FormSpecialPage.php

Go to the documentation of this file.

<?php
abstract class FormSpecialPage extends SpecialPage {
    protected $par = null;
 
    protected $reauthPostData = null;
 
    abstract protected function getFormFields();
 
    protected function preText() {
        return '';
    }
 
    protected function postText() {
        return '';
    }
 
    protected function alterForm( HTMLForm $form ) {
    }
 
    protected function getMessagePrefix() {
        return strtolower( $this->getName() );
    }
 
    protected function getDisplayFormat() {
        return 'table';
    }
 
    protected function getForm() {
        $context = $this->getContext();
        $onSubmit = [ $this, 'onSubmit' ];
 
        if ( $this->reauthPostData ) {
            // Restore POST data
            $context = new DerivativeContext( $context );
            $oldRequest = $this->getRequest();
            $context->setRequest( new DerivativeRequest(
                $oldRequest, $this->reauthPostData + $oldRequest->getQueryValues(), true
            ) );
 
            // But don't treat it as a "real" submission just in case of some
            // crazy kind of CSRF.
            $onSubmit = function () {
                return false;
            };
        }
 
        $form = HTMLForm::factory(
            $this->getDisplayFormat(),
            $this->getFormFields(),
            $context,
            $this->getMessagePrefix()
        );
        $form->setSubmitCallback( $onSubmit );
        if ( $this->getDisplayFormat() !== 'ooui' ) {
            // No legend and wrapper by default in OOUI forms, but can be set manually
            // from alterForm()
            $form->setWrapperLegendMsg( $this->getMessagePrefix() . '-legend' );
        }
 
        $headerMsg = $this->msg( $this->getMessagePrefix() . '-text' );
        if ( !$headerMsg->isDisabled() ) {
            $form->addHeaderText( $headerMsg->parseAsBlock() );
        }
 
        $form->addPreText( $this->preText() );
        $form->addPostText( $this->postText() );
        $this->alterForm( $form );
        if ( $form->getMethod() == 'post' ) {
            // Retain query parameters (uselang etc) on POST requests
            $params = array_diff_key(
                $this->getRequest()->getQueryValues(), [ 'title' => null ] );
            $form->addHiddenField( 'redirectparams', wfArrayToCgi( $params ) );
        }
 
        // Give hooks a chance to alter the form, adding extra fields or text etc
        Hooks::run( 'SpecialPageBeforeFormDisplay', [ $this->getName(), &$form ] );
 
        return $form;
    }
 
    abstract public function onSubmit( array $data /* HTMLForm $form = null */ );
 
    public function onSuccess() {
    }
 
    public function execute( $par ) {
        $this->setParameter( $par );
        $this->setHeaders();
 
        // This will throw exceptions if there's a problem
        $this->checkExecutePermissions( $this->getUser() );
 
        $securityLevel = $this->getLoginSecurityLevel();
        if ( $securityLevel !== false && !$this->checkLoginSecurityLevel( $securityLevel ) ) {
            return;
        }
 
        $form = $this->getForm();
        if ( $form->show() ) {
            $this->onSuccess();
        }
    }
 
    protected function setParameter( $par ) {
        $this->par = $par;
    }
 
    protected function checkExecutePermissions( User $user ) {
        $this->checkPermissions();
 
        if ( $this->requiresUnblock() ) {
            $block = $user->getBlock();
            if ( $block && $block->isSitewide() ) {
                throw new UserBlockedError( $block );
            }
        }
 
        if ( $this->requiresWrite() ) {
            $this->checkReadOnly();
        }
    }
 
    public function requiresWrite() {
        return true;
    }
 
    public function requiresUnblock() {
        return true;
    }
 
    protected function setReauthPostData( array $data ) {
        $this->reauthPostData = $data;
    }
}