42 parent::__construct(
'ChangeEmail',
'editmyprivateinfo' );
55 return $this->
getAuthManager()->allowsPropertyChange(
'emailaddress' );
64 $out->disallowUserJs();
65 $out->addModules(
'mediawiki.special.changeemail' );
66 parent::execute(
$par );
74 if ( !$this->
getAuthManager()->allowsPropertyChange(
'emailaddress' ) ) {
82 if ( !$this->
getAuthority()->isAllowed(
'viewmyprivateinfo' ) ) {
86 parent::checkExecutePermissions( $user );
95 'label-message' =>
'username',
100 'label-message' =>
'changeemail-oldemail',
101 'default' => $user->
getEmail() ?: $this->
msg(
'changeemail-none' )->text(),
105 'label-message' =>
'changeemail-newemail',
108 'help-message' =>
'changeemail-newemail-help',
120 $form->
setId(
'mw-changeemail-form' );
130 $status = $this->attemptChange( $this->
getUser(), $data[
'NewEmail'] );
132 $this->status = $status;
140 $returnto = $request->getVal(
'returnto' );
141 $titleObj = $returnto !==
null ? Title::newFromText( $returnto ) :
null;
142 if ( !$titleObj instanceof
Title ) {
143 $titleObj = Title::newMainPage();
145 $query = $request->getVal(
'returntoquery',
'' );
147 if ( $this->status->value ===
true ) {
148 $this->
getOutput()->redirect( $titleObj->getFullUrlForRedirect( $query ) );
149 } elseif ( $this->status->value ===
'eauth' ) {
150 # Notify user that a confirmation email has been sent...
154 $out->msg(
'eauthentsent', $this->getUser()->getName() )->parse()
167 private function attemptChange(
User $user, $newaddr ) {
168 if ( $newaddr !=
'' && !Sanitizer::validateEmail( $newaddr ) ) {
169 return Status::newFatal(
'invalidemailaddress' );
173 if ( $newaddr === $oldaddr ) {
177 if ( strlen( $newaddr ) > 255 ) {
183 if ( $newaddr !==
'' && $user->
pingLimiter(
'changeemail' ) ) {
188 $status = $userLatest->setEmailWithConfirmation( $newaddr );
189 if ( !$status->
isGood() ) {
193 LoggerFactory::getInstance(
'authentication' )->info(
194 'Changing email address for {user} from {oldemail} to {newemail}', [
195 'user' => $userLatest->getName(),
196 'oldemail' => $oldaddr,
197 'newemail' => $newaddr,
201 $this->
getHookRunner()->onPrefsEmailAudit( $userLatest, $oldaddr, $newaddr );
203 $userLatest->saveSettings();
wfCgiToArray( $query)
This is the logical opposite of wfArrayToCgi(): it accepts a query string as its argument and returns...
An error page which can definitely be safely rendered using the OutputPage.
Special page which uses an HTMLForm to handle processing.
string null $par
The sub-page of the special page.
Show an error when a user tries to do something they do not have the necessary permissions for.
Let users change their email address.
doesWrites()
Indicates whether this special page may perform database writes.
requiresUnblock()
Whether this action cannot be executed by a blocked user.
getDisplayFormat()
Get display format for the form.
onSuccess()
Do something exciting on successful processing of the form, most likely to show a confirmation messag...
alterForm(HTMLForm $form)
Play with the HTMLForm if you need to more substantially.
getFormFields()
Get an HTMLForm descriptor array.
getGroupName()
Under which header this special page is listed in Special:SpecialPages See messages 'specialpages-gro...
checkExecutePermissions(User $user)
Called from execute() to check if the given user can perform this action.
__construct(AuthManager $authManager)
execute( $par)
Main execution point.
getLoginSecurityLevel()
Tells if the special page does something security-sensitive and needs extra defense against a stolen ...
onSubmit(array $data)
Process the form on POST submission.
getName()
Get the name of this Special Page.
getOutput()
Get the OutputPage being used for this instance.
getUser()
Shortcut to get the User executing this instance.
requireNamedUser( $reasonMsg='exception-nologin-text', $titleMsg='exception-nologin')
If the user is not logged in or is a temporary user, throws UserNotLoggedIn.
msg( $key,... $params)
Wrapper around wfMessage that sets the current context.
getAuthority()
Shortcut to get the Authority executing this instance.
getRequest()
Get the WebRequest being used for this instance.
setAuthManager(AuthManager $authManager)
Set the injected AuthManager from the special page constructor.
static newFatal( $message,... $parameters)
Factory function for fatal errors.
isGood()
Returns whether the operation completed and didn't have any error or warnings.
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Represents a title within MediaWiki.
getName()
Get the user name, or the IP of an anonymous user.
pingLimiter( $action='edit', $incrBy=1)
Primitive rate limits: enforce maximum actions per time period to put a brake on flooding.
getEmail()
Get the user's e-mail address.
getInstanceForUpdate()
Get a new instance of this user that was loaded from the primary DB via a locking read.