54 $config = $this->context->getConfig();
56 if ( !
$request->checkUrlExtension() ) {
60 if ( $this->
getOutput()->checkLastModified( $this->page->getTouched() ) ) {
65 if ( $gen ==
'css' || $gen ==
'js' ) {
71 $maxage =
$request->getInt(
'maxage', $config->get(
'SquidMaxage' ) );
72 $smaxage =
$request->getIntOrNull(
'smaxage' );
73 if ( $smaxage ===
null ) {
74 if ( $contentType ==
'text/css' || $contentType ==
'text/javascript' ) {
78 $smaxage = intval( $config->get(
'ForcedRawSMaxage' ) );
87 if ( $config->get(
'UseKeyHeader' ) ) {
93 $privateCache = !User::isEveryoneAllowed(
'read' ) &&
94 ( $smaxage == 0 || MediaWiki\Session\SessionManager::getGlobalSession()->isPersistent() );
96 $privateCache = $privateCache || $this->
getUser()->isLoggedIn();
97 $mode = $privateCache ?
'private' :
'public';
99 'Cache-Control: ' . $mode .
', s-maxage=' . $smaxage .
', max-age=' . $maxage
107 if ( $title->isCssJsSubpage() && $contentType !==
'text/x-wiki' ) {
110 $rootPage = strtok( $title->getText(),
'/' );
111 $userFromTitle = User::newFromName( $rootPage,
'usable' );
112 if ( !$userFromTitle || $userFromTitle->getId() === 0 ) {
113 $log = LoggerFactory::getInstance(
"security" );
115 "Unsafe JS/CSS/Json load - {user} loaded {title} with {ctype}",
118 'title' => $title->getPrefixedDBKey(),
119 'ctype' => $contentType,
122 $msg =
wfMessage(
'unregistered-user-config' );
134 $contentType ===
'text/javascript' &&
135 !$title->isJsSubpage() &&
136 !$title->inNamespace( NS_MEDIAWIKI ) &&
137 !in_array(
'sysop', $title->getRestrictions(
'edit' ) ) &&
138 !in_array(
'editprotected', $title->getRestrictions(
'edit' ) )
140 $log = LoggerFactory::getInstance(
"security" );
141 $log->info(
"Blocked loading unprotected JS {title} for {user}",
144 'title' => $title->getPrefixedDBKey(),
150 $response->header(
'Content-type: ' . $contentType .
'; charset=UTF-8' );
158 if ( $text ===
false && $contentType ==
'text/x-wiki' ) {
164 if ( !Hooks::run(
'RawPageViewBeforeOutput', [ &$rawAction, &$text ] ) ) {
165 wfDebug( __METHOD__ .
": RawPageViewBeforeOutput hook broke raw page output.\n" );
185 if (
$request->getBool(
'usemsgcache' ) && $title->getNamespace() == NS_MEDIAWIKI ) {
191 if ( $text ===
false ) {
199 $request->response()->header(
"Last-modified: $lastmod" );
202 $content =
$rev->getContent();
204 if ( $content ===
null ) {
209 wfHttpError( 415,
"Unsupported Media Type",
"The requested page uses the content model `"
210 . $content->getModel() .
"` which is not supported via this interface." );
216 $content = $content->getSection(
$section );
219 if ( $content ===
null || $content ===
false ) {
223 $text = $content->getNativeData();
229 if ( $text !==
false && $text !==
'' &&
$request->getVal(
'templates' ) ===
'expand' ) {
233 ParserOptions::newFromContext( $this->
getContext() )
246 $oldid = $this->
getRequest()->getInt(
'oldid' );
247 switch ( $this->
getRequest()->getText(
'direction' ) ) {
249 # output next revision, or nothing if there isn't one
252 $nextid = $this->
getTitle()->getNextRevisionID( $oldid );
254 $oldid = $nextid ?: -1;
257 # output previous revision, or nothing if there isn't one
259 # get the current revision so we can get the penultimate one
260 $oldid = $this->page->getLatest();
262 $previd = $this->
getTitle()->getPreviousRevisionID( $oldid );
263 $oldid = $previd ?: -1;
279 $ctype = $this->
getRequest()->getVal(
'ctype' );
281 if ( $ctype ==
'' ) {
283 if ( $gen ==
'js' ) {
284 $ctype =
'text/javascript';
285 } elseif ( $gen ==
'css' ) {
290 $allowedCTypes = [
'text/x-wiki',
'text/javascript',
'text/css',
'application/x-zope-edit' ];
291 if ( $ctype ==
'' || !in_array( $ctype, $allowedCTypes ) ) {
292 $ctype =
'text/x-wiki';
wfDebug( $text, $dest='all', array $context=[])
Sends a line to the debug log if enabled or, optionally, to a comment in output.
wfHttpError( $code, $label, $desc)
Provide a simple HTTP error.
wfTimestamp( $outputtype=TS_UNIX, $ts=0)
Get a timestamp string in one of various formats.
getTitle()
Shortcut to get the Title object from the page.
getContext()
Get the IContextSource in use here.
getOutput()
Get the OutputPage being used for this instance.
getUser()
Shortcut to get the User being used for this instance.
getRequest()
Get the WebRequest being used for this instance.
Show an error that looks like an HTTP server error.
static singleton()
Get the signleton instance of this class.
A simple method to retrieve the plain source of an article, using "action=raw" in the GET request str...
getContentType()
Get the content type to use for the response.
getRawText()
Get the text that should be returned, or false if the page or revision was not found.
getName()
Return the name of the action this object responds to.
requiresWrite()
Whether this action requires the wiki not to be locked.
onView()
Show something on GET request.
requiresUnblock()
Whether this action can still be executed by a blocked user.
getOldId()
Get the ID of the revision that should used to get the text.
static newFromTitle(LinkTarget $linkTarget, $id=0, $flags=0)
Load either the current, or a specified, revision that's attached to a given link target.
Content object implementation for representing flat text.
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on $request
either a unescaped string or a HtmlArmor object after in associative array form externallinks including delete and has completed for all link tables whether this was an auto creation default is conds Array Extra conditions for the No matching items in log is displayed if loglist is empty msgKey Array If you want a nice box with a set this to the key of the message First element is the message additional optional elements are parameters for the key that are processed with wfMessage() -> params() ->parseAsBlock() - offset Set to overwrite offset parameter in $wgRequest set to '' to unset offset - wrap String Wrap the message in html(usually something like "<div ...>$1</div>"). - flags Integer display flags(NO_ACTION_LINK, NO_EXTRA_USER_LINKS) 'LogException':Called before an exception(or PHP error) is logged. This is meant for integration with external error aggregation services
this hook is for auditing only $response
usually copyright or history_copyright This message must be in HTML not wikitext if the section is included from a template $section
presenting them properly to the user as errors is done by the caller return true use this to change the list i e etc $rev