REL1_31/php/SpecialOATHEnable_8php_source.html

<?php


class SpecialOATHEnable extends FormSpecialPage {

    private $OATHRepository;


    private $OATHUser;


    public function __construct( OATHUserRepository $repository, OATHUser $user ) {

        parent::__construct( 'OATH', 'oathauth-enable', false );


        $this->OATHRepository = $repository;

        $this->OATHUser = $user;

    }


    public function doesWrites() {

        return true;

    }


    public function alterForm( HTMLForm $form ) {

        $form->setMessagePrefix( 'oathauth' );

        $form->setWrapperLegend( false );

        $form->getOutput()->setPageTitle( $this->msg( 'oathauth-enable' ) );

        $form->getOutput()->addModules( 'ext.oath.showqrcode' );

        $form->getOutput()->addModuleStyles( 'ext.oath.showqrcode.styles' );

    }


    protected function getDisplayFormat() {

        return 'ooui';

    }


    public function requiresUnblock() {

        return false;

    }


    protected function checkExecutePermissions( User $user ) {

        parent::checkExecutePermissions( $user );


        $this->requireLogin();

    }


    public function execute( $par ) {

        $this->getOutput()->disallowUserJs();

        parent::execute( $par );

    }


    protected function getFormFields() {

        $key = $this->getRequest()->getSessionData( 'oathauth_key' );


        if ( $key === null ) {

            $key = OATHAuthKey::newFromRandom();

            $this->getRequest()->setSessionData( 'oathauth_key', $key );

        }


        $secret = $key->getSecret();

        $label = "{$this->OATHUser->getIssuer()}:{$this->OATHUser->getAccount()}";

        $qrcodeUrl = "otpauth://totp/"

            . rawurlencode( $label )

            . "?secret="

            . rawurlencode( $secret )

            . "&issuer="

            . rawurlencode( $this->OATHUser->getIssuer() );


        $qrcodeElement = Html::element( 'div', [

            'data-mw-qrcode-url' => $qrcodeUrl,

            'class' => 'mw-display-qrcode',

            // Include width/height, so js won't re-arrange layout

            // And non-js users will have this hidden with CSS

            'style' => 'width: 256px; height: 256px;'

        ] );


        return [

            'app' => [

                'type' => 'info',

                'default' => $this->msg( 'oathauth-step1-test' )->escaped(),

                'raw' => true,

                'section' => 'step1',

            ],

            'qrcode' => [

                'type' => 'info',

                'default' => $qrcodeElement,

                'raw' => true,

                'section' => 'step2',

            ],

            'manual' => [

                'type' => 'info',

                'label-message' => 'oathauth-step2alt',

                'default' =>

                    '<strong>' . $this->msg( 'oathauth-account' )->escaped() . '</strong><br/>'

                    . $this->OATHUser->getAccount() . '<br/><br/>'

                    . '<strong>' . $this->msg( 'oathauth-secret' )->escaped() . '</strong><br/>'

                    . '<kbd>' . $this->getSecretForDisplay( $key ) . '</kbd><br/>',

                'raw' => true,

                'section' => 'step2',

            ],

            'scratchtokens' => [

                'type' => 'info',

                'default' =>

                    $this->msg( 'oathauth-scratchtokens' )

                    . $this->createResourceList( $this->getScratchTokensForDisplay( $key ) ),

                'raw' => true,

                'section' => 'step3',

            ],

            'token' => [

                'type' => 'text',

                'default' => '',

                'label-message' => 'oathauth-entertoken',

                'name' => 'token',

                'section' => 'step4',

            ],

            'returnto' => [

                'type' => 'hidden',

                'default' => $this->getRequest()->getVal( 'returnto' ),

                'name' => 'returnto',

            ],

            'returntoquery' => [

                'type' => 'hidden',

                'default' => $this->getRequest()->getVal( 'returntoquery' ),

                'name' => 'returntoquery', ]

        ];

    }


    public function onSubmit( array $formData ) {

        $key = $this->getRequest()->getSessionData( 'oathauth_key' );


        if ( $key->isScratchToken( $formData['token'] ) ) {

            // A scratch token is not allowed for enrollement

            return [ 'oathauth-noscratchforvalidation' ];

        }

        if ( !$key->verifyToken( $formData['token'], $this->OATHUser ) ) {

            return [ 'oathauth-failedtovalidateoath' ];

        }


        $this->getRequest()->setSessionData( 'oathauth_key', null );

        $this->OATHUser->setKey( $key );

        $this->OATHRepository->persist( $this->OATHUser );


        return true;

    }


    public function onSuccess() {

        $this->getOutput()->addWikiMsg( 'oathauth-validatedoath' );

        $this->getOutput()->returnToMain();

    }


    private function createResourceList( $resources ) {

        $resourceList = '';

        foreach ( $resources as $resource ) {

            $resourceList .= Html::rawElement( 'li', [], Html::rawElement( 'kbd', [], $resource ) );

        }

        return Html::rawElement( 'ul', [], $resourceList );

    }


    protected function getSecretForDisplay( OATHAuthKey $key ) {

        return $this->tokenFormatterFunction( $key->getSecret() );

    }


    protected function getScratchTokensForDisplay( OATHAuthKey $key ) {

        return array_map( [ $this, 'tokenFormatterFunction' ], $key->getScratchTokens() );

    }


    private function tokenFormatterFunction( $token ) {

        return implode( ' ', str_split( $token, 4 ) );

    }


}


ContextSource\getOutput
getOutput()
Definition ContextSource.php:112

FormSpecialPage
Special page which uses an HTMLForm to handle processing.
Definition FormSpecialPage.php:31

FormSpecialPage\$par
string $par
The sub-page of the special page.
Definition FormSpecialPage.php:36

HTMLForm
Object handling generic submission, CSRF protection, layout and other logic for UI forms.
Definition HTMLForm.php:130

OATHAuthKey
This program is free software; you can redistribute it and/or modify it under the terms of the GNU Ge...
Definition OATHAuthKey.php:26

OATHAuthKey\newFromRandom
static newFromRandom()
Make a new key from random values.
Definition OATHAuthKey.php:50

OATHAuthKey\getScratchTokens
getScratchTokens()
Definition OATHAuthKey.php:86

OATHAuthKey\getSecret
getSecret()
Definition OATHAuthKey.php:79

OATHUserRepository
Definition OATHUserRepository.php:22

OATHUser
This program is free software; you can redistribute it and/or modify it under the terms of the GNU Ge...
Definition OATHUser.php:24

OATHUser\getAccount
getAccount()
Definition OATHUser.php:62

OATHUser\getIssuer
getIssuer()
Definition OATHUser.php:51

OATHUser\setKey
setKey(OATHAuthKey $key=null)
Set the key associated with this user.
Definition OATHUser.php:80

SpecialOATHEnable
This program is free software; you can redistribute it and/or modify it under the terms of the GNU Ge...
Definition SpecialOATHEnable.php:24

SpecialOATHEnable\checkExecutePermissions
checkExecutePermissions(User $user)
Require users to be logged in.
Definition SpecialOATHEnable.php:82

SpecialOATHEnable\execute
execute( $par)
Definition SpecialOATHEnable.php:91

SpecialOATHEnable\onSubmit
onSubmit(array $formData)
Definition SpecialOATHEnable.php:180

SpecialOATHEnable\onSuccess
onSuccess()
Do something exciting on successful processing of the form, most likely to show a confirmation messag...
Definition SpecialOATHEnable.php:199

SpecialOATHEnable\getSecretForDisplay
getSecretForDisplay(OATHAuthKey $key)
Retrieve the current secret for display purposes.
Definition SpecialOATHEnable.php:224

SpecialOATHEnable\__construct
__construct(OATHUserRepository $repository, OATHUser $user)
Initialize the OATH user based on the current local User object in the context.
Definition SpecialOATHEnable.php:37

SpecialOATHEnable\requiresUnblock
requiresUnblock()
Definition SpecialOATHEnable.php:71

SpecialOATHEnable\$OATHUser
OATHUser $OATHUser
Definition SpecialOATHEnable.php:29

SpecialOATHEnable\getFormFields
getFormFields()
Definition SpecialOATHEnable.php:99

SpecialOATHEnable\getDisplayFormat
getDisplayFormat()
Definition SpecialOATHEnable.php:64

SpecialOATHEnable\tokenFormatterFunction
tokenFormatterFunction( $token)
Formats a key or scratch token by creating groups of 4 seperated by space characters.
Definition SpecialOATHEnable.php:246

SpecialOATHEnable\createResourceList
createResourceList( $resources)
Definition SpecialOATHEnable.php:208

SpecialOATHEnable\$OATHRepository
OATHUserRepository $OATHRepository
Definition SpecialOATHEnable.php:26

SpecialOATHEnable\alterForm
alterForm(HTMLForm $form)
Set the page title and add JavaScript RL modules.
Definition SpecialOATHEnable.php:53

SpecialOATHEnable\doesWrites
doesWrites()
Indicates whether this special page may perform database writes.
Definition SpecialOATHEnable.php:44

SpecialOATHEnable\getScratchTokensForDisplay
getScratchTokensForDisplay(OATHAuthKey $key)
Retrieve current scratch tokens for display purposes.
Definition SpecialOATHEnable.php:236

SpecialPage\getOutput
getOutput()
Get the OutputPage being used for this instance.
Definition SpecialPage.php:722

SpecialPage\requireLogin
requireLogin( $reasonMsg='exception-nologin-text', $titleMsg='exception-nologin')
If the user is not logged in, throws UserNotLoggedIn error.
Definition SpecialPage.php:336

SpecialPage\msg
msg( $key)
Wrapper around wfMessage that sets the current context.
Definition SpecialPage.php:793

SpecialPage\getRequest
getRequest()
Get the WebRequest being used for this instance.
Definition SpecialPage.php:712

User
The User object encapsulates all of the user-specific settings (user_id, name, rights,...
Definition User.php:53

$user
please add to it if you re going to add events to the MediaWiki code where normally authentication against an external auth plugin would be creating a local account $user
Definition hooks.txt:247