REL1_34/php/ConfirmLinkSecondaryAuthenticationProvider_8php_source.html

<?php


namespace MediaWiki\Auth;


use User;


class ConfirmLinkSecondaryAuthenticationProvider extends AbstractSecondaryAuthenticationProvider {


    public function getAuthenticationRequests( $action, array $options ) {

        return [];

    }


    public function beginSecondaryAuthentication( $user, array $reqs ) {

        return $this->beginLinkAttempt( $user, 'AuthManager::authnState' );

    }


    public function continueSecondaryAuthentication( $user, array $reqs ) {

        return $this->continueLinkAttempt( $user, 'AuthManager::authnState', $reqs );

    }


    public function beginSecondaryAccountCreation( $user, $creator, array $reqs ) {

        return $this->beginLinkAttempt( $user, 'AuthManager::accountCreationState' );

    }


    public function continueSecondaryAccountCreation( $user, $creator, array $reqs ) {

        return $this->continueLinkAttempt( $user, 'AuthManager::accountCreationState', $reqs );

    }


    protected function beginLinkAttempt( $user, $key ) {

        $session = $this->manager->getRequest()->getSession();

        $state = $session->getSecret( $key );

        if ( !is_array( $state ) ) {

            return AuthenticationResponse::newAbstain();

        }


        $maybeLink = array_filter( $state['maybeLink'], function ( $req ) use ( $user ) {

            if ( !$req->action ) {

                $req->action = AuthManager::ACTION_CHANGE;

            }

            $req->username = $user->getName();

            return $this->manager->allowsAuthenticationDataChange( $req )->isGood();

        } );

        if ( !$maybeLink ) {

            return AuthenticationResponse::newAbstain();

        }


        $req = new ConfirmLinkAuthenticationRequest( $maybeLink );

        return AuthenticationResponse::newUI(

            [ $req ],

            wfMessage( 'authprovider-confirmlink-message' ),

            'warning'

        );

    }


    protected function continueLinkAttempt( $user, $key, array $reqs ) {

        $req = ButtonAuthenticationRequest::getRequestByName( $reqs, 'linkOk' );

        if ( $req ) {

            return AuthenticationResponse::newPass();

        }


        $req = AuthenticationRequest::getRequestByClass( $reqs, ConfirmLinkAuthenticationRequest::class );

        if ( !$req ) {

            // WTF? Retry.

            return $this->beginLinkAttempt( $user, $key );

        }


        $session = $this->manager->getRequest()->getSession();

        $state = $session->getSecret( $key );

        if ( !is_array( $state ) ) {

            return AuthenticationResponse::newAbstain();

        }


        $maybeLink = [];

        foreach ( $state['maybeLink'] as $linkReq ) {

            $maybeLink[$linkReq->getUniqueId()] = $linkReq;

        }

        if ( !$maybeLink ) {

            return AuthenticationResponse::newAbstain();

        }


        $state['maybeLink'] = [];

        $session->setSecret( $key, $state );


        $statuses = [];

        $anyFailed = false;

        foreach ( $req->confirmedLinkIDs as $id ) {

            if ( isset( $maybeLink[$id] ) ) {

                $req = $maybeLink[$id];

                $req->username = $user->getName();

                if ( !$req->action ) {

                    // Make sure the action is set, but don't override it if

                    // the provider filled it in.

                    $req->action = AuthManager::ACTION_CHANGE;

                }

                $status = $this->manager->allowsAuthenticationDataChange( $req );

                $statuses[] = [ $req, $status ];

                if ( $status->isGood() ) {

                    // We're not changing credentials, just adding a new link

                    // to an already-known user.

                    $this->manager->changeAuthenticationData( $req, /* $isAddition */ true );

                } else {

                    $anyFailed = true;

                }

            }

        }

        if ( !$anyFailed ) {

            return AuthenticationResponse::newPass();

        }


        $combinedStatus = \Status::newGood();

        foreach ( $statuses as $data ) {

            list( $req, $status ) = $data;

            $descriptionInfo = $req->describeCredentials();

            $description = wfMessage(

                'authprovider-confirmlink-option',

                $descriptionInfo['provider']->text(), $descriptionInfo['account']->text()

            )->text();

            if ( $status->isGood() ) {

                $combinedStatus->error( wfMessage( 'authprovider-confirmlink-success-line', $description ) );

            } else {

                $combinedStatus->error( wfMessage(

                    'authprovider-confirmlink-failed-line', $description, $status->getMessage()->text()

                ) );

            }

        }

        return AuthenticationResponse::newUI(

            [

                new ButtonAuthenticationRequest(

                    'linkOk', wfMessage( 'ok' ), wfMessage( 'authprovider-confirmlink-ok-help' )

                )

            ],

            $combinedStatus->getMessage( 'authprovider-confirmlink-failed' ),

            'error'

        );

    }


}


wfMessage
wfMessage( $key,... $params)
This is the function for getting translated interface messages.
Definition GlobalFunctions.php:1263

MediaWiki\Auth\AbstractSecondaryAuthenticationProvider
A base class that implements some of the boilerplate for a SecondaryAuthenticationProvider.
Definition AbstractSecondaryAuthenticationProvider.php:32

MediaWiki\Auth\AuthManager\ACTION_CHANGE
const ACTION_CHANGE
Change a user's credentials.
Definition AuthManager.php:105

MediaWiki\Auth\AuthenticationRequest\getRequestByClass
static getRequestByClass(array $reqs, $class, $allowSubclasses=false)
Select a request by class name.
Definition AuthenticationRequest.php:263

MediaWiki\Auth\AuthenticationResponse\newAbstain
static newAbstain()
Definition AuthenticationResponse.php:170

MediaWiki\Auth\AuthenticationResponse\newUI
static newUI(array $reqs, Message $msg, $msgtype='warning')
Definition AuthenticationResponse.php:183

MediaWiki\Auth\AuthenticationResponse\newPass
static newPass( $username=null)
Definition AuthenticationResponse.php:134

MediaWiki\Auth\ButtonAuthenticationRequest
This is an authentication request that just implements a simple button.
Definition ButtonAuthenticationRequest.php:31

MediaWiki\Auth\ButtonAuthenticationRequest\getRequestByName
static getRequestByName(array $reqs, $name)
Fetch a ButtonAuthenticationRequest or subclass by name.
Definition ButtonAuthenticationRequest.php:75

MediaWiki\Auth\ConfirmLinkAuthenticationRequest
Definition ConfirmLinkAuthenticationRequest.php:24

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider
Links third-party authentication to the user's account.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:18

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\beginLinkAttempt
beginLinkAttempt( $user, $key)
Begin the link attempt.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:46

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\continueSecondaryAccountCreation
continueSecondaryAccountCreation( $user, $creator, array $reqs)
Continue an authentication flow.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:36

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\beginSecondaryAuthentication
beginSecondaryAuthentication( $user, array $reqs)
Start an authentication flow.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:24

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\continueSecondaryAuthentication
continueSecondaryAuthentication( $user, array $reqs)
Continue an authentication flow.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:28

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\getAuthenticationRequests
getAuthenticationRequests( $action, array $options)
Return the applicable list of AuthenticationRequests.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:20

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\continueLinkAttempt
continueLinkAttempt( $user, $key, array $reqs)
Continue the link attempt.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:79

MediaWiki\Auth\ConfirmLinkSecondaryAuthenticationProvider\beginSecondaryAccountCreation
beginSecondaryAccountCreation( $user, $creator, array $reqs)
Start an account creation flow.
Definition ConfirmLinkSecondaryAuthenticationProvider.php:32

User
The User object encapsulates all of the user-specific settings (user_id, name, rights,...
Definition User.php:51

MediaWiki\Auth
Definition AbstractAuthenticationProvider.php:22