Utility class for bot passwords. More...
Public Member Functions | |
| delete () | |
| Delete the BotPassword from the database. | |
| getAppId () | |
| Get the app ID. | |
| getGrants () | |
| Get the grants. | |
| getRestrictions () | |
| Get the restrictions. | |
| getToken () | |
| Get the token. | |
| getUserCentralId () | |
| Get the central user ID. | |
| isInvalid () | |
| Whether the password is currently invalid. | |
| isSaved () | |
| Indicate whether this is known to be saved. | |
| save ( $operation, Password $password=null) | |
| Save the BotPassword to the database. | |
Static Public Member Functions | |
| static | canonicalizeLoginData ( $username, $password) |
| There are two ways to login with a bot password: "username@appId", "password" and "username", "appId@password". | |
| static | generatePassword ( $config) |
| Returns a (raw, unhashed) random password string. | |
| static | getDB ( $db) |
| Get a database connection for the bot passwords database. | |
| static | getSeparator () |
| Get the separator for combined user name + app ID. | |
| static | invalidateAllPasswordsForCentralId ( $centralId) |
| Invalidate all passwords for a user, by central ID. | |
| static | invalidateAllPasswordsForUser ( $username) |
| Invalidate all passwords for a user, by name. | |
| static | login ( $username, $password, WebRequest $request) |
| Try to log the user in. | |
| static | newFromCentralId ( $centralId, $appId, $flags=self::READ_NORMAL) |
| Load a BotPassword from the database. | |
| static | newFromUser (User $user, $appId, $flags=self::READ_NORMAL) |
| Load a BotPassword from the database. | |
| static | newUnsaved (array $data, $flags=self::READ_NORMAL) |
| Create an unsaved BotPassword. | |
| static | removeAllPasswordsForCentralId ( $centralId) |
| Remove all passwords for a user, by central ID. | |
| static | removeAllPasswordsForUser ( $username) |
| Remove all passwords for a user, by name. | |
Public Attributes | |
| const | APPID_MAXLENGTH = 32 |
| const | GRANTS_MAXLENGTH = 65535 |
| Maximum length of the json representation of grants. | |
| const | RESTRICTIONS_MAXLENGTH = 65535 |
| Maximum length of the json representation of restrictions. | |
 Public Attributes inherited from IDBAccessObject | |
| const | READ_LOCKING = 3 |
| Constants for object loading bitfield flags (higher => higher QoS) | |
| const | READ_NONE = -1 |
Protected Member Functions | |
| __construct ( $row, $isSaved, $flags=self::READ_NORMAL) | |
| getPassword () | |
| Get the password. | |
Private Attributes | |
| string | $appId |
| int | $centralId |
| int | $flags = self::READ_NORMAL |
| string[] | $grants |
| bool | $isSaved |
| MWRestrictions | $restrictions |
| string | $token |
Detailed Description
Constructor & Destructor Documentation
◆ __construct()
|
protected |
- Parameters
-
object $row bot_passwords database row bool $isSaved Whether the bot password was read from the database int $flags IDBAccessObject read flags
Definition at line 71 of file BotPassword.php.
References flags, isSaved(), and MWRestrictions\newFromJson().
Member Function Documentation
◆ canonicalizeLoginData()
|
static |
There are two ways to login with a bot password: "username@appId", "password" and "username", "appId@password".
Transform it so it is always in the first form. Returns [bot username, bot password, could be normal password?] where the last one is a flag meaning this could either be a bot password or a normal password, it cannot be decided for certain (although in such cases it almost always will be a bot password). If this cannot be a bot password login just return false.
- Parameters
-
string $username string $password
- Returns
- array|false
Definition at line 463 of file BotPassword.php.
◆ delete()
| BotPassword::delete | ( | ) |
Delete the BotPassword from the database.
- Returns
- bool Success
Definition at line 360 of file BotPassword.php.
◆ generatePassword()
|
static |
Returns a (raw, unhashed) random password string.
- Parameters
-
Config $config
- Returns
- string
Definition at line 447 of file BotPassword.php.
◆ getAppId()
| BotPassword::getAppId | ( | ) |
◆ getDB()
|
static |
Get a database connection for the bot passwords database.
- Parameters
-
int $db Index of the connection to get, e.g. DB_MASTER or DB_REPLICA.
- Returns
- IMaintainableDatabase
Definition at line 87 of file BotPassword.php.
References $wgBotPasswordsCluster, and $wgBotPasswordsDatabase.
◆ getGrants()
| BotPassword::getGrants | ( | ) |
◆ getPassword()
|
protected |
Get the password.
- Returns
- Password
Definition at line 253 of file BotPassword.php.
References $options, flags, RequestContext\getMain(), and list.
Referenced by isInvalid().
◆ getRestrictions()
| BotPassword::getRestrictions | ( | ) |
◆ getSeparator()
|
static |
Get the separator for combined user name + app ID.
- Returns
- string
Definition at line 244 of file BotPassword.php.
References $wgUserrightsInterwikiDelimiter.
◆ getToken()
| BotPassword::getToken | ( | ) |
◆ getUserCentralId()
| BotPassword::getUserCentralId | ( | ) |
◆ invalidateAllPasswordsForCentralId()
|
static |
Invalidate all passwords for a user, by central ID.
- Parameters
-
int $centralId
- Returns
- bool Whether any passwords were invalidated
Definition at line 392 of file BotPassword.php.
References $wgEnableBotPasswords, and DB_MASTER.
◆ invalidateAllPasswordsForUser()
|
static |
Invalidate all passwords for a user, by name.
- Parameters
-
string $username User name
- Returns
- bool Whether any passwords were invalidated
Definition at line 380 of file BotPassword.php.
References $username.
◆ isInvalid()
| BotPassword::isInvalid | ( | ) |
Whether the password is currently invalid.
- Since
- 1.32
- Returns
- bool
Definition at line 281 of file BotPassword.php.
References getPassword().
◆ isSaved()
| BotPassword::isSaved | ( | ) |
Indicate whether this is known to be saved.
- Returns
- bool
Definition at line 196 of file BotPassword.php.
Referenced by __construct(), delete(), and save().
◆ login()
|
static |
Try to log the user in.
- Parameters
-
string $username Combined user name and app ID string $password Supplied password WebRequest $request
- Returns
- Status On success, the good status's value is the new Session object
Definition at line 489 of file BotPassword.php.
References $request, $username, $wgEnableBotPasswords, $wgPasswordAttemptThrottle, list, User\newFromName(), and wfMessage().
◆ newFromCentralId()
|
static |
Load a BotPassword from the database.
- Parameters
-
int $centralId from CentralIdLookup string $appId int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 118 of file BotPassword.php.
References $options, $wgEnableBotPasswords, and list.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\refreshSessionInfo().
◆ newFromUser()
|
static |
Load a BotPassword from the database.
- Parameters
-
User $user string $appId int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 104 of file BotPassword.php.
◆ newUnsaved()
|
static |
Create an unsaved BotPassword.
- Parameters
-
array $data Data to use to create the bot password. Keys are: - user: (User) User object to create the password for. Overrides username and centralId.
- username: (string) Username to create the password for. Overrides centralId.
- centralId: (int) User central ID to create the password for.
- appId: (string) App ID for the password.
- restrictions: (MWRestrictions, optional) Restrictions.
- grants: (string[], optional) Grants.
int $flags IDBAccessObject read flags
- Returns
- BotPassword|null
Definition at line 149 of file BotPassword.php.
References MWRestrictions\newDefault(), and object.
◆ removeAllPasswordsForCentralId()
|
static |
Remove all passwords for a user, by central ID.
- Parameters
-
int $centralId
- Returns
- bool Whether any passwords were removed
Definition at line 426 of file BotPassword.php.
References $wgEnableBotPasswords, and DB_MASTER.
◆ removeAllPasswordsForUser()
|
static |
Remove all passwords for a user, by name.
- Parameters
-
string $username User name
- Returns
- bool Whether any passwords were removed
Definition at line 414 of file BotPassword.php.
References $username.
Referenced by MediaWiki\Session\BotPasswordSessionProvider\preventSessionsForUser().
◆ save()
| BotPassword::save | ( | $operation, | |
| Password | $password = null ) |
Save the BotPassword to the database.
- Returns
- Status
- Exceptions
-
UnexpectedValueException
Definition at line 292 of file BotPassword.php.
References $res, DB_MASTER, MWCryptRand\generateHex(), isSaved(), MWRestrictions\toJson(), and User\TOKEN_LENGTH.
Member Data Documentation
◆ $appId
|
private |
Definition at line 52 of file BotPassword.php.
◆ $centralId
|
private |
Definition at line 49 of file BotPassword.php.
◆ $flags
|
private |
Definition at line 64 of file BotPassword.php.
◆ $grants
|
private |
Definition at line 61 of file BotPassword.php.
◆ $isSaved
|
private |
Definition at line 46 of file BotPassword.php.
◆ $restrictions
|
private |
Definition at line 58 of file BotPassword.php.
◆ $token
|
private |
Definition at line 55 of file BotPassword.php.
◆ APPID_MAXLENGTH
| const BotPassword::APPID_MAXLENGTH = 32 |
Definition at line 31 of file BotPassword.php.
◆ GRANTS_MAXLENGTH
| const BotPassword::GRANTS_MAXLENGTH = 65535 |
Maximum length of the json representation of grants.
- Since
- 1.31.11
Definition at line 43 of file BotPassword.php.
◆ RESTRICTIONS_MAXLENGTH
| const BotPassword::RESTRICTIONS_MAXLENGTH = 65535 |
Maximum length of the json representation of restrictions.
- Since
- 1.31.11
Definition at line 37 of file BotPassword.php.
The documentation for this class was generated from the following file:
- includes/user/BotPassword.php
