REL1_39/php/FormSpecialPage_8php_source.html

<?php


abstract class FormSpecialPage extends SpecialPage {

    protected $par = null;


    protected $reauthPostData = null;


    abstract protected function getFormFields();


    protected function preHtml() {

        return '';

    }


    protected function postHtml() {

        return '';

    }


    protected function preText() {

        return $this->preHtml();

    }


    protected function postText() {

        return $this->postHtml();

    }


    protected function alterForm( HTMLForm $form ) {

    }


    protected function getMessagePrefix() {

        return strtolower( $this->getName() );

    }


    protected function getDisplayFormat() {

        return 'table';

    }


    protected function getForm() {

        $context = $this->getContext();

        $onSubmit = [ $this, 'onSubmit' ];


        if ( $this->reauthPostData ) {

            // Restore POST data

            $context = new DerivativeContext( $context );

            $oldRequest = $this->getRequest();

            $context->setRequest( new DerivativeRequest(

                $oldRequest, $this->reauthPostData + $oldRequest->getQueryValues(), true

            ) );


            // But don't treat it as a "real" submission just in case of some

            // crazy kind of CSRF.

            $onSubmit = static function () {

                return false;

            };

        }


        $form = HTMLForm::factory(

            $this->getDisplayFormat(),

            $this->getFormFields(),

            $context,

            $this->getMessagePrefix()

        );

        $form->setSubmitCallback( $onSubmit );

        if ( $this->getDisplayFormat() !== 'ooui' ) {

            // No legend and wrapper by default in OOUI forms, but can be set manually

            // from alterForm()

            $form->setWrapperLegendMsg( $this->getMessagePrefix() . '-legend' );

        }


        $headerMsg = $this->msg( $this->getMessagePrefix() . '-text' );

        if ( !$headerMsg->isDisabled() ) {

            $form->addHeaderText( $headerMsg->parseAsBlock() );

        }


        // preText / postText are deprecated, but we need to keep calling them until the end of

        // the deprecation process so a subclass overriding *Text and *Html both work

        $form->addPreText( $this->preText() );

        $form->addPostText( $this->postText() );

        $this->alterForm( $form );

        if ( $form->getMethod() == 'post' ) {

            // Retain query parameters (uselang etc) on POST requests

            $params = array_diff_key(

                $this->getRequest()->getQueryValues(), [ 'title' => null ] );

            $form->addHiddenField( 'redirectparams', wfArrayToCgi( $params ) );

        }


        // Give hooks a chance to alter the form, adding extra fields or text etc

        $this->getHookRunner()->onSpecialPageBeforeFormDisplay( $this->getName(), $form );


        return $form;

    }


    abstract public function onSubmit( array $data /* HTMLForm $form = null */ );


    public function onSuccess() {

    }


    public function execute( $par ) {

        $this->setParameter( $par );

        $this->setHeaders();


        // This will throw exceptions if there's a problem

        $this->checkExecutePermissions( $this->getUser() );


        $securityLevel = $this->getLoginSecurityLevel();

        if ( $securityLevel !== false && !$this->checkLoginSecurityLevel( $securityLevel ) ) {

            return;

        }


        $form = $this->getForm();

        if ( $form->show() ) {

            $this->onSuccess();

        }

    }


    protected function setParameter( $par ) {

        $this->par = $par;

    }


    protected function checkExecutePermissions( User $user ) {

        $this->checkPermissions();


        if ( $this->requiresUnblock() ) {

            $block = $user->getBlock();

            if ( $block && $block->isSitewide() ) {

                throw new UserBlockedError(

                    $block,

                    $user,

                    $this->getLanguage(),

                    $this->getRequest()->getIP()

                );

            }

        }


        if ( $this->requiresWrite() ) {

            $this->checkReadOnly();

        }

    }


    public function requiresWrite() {

        return true;

    }


    public function requiresUnblock() {

        return true;

    }


    protected function setReauthPostData( array $data ) {

        $this->reauthPostData = $data;

    }


}


wfArrayToCgi
wfArrayToCgi( $array1, $array2=null, $prefix='')
This function takes one or two arrays as input, and returns a CGI-style string, e....
Definition GlobalFunctions.php:335

DerivativeContext
An IContextSource implementation which will inherit context from another source but allow individual ...
Definition DerivativeContext.php:32

DerivativeRequest
Similar to FauxRequest, but only fakes URL parameters and method (POST or GET) and use the base reque...
Definition DerivativeRequest.php:36

FormSpecialPage
Special page which uses an HTMLForm to handle processing.
Definition FormSpecialPage.php:31

FormSpecialPage\$par
string null $par
The sub-page of the special page.
Definition FormSpecialPage.php:36

FormSpecialPage\$reauthPostData
array null $reauthPostData
POST data preserved across re-authentication.
Definition FormSpecialPage.php:42

FormSpecialPage\getMessagePrefix
getMessagePrefix()
Get message prefix for HTMLForm.
Definition FormSpecialPage.php:99

FormSpecialPage\onSuccess
onSuccess()
Do something exciting on successful processing of the form, most likely to show a confirmation messag...
Definition FormSpecialPage.php:188

FormSpecialPage\getForm
getForm()
Get the HTMLForm to control behavior.
Definition FormSpecialPage.php:117

FormSpecialPage\preText
preText()
Add pre-text to the form.
Definition FormSpecialPage.php:73

FormSpecialPage\alterForm
alterForm(HTMLForm $form)
Play with the HTMLForm if you need to more substantially.
Definition FormSpecialPage.php:90

FormSpecialPage\postText
postText()
Add post-text to the form.
Definition FormSpecialPage.php:82

FormSpecialPage\getDisplayFormat
getDisplayFormat()
Get display format for the form.
Definition FormSpecialPage.php:109

FormSpecialPage\preHtml
preHtml()
Add pre-HTML to the form.
Definition FormSpecialPage.php:55

FormSpecialPage\onSubmit
onSubmit(array $data)
Process the form on POST submission.

FormSpecialPage\setReauthPostData
setReauthPostData(array $data)
Preserve POST data across reauthentication.
Definition FormSpecialPage.php:270

FormSpecialPage\checkExecutePermissions
checkExecutePermissions(User $user)
Called from execute() to check if the given user can perform this action.
Definition FormSpecialPage.php:228

FormSpecialPage\requiresUnblock
requiresUnblock()
Whether this action cannot be executed by a blocked user.
Definition FormSpecialPage.php:260

FormSpecialPage\postHtml
postHtml()
Add post-HTML to the form.
Definition FormSpecialPage.php:64

FormSpecialPage\getFormFields
getFormFields()
Get an HTMLForm descriptor array.

FormSpecialPage\setParameter
setParameter( $par)
Maybe do something interesting with the subpage parameter.
Definition FormSpecialPage.php:218

FormSpecialPage\requiresWrite
requiresWrite()
Whether this action requires the wiki not to be locked.
Definition FormSpecialPage.php:252

FormSpecialPage\execute
execute( $par)
Basic SpecialPage workflow: get a form, send it to the user; get some data back,.
Definition FormSpecialPage.php:196

HTMLForm
Object handling generic submission, CSRF protection, layout and other logic for UI forms in a reusabl...
Definition HTMLForm.php:150

SpecialPage
Parent class for all special pages.
Definition SpecialPage.php:44

SpecialPage\getName
getName()
Get the name of this Special Page.
Definition SpecialPage.php:204

SpecialPage\setHeaders
setHeaders()
Sets headers - this should be called from the execute() method of all derived classes!
Definition SpecialPage.php:672

SpecialPage\checkLoginSecurityLevel
checkLoginSecurityLevel( $level=null)
Verifies that the user meets the security level, possibly reauthenticating them in the process.
Definition SpecialPage.php:496

SpecialPage\getUser
getUser()
Shortcut to get the User executing this instance.
Definition SpecialPage.php:872

SpecialPage\checkPermissions
checkPermissions()
Checks if userCanExecute, and if not throws a PermissionsError.
Definition SpecialPage.php:383

SpecialPage\getContext
getContext()
Gets the context this SpecialPage is executed in.
Definition SpecialPage.php:836

SpecialPage\getHookRunner
getHookRunner()
Definition SpecialPage.php:1167

SpecialPage\msg
msg( $key,... $params)
Wrapper around wfMessage that sets the current context.
Definition SpecialPage.php:984

SpecialPage\getRequest
getRequest()
Get the WebRequest being used for this instance.
Definition SpecialPage.php:852

SpecialPage\checkReadOnly
checkReadOnly()
If the wiki is currently in readonly mode, throws a ReadOnlyError.
Definition SpecialPage.php:396

SpecialPage\getLanguage
getLanguage()
Shortcut to get user's language.
Definition SpecialPage.php:902

SpecialPage\getLoginSecurityLevel
getLoginSecurityLevel()
Tells if the special page does something security-sensitive and needs extra defense against a stolen ...
Definition SpecialPage.php:447

UserBlockedError
Show an error when the user tries to do something whilst blocked.
Definition UserBlockedError.php:32

User
internal since 1.36
Definition User.php:70

User\getBlock
getBlock( $freshness=self::READ_NORMAL, $disableIpBlockExemptChecking=false)
Get the block affecting the user, or null if the user is not blocked.
Definition User.php:1522