Home Explore Help
Sign In
NeoZones
/
pennyspages
mirror of https://github.com/NeoZones/pennyspages
Watch 2
Star 0
Fork 0
Files Issues 0 Wiki
Branch: main
Branches Tags
pennyspages
/
includes
/
api
/
ApiQueryAuthManagerInfo.php

ApiQueryAuthManagerInfo.php 4.1 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Copyright © 2016 Wikimedia Foundation and contributors
    4. 

  4.  *
    5. 

  5.  * This program is free software; you can redistribute it and/or modify
    6. 

  6.  * it under the terms of the GNU General Public License as published by
    7. 

  7.  * the Free Software Foundation; either version 2 of the License, or
    8. 

  8.  * (at your option) any later version.
    9. 

  9.  *
    10. 

  10.  * This program is distributed in the hope that it will be useful,
    11. 

  11.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    13. 

  13.  * GNU General Public License for more details.
    14. 

  14.  *
    15. 

  15.  * You should have received a copy of the GNU General Public License along
    16. 

  16.  * with this program; if not, write to the Free Software Foundation, Inc.,
    17. 

  17.  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
    18. 

  18.  * http://www.gnu.org/copyleft/gpl.html
    19. 

  19.  *
    20. 

  20.  * @file
    21. 

  21.  * @since 1.27
    22. 

  22.  */
    23. 

  23. 

  24. use MediaWiki\Auth\AuthManager;
    25. 

  25. 

  26. /**
    27. 

  27.  * A query action to return meta information about AuthManager state.
    28. 

  28.  *
    29. 

  29.  * @ingroup API
    30. 

  30.  */
    31. 

  31. class ApiQueryAuthManagerInfo extends ApiQueryBase {
    32. 

  32. 

  33. 	public function __construct( ApiQuery $query, $moduleName ) {
    34. 

  34. 		parent::__construct( $query, $moduleName, 'ami' );
    35. 

  35. 	}
    36. 

  36. 

  37. 	public function execute() {
    38. 

  38. 		$params = $this->extractRequestParams();
    39. 

  39. 		$helper = new ApiAuthManagerHelper( $this );
    40. 

  40. 

  41. 		$manager = AuthManager::singleton();
    42. 

  42. 		$ret = [
    43. 

  43. 			'canauthenticatenow' => $manager->canAuthenticateNow(),
    44. 

  44. 			'cancreateaccounts' => $manager->canCreateAccounts(),
    45. 

  45. 			'canlinkaccounts' => $manager->canLinkAccounts(),
    46. 

  46. 		];
    47. 

  47. 

  48. 		if ( $params['securitysensitiveoperation'] !== null ) {
    49. 

  49. 			$ret['securitysensitiveoperationstatus'] = $manager->securitySensitiveOperationStatus(
    50. 

  50. 				$params['securitysensitiveoperation']
    51. 

  51. 			);
    52. 

  52. 		}
    53. 

  53. 

  54. 		if ( $params['requestsfor'] ) {
    55. 

  55. 			$action = $params['requestsfor'];
    56. 

  56. 

  57. 			$preservedReq = $helper->getPreservedRequest();
    58. 

  58. 			if ( $preservedReq ) {
    59. 

  59. 				$ret += [
    60. 

  60. 					'haspreservedstate' => $preservedReq->hasStateForAction( $action ),
    61. 

  61. 					'hasprimarypreservedstate' => $preservedReq->hasPrimaryStateForAction( $action ),
    62. 

  62. 					'preservedusername' => (string)$preservedReq->username,
    63. 

  63. 				];
    64. 

  64. 			} else {
    65. 

  65. 				$ret += [
    66. 

  66. 					'haspreservedstate' => false,
    67. 

  67. 					'hasprimarypreservedstate' => false,
    68. 

  68. 					'preservedusername' => '',
    69. 

  69. 				];
    70. 

  70. 			}
    71. 

  71. 

  72. 			$reqs = $manager->getAuthenticationRequests( $action, $this->getUser() );
    73. 

  73. 

  74. 			// Filter out blacklisted requests, depending on the action
    75. 

  75. 			switch ( $action ) {
    76. 

  76. 				case AuthManager::ACTION_CHANGE:
    77. 

  77. 					$reqs = ApiAuthManagerHelper::blacklistAuthenticationRequests(
    78. 

  78. 						$reqs, $this->getConfig()->get( 'ChangeCredentialsBlacklist' )
    79. 

  79. 					);
    80. 

  80. 					break;
    81. 

  81. 				case AuthManager::ACTION_REMOVE:
    82. 

  82. 					$reqs = ApiAuthManagerHelper::blacklistAuthenticationRequests(
    83. 

  83. 						$reqs, $this->getConfig()->get( 'RemoveCredentialsBlacklist' )
    84. 

  84. 					);
    85. 

  85. 					break;
    86. 

  86. 			}
    87. 

  87. 

  88. 			$ret += $helper->formatRequests( $reqs );
    89. 

  89. 		}
    90. 

  90. 

  91. 		$this->getResult()->addValue( [ 'query' ], $this->getModuleName(), $ret );
    92. 

  92. 	}
    93. 

  93. 

  94. 	public function isReadMode() {
    95. 

  95. 		return false;
    96. 

  96. 	}
    97. 

  97. 

  98. 	public function getAllowedParams() {
    99. 

  99. 		return [
    100. 

  100. 			'securitysensitiveoperation' => null,
    101. 

  101. 			'requestsfor' => [
    102. 

  102. 				ApiBase::PARAM_TYPE => [
    103. 

  103. 					AuthManager::ACTION_LOGIN,
    104. 

  104. 					AuthManager::ACTION_LOGIN_CONTINUE,
    105. 

  105. 					AuthManager::ACTION_CREATE,
    106. 

  106. 					AuthManager::ACTION_CREATE_CONTINUE,
    107. 

  107. 					AuthManager::ACTION_LINK,
    108. 

  108. 					AuthManager::ACTION_LINK_CONTINUE,
    109. 

  109. 					AuthManager::ACTION_CHANGE,
    110. 

  110. 					AuthManager::ACTION_REMOVE,
    111. 

  111. 					AuthManager::ACTION_UNLINK,
    112. 

  112. 				],
    113. 

  113. 			],
    114. 

  114. 		] + ApiAuthManagerHelper::getStandardParams( '', 'mergerequestfields', 'messageformat' );
    115. 

  115. 	}
    116. 

  116. 

  117. 	protected function getExamplesMessages() {
    118. 

  118. 		return [
    119. 

  119. 			'action=query&meta=authmanagerinfo&amirequestsfor=' . urlencode( AuthManager::ACTION_LOGIN )
    120. 

  120. 				=> 'apihelp-query+authmanagerinfo-example-login',
    121. 

  121. 			'action=query&meta=authmanagerinfo&amirequestsfor=' . urlencode( AuthManager::ACTION_LOGIN ) .
    122. 

  122. 				'&amimergerequestfields=1'
    123. 

  123. 				=> 'apihelp-query+authmanagerinfo-example-login-merged',
    124. 

  124. 			'action=query&meta=authmanagerinfo&amisecuritysensitiveoperation=foo'
    125. 

  125. 				=> 'apihelp-query+authmanagerinfo-example-securitysensitiveoperation',
    126. 

  126. 		];
    127. 

  127. 	}
    128. 

  128. 

  129. 	public function getHelpUrls() {
    130. 

  130. 		return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Authmanagerinfo';
    131. 

  131. 	}
    132. 

  132. }
    133. 

  133.