MediaWiki REL1_30
|
Basic framework for a primary authentication provider that uses passwords. More...
Public Member Functions | |
__construct (array $params=[]) | |
getAuthenticationRequests ( $action, array $options) | |
Return the applicable list of AuthenticationRequests. | |
Public Member Functions inherited from MediaWiki\Auth\AbstractPrimaryAuthenticationProvider | |
autoCreatedAccount ( $user, $source) | |
Post-auto-creation callback. | |
beginPrimaryAccountLink ( $user, array $reqs) | |
Start linking an account to an existing user. | |
continuePrimaryAccountCreation ( $user, $creator, array $reqs) | |
Continue an account creation flow. | |
continuePrimaryAccountLink ( $user, array $reqs) | |
Continue linking an account to an existing user. | |
continuePrimaryAuthentication (array $reqs) | |
Continue an authentication flow. | |
finishAccountCreation ( $user, $creator, AuthenticationResponse $response) | |
Post-creation callback. | |
postAccountCreation ( $user, $creator, AuthenticationResponse $response) | |
Post-creation callback. | |
postAccountLink ( $user, AuthenticationResponse $response) | |
Post-link callback. | |
postAuthentication ( $user, AuthenticationResponse $response) | |
Post-login callback. | |
providerAllowsPropertyChange ( $property) | |
Determine whether a property can change. | |
providerNormalizeUsername ( $username) | |
@inheritDoc | |
providerRevokeAccessForUser ( $username) | |
@inheritDoc | |
testForAccountCreation ( $user, $creator, array $reqs) | |
Determine whether an account creation may begin. | |
testUserCanAuthenticate ( $username) | |
Test whether the named user can authenticate with this provider. | |
testUserForCreation ( $user, $autocreate, array $options=[]) | |
Determine whether an account may be created. | |
Public Member Functions inherited from MediaWiki\Auth\AbstractAuthenticationProvider | |
getUniqueId () | |
@inheritDoc | |
setConfig (Config $config) | |
Set configuration. | |
setLogger (LoggerInterface $logger) | |
setManager (AuthManager $manager) | |
Set AuthManager. | |
Public Member Functions inherited from MediaWiki\Auth\PrimaryAuthenticationProvider | |
accountCreationType () | |
Fetch the account-creation type. | |
beginPrimaryAccountCreation ( $user, $creator, array $reqs) | |
Start an account creation flow. | |
beginPrimaryAuthentication (array $reqs) | |
Start an authentication flow. | |
providerAllowsAuthenticationDataChange (AuthenticationRequest $req, $checkData=true) | |
Validate a change of authentication data (e.g. | |
providerChangeAuthenticationData (AuthenticationRequest $req) | |
Change or remove authentication data (e.g. | |
testUserExists ( $username, $flags=User::READ_NORMAL) | |
Test whether the named user exists. | |
Protected Member Functions | |
checkPasswordValidity ( $username, $password) | |
Check that the password is valid. | |
failResponse (PasswordAuthenticationRequest $req) | |
Return the appropriate response for failure. | |
getNewPasswordExpiry ( $username) | |
Get expiration date for a new password, if any. | |
getPassword ( $hash) | |
Get a Password object from the hash. | |
getPasswordFactory () | |
Get the PasswordFactory. | |
getPasswordResetData ( $username, $data) | |
Get password reset data, if any. | |
setPasswordResetFlag ( $username, Status $status, $data=null) | |
Check if the password should be reset. | |
Protected Attributes | |
bool | $authoritative |
Whether this provider should ABSTAIN (false) or FAIL (true) on password failure. | |
Protected Attributes inherited from MediaWiki\Auth\AbstractAuthenticationProvider | |
Config | $config |
LoggerInterface | $logger |
AuthManager | $manager |
Private Attributes | |
$passwordFactory = null | |
Additional Inherited Members | |
Public Attributes inherited from MediaWiki\Auth\PrimaryAuthenticationProvider | |
const | TYPE_CREATE = 'create' |
Provider can create accounts. | |
const | TYPE_LINK = 'link' |
Provider can link to existing accounts elsewhere. | |
const | TYPE_NONE = 'none' |
Provider cannot create or link to accounts. | |
Basic framework for a primary authentication provider that uses passwords.
Definition at line 33 of file AbstractPasswordPrimaryAuthenticationProvider.php.
MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider::__construct | ( | array | $params = [] | ) |
array | $params | Settings
|
Definition at line 46 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References $params.
|
protected |
Check that the password is valid.
This should be called before validating the password. If the result is not ok, login should fail immediately.
string | $username | |
string | $password |
Definition at line 103 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References $username.
Referenced by MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), MediaWiki\Auth\AuthPluginPrimaryAuthenticationProvider\providerAllowsAuthenticationDataChange(), MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\providerAllowsAuthenticationDataChange(), MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\providerAllowsAuthenticationDataChange(), MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\testForAccountCreation(), and MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\testForAccountCreation().
|
protected |
Return the appropriate response for failure.
PasswordAuthenticationRequest | $req |
Definition at line 83 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References $req, MediaWiki\Auth\AuthenticationResponse\newAbstain(), MediaWiki\Auth\AuthenticationResponse\newFail(), and wfMessage().
Referenced by MediaWiki\Auth\AuthPluginPrimaryAuthenticationProvider\beginPrimaryAuthentication(), MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), and MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication().
MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider::getAuthenticationRequests | ( | $action, | |
array | $options ) |
Return the applicable list of AuthenticationRequests.
Possible values for $action depend on whether the implementing class is also a PreAuthenticationProvider, PrimaryAuthenticationProvider, or SecondaryAuthenticationProvider.
string | $action | |
array | $options | Options are:
|
Implements MediaWiki\Auth\AuthenticationProvider.
Reimplemented in MediaWiki\Auth\AuthPluginPrimaryAuthenticationProvider, and MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider.
Definition at line 160 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References MediaWiki\Auth\AuthManager\ACTION_CHANGE, MediaWiki\Auth\AuthManager\ACTION_CREATE, MediaWiki\Auth\AuthManager\ACTION_LOGIN, and MediaWiki\Auth\AuthManager\ACTION_REMOVE.
|
protected |
Get expiration date for a new password, if any.
string | $username |
Definition at line 150 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References $username, and wfTimestamp().
Referenced by MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\providerChangeAuthenticationData().
|
protected |
Get a Password object from the hash.
string | $hash |
Definition at line 67 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References $e, MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider\$passwordFactory, and MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider\getPasswordFactory().
Referenced by MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\testUserCanAuthenticate(), and MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\testUserCanAuthenticate().
|
protected |
Get the PasswordFactory.
Definition at line 54 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider\$passwordFactory.
Referenced by MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider\getPassword(), MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\providerChangeAuthenticationData(), and MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\providerChangeAuthenticationData().
|
protected |
Get password reset data, if any.
string | $username | |
mixed | $data |
Reimplemented in MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider, and MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider.
Definition at line 140 of file AbstractPasswordPrimaryAuthenticationProvider.php.
Referenced by MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider\setPasswordResetFlag().
|
protected |
Check if the password should be reset.
This should be called after a successful login. It sets 'reset-pass' authentication data if necessary, see ResetPassSecondaryAuthenticationProvider.
string | $username | |
Status | $status | From $this->checkPasswordValidity() |
mixed | $data | Passed through to $this->getPasswordResetData() |
Definition at line 118 of file AbstractPasswordPrimaryAuthenticationProvider.php.
References $username, MediaWiki\Auth\AbstractPasswordPrimaryAuthenticationProvider\getPasswordResetData(), and object.
Referenced by MediaWiki\Auth\LocalPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication(), and MediaWiki\Auth\TemporaryPasswordPrimaryAuthenticationProvider\beginPrimaryAuthentication().
|
protected |
Whether this provider should ABSTAIN (false) or FAIL (true) on password failure.
Definition at line 37 of file AbstractPasswordPrimaryAuthenticationProvider.php.
|
private |