REL1_31/php/ApiUpload_8php_source.html

<?php


class ApiUpload extends ApiBase {

    protected $mUpload = null;


    protected $mParams;


    public function execute() {

        // Check whether upload is enabled

        if ( !UploadBase::isEnabled() ) {

            $this->dieWithError( 'uploaddisabled' );

        }


        $user = $this->getUser();


        // Parameter handling

        $this->mParams = $this->extractRequestParams();

        $request = $this->getMain()->getRequest();

        // Check if async mode is actually supported (jobs done in cli mode)

        $this->mParams['async'] = ( $this->mParams['async'] &&

            $this->getConfig()->get( 'EnableAsyncUploads' ) );

        // Add the uploaded file to the params array

        $this->mParams['file'] = $request->getFileName( 'file' );

        $this->mParams['chunk'] = $request->getFileName( 'chunk' );


        // Copy the session key to the file key, for backward compatibility.

        if ( !$this->mParams['filekey'] && $this->mParams['sessionkey'] ) {

            $this->mParams['filekey'] = $this->mParams['sessionkey'];

        }


        // Select an upload module

        try {

            if ( !$this->selectUploadModule() ) {

                return; // not a true upload, but a status request or similar

            } elseif ( !isset( $this->mUpload ) ) {

                $this->dieDebug( __METHOD__, 'No upload module set' );

            }

        } catch ( UploadStashException $e ) { // XXX: don't spam exception log

            $this->dieStatus( $this->handleStashException( $e ) );

        }


        // First check permission to upload

        $this->checkPermissions( $user );


        // Fetch the file (usually a no-op)

        $status = $this->mUpload->fetchFile();

        if ( !$status->isGood() ) {

            $this->dieStatus( $status );

        }


        // Check if the uploaded file is sane

        if ( $this->mParams['chunk'] ) {

            $maxSize = UploadBase::getMaxUploadSize();

            if ( $this->mParams['filesize'] > $maxSize ) {

                $this->dieWithError( 'file-too-large' );

            }

            if ( !$this->mUpload->getTitle() ) {

                $this->dieWithError( 'illegal-filename' );

            }

        } elseif ( $this->mParams['async'] && $this->mParams['filekey'] ) {

            // defer verification to background process

        } else {

            wfDebug( __METHOD__ . " about to verify\n" );

            $this->verifyUpload();

        }


        // Check if the user has the rights to modify or overwrite the requested title

        // (This check is irrelevant if stashing is already requested, since the errors

        //  can always be fixed by changing the title)

        if ( !$this->mParams['stash'] ) {

            $permErrors = $this->mUpload->verifyTitlePermissions( $user );

            if ( $permErrors !== true ) {

                $this->dieRecoverableError( $permErrors, 'filename' );

            }

        }


        // Get the result based on the current upload context:

        try {

            $result = $this->getContextResult();

        } catch ( UploadStashException $e ) { // XXX: don't spam exception log

            $this->dieStatus( $this->handleStashException( $e ) );

        }

        $this->getResult()->addValue( null, $this->getModuleName(), $result );


        // Add 'imageinfo' in a separate addValue() call. File metadata can be unreasonably large,

        // so otherwise when it exceeded $wgAPIMaxResultSize, no result would be returned (T143993).

        if ( $result['result'] === 'Success' ) {

            $imageinfo = $this->mUpload->getImageInfo( $this->getResult() );

            $this->getResult()->addValue( $this->getModuleName(), 'imageinfo', $imageinfo );

        }


        // Cleanup any temporary mess

        $this->mUpload->cleanupTempFile();

    }


    private function getContextResult() {

        $warnings = $this->getApiWarnings();

        if ( $warnings && !$this->mParams['ignorewarnings'] ) {

            // Get warnings formatted in result array format

            return $this->getWarningsResult( $warnings );

        } elseif ( $this->mParams['chunk'] ) {

            // Add chunk, and get result

            return $this->getChunkResult( $warnings );

        } elseif ( $this->mParams['stash'] ) {

            // Stash the file and get stash result

            return $this->getStashResult( $warnings );

        }


        // Check throttle after we've handled warnings

        if ( UploadBase::isThrottled( $this->getUser() )

        ) {

            $this->dieWithError( 'apierror-ratelimited' );

        }


        // This is the most common case -- a normal upload with no warnings

        // performUpload will return a formatted properly for the API with status

        return $this->performUpload( $warnings );

    }


    private function getStashResult( $warnings ) {

        $result = [];

        $result['result'] = 'Success';

        if ( $warnings && count( $warnings ) > 0 ) {

            $result['warnings'] = $warnings;

        }

        // Some uploads can request they be stashed, so as not to publish them immediately.

        // In this case, a failure to stash ought to be fatal

        $this->performStash( 'critical', $result );


        return $result;

    }


    private function getWarningsResult( $warnings ) {

        $result = [];

        $result['result'] = 'Warning';

        $result['warnings'] = $warnings;

        // in case the warnings can be fixed with some further user action, let's stash this upload

        // and return a key they can use to restart it

        $this->performStash( 'optional', $result );


        return $result;

    }


    private function getChunkResult( $warnings ) {

        $result = [];


        if ( $warnings && count( $warnings ) > 0 ) {

            $result['warnings'] = $warnings;

        }


        $request = $this->getMain()->getRequest();

        $chunkPath = $request->getFileTempname( 'chunk' );

        $chunkSize = $request->getUpload( 'chunk' )->getSize();

        $totalSoFar = $this->mParams['offset'] + $chunkSize;

        $minChunkSize = $this->getConfig()->get( 'MinUploadChunkSize' );


        // Sanity check sizing

        if ( $totalSoFar > $this->mParams['filesize'] ) {

            $this->dieWithError( 'apierror-invalid-chunk' );

        }


        // Enforce minimum chunk size

        if ( $totalSoFar != $this->mParams['filesize'] && $chunkSize < $minChunkSize ) {

            $this->dieWithError( [ 'apierror-chunk-too-small', Message::numParam( $minChunkSize ) ] );

        }


        if ( $this->mParams['offset'] == 0 ) {

            $filekey = $this->performStash( 'critical' );

        } else {

            $filekey = $this->mParams['filekey'];


            // Don't allow further uploads to an already-completed session

            $progress = UploadBase::getSessionStatus( $this->getUser(), $filekey );

            if ( !$progress ) {

                // Probably can't get here, but check anyway just in case

                $this->dieWithError( 'apierror-stashfailed-nosession', 'stashfailed' );

            } elseif ( $progress['result'] !== 'Continue' || $progress['stage'] !== 'uploading' ) {

                $this->dieWithError( 'apierror-stashfailed-complete', 'stashfailed' );

            }


            $status = $this->mUpload->addChunk(

                $chunkPath, $chunkSize, $this->mParams['offset'] );

            if ( !$status->isGood() ) {

                $extradata = [

                    'offset' => $this->mUpload->getOffset(),

                ];


                $this->dieStatusWithCode( $status, 'stashfailed', $extradata );

            }

        }


        // Check we added the last chunk:

        if ( $totalSoFar == $this->mParams['filesize'] ) {

            if ( $this->mParams['async'] ) {

                UploadBase::setSessionStatus(

                    $this->getUser(),

                    $filekey,

                    [ 'result' => 'Poll',

                        'stage' => 'queued', 'status' => Status::newGood() ]

                );

                JobQueueGroup::singleton()->push( new AssembleUploadChunksJob(

                    Title::makeTitle( NS_FILE, $filekey ),

                    [

                        'filename' => $this->mParams['filename'],

                        'filekey' => $filekey,

                        'session' => $this->getContext()->exportSession()

                    ]

                ) );

                $result['result'] = 'Poll';

                $result['stage'] = 'queued';

            } else {

                $status = $this->mUpload->concatenateChunks();

                if ( !$status->isGood() ) {

                    UploadBase::setSessionStatus(

                        $this->getUser(),

                        $filekey,

                        [ 'result' => 'Failure', 'stage' => 'assembling', 'status' => $status ]

                    );

                    $this->dieStatusWithCode( $status, 'stashfailed' );

                }


                // We can only get warnings like 'duplicate' after concatenating the chunks

                $warnings = $this->getApiWarnings();

                if ( $warnings ) {

                    $result['warnings'] = $warnings;

                }


                // The fully concatenated file has a new filekey. So remove

                // the old filekey and fetch the new one.

                UploadBase::setSessionStatus( $this->getUser(), $filekey, false );

                $this->mUpload->stash->removeFile( $filekey );

                $filekey = $this->mUpload->getStashFile()->getFileKey();


                $result['result'] = 'Success';

            }

        } else {

            UploadBase::setSessionStatus(

                $this->getUser(),

                $filekey,

                [

                    'result' => 'Continue',

                    'stage' => 'uploading',

                    'offset' => $totalSoFar,

                    'status' => Status::newGood(),

                ]

            );

            $result['result'] = 'Continue';

            $result['offset'] = $totalSoFar;

        }


        $result['filekey'] = $filekey;


        return $result;

    }


    private function performStash( $failureMode, &$data = null ) {

        $isPartial = (bool)$this->mParams['chunk'];

        try {

            $status = $this->mUpload->tryStashFile( $this->getUser(), $isPartial );


            if ( $status->isGood() && !$status->getValue() ) {

                // Not actually a 'good' status...

                $status->fatal( new ApiMessage( 'apierror-stashinvalidfile', 'stashfailed' ) );

            }

        } catch ( Exception $e ) {

            $debugMessage = 'Stashing temporary file failed: ' . get_class( $e ) . ' ' . $e->getMessage();

            wfDebug( __METHOD__ . ' ' . $debugMessage . "\n" );

            $status = Status::newFatal( $this->getErrorFormatter()->getMessageFromException(

                $e, [ 'wrap' => new ApiMessage( 'apierror-stashexception', 'stashfailed' ) ]

            ) );

        }


        if ( $status->isGood() ) {

            $stashFile = $status->getValue();

            $data['filekey'] = $stashFile->getFileKey();

            // Backwards compatibility

            $data['sessionkey'] = $data['filekey'];

            return $data['filekey'];

        }


        if ( $status->getMessage()->getKey() === 'uploadstash-exception' ) {

            // The exceptions thrown by upload stash code and pretty silly and UploadBase returns poor

            // Statuses for it. Just extract the exception details and parse them ourselves.

            list( $exceptionType, $message ) = $status->getMessage()->getParams();

            $debugMessage = 'Stashing temporary file failed: ' . $exceptionType . ' ' . $message;

            wfDebug( __METHOD__ . ' ' . $debugMessage . "\n" );

        }


        // Bad status

        if ( $failureMode !== 'optional' ) {

            $this->dieStatus( $status );

        } else {

            $data['stasherrors'] = $this->getErrorFormatter()->arrayFromStatus( $status );

            return null;

        }

    }


    private function dieRecoverableError( $errors, $parameter = null ) {

        $this->performStash( 'optional', $data );


        if ( $parameter ) {

            $data['invalidparameter'] = $parameter;

        }


        $sv = StatusValue::newGood();

        foreach ( $errors as $error ) {

            $msg = ApiMessage::create( $error );

            $msg->setApiData( $msg->getApiData() + $data );

            $sv->fatal( $msg );

        }

        $this->dieStatus( $sv );

    }


    public function dieStatusWithCode( $status, $overrideCode, $moreExtraData = null ) {

        $sv = StatusValue::newGood();

        foreach ( $status->getErrors() as $error ) {

            $msg = ApiMessage::create( $error, $overrideCode );

            if ( $moreExtraData ) {

                $msg->setApiData( $msg->getApiData() + $moreExtraData );

            }

            $sv->fatal( $msg );

        }

        $this->dieStatus( $sv );

    }


    protected function selectUploadModule() {

        $request = $this->getMain()->getRequest();


        // chunk or one and only one of the following parameters is needed

        if ( !$this->mParams['chunk'] ) {

            $this->requireOnlyOneParameter( $this->mParams,

                'filekey', 'file', 'url' );

        }


        // Status report for "upload to stash"/"upload from stash"

        if ( $this->mParams['filekey'] && $this->mParams['checkstatus'] ) {

            $progress = UploadBase::getSessionStatus( $this->getUser(), $this->mParams['filekey'] );

            if ( !$progress ) {

                $this->dieWithError( 'api-upload-missingresult', 'missingresult' );

            } elseif ( !$progress['status']->isGood() ) {

                $this->dieStatusWithCode( $progress['status'], 'stashfailed' );

            }

            if ( isset( $progress['status']->value['verification'] ) ) {

                $this->checkVerification( $progress['status']->value['verification'] );

            }

            if ( isset( $progress['status']->value['warnings'] ) ) {

                $warnings = $this->transformWarnings( $progress['status']->value['warnings'] );

                if ( $warnings ) {

                    $progress['warnings'] = $warnings;

                }

            }

            unset( $progress['status'] ); // remove Status object

            $imageinfo = null;

            if ( isset( $progress['imageinfo'] ) ) {

                $imageinfo = $progress['imageinfo'];

                unset( $progress['imageinfo'] );

            }


            $this->getResult()->addValue( null, $this->getModuleName(), $progress );

            // Add 'imageinfo' in a separate addValue() call. File metadata can be unreasonably large,

            // so otherwise when it exceeded $wgAPIMaxResultSize, no result would be returned (T143993).

            if ( $imageinfo ) {

                $this->getResult()->addValue( $this->getModuleName(), 'imageinfo', $imageinfo );

            }


            return false;

        }


        // The following modules all require the filename parameter to be set

        if ( is_null( $this->mParams['filename'] ) ) {

            $this->dieWithError( [ 'apierror-missingparam', 'filename' ] );

        }


        if ( $this->mParams['chunk'] ) {

            // Chunk upload

            $this->mUpload = new UploadFromChunks( $this->getUser() );

            if ( isset( $this->mParams['filekey'] ) ) {

                if ( $this->mParams['offset'] === 0 ) {

                    $this->dieWithError( 'apierror-upload-filekeynotallowed', 'filekeynotallowed' );

                }


                // handle new chunk

                $this->mUpload->continueChunks(

                    $this->mParams['filename'],

                    $this->mParams['filekey'],

                    $request->getUpload( 'chunk' )

                );

            } else {

                if ( $this->mParams['offset'] !== 0 ) {

                    $this->dieWithError( 'apierror-upload-filekeyneeded', 'filekeyneeded' );

                }


                // handle first chunk

                $this->mUpload->initialize(

                    $this->mParams['filename'],

                    $request->getUpload( 'chunk' )

                );

            }

        } elseif ( isset( $this->mParams['filekey'] ) ) {

            // Upload stashed in a previous request

            if ( !UploadFromStash::isValidKey( $this->mParams['filekey'] ) ) {

                $this->dieWithError( 'apierror-invalid-file-key' );

            }


            $this->mUpload = new UploadFromStash( $this->getUser() );

            // This will not download the temp file in initialize() in async mode.

            // We still have enough information to call checkWarnings() and such.

            $this->mUpload->initialize(

                $this->mParams['filekey'], $this->mParams['filename'], !$this->mParams['async']

            );

        } elseif ( isset( $this->mParams['file'] ) ) {

            // Can't async upload directly from a POSTed file, we'd have to

            // stash the file and then queue the publish job. The user should

            // just submit the two API queries to perform those two steps.

            if ( $this->mParams['async'] ) {

                $this->dieWithError( 'apierror-cannot-async-upload-file' );

            }


            $this->mUpload = new UploadFromFile();

            $this->mUpload->initialize(

                $this->mParams['filename'],

                $request->getUpload( 'file' )

            );

        } elseif ( isset( $this->mParams['url'] ) ) {

            // Make sure upload by URL is enabled:

            if ( !UploadFromUrl::isEnabled() ) {

                $this->dieWithError( 'copyuploaddisabled' );

            }


            if ( !UploadFromUrl::isAllowedHost( $this->mParams['url'] ) ) {

                $this->dieWithError( 'apierror-copyuploadbaddomain' );

            }


            if ( !UploadFromUrl::isAllowedUrl( $this->mParams['url'] ) ) {

                $this->dieWithError( 'apierror-copyuploadbadurl' );

            }


            $this->mUpload = new UploadFromUrl;

            $this->mUpload->initialize( $this->mParams['filename'],

                $this->mParams['url'] );

        }


        return true;

    }


    protected function checkPermissions( $user ) {

        // Check whether the user has the appropriate permissions to upload anyway

        $permission = $this->mUpload->isAllowed( $user );


        if ( $permission !== true ) {

            if ( !$user->isLoggedIn() ) {

                $this->dieWithError( [ 'apierror-mustbeloggedin', $this->msg( 'action-upload' ) ] );

            }


            $this->dieStatus( User::newFatalPermissionDeniedStatus( $permission ) );

        }


        // Check blocks

        if ( $user->isBlocked() ) {

            $this->dieBlocked( $user->getBlock() );

        }


        // Global blocks

        if ( $user->isBlockedGlobally() ) {

            $this->dieBlocked( $user->getGlobalBlock() );

        }

    }


    protected function verifyUpload() {

        $verification = $this->mUpload->verifyUpload();

        if ( $verification['status'] === UploadBase::OK ) {

            return;

        }


        $this->checkVerification( $verification );

    }


    protected function checkVerification( array $verification ) {

        switch ( $verification['status'] ) {

            // Recoverable errors

            case UploadBase::MIN_LENGTH_PARTNAME:

                $this->dieRecoverableError( [ 'filename-tooshort' ], 'filename' );

                break;

            case UploadBase::ILLEGAL_FILENAME:

                $this->dieRecoverableError(

                    [ ApiMessage::create(

                        'illegal-filename', null, [ 'filename' => $verification['filtered'] ]

                    ) ], 'filename'

                );

                break;

            case UploadBase::FILENAME_TOO_LONG:

                $this->dieRecoverableError( [ 'filename-toolong' ], 'filename' );

                break;

            case UploadBase::FILETYPE_MISSING:

                $this->dieRecoverableError( [ 'filetype-missing' ], 'filename' );

                break;

            case UploadBase::WINDOWS_NONASCII_FILENAME:

                $this->dieRecoverableError( [ 'windows-nonascii-filename' ], 'filename' );

                break;


            // Unrecoverable errors

            case UploadBase::EMPTY_FILE:

                $this->dieWithError( 'empty-file' );

                break;

            case UploadBase::FILE_TOO_LARGE:

                $this->dieWithError( 'file-too-large' );

                break;


            case UploadBase::FILETYPE_BADTYPE:

                $extradata = [

                    'filetype' => $verification['finalExt'],

                    'allowed' => array_values( array_unique( $this->getConfig()->get( 'FileExtensions' ) ) )

                ];

                $extensions = array_unique( $this->getConfig()->get( 'FileExtensions' ) );

                $msg = [

                    'filetype-banned-type',

                    null, // filled in below

                    Message::listParam( $extensions, 'comma' ),

                    count( $extensions ),

                    null, // filled in below

                ];

                ApiResult::setIndexedTagName( $extradata['allowed'], 'ext' );


                if ( isset( $verification['blacklistedExt'] ) ) {

                    $msg[1] = Message::listParam( $verification['blacklistedExt'], 'comma' );

                    $msg[4] = count( $verification['blacklistedExt'] );

                    $extradata['blacklisted'] = array_values( $verification['blacklistedExt'] );

                    ApiResult::setIndexedTagName( $extradata['blacklisted'], 'ext' );

                } else {

                    $msg[1] = $verification['finalExt'];

                    $msg[4] = 1;

                }


                $this->dieWithError( $msg, 'filetype-banned', $extradata );

                break;


            case UploadBase::VERIFICATION_ERROR:

                $msg = ApiMessage::create( $verification['details'], 'verification-error' );

                if ( $verification['details'][0] instanceof MessageSpecifier ) {

                    $details = array_merge( [ $msg->getKey() ], $msg->getParams() );

                } else {

                    $details = $verification['details'];

                }

                ApiResult::setIndexedTagName( $details, 'detail' );

                $msg->setApiData( $msg->getApiData() + [ 'details' => $details ] );

                $this->dieWithError( $msg );

                break;


            case UploadBase::HOOK_ABORTED:

                $msg = $verification['error'] === '' ? 'hookaborted' : $verification['error'];

                $this->dieWithError( $msg, 'hookaborted', [ 'details' => $verification['error'] ] );

                break;

            default:

                $this->dieWithError( 'apierror-unknownerror-nocode', 'unknown-error',

                    [ 'details' => [ 'code' => $verification['status'] ] ] );

                break;

        }

    }


    protected function getApiWarnings() {

        $warnings = $this->mUpload->checkWarnings();


        return $this->transformWarnings( $warnings );

    }


    protected function transformWarnings( $warnings ) {

        if ( $warnings ) {

            // Add indices

            ApiResult::setIndexedTagName( $warnings, 'warning' );


            if ( isset( $warnings['duplicate'] ) ) {

                $dupes = [];

                foreach ( $warnings['duplicate'] as $dupe ) {

                    $dupes[] = $dupe->getName();

                }

                ApiResult::setIndexedTagName( $dupes, 'duplicate' );

                $warnings['duplicate'] = $dupes;

            }


            if ( isset( $warnings['exists'] ) ) {

                $warning = $warnings['exists'];

                unset( $warnings['exists'] );

                $localFile = isset( $warning['normalizedFile'] )

                    ? $warning['normalizedFile']

                    : $warning['file'];

                $warnings[$warning['warning']] = $localFile->getName();

            }


            if ( isset( $warnings['no-change'] ) ) {

                $file = $warnings['no-change'];

                unset( $warnings['no-change'] );


                $warnings['nochange'] = [

                    'timestamp' => wfTimestamp( TS_ISO_8601, $file->getTimestamp() )

                ];

            }


            if ( isset( $warnings['duplicate-version'] ) ) {

                $dupes = [];

                foreach ( $warnings['duplicate-version'] as $dupe ) {

                    $dupes[] = [

                        'timestamp' => wfTimestamp( TS_ISO_8601, $dupe->getTimestamp() )

                    ];

                }

                unset( $warnings['duplicate-version'] );


                ApiResult::setIndexedTagName( $dupes, 'ver' );

                $warnings['duplicateversions'] = $dupes;

            }

        }


        return $warnings;

    }


    protected function handleStashException( $e ) {

        switch ( get_class( $e ) ) {

            case UploadStashFileNotFoundException::class:

                $wrap = 'apierror-stashedfilenotfound';

                break;

            case UploadStashBadPathException::class:

                $wrap = 'apierror-stashpathinvalid';

                break;

            case UploadStashFileException::class:

                $wrap = 'apierror-stashfilestorage';

                break;

            case UploadStashZeroLengthFileException::class:

                $wrap = 'apierror-stashzerolength';

                break;

            case UploadStashNotLoggedInException::class:

                return StatusValue::newFatal( ApiMessage::create(

                    [ 'apierror-mustbeloggedin', $this->msg( 'action-upload' ) ], 'stashnotloggedin'

                ) );

            case UploadStashWrongOwnerException::class:

                $wrap = 'apierror-stashwrongowner';

                break;

            case UploadStashNoSuchKeyException::class:

                $wrap = 'apierror-stashnosuchfilekey';

                break;

            default:

                $wrap = [ 'uploadstash-exception', get_class( $e ) ];

                break;

        }

        return StatusValue::newFatal(

            $this->getErrorFormatter()->getMessageFromException( $e, [ 'wrap' => $wrap ] )

        );

    }


    protected function performUpload( $warnings ) {

        // Use comment as initial page text by default

        if ( is_null( $this->mParams['text'] ) ) {

            $this->mParams['text'] = $this->mParams['comment'];

        }


        $file = $this->mUpload->getLocalFile();


        // For preferences mode, we want to watch if 'watchdefault' is set,

        // or if the *file* doesn't exist, and either 'watchuploads' or

        // 'watchcreations' is set. But getWatchlistValue()'s automatic

        // handling checks if the *title* exists or not, so we need to check

        // all three preferences manually.

        $watch = $this->getWatchlistValue(

            $this->mParams['watchlist'], $file->getTitle(), 'watchdefault'

        );


        if ( !$watch && $this->mParams['watchlist'] == 'preferences' && !$file->exists() ) {

            $watch = (

                $this->getWatchlistValue( 'preferences', $file->getTitle(), 'watchuploads' ) ||

                $this->getWatchlistValue( 'preferences', $file->getTitle(), 'watchcreations' )

            );

        }


        // Deprecated parameters

        if ( $this->mParams['watch'] ) {

            $watch = true;

        }


        if ( $this->mParams['tags'] ) {

            $status = ChangeTags::canAddTagsAccompanyingChange( $this->mParams['tags'], $this->getUser() );

            if ( !$status->isOK() ) {

                $this->dieStatus( $status );

            }

        }


        // No errors, no warnings: do the upload

        if ( $this->mParams['async'] ) {

            $progress = UploadBase::getSessionStatus( $this->getUser(), $this->mParams['filekey'] );

            if ( $progress && $progress['result'] === 'Poll' ) {

                $this->dieWithError( 'apierror-upload-inprogress', 'publishfailed' );

            }

            UploadBase::setSessionStatus(

                $this->getUser(),

                $this->mParams['filekey'],

                [ 'result' => 'Poll', 'stage' => 'queued', 'status' => Status::newGood() ]

            );

            JobQueueGroup::singleton()->push( new PublishStashedFileJob(

                Title::makeTitle( NS_FILE, $this->mParams['filename'] ),

                [

                    'filename' => $this->mParams['filename'],

                    'filekey' => $this->mParams['filekey'],

                    'comment' => $this->mParams['comment'],

                    'tags' => $this->mParams['tags'],

                    'text' => $this->mParams['text'],

                    'watch' => $watch,

                    'session' => $this->getContext()->exportSession()

                ]

            ) );

            $result['result'] = 'Poll';

            $result['stage'] = 'queued';

        } else {

            $status = $this->mUpload->performUpload( $this->mParams['comment'],

                $this->mParams['text'], $watch, $this->getUser(), $this->mParams['tags'] );


            if ( !$status->isGood() ) {

                $this->dieRecoverableError( $status->getErrors() );

            }

            $result['result'] = 'Success';

        }


        $result['filename'] = $file->getName();

        if ( $warnings && count( $warnings ) > 0 ) {

            $result['warnings'] = $warnings;

        }


        return $result;

    }


    public function mustBePosted() {

        return true;

    }


    public function isWriteMode() {

        return true;

    }


    public function getAllowedParams() {

        $params = [

            'filename' => [

                ApiBase::PARAM_TYPE => 'string',

            ],

            'comment' => [

                ApiBase::PARAM_DFLT => ''

            ],

            'tags' => [

                ApiBase::PARAM_TYPE => 'tags',

                ApiBase::PARAM_ISMULTI => true,

            ],

            'text' => [

                ApiBase::PARAM_TYPE => 'text',

            ],

            'watch' => [

                ApiBase::PARAM_DFLT => false,

                ApiBase::PARAM_DEPRECATED => true,

            ],

            'watchlist' => [

                ApiBase::PARAM_DFLT => 'preferences',

                ApiBase::PARAM_TYPE => [

                    'watch',

                    'preferences',

                    'nochange'

                ],

            ],

            'ignorewarnings' => false,

            'file' => [

                ApiBase::PARAM_TYPE => 'upload',

            ],

            'url' => null,

            'filekey' => null,

            'sessionkey' => [

                ApiBase::PARAM_DEPRECATED => true,

            ],

            'stash' => false,


            'filesize' => [

                ApiBase::PARAM_TYPE => 'integer',

                ApiBase::PARAM_MIN => 0,

                ApiBase::PARAM_MAX => UploadBase::getMaxUploadSize(),

            ],

            'offset' => [

                ApiBase::PARAM_TYPE => 'integer',

                ApiBase::PARAM_MIN => 0,

            ],

            'chunk' => [

                ApiBase::PARAM_TYPE => 'upload',

            ],


            'async' => false,

            'checkstatus' => false,

        ];


        return $params;

    }


    public function needsToken() {

        return 'csrf';

    }


    protected function getExamplesMessages() {

        return [

            'action=upload&filename=Wiki.png' .

                '&url=http%3A//upload.wikimedia.org/wikipedia/en/b/bc/Wiki.png&token=123ABC'

                => 'apihelp-upload-example-url',

            'action=upload&filename=Wiki.png&filekey=filekey&ignorewarnings=1&token=123ABC'

                => 'apihelp-upload-example-filekey',

        ];

    }


    public function getHelpUrls() {

        return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Upload';

    }


}


wfDebug
wfDebug( $text, $dest='all', array $context=[])
Sends a line to the debug log if enabled or, optionally, to a comment in output.
Definition GlobalFunctions.php:994

wfTimestamp
wfTimestamp( $outputtype=TS_UNIX, $ts=0)
Get a timestamp string in one of various formats.
Definition GlobalFunctions.php:1980

ApiBase
This abstract class implements many basic API functions, and is the base of all API classes.
Definition ApiBase.php:37

ApiBase\PARAM_DEPRECATED
const PARAM_DEPRECATED
(boolean) Is the parameter deprecated (will show a warning)?
Definition ApiBase.php:105

ApiBase\PARAM_MAX
const PARAM_MAX
(integer) Max value allowed for the parameter, for PARAM_TYPE 'integer' and 'limit'.
Definition ApiBase.php:90

ApiBase\dieWithError
dieWithError( $msg, $code=null, $data=null, $httpCode=null)
Abort execution with an error.
Definition ApiBase.php:1895

ApiBase\dieDebug
static dieDebug( $method, $message)
Internal code errors should be reported with this method.
Definition ApiBase.php:2078

ApiBase\getMain
getMain()
Get the main module.
Definition ApiBase.php:537

ApiBase\PARAM_TYPE
const PARAM_TYPE
(string|string[]) Either an array of allowed value strings, or a string type as described below.
Definition ApiBase.php:87

ApiBase\getErrorFormatter
getErrorFormatter()
Get the error formatter.
Definition ApiBase.php:655

ApiBase\PARAM_DFLT
const PARAM_DFLT
(null|boolean|integer|string) Default value of the parameter.
Definition ApiBase.php:48

ApiBase\extractRequestParams
extractRequestParams( $parseLimit=true)
Using getAllowedParams(), this function makes an array of the values provided by the user,...
Definition ApiBase.php:749

ApiBase\PARAM_MIN
const PARAM_MIN
(integer) Lowest value allowed for the parameter, for PARAM_TYPE 'integer' and 'limit'.
Definition ApiBase.php:99

ApiBase\getResult
getResult()
Get the result object.
Definition ApiBase.php:641

ApiBase\getWatchlistValue
getWatchlistValue( $watchlist, $titleObj, $userOption=null)
Return true if we're to watch the page, false if not, null if no change.
Definition ApiBase.php:991

ApiBase\getModuleName
getModuleName()
Get the name of the module being executed by this instance.
Definition ApiBase.php:521

ApiBase\dieStatus
dieStatus(StatusValue $status)
Throw an ApiUsageException based on the Status object.
Definition ApiBase.php:1960

ApiBase\dieBlocked
dieBlocked(Block $block)
Throw an ApiUsageException, which will (if uncaught) call the main module's error handler and die wit...
Definition ApiBase.php:1935

ApiBase\requireOnlyOneParameter
requireOnlyOneParameter( $params, $required)
Die if none or more than one of a certain set of parameters is set and not false.
Definition ApiBase.php:785

ApiBase\PARAM_ISMULTI
const PARAM_ISMULTI
(boolean) Accept multiple pipe-separated values for this parameter (e.g.
Definition ApiBase.php:51

ApiMessage
Extension of Message implementing IApiMessage.
Definition ApiMessage.php:205

ApiMessage\create
static create( $msg, $code=null, array $data=null)
Create an IApiMessage for the message.
Definition ApiMessage.php:219

ApiResult\setIndexedTagName
static setIndexedTagName(array &$arr, $tag)
Set the tag name for numeric-keyed values in XML format.
Definition ApiResult.php:616

ApiUpload
Definition ApiUpload.php:26

ApiUpload\performStash
performStash( $failureMode, &$data=null)
Stash the file and add the file key, or error information if it fails, to the data.
Definition ApiUpload.php:312

ApiUpload\execute
execute()
Evaluates the parameters, performs the requested query, and sets up the result.
Definition ApiUpload.php:32

ApiUpload\checkPermissions
checkPermissions( $user)
Checks that the user has permissions to perform this upload.
Definition ApiUpload.php:532

ApiUpload\dieRecoverableError
dieRecoverableError( $errors, $parameter=null)
Throw an error that the user can recover from by providing a better value for $parameter.
Definition ApiUpload.php:363

ApiUpload\verifyUpload
verifyUpload()
Performs file verification, dies on error.
Definition ApiUpload.php:558

ApiUpload\$mUpload
UploadBase UploadFromChunks $mUpload
Definition ApiUpload.php:28

ApiUpload\getAllowedParams
getAllowedParams()
Returns an array of allowed parameters (parameter name) => (default value) or (parameter name) => (ar...
Definition ApiUpload.php:854

ApiUpload\transformWarnings
transformWarnings( $warnings)
Definition ApiUpload.php:666

ApiUpload\handleStashException
handleStashException( $e)
Handles a stash exception, giving a useful error to the user.
Definition ApiUpload.php:725

ApiUpload\getHelpUrls
getHelpUrls()
Return links to more detailed help pages about the module.
Definition ApiUpload.php:926

ApiUpload\dieStatusWithCode
dieStatusWithCode( $status, $overrideCode, $moreExtraData=null)
Like dieStatus(), but always uses $overrideCode for the error code, unless the code comes from IApiMe...
Definition ApiUpload.php:388

ApiUpload\isWriteMode
isWriteMode()
Indicates whether this module requires write mode.
Definition ApiUpload.php:850

ApiUpload\$mParams
$mParams
Definition ApiUpload.php:30

ApiUpload\getWarningsResult
getWarningsResult( $warnings)
Get Warnings Result.
Definition ApiUpload.php:172

ApiUpload\getContextResult
getContextResult()
Get an upload result based on upload context.
Definition ApiUpload.php:125

ApiUpload\getChunkResult
getChunkResult( $warnings)
Get the result of a chunk upload.
Definition ApiUpload.php:188

ApiUpload\getExamplesMessages
getExamplesMessages()
Returns usage examples for this module.
Definition ApiUpload.php:916

ApiUpload\selectUploadModule
selectUploadModule()
Select an upload module and set it to mUpload.
Definition ApiUpload.php:407

ApiUpload\getStashResult
getStashResult( $warnings)
Get Stash Result, throws an exception if the file could not be stashed.
Definition ApiUpload.php:154

ApiUpload\needsToken
needsToken()
Returns the token type this module requires in order to execute.
Definition ApiUpload.php:912

ApiUpload\performUpload
performUpload( $warnings)
Perform the actual upload.
Definition ApiUpload.php:765

ApiUpload\checkVerification
checkVerification(array $verification)
Performs file verification, dies on error.
Definition ApiUpload.php:571

ApiUpload\mustBePosted
mustBePosted()
Indicates whether this module must be called with a POST request.
Definition ApiUpload.php:846

ApiUpload\getApiWarnings
getApiWarnings()
Check warnings.
Definition ApiUpload.php:660

AssembleUploadChunksJob
Assemble the segments of a chunked upload.
Definition AssembleUploadChunksJob.php:30

ChangeTags\canAddTagsAccompanyingChange
static canAddTagsAccompanyingChange(array $tags, User $user=null)
Is it OK to allow the user to apply all the specified tags at the same time as they edit/make the cha...
Definition ChangeTags.php:483

ContextSource\msg
msg( $key)
Get a Message object with context set Parameters are the same as wfMessage()
Definition ContextSource.php:168

ContextSource\getUser
getUser()
Definition ContextSource.php:120

ContextSource\getConfig
getConfig()
Definition ContextSource.php:63

ContextSource\exportSession
exportSession()
Export the resolved user IP, HTTP headers, user ID, and session ID.
Definition ContextSource.php:181

ContextSource\getContext
getContext()
Get the base IContextSource object.
Definition ContextSource.php:40

JobQueueGroup\singleton
static singleton( $domain=false)
Definition JobQueueGroup.php:72

PublishStashedFileJob
Upload a file from the upload stash into the local file repo.
Definition PublishStashedFileJob.php:32

UploadBase
UploadBase and subclasses are the backend of MediaWiki's file uploads.
Definition UploadBase.php:39

UploadBase\EMPTY_FILE
const EMPTY_FILE
Definition UploadBase.php:71

UploadBase\getSessionStatus
static getSessionStatus(User $user, $statusKey)
Get the current status of a chunked upload (used for polling)
Definition UploadBase.php:2216

UploadBase\FILETYPE_MISSING
const FILETYPE_MISSING
Definition UploadBase.php:75

UploadBase\isEnabled
static isEnabled()
Returns true if uploads are enabled.
Definition UploadBase.php:113

UploadBase\HOOK_ABORTED
const HOOK_ABORTED
Definition UploadBase.php:78

UploadBase\VERIFICATION_ERROR
const VERIFICATION_ERROR
Definition UploadBase.php:77

UploadBase\WINDOWS_NONASCII_FILENAME
const WINDOWS_NONASCII_FILENAME
Definition UploadBase.php:80

UploadBase\FILETYPE_BADTYPE
const FILETYPE_BADTYPE
Definition UploadBase.php:76

UploadBase\getMaxUploadSize
static getMaxUploadSize( $forType=null)
Get the MediaWiki maximum uploaded file size for given type of upload, based on $wgMaxUploadSize.
Definition UploadBase.php:2174

UploadBase\OK
const OK
Definition UploadBase.php:70

UploadBase\FILE_TOO_LARGE
const FILE_TOO_LARGE
Definition UploadBase.php:79

UploadBase\isThrottled
static isThrottled( $user)
Returns true if the user has surpassed the upload rate limit, false otherwise.
Definition UploadBase.php:148

UploadBase\ILLEGAL_FILENAME
const ILLEGAL_FILENAME
Definition UploadBase.php:73

UploadBase\MIN_LENGTH_PARTNAME
const MIN_LENGTH_PARTNAME
Definition UploadBase.php:72

UploadBase\FILENAME_TOO_LONG
const FILENAME_TOO_LONG
Definition UploadBase.php:81

UploadBase\setSessionStatus
static setSessionStatus(User $user, $statusKey, $value)
Set the current status of a chunked upload (used for polling)
Definition UploadBase.php:2233

UploadFromChunks
Implements uploading from chunks.
Definition UploadFromChunks.php:30

UploadFromFile
Implements regular file uploads.
Definition UploadFromFile.php:30

UploadFromStash
Implements uploading from previously stored file.
Definition UploadFromStash.php:30

UploadFromStash\isValidKey
static isValidKey( $key)
Definition UploadFromStash.php:74

UploadFromUrl
Implements uploading from a HTTP resource.
Definition UploadFromUrl.php:31

UploadFromUrl\initialize
initialize( $name, $url)
Entry point for API upload.
Definition UploadFromUrl.php:134

UploadFromUrl\isAllowedHost
static isAllowedHost( $url)
Checks whether the URL is for an allowed host The domains in the whitelist can include wildcard chara...
Definition UploadFromUrl.php:73

UploadFromUrl\isAllowedUrl
static isAllowedUrl( $url)
Checks whether the URL is not allowed.
Definition UploadFromUrl.php:117

UploadFromUrl\isEnabled
static isEnabled()
Checks if the upload from URL feature is enabled.
Definition UploadFromUrl.php:59

UploadStashException
Definition UploadStash.php:773

User\newFatalPermissionDeniedStatus
static newFatalPermissionDeniedStatus( $permission)
Factory function for fatal permission-denied errors.
Definition User.php:5710

list
deferred txt A few of the database updates required by various functions here can be deferred until after the result page is displayed to the user For updating the view updating the linked to tables after a etc PHP does not yet have any way to tell the server to actually return and disconnect while still running these but it might have such a feature in the future We handle these by creating a deferred update object and putting those objects on a global list
Definition deferred.txt:11

$result
namespace being checked & $result
Definition hooks.txt:2323

$request
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on $request
Definition hooks.txt:2806

$status
Status::newGood()` to allow deletion, and then `return false` from the hook function. Ensure you consume the 'ChangeTagAfterDelete' hook to carry out custom deletion actions. $tag:name of the tag $user:user initiating the action & $status:Status object. See above. 'ChangeTagsListActive':Allows you to nominate which of the tags your extension uses are in active use. & $tags:list of all active tags. Append to this array. 'ChangeTagsAfterUpdateTags':Called after tags have been updated with the ChangeTags::updateTags function. Params:$addedTags:tags effectively added in the update $removedTags:tags effectively removed in the update $prevTags:tags that were present prior to the update $rc_id:recentchanges table id $rev_id:revision table id $log_id:logging table id $params:tag params $rc:RecentChange being tagged when the tagging accompanies the action or null $user:User who performed the tagging when the tagging is subsequent to the action or null 'ChangeTagsAllowedAdd':Called when checking if a user can add tags to a change. & $allowedTags:List of all the tags the user is allowed to add. Any tags the user wants to add( $addTags) that are not in this array will cause it to fail. You may add or remove tags to this array as required. $addTags:List of tags user intends to add. $user:User who is adding the tags. 'ChangeUserGroups':Called before user groups are changed. $performer:The User who will perform the change $user:The User whose groups will be changed & $add:The groups that will be added & $remove:The groups that will be removed 'Collation::factory':Called if $wgCategoryCollation is an unknown collation. $collationName:Name of the collation in question & $collationObject:Null. Replace with a subclass of the Collation class that implements the collation given in $collationName. 'ConfirmEmailComplete':Called after a user 's email has been confirmed successfully. $user:user(object) whose email is being confirmed 'ContentAlterParserOutput':Modify parser output for a given content object. Called by Content::getParserOutput after parsing has finished. Can be used for changes that depend on the result of the parsing but have to be done before LinksUpdate is called(such as adding tracking categories based on the rendered HTML). $content:The Content to render $title:Title of the page, as context $parserOutput:ParserOutput to manipulate 'ContentGetParserOutput':Customize parser output for a given content object, called by AbstractContent::getParserOutput. May be used to override the normal model-specific rendering of page content. $content:The Content to render $title:Title of the page, as context $revId:The revision ID, as context $options:ParserOptions for rendering. To avoid confusing the parser cache, the output can only depend on parameters provided to this hook function, not on global state. $generateHtml:boolean, indicating whether full HTML should be generated. If false, generation of HTML may be skipped, but other information should still be present in the ParserOutput object. & $output:ParserOutput, to manipulate or replace 'ContentHandlerDefaultModelFor':Called when the default content model is determined for a given title. May be used to assign a different model for that title. $title:the Title in question & $model:the model name. Use with CONTENT_MODEL_XXX constants. 'ContentHandlerForModelID':Called when a ContentHandler is requested for a given content model name, but no entry for that model exists in $wgContentHandlers. Note:if your extension implements additional models via this hook, please use GetContentModels hook to make them known to core. $modeName:the requested content model name & $handler:set this to a ContentHandler object, if desired. 'ContentModelCanBeUsedOn':Called to determine whether that content model can be used on a given page. This is especially useful to prevent some content models to be used in some special location. $contentModel:ID of the content model in question $title:the Title in question. & $ok:Output parameter, whether it is OK to use $contentModel on $title. Handler functions that modify $ok should generally return false to prevent further hooks from further modifying $ok. 'ContribsPager::getQueryInfo':Before the contributions query is about to run & $pager:Pager object for contributions & $queryInfo:The query for the contribs Pager 'ContribsPager::reallyDoQuery':Called before really executing the query for My Contributions & $data:an array of results of all contribs queries $pager:The ContribsPager object hooked into $offset:Index offset, inclusive $limit:Exact query limit $descending:Query direction, false for ascending, true for descending 'ContributionsLineEnding':Called before a contributions HTML line is finished $page:SpecialPage object for contributions & $ret:the HTML line $row:the DB row for this line & $classes:the classes to add to the surrounding< li > & $attribs:associative array of other HTML attributes for the< li > element. Currently only data attributes reserved to MediaWiki are allowed(see Sanitizer::isReservedDataAttribute). 'ContributionsToolLinks':Change tool links above Special:Contributions $id:User identifier $title:User page title & $tools:Array of tool links $specialPage:SpecialPage instance for context and services. Can be either SpecialContributions or DeletedContributionsPage. Extensions should type hint against a generic SpecialPage though. 'ConvertContent':Called by AbstractContent::convert when a conversion to another content model is requested. Handler functions that modify $result should generally return false to disable further attempts at conversion. $content:The Content object to be converted. $toModel:The ID of the content model to convert to. $lossy: boolean indicating whether lossy conversion is allowed. & $result:Output parameter, in case the handler function wants to provide a converted Content object. Note that $result->getContentModel() must return $toModel. 'CustomEditor':When invoking the page editor Return true to allow the normal editor to be used, or false if implementing a custom editor, e.g. for a special namespace, etc. $article:Article being edited $user:User performing the edit 'DatabaseOraclePostInit':Called after initialising an Oracle database $db:the DatabaseOracle object 'DeletedContribsPager::reallyDoQuery':Called before really executing the query for Special:DeletedContributions Similar to ContribsPager::reallyDoQuery & $data:an array of results of all contribs queries $pager:The DeletedContribsPager object hooked into $offset:Index offset, inclusive $limit:Exact query limit $descending:Query direction, false for ascending, true for descending 'DeletedContributionsLineEnding':Called before a DeletedContributions HTML line is finished. Similar to ContributionsLineEnding $page:SpecialPage object for DeletedContributions & $ret:the HTML line $row:the DB row for this line & $classes:the classes to add to the surrounding< li > & $attribs:associative array of other HTML attributes for the< li > element. Currently only data attributes reserved to MediaWiki are allowed(see Sanitizer::isReservedDataAttribute). 'DeleteUnknownPreferences':Called by the cleanupPreferences.php maintenance script to build a WHERE clause with which to delete preferences that are not known about. This hook is used by extensions that have dynamically-named preferences that should not be deleted in the usual cleanup process. For example, the Gadgets extension creates preferences prefixed with 'gadget-', and so anything with that prefix is excluded from the deletion. &where:An array that will be passed as the $cond parameter to IDatabase::select() to determine what will be deleted from the user_properties table. $db:The IDatabase object, useful for accessing $db->buildLike() etc. 'DifferenceEngineAfterLoadNewText':called in DifferenceEngine::loadNewText() after the new revision 's content has been loaded into the class member variable $differenceEngine->mNewContent but before returning true from this function. $differenceEngine:DifferenceEngine object 'DifferenceEngineLoadTextAfterNewContentIsLoaded':called in DifferenceEngine::loadText() after the new revision 's content has been loaded into the class member variable $differenceEngine->mNewContent but before checking if the variable 's value is null. This hook can be used to inject content into said class member variable. $differenceEngine:DifferenceEngine object 'DifferenceEngineMarkPatrolledLink':Allows extensions to change the "mark as patrolled" link which is shown both on the diff header as well as on the bottom of a page, usually wrapped in a span element which has class="patrollink". $differenceEngine:DifferenceEngine object & $markAsPatrolledLink:The "mark as patrolled" link HTML(string) $rcid:Recent change ID(rc_id) for this change(int) 'DifferenceEngineMarkPatrolledRCID':Allows extensions to possibly change the rcid parameter. For example the rcid might be set to zero due to the user being the same as the performer of the change but an extension might still want to show it under certain conditions. & $rcid:rc_id(int) of the change or 0 $differenceEngine:DifferenceEngine object $change:RecentChange object $user:User object representing the current user 'DifferenceEngineNewHeader':Allows extensions to change the $newHeader variable, which contains information about the new revision, such as the revision 's author, whether the revision was marked as a minor edit or not, etc. $differenceEngine:DifferenceEngine object & $newHeader:The string containing the various #mw-diff-otitle[1-5] divs, which include things like revision author info, revision comment, RevisionDelete link and more $formattedRevisionTools:Array containing revision tools, some of which may have been injected with the DiffRevisionTools hook $nextlink:String containing the link to the next revision(if any) $status
Definition hooks.txt:1051

$e
returning false will NOT prevent logging $e
Definition hooks.txt:2176

NS_FILE
const NS_FILE
Definition Defines.php:80

MessageSpecifier
Definition MessageSpecifier.php:21

$params
$params
Definition styleTest.css.php:40