Authentication plugin interface. More...
Public Member Functions | |
| addUser ( $user, $password, $email='', $realname='') | |
| Add a user to the external authentication database. More... | |
| allowPasswordChange () | |
| Can users change their passwords? More... | |
| allowPropChange ( $prop='') | |
| Allow a property change? Properties are the same as preferences and use the same keys. More... | |
| allowSetLocalPassword () | |
| Should MediaWiki store passwords in its local database? More... | |
| authenticate ( $username, $password) | |
| Check if a username+password pair is a valid login. More... | |
| autoCreate () | |
| Return true if the wiki should create a new local account automatically when asked to login a user who doesn't exist locally but does in the external auth database. More... | |
| canCreateAccounts () | |
| Check to see if external accounts can be created. More... | |
| domainList () | |
| Get a list of domains (in HTMLForm options format) used. More... | |
| getCanonicalName ( $username) | |
| If you want to munge the case of an account name before the final check, now is your chance. More... | |
| getDomain () | |
| Get the user's domain. More... | |
| getUserInstance (User &$user) | |
| Get an instance of a User object. More... | |
| initUser (&$user, $autocreate=false) | |
| When creating a user account, optionally fill in preferences and such. More... | |
| modifyUITemplate (&$template, &$type) | |
| Modify options in the login template. More... | |
| setDomain ( $domain) | |
| Set the domain this plugin is supposed to use when authenticating. More... | |
| setPassword ( $user, $password) | |
| Set the given password in the authentication database. More... | |
| strict () | |
| Return true to prevent logins that don't authenticate here from being checked against the local database's password fields. More... | |
| strictUserAuth ( $username) | |
| Check if a user should authenticate locally if the global authentication fails. More... | |
| updateExternalDB ( $user) | |
| Update user information in the external authentication database. More... | |
| updateExternalDBGroups ( $user, $addgroups, $delgroups=array()) | |
| Update user groups in the external authentication database. More... | |
| updateUser (&$user) | |
| When a user logs in, optionally fill in preferences and such. More... | |
| userExists ( $username) | |
| Check whether there exists a user account with the given name. More... | |
| validDomain ( $domain) | |
| Check to see if the specific domain is a valid domain. More... | |
Protected Attributes | |
| string | $domain |
Detailed Description
Authentication plugin interface.
Instantiate a subclass of AuthPlugin and set $wgAuth to it to authenticate against some external tool.
The default behavior is not to do anything, and use the local user database for all authentication. A subclass can require that all accounts authenticate externally, or use it only as a fallback; also you can transparently create internal wiki accounts the first time someone logs in who can be authenticated externally.
Definition at line 36 of file AuthPlugin.php.
Member Function Documentation
◆ addUser()
| AuthPlugin::addUser | ( | $user, | |
| $password, | |||
$email = '', |
|||
$realname = '' |
|||
| ) |
Add a user to the external authentication database.
Return true if successful.
- Parameters
-
User $user Only the name should be assumed valid at this point string $password string $email string $realname
- Returns
- bool
Definition at line 245 of file AuthPlugin.php.
◆ allowPasswordChange()
| AuthPlugin::allowPasswordChange | ( | ) |
◆ allowPropChange()
| AuthPlugin::allowPropChange | ( | $prop = '' | ) |
Allow a property change? Properties are the same as preferences and use the same keys.
'Realname' 'Emailaddress' and 'Nickname' all reference this.
- Parameters
-
string $prop
- Returns
- bool
Definition at line 156 of file AuthPlugin.php.
References array().
◆ allowSetLocalPassword()
| AuthPlugin::allowSetLocalPassword | ( | ) |
Should MediaWiki store passwords in its local database?
- Returns
- bool
Definition at line 182 of file AuthPlugin.php.
◆ authenticate()
| AuthPlugin::authenticate | ( | $username, | |
| $password | |||
| ) |
Check if a username+password pair is a valid login.
The name will be normalized to MediaWiki's requirements, so you might need to munge it (for instance, for lowercase initial letters).
- Parameters
-
string $username Username. string $password User password.
- Returns
- bool
Definition at line 65 of file AuthPlugin.php.
◆ autoCreate()
| AuthPlugin::autoCreate | ( | ) |
Return true if the wiki should create a new local account automatically when asked to login a user who doesn't exist locally but does in the external auth database.
If you don't automatically create accounts, you must still create accounts in some way. It's not possible to authenticate without a local account.
This is just a question, and shouldn't perform any actions.
- Returns
- bool
Definition at line 143 of file AuthPlugin.php.
◆ canCreateAccounts()
| AuthPlugin::canCreateAccounts | ( | ) |
Check to see if external accounts can be created.
Return true if external accounts can be created.
- Returns
- bool
Definition at line 231 of file AuthPlugin.php.
◆ domainList()
| AuthPlugin::domainList | ( | ) |
Get a list of domains (in HTMLForm options format) used.
- Returns
- array
Definition at line 313 of file AuthPlugin.php.
References array().
◆ getCanonicalName()
| AuthPlugin::getCanonicalName | ( | $username | ) |
If you want to munge the case of an account name before the final check, now is your chance.
- Parameters
-
string $username
- Returns
- string
Definition at line 293 of file AuthPlugin.php.
◆ getDomain()
| AuthPlugin::getDomain | ( | ) |
Get the user's domain.
- Returns
- string
Definition at line 95 of file AuthPlugin.php.
References $domain.
◆ getUserInstance()
| AuthPlugin::getUserInstance | ( | User & | $user | ) |
Get an instance of a User object.
- Parameters
-
User $user
- Returns
- AuthPluginUser
Definition at line 304 of file AuthPlugin.php.
References $user.
◆ initUser()
| AuthPlugin::initUser | ( | & | $user, |
$autocreate = false |
|||
| ) |
When creating a user account, optionally fill in preferences and such.
For instance, you might pull the email address or real name from the external user database.
The User object is passed by reference so it can be modified; don't forget the & on your function declaration.
- Parameters
-
User $user bool $autocreate True if user is being autocreated on login
Definition at line 283 of file AuthPlugin.php.
◆ modifyUITemplate()
| AuthPlugin::modifyUITemplate | ( | & | $template, |
| & | $type | ||
| ) |
Modify options in the login template.
- Parameters
-
UserLoginTemplate $template string $type 'signup' or 'login'. Added in 1.16.
Definition at line 76 of file AuthPlugin.php.
◆ setDomain()
| AuthPlugin::setDomain | ( | $domain | ) |
Set the domain this plugin is supposed to use when authenticating.
- Parameters
-
string $domain Authentication domain.
Definition at line 86 of file AuthPlugin.php.
References $domain.
◆ setPassword()
| AuthPlugin::setPassword | ( | $user, | |
| $password | |||
| ) |
Set the given password in the authentication database.
As a special case, the password may be set to null to request locking the password to an unusable value, with the expectation that it will be set later through a mail reset or other method.
Return true if successful.
- Parameters
-
User $user string $password Password.
- Returns
- bool
Definition at line 198 of file AuthPlugin.php.
◆ strict()
| AuthPlugin::strict | ( | ) |
Return true to prevent logins that don't authenticate here from being checked against the local database's password fields.
This is just a question, and shouldn't perform any actions.
- Returns
- bool
Definition at line 257 of file AuthPlugin.php.
◆ strictUserAuth()
| AuthPlugin::strictUserAuth | ( | $username | ) |
Check if a user should authenticate locally if the global authentication fails.
If either this or strict() returns true, local authentication is not used.
- Parameters
-
string $username Username.
- Returns
- bool
Definition at line 268 of file AuthPlugin.php.
◆ updateExternalDB()
| AuthPlugin::updateExternalDB | ( | $user | ) |
Update user information in the external authentication database.
Return true if successful.
- Parameters
-
$user User object.
- Returns
- Boolean
Definition at line 209 of file AuthPlugin.php.
◆ updateExternalDBGroups()
| AuthPlugin::updateExternalDBGroups | ( | $user, | |
| $addgroups, | |||
$delgroups = array() |
|||
| ) |
Update user groups in the external authentication database.
Return true if successful.
- Parameters
-
User $user array $addgroups Groups to add. array $delgroups Groups to remove.
- Returns
- bool
Definition at line 222 of file AuthPlugin.php.
◆ updateUser()
| AuthPlugin::updateUser | ( | & | $user | ) |
When a user logs in, optionally fill in preferences and such.
For instance, you might pull the email address or real name from the external user database.
The User object is passed by reference so it can be modified; don't forget the & on your function declaration.
- Parameters
-
User $user
- Returns
- bool
Definition at line 125 of file AuthPlugin.php.
◆ userExists()
| AuthPlugin::userExists | ( | $username | ) |
Check whether there exists a user account with the given name.
The name will be normalized to MediaWiki's requirements, so you might need to munge it (for instance, for lowercase initial letters).
- Parameters
-
string $username Username.
- Returns
- bool
Definition at line 50 of file AuthPlugin.php.
◆ validDomain()
| AuthPlugin::validDomain | ( | $domain | ) |
Check to see if the specific domain is a valid domain.
- Parameters
-
string $domain Authentication domain.
- Returns
- bool
Definition at line 109 of file AuthPlugin.php.
Member Data Documentation
◆ $domain
|
protected |
Definition at line 39 of file AuthPlugin.php.
Referenced by getDomain(), and setDomain().
The documentation for this class was generated from the following file:
- includes/AuthPlugin.php
