REL1_39/php/SpecialCreateAccount_8php_source.html

<?php

use MediaWiki\Auth\AuthManager;

use MediaWiki\Logger\LoggerFactory;


class SpecialCreateAccount extends LoginSignupSpecialPage {

    protected static $allowedActions = [

        AuthManager::ACTION_CREATE,

        AuthManager::ACTION_CREATE_CONTINUE

    ];


    protected static $messages = [

        'authform-newtoken' => 'nocookiesfornew',

        'authform-notoken' => 'sessionfailure',

        'authform-wrongtoken' => 'sessionfailure',

    ];


    public function __construct( AuthManager $authManager ) {

        parent::__construct( 'CreateAccount', 'createaccount' );


        $this->setAuthManager( $authManager );

    }


    public function doesWrites() {

        return true;

    }


    public function checkPermissions() {

        parent::checkPermissions();


        $performer = $this->getAuthority();

        $authManager = $this->getAuthManager();


        $status = $this->mPosted ?

            $authManager->authorizeCreateAccount( $performer ) :

            $authManager->probablyCanCreateAccount( $performer );

        if ( !$status->isGood() ) {

            throw new ErrorPageError(

                'createacct-error',

                Status::wrap( $status )->getMessage()

            );

        }

    }


    protected function getLoginSecurityLevel() {

        return false;

    }


    protected function getDefaultAction( $subPage ) {

        return AuthManager::ACTION_CREATE;

    }


    public function getDescription() {

        return $this->msg( 'createaccount' )->text();

    }


    protected function isSignup() {

        return true;

    }


    protected function successfulAction( $direct = false, $extraMessages = null ) {

        $session = $this->getRequest()->getSession();

        $user = $this->targetUser ?: $this->getUser();


        if ( $direct ) {

            # Only save preferences if the user is not creating an account for someone else.

            if ( !$this->proxyAccountCreation ) {

                $this->getHookRunner()->onAddNewAccount( $user, false );


                // If the user does not have a session cookie at this point, they probably need to

                // do something to their browser.

                if ( !$this->hasSessionCookie() ) {

                    $this->mainLoginForm( [ /*?*/ ], $session->getProvider()->whyNoSession() );

                    // TODO something more specific? This used to use nocookiesnew

                    // FIXME should redirect to login page instead?

                    return;

                }

            } else {

                $byEmail = false; // FIXME no way to set this


                $this->getHookRunner()->onAddNewAccount( $user, $byEmail );


                $out = $this->getOutput();

                // @phan-suppress-next-line PhanImpossibleCondition

                $out->setPageTitle( $this->msg( $byEmail ? 'accmailtitle' : 'accountcreated' ) );

                // @phan-suppress-next-line PhanImpossibleCondition

                if ( $byEmail ) {

                    $out->addWikiMsg( 'accmailtext', $user->getName(), $user->getEmail() );

                } else {

                    $out->addWikiMsg( 'accountcreatedtext', $user->getName() );

                }


                $rt = Title::newFromText( $this->mReturnTo );

                $out->addReturnTo(

                    ( $rt && !$rt->isExternal() ) ? $rt : $this->getPageTitle(),

                    wfCgiToArray( $this->mReturnToQuery )

                );

                return;

            }

        }


        $this->clearToken();


        # Run any hooks; display injected HTML

        $injected_html = '';

        $welcome_creation_msg = 'welcomecreation-msg';

        $this->getHookRunner()->onUserLoginComplete( $user, $injected_html, $direct );


        $this->getHookRunner()->onBeforeWelcomeCreation( $welcome_creation_msg, $injected_html );


        $this->showSuccessPage( 'signup',

            $this->msg( 'welcomeuser', $this->getUser()->getName() )->escaped(),

            $welcome_creation_msg, $injected_html, $extraMessages );

    }


    protected function getToken() {

        return $this->getRequest()->getSession()->getToken( '', 'createaccount' );

    }


    protected function clearToken() {

        return $this->getRequest()->getSession()->resetToken( 'createaccount' );

    }


    protected function getTokenName() {

        return 'wpCreateaccountToken';

    }


    protected function getGroupName() {

        return 'login';

    }


    protected function logAuthResult( $success, $status = null ) {

        LoggerFactory::getInstance( 'authevents' )->info( 'Account creation attempt', [

            'event' => 'accountcreation',

            'successful' => $success,

            'status' => strval( $status ),

        ] );

    }


}


wfCgiToArray
wfCgiToArray( $query)
This is the logical opposite of wfArrayToCgi(): it accepts a query string as its argument and returns...
Definition GlobalFunctions.php:380

$success
$success
Definition NoLocalSettings.php:42

AuthManagerSpecialPage\$subPage
string $subPage
Subpage of the special page.
Definition AuthManagerSpecialPage.php:39

AuthManagerSpecialPage\getRequest
getRequest()
Get the WebRequest being used for this instance.
Definition AuthManagerSpecialPage.php:72

ErrorPageError
An error page which can definitely be safely rendered using the OutputPage.
Definition ErrorPageError.php:30

LoginSignupSpecialPage
Holds shared logic for login and account creation pages.
Definition LoginSignupSpecialPage.php:39

LoginSignupSpecialPage\mainLoginForm
mainLoginForm(array $requests, $msg='', $msgtype='error')
Definition LoginSignupSpecialPage.php:520

LoginSignupSpecialPage\showSuccessPage
showSuccessPage( $type, $title, $msgname, $injected_html, $extraMessages)
Show the success page.
Definition LoginSignupSpecialPage.php:441

LoginSignupSpecialPage\hasSessionCookie
hasSessionCookie()
Check if a session cookie is present.
Definition LoginSignupSpecialPage.php:1104

MediaWiki\Auth\AuthManager
This serves as the entry point to the authentication system.
Definition AuthManager.php:106

MediaWiki\Logger\LoggerFactory
PSR-3 logger instance factory.
Definition LoggerFactory.php:45

SpecialCreateAccount
Implements Special:CreateAccount.
Definition SpecialCreateAccount.php:32

SpecialCreateAccount\getTokenName
getTokenName()
Returns the name of the CSRF token (under which it should be found in the POST or GET data).
Definition SpecialCreateAccount.php:165

SpecialCreateAccount\$allowedActions
static $allowedActions
Definition SpecialCreateAccount.php:33

SpecialCreateAccount\successfulAction
successfulAction( $direct=false, $extraMessages=null)
Run any hooks registered for logins, then display a message welcoming the user.
Definition SpecialCreateAccount.php:97

SpecialCreateAccount\getToken
getToken()
Returns the CSRF token.
Definition SpecialCreateAccount.php:157

SpecialCreateAccount\logAuthResult
logAuthResult( $success, $status=null)
Logs to the authmanager-stats channel.
Definition SpecialCreateAccount.php:173

SpecialCreateAccount\getGroupName
getGroupName()
Under which header this special page is listed in Special:SpecialPages See messages 'specialpages-gro...
Definition SpecialCreateAccount.php:169

SpecialCreateAccount\doesWrites
doesWrites()
Indicates whether this special page may perform database writes.
Definition SpecialCreateAccount.php:53

SpecialCreateAccount\__construct
__construct(AuthManager $authManager)
Definition SpecialCreateAccount.php:47

SpecialCreateAccount\checkPermissions
checkPermissions()
Checks if userCanExecute, and if not throws a PermissionsError.
Definition SpecialCreateAccount.php:57

SpecialCreateAccount\$messages
static $messages
Definition SpecialCreateAccount.php:38

SpecialCreateAccount\getDescription
getDescription()
Returns the name that goes in the <h1> in the special page itself, and also the name that will be l...
Definition SpecialCreateAccount.php:82

SpecialCreateAccount\clearToken
clearToken()
Definition SpecialCreateAccount.php:161

SpecialCreateAccount\isSignup
isSignup()
Definition SpecialCreateAccount.php:86

SpecialCreateAccount\getLoginSecurityLevel
getLoginSecurityLevel()
Definition SpecialCreateAccount.php:74

SpecialCreateAccount\getDefaultAction
getDefaultAction( $subPage)
Get the default action for this special page, if none is given via URL/POST data.
Definition SpecialCreateAccount.php:78

SpecialPage\getName
getName()
Get the name of this Special Page.
Definition SpecialPage.php:204

SpecialPage\getOutput
getOutput()
Get the OutputPage being used for this instance.
Definition SpecialPage.php:862

SpecialPage\getUser
getUser()
Shortcut to get the User executing this instance.
Definition SpecialPage.php:872

SpecialPage\getAuthManager
getAuthManager()
Definition SpecialPage.php:563

SpecialPage\getHookRunner
getHookRunner()
Definition SpecialPage.php:1167

SpecialPage\msg
msg( $key,... $params)
Wrapper around wfMessage that sets the current context.
Definition SpecialPage.php:984

SpecialPage\getAuthority
getAuthority()
Shortcut to get the Authority executing this instance.
Definition SpecialPage.php:882

SpecialPage\setAuthManager
setAuthManager(AuthManager $authManager)
Set the injected AuthManager from the special page constructor.
Definition SpecialPage.php:553

SpecialPage\getPageTitle
getPageTitle( $subpage=false)
Get a self-referential title object.
Definition SpecialPage.php:816