REL1_31/php/AuthenticationRequest_8php_source.html

<?php

namespace MediaWiki\Auth;


use Message;


abstract class AuthenticationRequest {


    const OPTIONAL = 0;


    const REQUIRED = 1;


    const PRIMARY_REQUIRED = 2;


    public $action = null;


    public $required = self::REQUIRED;


    public $returnToUrl = null;


    public $username = null;


    public function getUniqueId() {

        return get_called_class();

    }


    abstract public function getFieldInfo();


    public function getMetadata() {

        return [];

    }


    public function loadFromSubmission( array $data ) {

        $fields = array_filter( $this->getFieldInfo(), function ( $info ) {

            return $info['type'] !== 'null';

        } );

        if ( !$fields ) {

            return false;

        }


        foreach ( $fields as $field => $info ) {

            // Checkboxes and buttons are special. Depending on the method used

            // to populate $data, they might be unset meaning false or they

            // might be boolean. Further, image buttons might submit the

            // coordinates of the click rather than the expected value.

            if ( $info['type'] === 'checkbox' || $info['type'] === 'button' ) {

                $this->$field = isset( $data[$field] ) && $data[$field] !== false

                    || isset( $data["{$field}_x"] ) && $data["{$field}_x"] !== false;

                if ( !$this->$field && empty( $info['optional'] ) ) {

                    return false;

                }

                continue;

            }


            // Multiselect are too, slightly

            if ( !isset( $data[$field] ) && $info['type'] === 'multiselect' ) {

                $data[$field] = [];

            }


            if ( !isset( $data[$field] ) ) {

                return false;

            }

            if ( $data[$field] === '' || $data[$field] === [] ) {

                if ( empty( $info['optional'] ) ) {

                    return false;

                }

            } else {

                switch ( $info['type'] ) {

                    case 'select':

                        if ( !isset( $info['options'][$data[$field]] ) ) {

                            return false;

                        }

                        break;


                    case 'multiselect':

                        $data[$field] = (array)$data[$field];

                        $allowed = array_keys( $info['options'] );

                        if ( array_diff( $data[$field], $allowed ) !== [] ) {

                            return false;

                        }

                        break;

                }

            }


            $this->$field = $data[$field];

        }


        return true;

    }


    public function describeCredentials() {

        return [

            'provider' => new \RawMessage( '$1', [ get_called_class() ] ),

            'account' => new \RawMessage( '$1', [ $this->getUniqueId() ] ),

        ];

    }


    public static function loadRequestsFromSubmission( array $reqs, array $data ) {

        return array_values( array_filter( $reqs, function ( $req ) use ( $data ) {

            return $req->loadFromSubmission( $data );

        } ) );

    }


    public static function getRequestByClass( array $reqs, $class, $allowSubclasses = false ) {

        $requests = array_filter( $reqs, function ( $req ) use ( $class, $allowSubclasses ) {

            if ( $allowSubclasses ) {

                return is_a( $req, $class, false );

            } else {

                return get_class( $req ) === $class;

            }

        } );

        return count( $requests ) === 1 ? reset( $requests ) : null;

    }


    public static function getUsernameFromRequests( array $reqs ) {

        $username = null;

        $otherClass = null;

        foreach ( $reqs as $req ) {

            $info = $req->getFieldInfo();

            if ( $info && array_key_exists( 'username', $info ) && $req->username !== null ) {

                if ( $username === null ) {

                    $username = $req->username;

                    $otherClass = get_class( $req );

                } elseif ( $username !== $req->username ) {

                    $requestClass = get_class( $req );

                    throw new \UnexpectedValueException( "Conflicting username fields: \"{$req->username}\" from "

                        . "$requestClass::\$username vs. \"$username\" from $otherClass::\$username" );

                }

            }

        }

        return $username;

    }


    public static function mergeFieldInfo( array $reqs ) {

        $merged = [];


        // fields that are required by some primary providers but not others are not actually required

        $primaryRequests = array_filter( $reqs, function ( $req ) {

            return $req->required === AuthenticationRequest::PRIMARY_REQUIRED;

        } );

        $sharedRequiredPrimaryFields = array_reduce( $primaryRequests, function ( $shared, $req ) {

            $required = array_keys( array_filter( $req->getFieldInfo(), function ( $options ) {

                return empty( $options['optional'] );

            } ) );

            if ( $shared === null ) {

                return $required;

            } else {

                return array_intersect( $shared, $required );

            }

        }, null );


        foreach ( $reqs as $req ) {

            $info = $req->getFieldInfo();

            if ( !$info ) {

                continue;

            }


            foreach ( $info as $name => $options ) {

                if (

                    // If the request isn't required, its fields aren't required either.

                    $req->required === self::OPTIONAL

                    // If there is a primary not requiring this field, no matter how many others do,

                    // authentication can proceed without it.

                    || $req->required === self::PRIMARY_REQUIRED

                        && !in_array( $name, $sharedRequiredPrimaryFields, true )

                ) {

                    $options['optional'] = true;

                } else {

                    $options['optional'] = !empty( $options['optional'] );

                }


                $options['sensitive'] = !empty( $options['sensitive'] );


                if ( !array_key_exists( $name, $merged ) ) {

                    $merged[$name] = $options;

                } elseif ( $merged[$name]['type'] !== $options['type'] ) {

                    throw new \UnexpectedValueException( "Field type conflict for \"$name\", " .

                        "\"{$merged[$name]['type']}\" vs \"{$options['type']}\""

                    );

                } else {

                    if ( isset( $options['options'] ) ) {

                        if ( isset( $merged[$name]['options'] ) ) {

                            $merged[$name]['options'] += $options['options'];

                        } else {

                            // @codeCoverageIgnoreStart

                            $merged[$name]['options'] = $options['options'];

                            // @codeCoverageIgnoreEnd

                        }

                    }


                    $merged[$name]['optional'] = $merged[$name]['optional'] && $options['optional'];

                    $merged[$name]['sensitive'] = $merged[$name]['sensitive'] || $options['sensitive'];


                    // No way to merge 'value', 'image', 'help', or 'label', so just use

                    // the value from the first request.

                }

            }

        }


        return $merged;

    }


    public static function __set_state( $data ) {

        $ret = new static();

        foreach ( $data as $k => $v ) {

            $ret->$k = $v;

        }

        return $ret;

    }


}


MediaWiki\Auth\AuthenticationRequest
This is a value object for authentication requests.
Definition AuthenticationRequest.php:37

MediaWiki\Auth\AuthenticationRequest\getFieldInfo
getFieldInfo()
Fetch input field info.

MediaWiki\Auth\AuthenticationRequest\$returnToUrl
string null $returnToUrl
Return-to URL, in case of redirect.
Definition AuthenticationRequest.php:64

MediaWiki\Auth\AuthenticationRequest\OPTIONAL
const OPTIONAL
Indicates that the request is not required for authentication to proceed.
Definition AuthenticationRequest.php:40

MediaWiki\Auth\AuthenticationRequest\$username
string null $username
Username.
Definition AuthenticationRequest.php:68

MediaWiki\Auth\AuthenticationRequest\$action
string null $action
The AuthManager::ACTION_* constant this request was created to be used for.
Definition AuthenticationRequest.php:57

MediaWiki\Auth\AuthenticationRequest\__set_state
static __set_state( $data)
Implementing this mainly for use from the unit tests.
Definition AuthenticationRequest.php:372

MediaWiki\Auth\AuthenticationRequest\getUniqueId
getUniqueId()
Supply a unique key for deduplication.
Definition AuthenticationRequest.php:85

MediaWiki\Auth\AuthenticationRequest\$required
int $required
For login, continue, and link actions, one of self::OPTIONAL, self::REQUIRED, or self::PRIMARY_REQUIR...
Definition AuthenticationRequest.php:61

MediaWiki\Auth\AuthenticationRequest\mergeFieldInfo
static mergeFieldInfo(array $reqs)
Merge the output of multiple AuthenticationRequest::getFieldInfo() calls.
Definition AuthenticationRequest.php:298

MediaWiki\Auth\AuthenticationRequest\loadRequestsFromSubmission
static loadRequestsFromSubmission(array $reqs, array $data)
Update a set of requests with form submit data, discarding ones that fail.
Definition AuthenticationRequest.php:238

MediaWiki\Auth\AuthenticationRequest\describeCredentials
describeCredentials()
Describe the credentials represented by this request.
Definition AuthenticationRequest.php:225

MediaWiki\Auth\AuthenticationRequest\PRIMARY_REQUIRED
const PRIMARY_REQUIRED
Indicates that the request is required by a primary authentication provider.
Definition AuthenticationRequest.php:51

MediaWiki\Auth\AuthenticationRequest\getMetadata
getMetadata()
Returns metadata about this request.
Definition AuthenticationRequest.php:135

MediaWiki\Auth\AuthenticationRequest\REQUIRED
const REQUIRED
Indicates that the request is required for authentication to proceed.
Definition AuthenticationRequest.php:46

MediaWiki\Auth\AuthenticationRequest\getUsernameFromRequests
static getUsernameFromRequests(array $reqs)
Get the username from the set of requests.
Definition AuthenticationRequest.php:273

MediaWiki\Auth\AuthenticationRequest\getRequestByClass
static getRequestByClass(array $reqs, $class, $allowSubclasses=false)
Select a request by class name.
Definition AuthenticationRequest.php:253

MediaWiki\Auth\AuthenticationRequest\loadFromSubmission
loadFromSubmission(array $data)
Initialize form submitted form data.
Definition AuthenticationRequest.php:151

Message
The Message class provides methods which fulfil two basic services:
Definition Message.php:159

function
when a variable name is used in a function
Definition design.txt:94

$req
this hook is for auditing only $req
Definition hooks.txt:990

array
the array() calling protocol came about after MediaWiki 1.4rc1.

$options
null means default in associative array with keys and values unescaped Should be merged with default with a value of false meaning to suppress the attribute in associative array with keys and values unescaped & $options
Definition hooks.txt:2001

$ret
null means default in associative array with keys and values unescaped Should be merged with default with a value of false meaning to suppress the attribute in associative array with keys and values unescaped noclasses & $ret
Definition hooks.txt:2005

$requests
Allows to change the fields on the form that will be generated are created Can be used to omit specific feeds from being outputted You must not use this hook to add use OutputPage::addFeedLink() instead. & $feedLinks hooks can tweak the array to change how login etc forms should look $requests
Definition hooks.txt:304

$name
Allows to change the fields on the form that will be generated $name
Definition hooks.txt:302

MediaWiki\Auth
Definition AbstractAuthenticationProvider.php:22