REL1_32/php/ReCaptcha_8php_source.html

<?php


use MediaWiki\Auth\AuthenticationRequest;


class ReCaptcha extends SimpleCaptcha {

    // used for recaptcha-edit, recaptcha-addurl, recaptcha-badlogin, recaptcha-createaccount,

    // recaptcha-create, recaptcha-sendemail via getMessage()

    protected static $messagePrefix = 'recaptcha-';


    // reCAPTHCA error code returned from recaptcha_check_answer

    private $recaptcha_error = null;


    public function getFormInformation( $tabIndex = 1 ) {

        global $wgReCaptchaPublicKey, $wgReCaptchaTheme;


        wfDeprecated( 'ConfirmEdit module ReCaptcha', '1.28' );

        $useHttps = ( isset( $_SERVER['HTTPS'] ) && $_SERVER['HTTPS'] == 'on' );

        $js = 'var RecaptchaOptions = ' . Xml::encodeJsVar(

            [ 'theme' => $wgReCaptchaTheme, 'tabindex' => $tabIndex ]

        );


        return [

            'html' => Html::inlineScript( $js ) .

                recaptcha_get_html( $wgReCaptchaPublicKey, $this->recaptcha_error, $useHttps )

        ];

    }


    protected function getCaptchaParamsFromRequest( WebRequest $request ) {

        // API is hardwired to return captchaId and captchaWord,

        // so use that if the standard two are empty

        $challenge = $request->getVal( 'recaptcha_challenge_field', $request->getVal( 'captchaId' ) );

        $response = $request->getVal( 'recaptcha_response_field', $request->getVal( 'captchaWord' ) );

        return [ $challenge, $response ];

    }


    protected function passCaptcha( $challenge, $response ) {

        global $wgReCaptchaPrivateKey, $wgRequest;


        if ( $response === null ) {

            // new captcha session

            return false;

        }


        $ip = $wgRequest->getIP();


        $recaptcha_response =

            recaptcha_check_answer( $wgReCaptchaPrivateKey, $ip, $challenge, $response );


        if ( !$recaptcha_response->is_valid ) {

            $this->recaptcha_error = $recaptcha_response->error;

            return false;

        }


        $recaptcha_error = null;


        return true;

    }


    protected function addCaptchaAPI( &$resultArr ) {

        $resultArr['captcha'] = $this->describeCaptchaType();

        $resultArr['captcha']['error'] = $this->recaptcha_error;

    }


    public function describeCaptchaType() {

        global $wgReCaptchaPublicKey;

        return [

            'type' => 'recaptcha',

            'mime' => 'image/png',

            'key' => $wgReCaptchaPublicKey,

        ];

    }


    public function apiGetAllowedParams( &$module, &$params, $flags ) {

        if ( $flags && $this->isAPICaptchaModule( $module ) ) {

            $params['recaptcha_challenge_field'] = [

                ApiBase::PARAM_HELP_MSG => 'recaptcha-apihelp-param-recaptcha_challenge_field',

            ];

            $params['recaptcha_response_field'] = [

                ApiBase::PARAM_HELP_MSG => 'recaptcha-apihelp-param-recaptcha_response_field',

            ];

        }


        return true;

    }


    public function getError() {

        // do not treat failed captcha attempts as errors

        if ( in_array( $this->recaptcha_error, [

            'invalid-request-cookie', 'incorrect-captcha-sol',

        ], true ) ) {

            return null;

        }


        return $this->recaptcha_error;

    }


    public function storeCaptcha( $info ) {

        // ReCaptcha is stored by Google; the ID will be generated at that time as well, and

        // the one returned here won't be used. Just pretend this worked.

        return 'not used';

    }


    public function retrieveCaptcha( $index ) {

        // just pretend it worked

        return [ 'index' => $index ];

    }


    public function getCaptcha() {

        // ReCaptcha is handled by frontend code + an external provider; nothing to do here.

        return [];

    }


    public function getCaptchaInfo( $captchaData, $id ) {

        return wfMessage( 'recaptcha-info' );

    }


    public function createAuthenticationRequest() {

        return new ReCaptchaAuthenticationRequest();

    }


    public function onAuthChangeFormFields(

        array $requests, array $fieldInfo, array &$formDescriptor, $action

    ) {

        global $wgReCaptchaPublicKey, $wgReCaptchaTheme;


        $req = AuthenticationRequest::getRequestByClass( $requests,

            CaptchaAuthenticationRequest::class, true );

        if ( !$req ) {

            return;

        }


        // ugly way to retrieve error information

        $captcha = ConfirmEditHooks::getInstance();


        $formDescriptor['captchaInfo'] = [

            'class' => HTMLReCaptchaField::class,

            'key' => $wgReCaptchaPublicKey,

            'theme' => $wgReCaptchaTheme,

            'secure' => isset( $_SERVER['HTTPS'] ) && $_SERVER['HTTPS'] === 'on',

            'error' => $captcha->getError(),

        ] + $formDescriptor['captchaInfo'];


        // the custom form element cannot return multiple fields; work around that by

        // "redirecting" ReCaptcha names to standard names

        $formDescriptor['captchaId'] = [

            'class' => HTMLSubmittedValueField::class,

            'name' => 'recaptcha_challenge_field',

        ];

        $formDescriptor['captchaWord'] = [

            'class' => HTMLSubmittedValueField::class,

            'name' => 'recaptcha_response_field',

        ];

    }


}


wfDeprecated
wfDeprecated( $function, $version=false, $component=false, $callerOffset=2)
Throws a warning that $function is deprecated.
Definition GlobalFunctions.php:1130

$wgRequest
if(! $wgDBerrorLogTZ) $wgRequest
Definition Setup.php:747

ApiBase\PARAM_HELP_MSG
const PARAM_HELP_MSG
(string|array|Message) Specify an alternative i18n documentation message for this parameter.
Definition ApiBase.php:124

ConfirmEditHooks\getInstance
static getInstance()
Get the global Captcha instance.
Definition ConfirmEditHooks.php:11

MediaWiki\Auth\AuthenticationRequest
This is a value object for authentication requests.
Definition AuthenticationRequest.php:37

ReCaptchaAuthenticationRequest
Authentication request for ReCaptcha v1.
Definition ReCaptchaAuthenticationRequest.php:9

ReCaptcha
Definition ReCaptcha.php:5

ReCaptcha\$recaptcha_error
$recaptcha_error
Definition ReCaptcha.php:11

ReCaptcha\storeCaptcha
storeCaptcha( $info)
Generate a captcha session ID and save the info in PHP's session storage.
Definition ReCaptcha.php:129

ReCaptcha\getFormInformation
getFormInformation( $tabIndex=1)
Displays the reCAPTCHA widget.
Definition ReCaptcha.php:19

ReCaptcha\onAuthChangeFormFields
onAuthChangeFormFields(array $requests, array $fieldInfo, array &$formDescriptor, $action)
Definition ReCaptcha.php:167

ReCaptcha\describeCaptchaType
describeCaptchaType()
Definition ReCaptcha.php:87

ReCaptcha\passCaptcha
passCaptcha( $challenge, $response)
Calls the library function recaptcha_check_answer to verify the users input.
Definition ReCaptcha.php:53

ReCaptcha\createAuthenticationRequest
createAuthenticationRequest()
Definition ReCaptcha.php:157

ReCaptcha\$messagePrefix
static $messagePrefix
Definition ReCaptcha.php:8

ReCaptcha\retrieveCaptcha
retrieveCaptcha( $index)
Fetch this session's captcha info.
Definition ReCaptcha.php:135

ReCaptcha\addCaptchaAPI
addCaptchaAPI(&$resultArr)
Definition ReCaptcha.php:79

ReCaptcha\getCaptchaParamsFromRequest
getCaptchaParamsFromRequest(WebRequest $request)
Definition ReCaptcha.php:38

ReCaptcha\getCaptcha
getCaptcha()
Returns an array with 'question' and 'answer' keys.
Definition ReCaptcha.php:140

ReCaptcha\apiGetAllowedParams
apiGetAllowedParams(&$module, &$params, $flags)
Definition ReCaptcha.php:102

ReCaptcha\getCaptchaInfo
getCaptchaInfo( $captchaData, $id)
Definition ReCaptcha.php:150

ReCaptcha\getError
getError()
Definition ReCaptcha.php:118

SimpleCaptcha
Demo CAPTCHA (not for production usage) and base class for real CAPTCHAs.
Definition SimpleCaptcha.php:8

SimpleCaptcha\isAPICaptchaModule
isAPICaptchaModule( $module)
Definition SimpleCaptcha.php:905

SimpleCaptcha\$action
string $action
Used to select the right message.
Definition SimpleCaptcha.php:19

WebRequest
The WebRequest class encapsulates getting at data passed in the URL or via a POSTed form stripping il...
Definition WebRequest.php:41

$req
this hook is for auditing only $req
Definition hooks.txt:1018

$request
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on $request
Definition hooks.txt:2880

$formDescriptor
either a unescaped string or a HtmlArmor object after in associative array form externallinks including delete and has completed for all link tables whether this was an auto creation use $formDescriptor instead & $formDescriptor
Definition hooks.txt:2208

wfMessage
either a unescaped string or a HtmlArmor object after in associative array form externallinks including delete and has completed for all link tables whether this was an auto creation use $formDescriptor instead default is conds Array Extra conditions for the No matching items in log is displayed if loglist is empty msgKey Array If you want a nice box with a set this to the key of the message First element is the message additional optional elements are parameters for the key that are processed with wfMessage() -> params() ->parseAsBlock() - offset Set to overwrite offset parameter in $wgRequest set to '' to unset offset - wrap String Wrap the message in html(usually something like "&lt;div ...>$1&lt;/div>"). - flags Integer display flags(NO_ACTION_LINK, NO_EXTRA_USER_LINKS) 'LogException':Called before an exception(or PHP error) is logged. This is meant for integration with external error aggregation services

$requests
Allows to change the fields on the form that will be generated are created Can be used to omit specific feeds from being outputted You must not use this hook to add use OutputPage::addFeedLink() instead. & $feedLinks hooks can tweak the array to change how login etc forms should look $requests
Definition hooks.txt:304

$response
this hook is for auditing only $response
Definition hooks.txt:813

array
The wiki should then use memcached to cache various data To use multiple just add more items to the array To increase the weight of a make its entry a array("192.168.0.1:11211", 2))

recaptcha_get_html
recaptcha_get_html( $pubkey, $error=null, $use_ssl=false)
Gets the challenge HTML (javascript and non-javascript version).
Definition recaptchalib.php:106

recaptcha_check_answer
recaptcha_check_answer( $privkey, $remoteip, $challenge, $response, $extra_params=array())
Calls an HTTP POST function to verify if the user's guess was correct.
Definition recaptchalib.php:152

$params
$params
Definition styleTest.css.php:44