Code Coverage
 
Lines
Functions and Methods
Classes and Traits
Total
0.00% covered (danger)
0.00%
0 / 14
0.00% covered (danger)
0.00%
0 / 3
 CRAP
0.00% covered (danger)
0.00%
0 / 1
AbuseFilterHookHandler
0.00% covered (danger)
0.00%
0 / 14
0.00% covered (danger)
0.00%
0 / 3
 42
0.00% covered (danger)
0.00%
0 / 1
 onAbuseFilter_builder
0.00% covered (danger)
0.00%
0 / 1
0.00% covered (danger)
0.00%
0 / 1
 2
 onAbuseFilter_computeVariable
0.00% covered (danger)
0.00%
0 / 8
0.00% covered (danger)
0.00%
0 / 1
 20
 onAbuseFilter_generateUserVars
0.00% covered (danger)
0.00%
0 / 5
0.00% covered (danger)
0.00%
0 / 1
 2
1<?php
2/**
3 * This program is free software; you can redistribute it and/or modify
4 * it under the terms of the GNU General Public License as published by
5 * the Free Software Foundation; either version 2 of the License, or
6 * (at your option) any later version.
7 *
8 * This program is distributed in the hope that it will be useful,
9 * but WITHOUT ANY WARRANTY; without even the implied warranty of
10 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
11 * GNU General Public License for more details.
12 *
13 * You should have received a copy of the GNU General Public License along
14 * with this program; if not, write to the Free Software Foundation, Inc.,
15 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
16 * http://www.gnu.org/copyleft/gpl.html
17 *
18 * @file
19 */
20
21namespace MediaWiki\Extension\OAuth\Backend;
22
23use MediaWiki\Extension\AbuseFilter\Hooks\AbuseFilterBuilderHook;
24use MediaWiki\Extension\AbuseFilter\Hooks\AbuseFilterComputeVariableHook;
25use MediaWiki\Extension\AbuseFilter\Hooks\AbuseFilterGenerateUserVarsHook;
26use MediaWiki\Extension\AbuseFilter\Variables\VariableHolder;
27use MediaWiki\Extension\OAuth\SessionProvider;
28use MediaWiki\User\User;
29use RecentChange;
30
31/**
32 * @author Taavi "Majavah" Väänänen <hi@taavi.wtf>
33 */
34class AbuseFilterHookHandler implements
35    AbuseFilterBuilderHook,
36    AbuseFilterComputeVariableHook,
37    AbuseFilterGenerateUserVarsHook
38{
39    public function onAbuseFilter_builder( array &$realValues ) {
40        // Uses: 'abusefilter-edit-builder-vars-oauth-consumer'
41        $realValues['vars']['oauth_consumer'] = 'oauth-consumer';
42    }
43
44    public function onAbuseFilter_computeVariable(
45        string $method,
46        VariableHolder $vars,
47        array $parameters,
48        ?string &$result
49    ) {
50        if ( $method !== 'oauth-consumer' ) {
51            return true;
52        }
53
54        /** @var User $user */
55        $user = $parameters['user'];
56
57        $session = $user->getRequest()->getSession();
58
59        if (
60            // SessionProvider here refers to the OAuth session provider class
61            $session->getProvider() instanceof SessionProvider
62            // consumerId is only set if the consumer is not owner-only (which is what we want)
63            && isset( $session->getProviderMetadata()['consumerId'] )
64        ) {
65            $result = $session->getProviderMetadata()['consumerId'];
66        }
67
68        return false;
69    }
70
71    public function onAbuseFilter_generateUserVars( VariableHolder $vars, User $user, ?RecentChange $rc ) {
72        $vars->setLazyLoadVar(
73            'oauth_consumer',
74            'oauth-consumer',
75            [ 'user' => $user ]
76        );
77    }
78}