RollbackPage.php

Go to the documentation of this file.

<?php
namespace MediaWiki\Page;
 
use ActorMigration;
use CommentStoreComment;
use ManualLogEntry;
use MediaWiki\Config\ServiceOptions;
use MediaWiki\HookContainer\HookContainer;
use MediaWiki\HookContainer\HookRunner;
use MediaWiki\MainConfigNames;
use MediaWiki\Message\Converter;
use MediaWiki\Permissions\Authority;
use MediaWiki\Permissions\PermissionStatus;
use MediaWiki\Revision\RevisionRecord;
use MediaWiki\Revision\RevisionStore;
use MediaWiki\Revision\SlotRecord;
use MediaWiki\Storage\EditResult;
use MediaWiki\User\ActorNormalization;
use MediaWiki\User\UserFactory;
use MediaWiki\User\UserIdentity;
use Message;
use RawMessage;
use ReadOnlyMode;
use RecentChange;
use StatusValue;
use TitleFormatter;
use TitleValue;
use Wikimedia\Message\MessageValue;
use Wikimedia\Rdbms\IDatabase;
use Wikimedia\Rdbms\ILoadBalancer;
 
class RollbackPage {
 
    public const CONSTRUCTOR_OPTIONS = [
        MainConfigNames::UseRCPatrol,
        MainConfigNames::DisableAnonTalk,
    ];
 
    private $options;
 
    private $loadBalancer;
 
    private $userFactory;
 
    private $readOnlyMode;
 
    private $titleFormatter;
 
    private $revisionStore;
 
    private $hookRunner;
 
    private $wikiPageFactory;
 
    private $actorMigration;
 
    private $actorNormalization;
 
    private $page;
 
    private $performer;
 
    private $byUser;
 
    private $summary = '';
 
    private $bot = false;
 
    private $tags = [];
 
    public function __construct(
        ServiceOptions $options,
        ILoadBalancer $loadBalancer,
        UserFactory $userFactory,
        ReadOnlyMode $readOnlyMode,
        RevisionStore $revisionStore,
        TitleFormatter $titleFormatter,
        HookContainer $hookContainer,
        WikiPageFactory $wikiPageFactory,
        ActorMigration $actorMigration,
        ActorNormalization $actorNormalization,
        PageIdentity $page,
        Authority $performer,
        UserIdentity $byUser
    ) {
        $options->assertRequiredOptions( self::CONSTRUCTOR_OPTIONS );
        $this->options = $options;
        $this->loadBalancer = $loadBalancer;
        $this->userFactory = $userFactory;
        $this->readOnlyMode = $readOnlyMode;
        $this->revisionStore = $revisionStore;
        $this->titleFormatter = $titleFormatter;
        $this->hookRunner = new HookRunner( $hookContainer );
        $this->wikiPageFactory = $wikiPageFactory;
        $this->actorMigration = $actorMigration;
        $this->actorNormalization = $actorNormalization;
 
        $this->page = $page;
        $this->performer = $performer;
        $this->byUser = $byUser;
    }
 
    public function setSummary( ?string $summary ): self {
        $this->summary = $summary ?? '';
        return $this;
    }
 
    public function markAsBot( ?bool $bot ): self {
        if ( $bot && $this->performer->isAllowedAny( 'markbotedits', 'bot' ) ) {
            $this->bot = true;
        } elseif ( !$bot ) {
            $this->bot = false;
        }
        return $this;
    }
 
    public function setChangeTags( ?array $tags ): self {
        $this->tags = $tags ?: [];
        return $this;
    }
 
    public function authorizeRollback(): PermissionStatus {
        $permissionStatus = PermissionStatus::newEmpty();
        $this->performer->authorizeWrite( 'edit', $this->page, $permissionStatus );
        $this->performer->authorizeWrite( 'rollback', $this->page, $permissionStatus );
 
        if ( $this->readOnlyMode->isReadOnly() ) {
            $permissionStatus->fatal( 'readonlytext' );
        }
 
        $user = $this->userFactory->newFromAuthority( $this->performer );
        if ( $user->pingLimiter( 'rollback' ) || $user->pingLimiter() ) {
            $permissionStatus->fatal( 'actionthrottledtext' );
        }
        return $permissionStatus;
    }
 
    public function rollbackIfAllowed(): StatusValue {
        $permissionStatus = $this->authorizeRollback();
        if ( !$permissionStatus->isGood() ) {
            return $permissionStatus;
        }
        return $this->rollback();
    }
 
    public function rollback() {
        // Begin revision creation cycle by creating a PageUpdater.
        // If the page is changed concurrently after grabParentRevision(), the rollback will fail.
        // TODO: move PageUpdater to PageStore or PageUpdaterFactory or something?
        $updater = $this->wikiPageFactory->newFromTitle( $this->page )->newPageUpdater( $this->performer );
        $currentRevision = $updater->grabParentRevision();
 
        if ( !$currentRevision ) {
            // Something wrong... no page?
            return StatusValue::newFatal( 'notanarticle' );
        }
 
        $currentEditor = $currentRevision->getUser( RevisionRecord::RAW );
        $currentEditorForPublic = $currentRevision->getUser( RevisionRecord::FOR_PUBLIC );
        // User name given should match up with the top revision.
        if ( !$this->byUser->equals( $currentEditor ) ) {
            $result = StatusValue::newGood( [
                'current-revision-record' => $currentRevision
            ] );
            $result->fatal(
                'alreadyrolled',
                htmlspecialchars( $this->titleFormatter->getPrefixedText( $this->page ) ),
                htmlspecialchars( $this->byUser->getName() ),
                htmlspecialchars( $currentEditorForPublic ? $currentEditorForPublic->getName() : '' )
            );
            return $result;
        }
 
        $dbw = $this->loadBalancer->getConnectionRef( DB_PRIMARY );
 
        // TODO: move this query to RevisionSelectQueryBuilder when it's available
        // Get the last edit not by this person...
        // Note: these may not be public values
        $actorWhere = $this->actorMigration->getWhere( $dbw, 'rev_user', $currentEditor );
        $targetRevisionRow = $dbw->selectRow(
            [ 'revision' ] + $actorWhere['tables'],
            [ 'rev_id', 'rev_timestamp', 'rev_deleted' ],
            [
                'rev_page' => $currentRevision->getPageId(),
                'NOT(' . $actorWhere['conds'] . ')',
            ],
            __METHOD__,
            [
                'USE INDEX' => [ 'revision' => 'rev_page_timestamp' ],
                'ORDER BY' => [ 'rev_timestamp DESC', 'rev_id DESC' ]
            ],
            $actorWhere['joins']
        );
 
        if ( $targetRevisionRow === false ) {
            // No one else ever edited this page
            return StatusValue::newFatal( 'cantrollback' );
        } elseif ( $targetRevisionRow->rev_deleted & RevisionRecord::DELETED_TEXT
            || $targetRevisionRow->rev_deleted & RevisionRecord::DELETED_USER
        ) {
            // Only admins can see this text
            return StatusValue::newFatal( 'notvisiblerev' );
        }
 
        // Generate the edit summary if necessary
        $targetRevision = $this->revisionStore
            ->getRevisionById( $targetRevisionRow->rev_id, RevisionStore::READ_LATEST );
 
        // Save
        $flags = EDIT_UPDATE | EDIT_INTERNAL;
 
        if ( $this->performer->isAllowed( 'minoredit' ) ) {
            $flags |= EDIT_MINOR;
        }
 
        if ( $this->bot ) {
            $flags |= EDIT_FORCE_BOT;
        }
 
        // TODO: MCR: also log model changes in other slots, in case that becomes possible!
        $currentContent = $currentRevision->getContent( SlotRecord::MAIN );
        $targetContent = $targetRevision->getContent( SlotRecord::MAIN );
        $changingContentModel = $targetContent->getModel() !== $currentContent->getModel();
 
        // Build rollback revision:
        // Restore old content
        // TODO: MCR: test this once we can store multiple slots
        foreach ( $targetRevision->getSlots()->getSlots() as $slot ) {
            $updater->inheritSlot( $slot );
        }
 
        // Remove extra slots
        // TODO: MCR: test this once we can store multiple slots
        foreach ( $currentRevision->getSlotRoles() as $role ) {
            if ( !$targetRevision->hasSlot( $role ) ) {
                $updater->removeSlot( $role );
            }
        }
 
        $updater->markAsRevert(
            EditResult::REVERT_ROLLBACK,
            $currentRevision->getId(),
            $targetRevision->getId()
        );
 
        // TODO: this logic should not be in the storage layer, it's here for compatibility
        // with 1.31 behavior. Applying the 'autopatrol' right should be done in the same
        // place the 'bot' right is handled, which is currently in EditPage::attemptSave.
        if ( $this->options->get( MainConfigNames::UseRCPatrol ) &&
            $this->performer->authorizeWrite( 'autopatrol', $this->page )
        ) {
            $updater->setRcPatrolStatus( RecentChange::PRC_AUTOPATROLLED );
        }
 
        $summary = $this->getSummary( $currentRevision, $targetRevision );
 
        // Actually store the rollback
        $rev = $updater->saveRevision(
            CommentStoreComment::newUnsavedComment( $summary ),
            $flags
        );
 
        // This is done even on edit failure to have patrolling in that case (T64157).
        $this->updateRecentChange( $dbw, $currentRevision, $targetRevision );
 
        if ( !$updater->wasSuccessful() ) {
            return $updater->getStatus();
        }
 
        // Report if the edit was not created because it did not change the content.
        if ( !$updater->wasRevisionCreated() ) {
            $result = StatusValue::newGood( [
                'current-revision-record' => $currentRevision
            ] );
            $result->fatal(
                'alreadyrolled',
                htmlspecialchars( $this->titleFormatter->getPrefixedText( $this->page ) ),
                htmlspecialchars( $this->byUser->getName() ),
                htmlspecialchars( $currentEditorForPublic ? $currentEditorForPublic->getName() : '' )
            );
            return $result;
        }
 
        if ( $changingContentModel ) {
            // If the content model changed during the rollback,
            // make sure it gets logged to Special:Log/contentmodel
            $log = new ManualLogEntry( 'contentmodel', 'change' );
            $log->setPerformer( $this->performer->getUser() );
            $log->setTarget( new TitleValue( $this->page->getNamespace(), $this->page->getDBkey() ) );
            $log->setComment( $summary );
            $log->setParameters( [
                '4::oldmodel' => $currentContent->getModel(),
                '5::newmodel' => $targetContent->getModel(),
            ] );
 
            $logId = $log->insert( $dbw );
            $log->publish( $logId );
        }
 
        $wikiPage = $this->wikiPageFactory->newFromTitle( $this->page );
 
        $this->hookRunner->onRollbackComplete(
            $wikiPage,
            $this->performer->getUser(),
            $targetRevision,
            $currentRevision
        );
 
        return StatusValue::newGood( [
            'summary' => $summary,
            'current-revision-record' => $currentRevision,
            'target-revision-record' => $targetRevision,
            'newid' => $rev->getId(),
            'tags' => array_merge( $this->tags, $updater->getEditResult()->getRevertTags() )
        ] );
    }
 
    private function updateRecentChange(
        IDatabase $dbw,
        RevisionRecord $current,
        RevisionRecord $target
    ) {
        $useRCPatrol = $this->options->get( MainConfigNames::UseRCPatrol );
        if ( !$this->bot && !$useRCPatrol ) {
            return;
        }
 
        $actorId = $this->actorNormalization
            ->acquireActorId( $current->getUser( RevisionRecord::RAW ), $dbw );
        $timestamp = $dbw->timestamp( $target->getTimestamp() );
        $rows = $dbw->select(
            'recentchanges',
            [ 'rc_id', 'rc_patrolled' ],
            [
                'rc_cur_id' => $current->getPageId(),
                $dbw->makeList( [
                    'rc_timestamp > ' . $dbw->addQuotes( $timestamp ),
                    $dbw->makeList( [
                        'rc_timestamp' => $timestamp,
                        'rc_this_oldid > ' . $dbw->addQuotes( $target->getId() ),
                    ], IDatabase::LIST_AND ),
                ], IDatabase::LIST_OR ),
                'rc_actor' => $actorId,
            ],
            __METHOD__
        );
 
        $all = [];
        $patrolled = [];
        $unpatrolled = [];
        foreach ( $rows as $row ) {
            $all[] = (int)$row->rc_id;
            if ( $row->rc_patrolled ) {
                $patrolled[] = (int)$row->rc_id;
            } else {
                $unpatrolled[] = (int)$row->rc_id;
            }
        }
 
        if ( $useRCPatrol && $this->bot ) {
            // Mark all reverted edits as if they were made by a bot
            // Also mark only unpatrolled reverted edits as patrolled
            if ( $unpatrolled ) {
                $dbw->update(
                    'recentchanges',
                    [ 'rc_bot' => 1, 'rc_patrolled' => RecentChange::PRC_AUTOPATROLLED ],
                    [ 'rc_id' => $unpatrolled ],
                    __METHOD__
                );
            }
            if ( $patrolled ) {
                $dbw->update(
                    'recentchanges',
                    [ 'rc_bot' => 1 ],
                    [ 'rc_id' => $patrolled ],
                    __METHOD__
                );
            }
        } elseif ( $useRCPatrol ) {
            // Mark only unpatrolled reverted edits as patrolled
            if ( $unpatrolled ) {
                $dbw->update(
                    'recentchanges',
                    [ 'rc_patrolled' => RecentChange::PRC_AUTOPATROLLED ],
                    [ 'rc_id' => $unpatrolled ],
                    __METHOD__
                );
            }
        } else {
            // Edit is from a bot
            if ( $all ) {
                $dbw->update(
                    'recentchanges',
                    [ 'rc_bot' => 1 ],
                    [ 'rc_id' => $all ],
                    __METHOD__
                );
            }
        }
    }
 
    private function getSummary( RevisionRecord $current, RevisionRecord $target ): string {
        $currentEditorForPublic = $current->getUser( RevisionRecord::FOR_PUBLIC );
        if ( $this->summary === '' ) {
            if ( !$currentEditorForPublic ) { // no public user name
                $summary = MessageValue::new( 'revertpage-nouser' );
            } elseif ( $this->options->get( MainConfigNames::DisableAnonTalk ) &&
            !$currentEditorForPublic->isRegistered() ) {
                $summary = MessageValue::new( 'revertpage-anon' );
            } else {
                $summary = MessageValue::new( 'revertpage' );
            }
        } else {
            $summary = $this->summary;
        }
 
        $targetEditorForPublic = $target->getUser( RevisionRecord::FOR_PUBLIC );
        // Allow the custom summary to use the same args as the default message
        $args = [
            $targetEditorForPublic ? $targetEditorForPublic->getName() : null,
            $currentEditorForPublic ? $currentEditorForPublic->getName() : null,
            $target->getId(),
            Message::dateTimeParam( $target->getTimestamp() ),
            $current->getId(),
            Message::dateTimeParam( $current->getTimestamp() ),
        ];
        if ( $summary instanceof MessageValue ) {
            $summary = ( new Converter() )->convertMessageValue( $summary );
            $summary = $summary->params( $args )->inContentLanguage()->text();
        } else {
            $summary = ( new RawMessage( $summary, $args ) )->inContentLanguage()->plain();
        }
 
        // Trim spaces on user supplied text
        return trim( $summary );
    }
}