|
|
* @ingroup Session
|
|
*/
|
|
|
|
namespace MediaWiki\Session;
|
|
|
|
use MediaWiki\MediaWikiServices;
|
|
use MediaWiki\User\UserFactory;
|
|
use User;
|
|
|
|
/**
|
|
* Object holding data about a session's user
|
|
*
|
|
* In general, this class exists for two purposes:
|
|
* - User doesn't distinguish between "anonymous user" and "non-anonymous user
|
|
* that doesn't exist locally", while we do need to.
|
|
* - We also need the "verified" property described below; tracking it via
|
|
* another data item to SessionInfo's constructor makes things much more
|
|
* confusing.
|
|
*
|
|
* A UserInfo may be "verified". This indicates that the creator knows that the
|
|
* request really comes from that user, whether that's by validating OAuth
|
|
* credentials, SSL client certificates, or by having both the user ID and
|
|
* token available from cookies.
|
|
*
|
|
* An "unverified" UserInfo should be used when it's not possible to
|
|
* authenticate the user, e.g. the user ID cookie is set but the user Token
|
|
* cookie isn't. If the Token is available but doesn't match, don't return a
|
|
* UserInfo at all.
|
|
*
|
|
* @ingroup Session
|
|
* @since 1.27
|
|
*/
|
|
final class UserInfo {
|
|
/** @var bool */
|
|
private $verified = false;
|
|
|
|
/** @var User|null */
|
|
private $user = null;
|
|
|
|
private function __construct( ?User $user, $verified ) {
|
|
$userNameUtils = MediaWikiServices::getInstance()->getUserNameUtils();
|
|
if ( $user && $user->isAnon() && !$userNameUtils->isUsable( $user->getName() ) ) {
|
|
$this->verified = true;
|
|
$this->user = null;
|
|
} else {
|
|
$this->verified = $verified;
|
|
$this->user = $user;
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Create an instance for an anonymous (i.e. not logged in) user
|
|
*
|
|
* Logged-out users are always "verified".
|
|
*
|
|
* @return UserInfo
|
|
*/
|
|
public static function newAnonymous() {
|
|
return new self( null, true );
|
|
}
|
|
|
|
/**
|
|
* Create an instance for a logged-in user by ID
|
|
* @param int $id User ID
|
|
* @param bool $verified True if the user is verified
|
|
* @return UserInfo
|
|
*/
|
|
public static function newFromId( $id, $verified = false ) {
|
|
$user = MediaWikiServices::getInstance()->getUserFactory()->newFromId( (int)$id );
|
|
|
|
// Ensure the ID actually exists
|
|
$user->load();
|
|
if ( $user->isAnon() ) {
|
|
throw new \InvalidArgumentException( 'Invalid ID' );
|
|
}
|
|
|
|
return new self( $user, $verified );
|
|
}
|
|
|
|
/**
|
|
* Create an instance for a logged-in user by name
|
|
* @param string $name User name (need not exist locally)
|
|
* @param bool $verified True if the user is verified
|
|
* @return UserInfo
|
|
*/
|
|
public static function newFromName( $name, $verified = false ) {
|
|
$user = MediaWikiServices::getInstance()->getUserFactory()->newFromName(
|
|
(string)$name,
|
|
UserFactory::RIGOR_USABLE
|
|
);
|
|
if ( !$user ) {
|
|
throw new \InvalidArgumentException( 'Invalid user name' );
|
|
}
|
|
return new self( $user, $verified );
|
|
}
|
|
|
|
/**
|
|
* Create an instance from an existing User object
|
|
* @param User $user (need not exist locally)
|
|
* @param bool $verified True if the user is verified
|
|
* @return UserInfo
|
|
*/
|
|
public static function newFromUser( User $user, $verified = false ) {
|
|
return new self( $user, $verified );
|
|
}
|
|
|
|
/**
|
|
* Return whether this is an anonymous user
|
|
* @return bool
|
|
*/
|
|
public function isAnon() {
|
|
return $this->user === null;
|
|
}
|
|
|
|
/**
|
|
* Return whether this represents a verified user
|
|
* @return bool
|
|
*/
|
|
public function isVerified() {
|
|
return $this->verified;
|
|
}
|
|
|
|
/**
|
|
* Return the user ID
|
|
* @note Do not use this to test for anonymous users!
|
|
* @return int
|
|
*/
|
|
public function getId() {
|
|
return $this->user === null ? 0 : $this->user->getId();
|
|
}
|
|
|
|
/**
|
|
* Return the user name
|
|
* @return string|null
|
|
*/
|
|
public function getName() {
|
|
return $this->user === null ? null : $this->user->getName();
|
|
}
|
|
|
|
/**
|
|
* Return the user token
|
|
* @return string
|
|
*/
|
|
public function getToken() {
|
|
return $this->user === null || $this->user->getId() === 0 ? '' : $this->user->getToken( false );
|
|
}
|
|
|
|
/**
|
|
* Return a User object
|
|
* @return User
|
|
*/
|
|
public function getUser() {
|
|
return $this->user ?? new User;
|
|
}
|
|
|
|
/**
|
|
* Return a verified version of this object
|
|
* @return UserInfo
|
|
*/
|
|
public function verified() {
|
|
return $this->verified ? $this : new self( $this->user, true );
|
|
}
|
|
|
|
public function __toString() {
|
|
if ( $this->user === null ) {
|
|
return '<anon>';
|
|
}
|
|
return '<' .
|
|
( $this->verified ? '+' : '-' ) . ':' .
|
|
$this->getId() . ':' . $this->getName() .
|
|
'>';
|
|
}
|
|
|
|
}
|