Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
wiki.techinc.nl/includes/api/ApiChangeAuthenticationData.php
Brad Jorsch 4e6810e4a2 API: i18n for warnings and errors 
API warnings and error messages are currently hard-coded English
strings. This patch changes that.

With a few exceptions, this patch should be compatible with non-updated
extensions:
* The change to ApiBase::$messageMap will blow up anything trying to
  mess with it.
* The changes to the 'ApiCheckCanExecute' hook will cause a wrong
  (probably unparsed) error message to be emitted for extensions not
  already using an ApiMessage. Unless they're currently broken like
  Wikibase.

Bug: T37074
Bug: T47843
Depends-On: Ia2b66b57cd4eaddc30b3ffdd7b97d6ca3e02d898
Depends-On: I2e1bb975bb0045476c03ebe6cdec00259bae22ec
Depends-On: I53987bf87c48f6c00deec17a8e957d24fcc3eaa6
Depends-On: Ibf93a459eb62d30f7c70d20e91ec9faeb80d10ed
Depends-On: I3cf889811f44a15935e454dd42f081164d4a098c
Depends-On: Ieae527de86735ddcba34724730e8730fb277b99b
Depends-On: I535344c29d51521147c2a26c341dae38cec3e931
Change-Id: Iae0e2ce3bd42dd4776a9779664086119ac188412
2016-12-06 10:20:48 -05:00

98 lines
3 KiB
PHP
Raw Blame History

<?php
/**
* Copyright © 2016 Brad Jorsch <bjorsch@wikimedia.org>
*
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License along
* with this program; if not, write to the Free Software Foundation, Inc.,
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
* http://www.gnu.org/copyleft/gpl.html
*
* @file
*/
use MediaWiki\Auth\AuthManager;
/**
* Change authentication data with AuthManager
*
* @ingroup API
*/
class ApiChangeAuthenticationData extends ApiBase {
public function __construct( ApiMain $main, $action ) {
parent::__construct( $main, $action, 'changeauth' );
}
public function execute() {
if ( !$this->getUser()->isLoggedIn() ) {
$this->dieWithError( 'apierror-mustbeloggedin-changeauthenticationdata', 'notloggedin' );
}
$helper = new ApiAuthManagerHelper( $this );
$manager = AuthManager::singleton();
// Check security-sensitive operation status
$helper->securitySensitiveOperation( 'ChangeCredentials' );
// Fetch the request
$reqs = ApiAuthManagerHelper::blacklistAuthenticationRequests(
$helper->loadAuthenticationRequests( AuthManager::ACTION_CHANGE ),
$this->getConfig()->get( 'ChangeCredentialsBlacklist' )
);
if ( count( $reqs ) !== 1 ) {
$this->dieWithError( 'apierror-changeauth-norequest', 'badrequest' );
}
$req = reset( $reqs );
// Make the change
$status = $manager->allowsAuthenticationDataChange( $req, true );
Hooks::run( 'ChangeAuthenticationDataAudit', [ $req, $status ] );
if ( !$status->isGood() ) {
$this->dieStatus( $status );
}
$manager->changeAuthenticationData( $req );
$this->getResult()->addValue( null, 'changeauthenticationdata', [ 'status' => 'success' ] );
}
public function isWriteMode() {
return true;
}
public function needsToken() {
return 'csrf';
}
public function getAllowedParams() {
return ApiAuthManagerHelper::getStandardParams( AuthManager::ACTION_CHANGE,
'request'
);
}
public function dynamicParameterDocumentation() {
return [ 'api-help-authmanagerhelper-additional-params', AuthManager::ACTION_CHANGE ];
}
protected function getExamplesMessages() {
return [
'action=changeauthenticationdata' .
'&changeauthrequest=MediaWiki%5CAuth%5CPasswordAuthenticationRequest' .
'&password=ExamplePassword&retype=ExamplePassword&changeauthtoken=123ABC'
=> 'apihelp-changeauthenticationdata-example-password',
];
}
public function getHelpUrls() {
return 'https://www.mediawiki.org/wiki/API:Manage_authentication_data';
}
}
Reference in a new issue View git blame Copy permalink