MediaWiki REL1_32
SpecialUserLogout.php
Go to the documentation of this file.
1<?php
30 function __construct() {
31 parent::__construct( 'Userlogout' );
32 }
33
34 public function doesWrites() {
35 return true;
36 }
37
38 function execute( $par ) {
43 if ( isset( $_SERVER['REQUEST_URI'] ) && strpos( $_SERVER['REQUEST_URI'], '&amp;' ) !== false ) {
44 wfDebug( "Special:UserLogout request {$_SERVER['REQUEST_URI']} looks suspicious, denying.\n" );
45 throw new HttpError( 400, $this->msg( 'suspicious-userlogout' ), $this->msg( 'loginerror' ) );
46 }
47
48 $this->setHeaders();
49 $this->outputHeader();
50
51 $out = $this->getOutput();
52 $user = $this->getUser();
53 $request = $this->getRequest();
54
55 $logoutToken = $request->getVal( 'logoutToken' );
56 $urlParams = [
57 'logoutToken' => $user->getEditToken( 'logoutToken', $request )
58 ] + $request->getValues();
59 unset( $urlParams['title'] );
60 $continueLink = $this->getFullTitle()->getFullUrl( $urlParams );
61
62 if ( $logoutToken === null ) {
63 $this->getOutput()->addWikiMsg( 'userlogout-continue', $continueLink );
64 return;
65 }
66 if ( !$this->getUser()->matchEditToken(
67 $logoutToken, 'logoutToken', $this->getRequest(), 24 * 60 * 60
68 ) ) {
69 $this->getOutput()->addWikiMsg( 'userlogout-sessionerror', $continueLink );
70 return;
71 }
72
73 // Make sure it's possible to log out
74 $session = MediaWiki\Session\SessionManager::getGlobalSession();
75 if ( !$session->canSetUser() ) {
76 throw new ErrorPageError(
77 'cannotlogoutnow-title',
78 'cannotlogoutnow-text',
79 [
80 $session->getProvider()->describe( RequestContext::getMain()->getLanguage() )
81 ]
82 );
83 }
84
85 $user = $this->getUser();
86 $oldName = $user->getName();
87
88 $user->logout();
89
90 $loginURL = SpecialPage::getTitleFor( 'Userlogin' )->getFullURL(
91 $this->getRequest()->getValues( 'returnto', 'returntoquery' ) );
92
93 $out = $this->getOutput();
94 $out->addWikiMsg( 'logouttext', $loginURL );
95
96 // Hook.
97 $injected_html = '';
98 Hooks::run( 'UserLogoutComplete', [ &$user, &$injected_html, $oldName ] );
99 $out->addHTML( $injected_html );
100
101 $out->returnToMain();
102 }
103
104 protected function getGroupName() {
105 return 'login';
106 }
107}
wfDebug( $text, $dest='all', array $context=[])
Sends a line to the debug log if enabled or, optionally, to a comment in output.
An error page which can definitely be safely rendered using the OutputPage.
Show an error that looks like an HTTP server error.
Definition HttpError.php:30
outputHeader( $summaryMessageKey='')
Outputs a summary message on top of special pages Per default the message key is the canonical name o...
setHeaders()
Sets headers - this should be called from the execute() method of all derived classes!
getOutput()
Get the OutputPage being used for this instance.
getUser()
Shortcut to get the User executing this instance.
static getTitleFor( $name, $subpage=false, $fragment='')
Get a localised Title object for a specified special page name If you don't need a full Title object,...
msg( $key)
Wrapper around wfMessage that sets the current context.
getRequest()
Get the WebRequest being used for this instance.
getFullTitle()
Return the full title, including $par.
Implements Special:Userlogout.
doesWrites()
Indicates whether this special page may perform database writes.
execute( $par)
Default execute method Checks user permissions.
getGroupName()
Under which header this special page is listed in Special:SpecialPages See messages 'specialpages-gro...
Shortcut to construct a special page which is unlisted by default.
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on $request
Definition hooks.txt:2880
this hook is for auditing only or null if authentication failed before getting that far or null if we can t even determine that probably a stub it is not rendered in wiki pages or galleries in category pages allow injecting custom HTML after the section Any uses of the hook need to handle escaping see BaseTemplate::getToolbox and BaseTemplate::makeListItem for details on the format of individual items inside of this array or by returning and letting standard HTTP rendering take place modifiable or by returning false and taking over the output $out
Definition hooks.txt:894