Utility class for bot passwords. More...
Public Member Functions | |
| delete () | |
| Delete the BotPassword from the database. More... | |
| getAppId () | |
| Get the app ID. More... | |
| getGrants () | |
| Get the grants. More... | |
| getRestrictions () | |
| Get the restrictions. More... | |
| getToken () | |
| Get the token. More... | |
| getUserCentralId () | |
| Get the central user ID. More... | |
| isInvalid () | |
| Whether the password is currently invalid. More... | |
| isSaved () | |
| Indicate whether this is known to be saved. More... | |
| save ( $operation, Password $password=null) | |
| Save the BotPassword to the database. More... | |
Static Public Member Functions | |
| static | canonicalizeLoginData ( $username, $password) |
| There are two ways to login with a bot password: "username@appId", "password" and "username", "appId@password". More... | |
| static | generatePassword ( $config) |
| Returns a (raw, unhashed) random password string. More... | |
| static | getDB ( $db) |
| Get a database connection for the bot passwords database. More... | |
| static | getSeparator () |
| Get the separator for combined user name + app ID. More... | |
| static | invalidateAllPasswordsForCentralId ( $centralId) |
| Invalidate all passwords for a user, by central ID. More... | |
| static | invalidateAllPasswordsForUser ( $username) |
| Invalidate all passwords for a user, by name. More... | |
| static | login ( $username, $password, WebRequest $request) |
| Try to log the user in. More... | |
| static | newFromCentralId ( $centralId, $appId, $flags=self::READ_NORMAL) |
| Load a BotPassword from the database. More... | |
| static | newFromUser (User $user, $appId, $flags=self::READ_NORMAL) |
| Load a BotPassword from the database. More... | |
| static | newUnsaved (array $data, $flags=self::READ_NORMAL) |
| Create an unsaved BotPassword. More... | |
| static | removeAllPasswordsForCentralId ( $centralId) |
| Remove all passwords for a user, by central ID. More... | |
| static | removeAllPasswordsForUser ( $username) |
| Remove all passwords for a user, by name. More... | |
Public Attributes | |
| const | APPID_MAXLENGTH = 32 |
 Public Attributes inherited from IDBAccessObject | |
| const | READ_LOCKING = self::READ_LATEST | 2 |
| Constants for object loading bitfield flags (higher => higher QoS) More... | |
| const | READ_NONE = -1 |
Protected Member Functions | |
| __construct ( $row, $isSaved, $flags=self::READ_NORMAL) | |
| getPassword () | |
| Get the password. More... | |
Static Private Member Functions | |
| static | loginHook ( $user, $bp, Status $status) |
| Call AuthManagerLoginAuthenticateAudit. More... | |
Private Attributes | |
| string | $appId |
| int | $centralId |
| int | $flags = self::READ_NORMAL |
| string[] | $grants |
| bool | $isSaved |
| MWRestrictions | $restrictions |
| string | $token |
Detailed Description
Constructor & Destructor Documentation
◆ __construct()
|
protected |
- Parameters
-
object $row bot_passwords database row bool $isSaved Whether the bot password was read from the database int $flags IDBAccessObject read flags
Definition at line 60 of file BotPassword.php.
References $flags, $isSaved, FormatJson\decode(), isSaved(), and MWRestrictions\newFromJson().
Member Function Documentation
◆ canonicalizeLoginData()
|
static |
There are two ways to login with a bot password: "username@appId", "password" and "username", "appId@password".
Transform it so it is always in the first form. Returns [bot username, bot password]. If this cannot be a bot password login just return false.
- Parameters
-
string $username string $password
- Returns
- array|false
Definition at line 420 of file BotPassword.php.
References $appId, $username, and getSeparator().
Referenced by ApiLogin\execute(), and BotPasswordTest\testCanonicalizeLoginData().
◆ delete()
| BotPassword::delete | ( | ) |
Delete the BotPassword from the database.
- Returns
- bool Success
Definition at line 319 of file BotPassword.php.
References $appId, $centralId, DB_MASTER, getDB(), and isSaved().
◆ generatePassword()
|
static |
Returns a (raw, unhashed) random password string.
- Parameters
-
Config $config
- Returns
- string
Definition at line 406 of file BotPassword.php.
References PasswordFactory\generateRandomPasswordString().
Referenced by SpecialBotPasswords\save().
◆ getAppId()
| BotPassword::getAppId | ( | ) |
Get the app ID.
- Returns
- string
Definition at line 199 of file BotPassword.php.
References $appId.
Referenced by MediaWiki\Session\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ getDB()
|
static |
Get a database connection for the bot passwords database.
- Parameters
-
int $db Index of the connection to get, e.g. DB_MASTER or DB_REPLICA.
- Returns
- IMaintainableDatabase
Definition at line 76 of file BotPassword.php.
References $wgBotPasswordsCluster, and $wgBotPasswordsDatabase.
Referenced by delete(), SpecialBotPasswords\getFormFields(), getPassword(), invalidateAllPasswordsForCentralId(), newFromCentralId(), removeAllPasswordsForCentralId(), and save().
◆ getGrants()
| BotPassword::getGrants | ( | ) |
Get the grants.
- Returns
- string[]
Definition at line 223 of file BotPassword.php.
References $grants.
Referenced by MediaWiki\Session\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ getPassword()
|
protected |
Get the password.
- Returns
- Password
Definition at line 240 of file BotPassword.php.
References $options, getDB(), DBAccessObjectUtils\getDBOptions(), list, and PasswordFactory\newInvalidPassword().
Referenced by isInvalid().
◆ getRestrictions()
| BotPassword::getRestrictions | ( | ) |
Get the restrictions.
- Returns
- MWRestrictions
Definition at line 215 of file BotPassword.php.
References $restrictions.
◆ getSeparator()
|
static |
Get the separator for combined user name + app ID.
- Returns
- string
Definition at line 231 of file BotPassword.php.
References $wgUserrightsInterwikiDelimiter.
Referenced by canonicalizeLoginData(), SpecialBotPasswords\getFormFields(), login(), loginHook(), SpecialBotPasswords\onSuccess(), ApiLoginTest\setUpForBotPassword(), and BotPasswordTest\testBasics().
◆ getToken()
| BotPassword::getToken | ( | ) |
Get the token.
- Returns
- string
Definition at line 207 of file BotPassword.php.
References $token.
Referenced by MediaWiki\Session\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ getUserCentralId()
| BotPassword::getUserCentralId | ( | ) |
Get the central user ID.
- Returns
- int
Definition at line 191 of file BotPassword.php.
References $centralId.
Referenced by MediaWiki\Session\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ invalidateAllPasswordsForCentralId()
|
static |
Invalidate all passwords for a user, by central ID.
- Parameters
-
int $centralId
- Returns
- bool Whether any passwords were invalidated
Definition at line 351 of file BotPassword.php.
References $centralId, $wgEnableBotPasswords, DB_MASTER, getDB(), and PasswordFactory\newInvalidPassword().
Referenced by invalidateAllPasswordsForUser().
◆ invalidateAllPasswordsForUser()
|
static |
Invalidate all passwords for a user, by name.
- Parameters
-
string $username User name
- Returns
- bool Whether any passwords were invalidated
Definition at line 339 of file BotPassword.php.
References $centralId, $username, CentralIdLookup\AUDIENCE_RAW, CentralIdLookup\factory(), and invalidateAllPasswordsForCentralId().
Referenced by MediaWiki\Auth\AuthManager\changeAuthenticationData(), and BotPasswordTest\testInvalidateAllPasswordsForUser().
◆ isInvalid()
| BotPassword::isInvalid | ( | ) |
Whether the password is currently invalid.
- Since
- 1.32
- Returns
- bool
Definition at line 267 of file BotPassword.php.
References getPassword().
◆ isSaved()
| BotPassword::isSaved | ( | ) |
Indicate whether this is known to be saved.
- Returns
- bool
Definition at line 183 of file BotPassword.php.
References $isSaved.
Referenced by __construct(), delete(), and save().
◆ login()
|
static |
Try to log the user in.
- Parameters
-
string $username Combined user name and app ID string $password Supplied password WebRequest $request
- Returns
- Status On success, the good status's value is the new Session object
Definition at line 446 of file BotPassword.php.
References $appId, $name, $request, $user, $username, $wgEnableBotPasswords, $wgPasswordAttemptThrottle, class, ObjectCache\getLocalClusterInstance(), getSeparator(), list, loginHook(), StatusValue\newFatal(), User\newFromName(), newFromUser(), StatusValue\newGood(), MediaWiki\Session\SessionManager\singleton(), and wfMessage().
Referenced by ApiLogin\execute(), and BotPasswordTest\testLogin().
◆ loginHook()
|
staticprivate |
Call AuthManagerLoginAuthenticateAudit.
To facilitate logging all authentications, even ones not via AuthManager, call the AuthManagerLoginAuthenticateAudit hook.
- Parameters
-
User | string $user User being logged in BotPassword | null $bp Bot sub-account, if it can be identified Status $status Login status
- Returns
- Status The passed-in status
Definition at line 531 of file BotPassword.php.
References $extraData, $name, $response, $user, getSeparator(), and Hooks\run().
Referenced by login().
◆ newFromCentralId()
|
static |
Load a BotPassword from the database.
- Parameters
-
int $centralId from CentralIdLookup string $appId int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 107 of file BotPassword.php.
References $appId, $centralId, $flags, $options, $wgEnableBotPasswords, getDB(), DBAccessObjectUtils\getDBOptions(), and list.
Referenced by SpecialBotPasswords\getFormFields(), newFromUser(), SpecialBotPasswords\onSubmit(), MediaWiki\Session\Session\BotPasswordSessionProvider\refreshSessionInfo(), BotPasswordTest\testGetPassword(), BotPasswordTest\testInvalidateAllPasswordsForUser(), BotPasswordTest\testRemoveAllPasswordsForUser(), and BotPasswordTest\testSave().
◆ newFromUser()
|
static |
Load a BotPassword from the database.
- Parameters
-
User $user string $appId int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 93 of file BotPassword.php.
References $appId, $centralId, $flags, $user, CentralIdLookup\AUDIENCE_RAW, CentralIdLookup\factory(), and newFromCentralId().
Referenced by login(), BotPasswordTest\testBasics(), MediaWiki\Session\BotPasswordSessionProviderTest\testCheckSessionInfo(), and MediaWiki\Session\BotPasswordSessionProviderTest\testNewSessionInfoForRequest().
◆ newUnsaved()
|
static |
Create an unsaved BotPassword.
- Parameters
-
array $data Data to use to create the bot password. Keys are: - user: (User) User object to create the password for. Overrides username and centralId.
- username: (string) Username to create the password for. Overrides centralId.
- centralId: (int) User central ID to create the password for.
- appId: (string) App ID for the password.
- restrictions: (MWRestrictions, optional) Restrictions.
- grants: (string[], optional) Grants.
int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 138 of file BotPassword.php.
References $data, $flags, CentralIdLookup\AUDIENCE_RAW, FormatJson\encode(), CentralIdLookup\factory(), MWRestrictions\newDefault(), and object.
Referenced by SpecialBotPasswords\getFormFields(), SpecialBotPasswords\save(), BotPasswordTest\testSave(), and BotPasswordTest\testUnsaved().
◆ removeAllPasswordsForCentralId()
|
static |
Remove all passwords for a user, by central ID.
- Parameters
-
int $centralId
- Returns
- bool Whether any passwords were removed
Definition at line 385 of file BotPassword.php.
References $centralId, $wgEnableBotPasswords, DB_MASTER, and getDB().
Referenced by removeAllPasswordsForUser().
◆ removeAllPasswordsForUser()
|
static |
Remove all passwords for a user, by name.
- Parameters
-
string $username User name
- Returns
- bool Whether any passwords were removed
Definition at line 373 of file BotPassword.php.
References $centralId, $username, CentralIdLookup\AUDIENCE_RAW, CentralIdLookup\factory(), and removeAllPasswordsForCentralId().
Referenced by MediaWiki\Session\Session\BotPasswordSessionProvider\preventSessionsForUser(), and BotPasswordTest\testRemoveAllPasswordsForUser().
◆ save()
Save the BotPassword to the database.
- Returns
- bool Success
Definition at line 277 of file BotPassword.php.
References $appId, $centralId, DB_MASTER, FormatJson\encode(), MWCryptRand\generateHex(), getDB(), isSaved(), PasswordFactory\newInvalidPassword(), and User\TOKEN_LENGTH.
Member Data Documentation
◆ $appId
|
private |
Definition at line 41 of file BotPassword.php.
Referenced by canonicalizeLoginData(), delete(), getAppId(), login(), newFromCentralId(), newFromUser(), and save().
◆ $centralId
|
private |
Definition at line 38 of file BotPassword.php.
Referenced by delete(), getUserCentralId(), invalidateAllPasswordsForCentralId(), invalidateAllPasswordsForUser(), newFromCentralId(), newFromUser(), removeAllPasswordsForCentralId(), removeAllPasswordsForUser(), and save().
◆ $flags
|
private |
Definition at line 53 of file BotPassword.php.
Referenced by __construct(), newFromCentralId(), newFromUser(), and newUnsaved().
◆ $grants
|
private |
Definition at line 50 of file BotPassword.php.
Referenced by getGrants().
◆ $isSaved
|
private |
Definition at line 35 of file BotPassword.php.
Referenced by __construct(), and isSaved().
◆ $restrictions
|
private |
Definition at line 47 of file BotPassword.php.
Referenced by getRestrictions().
◆ $token
|
private |
Definition at line 44 of file BotPassword.php.
Referenced by getToken().
◆ APPID_MAXLENGTH
| const BotPassword::APPID_MAXLENGTH = 32 |
Definition at line 32 of file BotPassword.php.
Referenced by SpecialBotPasswords\execute(), SpecialBotPasswords\getFormFields(), and BotPasswordTest\testUnsaved().
The documentation for this class was generated from the following file:
- includes/user/BotPassword.php
