Utility class for bot passwords. More...
Public Member Functions | |
| delete () | |
| Delete the BotPassword from the database. | |
| getAppId () | |
| Get the app ID. | |
| getGrants () | |
| Get the grants. | |
| getRestrictions () | |
| Get the restrictions. | |
| getToken () | |
| Get the token. | |
| getUserCentralId () | |
| Get the central user ID. | |
| isSaved () | |
| Indicate whether this is known to be saved. | |
| save ( $operation, Password $password=null) | |
| Save the BotPassword to the database. | |
Static Public Member Functions | |
| static | canonicalizeLoginData ( $username, $password) |
| There are two ways to login with a bot password: "username@appId", "password" and "username", "appId@password". | |
| static | generatePassword ( $config) |
| Returns a (raw, unhashed) random password string. | |
| static | getDB ( $db) |
| Get a database connection for the bot passwords database. | |
| static | getSeparator () |
| Get the separator for combined user name + app ID. | |
| static | invalidateAllPasswordsForCentralId ( $centralId) |
| Invalidate all passwords for a user, by central ID. | |
| static | invalidateAllPasswordsForUser ( $username) |
| Invalidate all passwords for a user, by name. | |
| static | login ( $username, $password, WebRequest $request) |
| Try to log the user in. | |
| static | newFromCentralId ( $centralId, $appId, $flags=self::READ_NORMAL) |
| Load a BotPassword from the database. | |
| static | newFromUser (User $user, $appId, $flags=self::READ_NORMAL) |
| Load a BotPassword from the database. | |
| static | newUnsaved (array $data, $flags=self::READ_NORMAL) |
| Create an unsaved BotPassword. | |
| static | removeAllPasswordsForCentralId ( $centralId) |
| Remove all passwords for a user, by central ID. | |
| static | removeAllPasswordsForUser ( $username) |
| Remove all passwords for a user, by name. | |
Public Attributes | |
| const | APPID_MAXLENGTH = 32 |
 Public Attributes inherited from IDBAccessObject | |
| const | READ_LOCKING = 3 |
| Constants for object loading bitfield flags (higher => higher QoS) | |
| const | READ_NONE = -1 |
Protected Member Functions | |
| __construct ( $row, $isSaved, $flags=self::READ_NORMAL) | |
| getPassword () | |
| Get the password. | |
Private Attributes | |
| string | $appId |
| int | $centralId |
| int | $flags = self::READ_NORMAL |
| string[] | $grants |
| bool | $isSaved |
| MWRestrictions | $restrictions |
| string | $token |
Detailed Description
Constructor & Destructor Documentation
◆ __construct()
|
protected |
- Parameters
-
object $row bot_passwords database row bool $isSaved Whether the bot password was read from the database int $flags IDBAccessObject read flags
Definition at line 57 of file BotPassword.php.
References $flags, flags, isSaved(), and MWRestrictions\newFromJson().
Member Function Documentation
◆ canonicalizeLoginData()
|
static |
There are two ways to login with a bot password: "username@appId", "password" and "username", "appId@password".
Transform it so it is always in the first form. Returns [bot username, bot password, could be normal password?] where the last one is a flag meaning this could either be a bot password or a normal password, it cannot be decided for certain (although in such cases it almost always will be a bot password). If this cannot be a bot password login just return false.
- Parameters
-
string $username string $password
- Returns
- array|false
Definition at line 412 of file BotPassword.php.
References $username, getSeparator(), and true.
◆ delete()
| BotPassword::delete | ( | ) |
Delete the BotPassword from the database.
- Returns
- bool Success
Definition at line 309 of file BotPassword.php.
◆ generatePassword()
|
static |
Returns a (raw, unhashed) random password string.
- Parameters
-
Config $config
- Returns
- string
Definition at line 396 of file BotPassword.php.
◆ getAppId()
| BotPassword::getAppId | ( | ) |
Get the app ID.
- Returns
- string
Definition at line 197 of file BotPassword.php.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ getDB()
|
static |
Get a database connection for the bot passwords database.
- Parameters
-
int $db Index of the connection to get, e.g. DB_MASTER or DB_REPLICA.
- Returns
- Database
Definition at line 73 of file BotPassword.php.
References $wgBotPasswordsCluster, $wgBotPasswordsDatabase, global, wfGetLB(), and wfGetLBFactory().
◆ getGrants()
| BotPassword::getGrants | ( | ) |
Get the grants.
- Returns
- string[]
Definition at line 221 of file BotPassword.php.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ getPassword()
|
protected |
Get the password.
- Returns
- Password
Definition at line 238 of file BotPassword.php.
References $options, flags, DBAccessObjectUtils\getDBOptions(), RequestContext\getMain(), and list.
◆ getRestrictions()
| BotPassword::getRestrictions | ( | ) |
◆ getSeparator()
|
static |
Get the separator for combined user name + app ID.
- Returns
- string
Definition at line 229 of file BotPassword.php.
References $wgUserrightsInterwikiDelimiter, and global.
Referenced by canonicalizeLoginData().
◆ getToken()
| BotPassword::getToken | ( | ) |
Get the token.
- Returns
- string
Definition at line 205 of file BotPassword.php.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ getUserCentralId()
| BotPassword::getUserCentralId | ( | ) |
Get the central user ID.
- Returns
- int
Definition at line 189 of file BotPassword.php.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\newSessionForRequest().
◆ invalidateAllPasswordsForCentralId()
|
static |
Invalidate all passwords for a user, by central ID.
- Parameters
-
int $centralId
- Returns
- bool Whether any passwords were invalidated
Definition at line 341 of file BotPassword.php.
References $wgEnableBotPasswords, DB_MASTER, and global.
◆ invalidateAllPasswordsForUser()
|
static |
Invalidate all passwords for a user, by name.
- Parameters
-
string $username User name
- Returns
- bool Whether any passwords were invalidated
Definition at line 329 of file BotPassword.php.
References $username, CentralIdLookup\AUDIENCE_RAW, and CentralIdLookup\factory().
◆ isSaved()
| BotPassword::isSaved | ( | ) |
Indicate whether this is known to be saved.
- Returns
- bool
Definition at line 181 of file BotPassword.php.
Referenced by __construct(), delete(), and save().
◆ login()
|
static |
Try to log the user in.
- Parameters
-
string $username Combined user name and app ID string $password Supplied password WebRequest $request
- Returns
- Status On success, the good status's value is the new Session object
Definition at line 438 of file BotPassword.php.
References $name, $request, $status, $user, $username, $wgEnableBotPasswords, $wgPasswordAttemptThrottle, global, list, and wfMessage().
◆ newFromCentralId()
|
static |
Load a BotPassword from the database.
- Parameters
-
int $centralId from CentralIdLookup string $appId int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 103 of file BotPassword.php.
References $flags, $options, $wgEnableBotPasswords, DBAccessObjectUtils\getDBOptions(), global, and list.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\refreshSessionInfo().
◆ newFromUser()
|
static |
Load a BotPassword from the database.
- Parameters
-
User $user string $appId int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 89 of file BotPassword.php.
References $flags, $user, CentralIdLookup\AUDIENCE_RAW, and CentralIdLookup\factory().
◆ newUnsaved()
|
static |
Create an unsaved BotPassword.
- Parameters
-
array $data Data to use to create the bot password. Keys are: - user: (User) User object to create the password for. Overrides username and centralId.
- username: (string) Username to create the password for. Overrides centralId.
- centralId: (int) User central ID to create the password for.
- appId: (string) App ID for the password.
- restrictions: (MWRestrictions, optional) Restrictions.
- grants: (string[], optional) Grants.
int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 134 of file BotPassword.php.
References $flags, CentralIdLookup\AUDIENCE_RAW, CentralIdLookup\factory(), MWRestrictions\newDefault(), and object.
◆ removeAllPasswordsForCentralId()
|
static |
Remove all passwords for a user, by central ID.
- Parameters
-
int $centralId
- Returns
- bool Whether any passwords were removed
Definition at line 375 of file BotPassword.php.
References $wgEnableBotPasswords, DB_MASTER, and global.
◆ removeAllPasswordsForUser()
|
static |
Remove all passwords for a user, by name.
- Parameters
-
string $username User name
- Returns
- bool Whether any passwords were removed
Definition at line 363 of file BotPassword.php.
References $username, CentralIdLookup\AUDIENCE_RAW, and CentralIdLookup\factory().
Referenced by MediaWiki\Session\BotPasswordSessionProvider\preventSessionsForUser().
◆ save()
| BotPassword::save | ( | $operation, | |
| Password | $password = null |
||
| ) |
Save the BotPassword to the database.
- Returns
- bool Success
Definition at line 267 of file BotPassword.php.
References DB_MASTER, MWCryptRand\generateHex(), and isSaved().
Member Data Documentation
◆ $appId
|
private |
Definition at line 38 of file BotPassword.php.
◆ $centralId
|
private |
Definition at line 35 of file BotPassword.php.
◆ $flags
|
private |
Definition at line 50 of file BotPassword.php.
◆ $grants
|
private |
Definition at line 47 of file BotPassword.php.
◆ $isSaved
|
private |
Definition at line 32 of file BotPassword.php.
◆ $restrictions
|
private |
Definition at line 44 of file BotPassword.php.
◆ $token
|
private |
Definition at line 41 of file BotPassword.php.
◆ APPID_MAXLENGTH
| const BotPassword::APPID_MAXLENGTH = 32 |
Definition at line 29 of file BotPassword.php.
The documentation for this class was generated from the following file:
- includes/user/BotPassword.php
