MediaWiki master
ApiEditPage.php
Go to the documentation of this file.
1<?php
23namespace MediaWiki\Api;
24
25use MediaWiki\ChangeTags\ChangeTags;
26use MediaWiki\Content\ContentHandler;
27use MediaWiki\Content\IContentHandlerFactory;
28use MediaWiki\Content\TextContent;
29use MediaWiki\Context\RequestContext;
30use MediaWiki\EditPage\EditPage;
31use MediaWiki\Exception\MWContentSerializationException;
32use MediaWiki\MainConfigNames;
33use MediaWiki\MediaWikiServices;
34use MediaWiki\Message\Message;
35use MediaWiki\Page\Article;
36use MediaWiki\Page\RedirectLookup;
37use MediaWiki\Page\WikiPageFactory;
38use MediaWiki\Request\DerivativeRequest;
39use MediaWiki\Revision\RevisionLookup;
40use MediaWiki\Revision\RevisionRecord;
41use MediaWiki\Revision\SlotRecord;
42use MediaWiki\Title\Title;
43use MediaWiki\User\Options\UserOptionsLookup;
44use MediaWiki\User\TempUser\TempUserCreator;
45use MediaWiki\User\User;
46use MediaWiki\User\UserFactory;
47use MediaWiki\Watchlist\WatchedItemStoreInterface;
48use MediaWiki\Watchlist\WatchlistManager;
49use Wikimedia\ParamValidator\ParamValidator;
50use Wikimedia\ParamValidator\TypeDef\IntegerDef;
51
68class ApiEditPage extends ApiBase {
69 use ApiCreateTempUserTrait;
70 use ApiWatchlistTrait;
71
72 private IContentHandlerFactory $contentHandlerFactory;
73 private RevisionLookup $revisionLookup;
74 private WatchedItemStoreInterface $watchedItemStore;
75 private WikiPageFactory $wikiPageFactory;
76 private RedirectLookup $redirectLookup;
77 private TempUserCreator $tempUserCreator;
78 private UserFactory $userFactory;
79
83 private function persistGlobalSession() {
84 \MediaWiki\Session\SessionManager::getGlobalSession()->persist();
85 }
86
87 public function __construct(
88 ApiMain $mainModule,
89 string $moduleName,
90 ?IContentHandlerFactory $contentHandlerFactory = null,
91 ?RevisionLookup $revisionLookup = null,
92 ?WatchedItemStoreInterface $watchedItemStore = null,
93 ?WikiPageFactory $wikiPageFactory = null,
94 ?WatchlistManager $watchlistManager = null,
95 ?UserOptionsLookup $userOptionsLookup = null,
96 ?RedirectLookup $redirectLookup = null,
97 ?TempUserCreator $tempUserCreator = null,
98 ?UserFactory $userFactory = null
99 ) {
100 parent::__construct( $mainModule, $moduleName );
101
102 // This class is extended and therefor fallback to global state - T264213
103 $services = MediaWikiServices::getInstance();
104 $this->contentHandlerFactory = $contentHandlerFactory ?? $services->getContentHandlerFactory();
105 $this->revisionLookup = $revisionLookup ?? $services->getRevisionLookup();
106 $this->watchedItemStore = $watchedItemStore ?? $services->getWatchedItemStore();
107 $this->wikiPageFactory = $wikiPageFactory ?? $services->getWikiPageFactory();
108
109 // Variables needed in ApiWatchlistTrait trait
110 $this->watchlistExpiryEnabled = $this->getConfig()->get( MainConfigNames::WatchlistExpiry );
111 $this->watchlistMaxDuration =
112 $this->getConfig()->get( MainConfigNames::WatchlistExpiryMaxDuration );
113 $this->watchlistManager = $watchlistManager ?? $services->getWatchlistManager();
114 $this->userOptionsLookup = $userOptionsLookup ?? $services->getUserOptionsLookup();
115 $this->redirectLookup = $redirectLookup ?? $services->getRedirectLookup();
116 $this->tempUserCreator = $tempUserCreator ?? $services->getTempUserCreator();
117 $this->userFactory = $userFactory ?? $services->getUserFactory();
118 }
119
124 private function getUserForPermissions() {
125 $user = $this->getUser();
126 if ( $this->tempUserCreator->shouldAutoCreate( $user, 'edit' ) ) {
127 return $this->userFactory->newUnsavedTempUser(
128 $this->tempUserCreator->getStashedName( $this->getRequest()->getSession() )
129 );
130 }
131 return $user;
132 }
133
134 public function execute() {
135 $this->useTransactionalTimeLimit();
136
137 $user = $this->getUser();
138 $params = $this->extractRequestParams();
139
140 $this->requireAtLeastOneParameter( $params, 'text', 'appendtext', 'prependtext', 'undo' );
141
142 $pageObj = $this->getTitleOrPageId( $params );
143 $titleObj = $pageObj->getTitle();
144 $this->getErrorFormatter()->setContextTitle( $titleObj );
145 $apiResult = $this->getResult();
146
147 if ( $params['redirect'] ) {
148 if ( $params['prependtext'] === null
149 && $params['appendtext'] === null
150 && $params['section'] !== 'new'
151 ) {
152 $this->dieWithError( 'apierror-redirect-appendonly' );
153 }
154 if ( $titleObj->isRedirect() ) {
155 $oldTarget = $titleObj;
156 $redirTarget = $this->redirectLookup->getRedirectTarget( $oldTarget );
157 $redirTarget = Title::castFromLinkTarget( $redirTarget );
158
159 $redirValues = [
160 'from' => $titleObj->getPrefixedText(),
161 'to' => $redirTarget->getPrefixedText()
162 ];
163
164 // T239428: Check whether the new title is valid
165 if ( $redirTarget->isExternal() || !$redirTarget->canExist() ) {
166 $redirValues['to'] = $redirTarget->getFullText();
167 $this->dieWithError(
168 [
169 'apierror-edit-invalidredirect',
170 Message::plaintextParam( $oldTarget->getPrefixedText() ),
171 Message::plaintextParam( $redirTarget->getFullText() ),
172 ],
173 'edit-invalidredirect',
174 [ 'redirects' => $redirValues ]
175 );
176 }
177
178 ApiResult::setIndexedTagName( $redirValues, 'r' );
179 $apiResult->addValue( null, 'redirects', $redirValues );
180
181 // Since the page changed, update $pageObj and $titleObj
182 $pageObj = $this->wikiPageFactory->newFromTitle( $redirTarget );
183 $titleObj = $pageObj->getTitle();
184
185 $this->getErrorFormatter()->setContextTitle( $redirTarget );
186 }
187 }
188
189 if ( $params['contentmodel'] ) {
190 $contentHandler = $this->contentHandlerFactory->getContentHandler( $params['contentmodel'] );
191 } else {
192 $contentHandler = $pageObj->getContentHandler();
193 }
194 $contentModel = $contentHandler->getModelID();
195
196 $name = $titleObj->getPrefixedDBkey();
197
198 if ( $params['undo'] > 0 ) {
199 // allow undo via api
200 } elseif ( $contentHandler->supportsDirectApiEditing() === false ) {
201 $this->dieWithError( [ 'apierror-no-direct-editing', $contentModel, $name ] );
202 }
203
204 $contentFormat = $params['contentformat'] ?: $contentHandler->getDefaultFormat();
205
206 if ( !$contentHandler->isSupportedFormat( $contentFormat ) ) {
207 $this->dieWithError( [ 'apierror-badformat', $contentFormat, $contentModel, $name ] );
208 }
209
210 if ( $params['createonly'] && $titleObj->exists() ) {
211 $this->dieWithError( 'apierror-articleexists' );
212 }
213 if ( $params['nocreate'] && !$titleObj->exists() ) {
214 $this->dieWithError( 'apierror-missingtitle' );
215 }
216
217 // Now let's check whether we're even allowed to do this
218 $this->checkTitleUserPermissions(
219 $titleObj,
220 'edit',
221 [ 'autoblock' => true, 'user' => $this->getUserForPermissions() ]
222 );
223
224 $toMD5 = $params['text'];
225 if ( $params['appendtext'] !== null || $params['prependtext'] !== null ) {
226 $content = $pageObj->getContent();
227
228 if ( !$content ) {
229 if ( $titleObj->getNamespace() === NS_MEDIAWIKI ) {
230 # If this is a MediaWiki:x message, then load the messages
231 # and return the message value for x.
232 $text = $titleObj->getDefaultMessageText();
233 if ( $text === false ) {
234 $text = '';
235 }
236
237 try {
238 $content = ContentHandler::makeContent( $text, $titleObj );
239 } catch ( MWContentSerializationException $ex ) {
240 $this->dieWithException( $ex, [
241 'wrap' => ApiMessage::create( 'apierror-contentserializationexception', 'parseerror' )
242 ] );
243 }
244 } else {
245 # Otherwise, make a new empty content.
246 $content = $contentHandler->makeEmptyContent();
247 }
248 }
249
250 // @todo Add support for appending/prepending to the Content interface
251
252 if ( !( $content instanceof TextContent ) ) {
253 $this->dieWithError( [ 'apierror-appendnotsupported', $contentModel ] );
254 }
255
256 if ( $params['section'] !== null ) {
257 if ( !$contentHandler->supportsSections() ) {
258 $this->dieWithError( [ 'apierror-sectionsnotsupported', $contentModel ] );
259 }
260
261 if ( $params['section'] == 'new' ) {
262 // DWIM if they're trying to prepend/append to a new section.
263 $content = null;
264 } else {
265 // Process the content for section edits
266 $section = $params['section'];
267 $content = $content->getSection( $section );
268
269 if ( !$content ) {
270 $this->dieWithError( [ 'apierror-nosuchsection', wfEscapeWikiText( $section ) ] );
271 }
272 }
273 }
274
275 if ( !$content ) {
276 $text = '';
277 } else {
278 $text = $content->serialize( $contentFormat );
279 }
280
281 $params['text'] = $params['prependtext'] . $text . $params['appendtext'];
282 $toMD5 = $params['prependtext'] . $params['appendtext'];
283 }
284
285 if ( $params['undo'] > 0 ) {
286 $undoRev = $this->revisionLookup->getRevisionById( $params['undo'] );
287 if ( $undoRev === null || $undoRev->isDeleted( RevisionRecord::DELETED_TEXT ) ) {
288 $this->dieWithError( [ 'apierror-nosuchrevid', $params['undo'] ] );
289 }
290
291 if ( $params['undoafter'] > 0 ) {
292 $undoafterRev = $this->revisionLookup->getRevisionById( $params['undoafter'] );
293 } else {
294 // undoafter=0 or null
295 $undoafterRev = $this->revisionLookup->getPreviousRevision( $undoRev );
296 }
297 if ( $undoafterRev === null || $undoafterRev->isDeleted( RevisionRecord::DELETED_TEXT ) ) {
298 $this->dieWithError( [ 'apierror-nosuchrevid', $params['undoafter'] ] );
299 }
300
301 if ( $undoRev->getPageId() != $pageObj->getId() ) {
302 $this->dieWithError( [ 'apierror-revwrongpage', $undoRev->getId(),
303 $titleObj->getPrefixedText() ] );
304 }
305 if ( $undoafterRev->getPageId() != $pageObj->getId() ) {
306 $this->dieWithError( [ 'apierror-revwrongpage', $undoafterRev->getId(),
307 $titleObj->getPrefixedText() ] );
308 }
309
310 $newContent = $contentHandler->getUndoContent(
311 // @phan-suppress-next-line PhanTypeMismatchArgumentNullable Content is for public use here
312 $pageObj->getRevisionRecord()->getContent( SlotRecord::MAIN ),
313 // @phan-suppress-next-line PhanTypeMismatchArgumentNullable Content is for public use here
314 $undoRev->getContent( SlotRecord::MAIN ),
315 // @phan-suppress-next-line PhanTypeMismatchArgumentNullable Content is for public use here
316 $undoafterRev->getContent( SlotRecord::MAIN ),
317 $pageObj->getRevisionRecord()->getId() === $undoRev->getId()
318 );
319
320 if ( !$newContent ) {
321 $this->dieWithError( 'undo-failure', 'undofailure' );
322 }
323 if ( !$params['contentmodel'] && !$params['contentformat'] ) {
324 // If we are reverting content model, the new content model
325 // might not support the current serialization format, in
326 // which case go back to the old serialization format,
327 // but only if the user hasn't specified a format/model
328 // parameter.
329 if ( !$newContent->isSupportedFormat( $contentFormat ) ) {
330 $undoafterRevMainSlot = $undoafterRev->getSlot(
331 SlotRecord::MAIN,
332 RevisionRecord::RAW
333 );
334 $contentFormat = $undoafterRevMainSlot->getFormat();
335 if ( !$contentFormat ) {
336 // fall back to default content format for the model
337 // of $undoafterRev
338 $contentFormat = $this->contentHandlerFactory
339 ->getContentHandler( $undoafterRevMainSlot->getModel() )
340 ->getDefaultFormat();
341 }
342 }
343 // Override content model with model of undid revision.
344 $contentModel = $newContent->getModel();
345 $undoContentModel = true;
346 }
347 $params['text'] = $newContent->serialize( $contentFormat );
348 // If no summary was given and we only undid one rev,
349 // use an autosummary
350
351 if ( $params['summary'] === null ) {
352 $nextRev = $this->revisionLookup->getNextRevision( $undoafterRev );
353 if ( $nextRev && $nextRev->getId() == $params['undo'] ) {
354 $undoRevUser = $undoRev->getUser();
355 $params['summary'] = $this->msg( 'undo-summary' )
356 ->params( $params['undo'], $undoRevUser ? $undoRevUser->getName() : '' )
357 ->inContentLanguage()->text();
358 }
359 }
360 }
361
362 // See if the MD5 hash checks out
363 if ( $params['md5'] !== null && md5( $toMD5 ) !== $params['md5'] ) {
364 $this->dieWithError( 'apierror-badmd5' );
365 }
366
367 // EditPage wants to parse its stuff from a WebRequest
368 // That interface kind of sucks, but it's workable
369 $requestArray = [
370 // @phan-suppress-next-line PhanTypePossiblyInvalidDimOffset False positive
371 'wpTextbox1' => $params['text'],
372 'format' => $contentFormat,
373 'model' => $contentModel,
374 'wpEditToken' => $params['token'],
375 'wpIgnoreBlankSummary' => true,
376 'wpIgnoreBlankArticle' => true,
377 'wpIgnoreSelfRedirect' => true,
378 'wpIgnoreBrokenRedirects' => true,
379 'wpIgnoreDoubleRedirects' => true,
380 'bot' => $params['bot'],
381 'wpUnicodeCheck' => EditPage::UNICODE_CHECK,
382 ];
383
384 // @phan-suppress-next-line PhanTypePossiblyInvalidDimOffset False positive
385 if ( $params['summary'] !== null ) {
386 $requestArray['wpSummary'] = $params['summary'];
387 }
388
389 if ( $params['sectiontitle'] !== null ) {
390 $requestArray['wpSectionTitle'] = $params['sectiontitle'];
391 }
392
393 if ( $params['undo'] > 0 ) {
394 $requestArray['wpUndidRevision'] = $params['undo'];
395 }
396 if ( $params['undoafter'] > 0 ) {
397 $requestArray['wpUndoAfter'] = $params['undoafter'];
398 }
399
400 // Skip for baserevid == null or '' or '0' or 0
401 if ( !empty( $params['baserevid'] ) ) {
402 $requestArray['editRevId'] = $params['baserevid'];
403 }
404
405 // Watch out for basetimestamp == '' or '0'
406 // It gets treated as NOW, almost certainly causing an edit conflict
407 if ( $params['basetimestamp'] !== null && (bool)$this->getMain()->getVal( 'basetimestamp' ) ) {
408 $requestArray['wpEdittime'] = $params['basetimestamp'];
409 } elseif ( empty( $params['baserevid'] ) ) {
410 // Only set if baserevid is not set. Otherwise, conflicts would be ignored,
411 // due to the way userWasLastToEdit() works.
412 $requestArray['wpEdittime'] = $pageObj->getTimestamp();
413 }
414
415 if ( $params['starttimestamp'] !== null ) {
416 $requestArray['wpStarttime'] = $params['starttimestamp'];
417 } else {
418 $requestArray['wpStarttime'] = wfTimestampNow(); // Fake wpStartime
419 }
420
421 if ( $params['minor'] || ( !$params['notminor'] &&
422 $this->userOptionsLookup->getOption( $user, 'minordefault' ) )
423 ) {
424 $requestArray['wpMinoredit'] = '';
425 }
426
427 if ( $params['recreate'] ) {
428 $requestArray['wpRecreate'] = '';
429 }
430
431 if ( $params['section'] !== null ) {
432 $section = $params['section'];
433 if ( !preg_match( '/^((T-)?\d+|new)$/', $section ) ) {
434 $this->dieWithError( 'apierror-invalidsection' );
435 }
436 $content = $pageObj->getContent();
437 if ( $section !== '0'
438 && $section != 'new'
439 && ( !$content || !$content->getSection( $section ) )
440 ) {
441 $this->dieWithError( [ 'apierror-nosuchsection', $section ] );
442 }
443 $requestArray['wpSection'] = $params['section'];
444 } else {
445 $requestArray['wpSection'] = '';
446 }
447
448 $watch = $this->getWatchlistValue( $params['watchlist'], $titleObj, $user );
449
450 // Deprecated parameters
451 if ( $params['watch'] ) {
452 $watch = true;
453 } elseif ( $params['unwatch'] ) {
454 $watch = false;
455 }
456
457 if ( $watch ) {
458 $requestArray['wpWatchthis'] = true;
459 $prefName = 'watchdefault-expiry';
460 if ( !$pageObj->exists() ) {
461 $prefName = 'watchcreations-expiry';
462 }
463 $watchlistExpiry = $this->getExpiryFromParams( $params, $titleObj, $user, $prefName );
464
465 if ( $watchlistExpiry ) {
466 $requestArray['wpWatchlistExpiry'] = $watchlistExpiry;
467 }
468 }
469
470 // Apply change tags
471 if ( $params['tags'] ) {
472 $tagStatus = ChangeTags::canAddTagsAccompanyingChange( $params['tags'], $this->getAuthority() );
473 if ( $tagStatus->isOK() ) {
474 $requestArray['wpChangeTags'] = implode( ',', $params['tags'] );
475 } else {
476 $this->dieStatus( $tagStatus );
477 }
478 }
479
480 // Pass through anything else we might have been given, to support extensions
481 // This is kind of a hack but it's the best we can do to make extensions work
482 $requestArray += $this->getRequest()->getValues();
483
484 // phpcs:ignore MediaWiki.Usage.ExtendClassUsage.FunctionVarUsage,MediaWiki.Usage.DeprecatedGlobalVariables.Deprecated$wgTitle
485 global $wgTitle, $wgRequest;
486
487 $req = new DerivativeRequest( $this->getRequest(), $requestArray, true );
488
489 // Some functions depend on $wgTitle == $ep->mTitle
490 // TODO: Make them not or check if they still do
491 $wgTitle = $titleObj;
492
493 $articleContext = new RequestContext;
494 $articleContext->setRequest( $req );
495 $articleContext->setWikiPage( $pageObj );
496 $articleContext->setUser( $this->getUser() );
497
499 $articleObject = Article::newFromWikiPage( $pageObj, $articleContext );
500
501 $ep = new EditPage( $articleObject );
502
503 $ep->setApiEditOverride( true );
504 $ep->setContextTitle( $titleObj );
505 $ep->importFormData( $req );
506 $tempUserCreateStatus = $ep->maybeActivateTempUserCreate( true );
507 if ( !$tempUserCreateStatus->isOK() ) {
508 $this->dieWithError( 'apierror-tempuseracquirefailed', 'tempuseracquirefailed' );
509 }
510
511 // T255700: Ensure content models of the base content
512 // and fetched revision remain the same before attempting to save.
513 $editRevId = $requestArray['editRevId'] ?? false;
514 $baseRev = $this->revisionLookup->getRevisionByTitle( $titleObj, $editRevId );
515 $baseContentModel = null;
516
517 if ( $baseRev ) {
518 $baseContent = $baseRev->getContent( SlotRecord::MAIN );
519 $baseContentModel = $baseContent ? $baseContent->getModel() : null;
520 }
521
522 $baseContentModel ??= $pageObj->getContentModel();
523
524 // However, allow the content models to possibly differ if we are intentionally
525 // changing them or we are doing an undo edit that is reverting content model change.
526 $contentModelsCanDiffer = $params['contentmodel'] || isset( $undoContentModel );
527
528 if ( !$contentModelsCanDiffer && $contentModel !== $baseContentModel ) {
529 $this->dieWithError( [ 'apierror-contentmodel-mismatch', $contentModel, $baseContentModel ] );
530 }
531
532 // Do the actual save
533 $oldRevId = $articleObject->getRevIdFetched();
534 $result = null;
535
536 // Fake $wgRequest for some hooks inside EditPage
537 // @todo FIXME: This interface SUCKS
538 // phpcs:disable MediaWiki.Usage.ExtendClassUsage.FunctionVarUsage
539 $oldRequest = $wgRequest;
540 $wgRequest = $req;
541
542 $status = $ep->attemptSave( $result );
543 $statusValue = is_int( $status->value ) ? $status->value : 0;
544 $wgRequest = $oldRequest;
545 // phpcs:enable MediaWiki.Usage.ExtendClassUsage.FunctionVarUsage
546
547 $r = [];
548 switch ( $statusValue ) {
549 case EditPage::AS_HOOK_ERROR:
550 case EditPage::AS_HOOK_ERROR_EXPECTED:
551 if ( $status->statusData !== null ) {
552 $r = $status->statusData;
553 $r['result'] = 'Failure';
554 $apiResult->addValue( null, $this->getModuleName(), $r );
555 return;
556 }
557 if ( !$status->getMessages() ) {
558 // This appears to be unreachable right now, because all
559 // code paths will set an error. Could change, though.
560 $status->fatal( 'hookaborted' ); // @codeCoverageIgnore
561 }
562 $this->dieStatus( $status );
563
564 // These two cases will normally have been caught earlier, and will
565 // only occur if something blocks the user between the earlier
566 // check and the check in EditPage (presumably a hook). It's not
567 // obvious that this is even possible.
568 // @codeCoverageIgnoreStart
569 case EditPage::AS_BLOCKED_PAGE_FOR_USER:
570 // @phan-suppress-next-line PhanTypeMismatchArgumentNullable Block is checked and not null
571 $this->dieBlocked( $user->getBlock() );
572 // dieBlocked prevents continuation
573
574 case EditPage::AS_READ_ONLY_PAGE:
575 $this->dieReadOnly();
576 // @codeCoverageIgnoreEnd
577
578 case EditPage::AS_SUCCESS_NEW_ARTICLE:
579 $r['new'] = true;
580 // fall-through
581
582 case EditPage::AS_SUCCESS_UPDATE:
583 $r['result'] = 'Success';
584 $r['pageid'] = (int)$titleObj->getArticleID();
585 $r['title'] = $titleObj->getPrefixedText();
586 $r['contentmodel'] = $articleObject->getPage()->getContentModel();
587 $newRevId = $articleObject->getPage()->getLatest();
588 if ( $newRevId == $oldRevId ) {
589 $r['nochange'] = true;
590 } else {
591 $r['oldrevid'] = (int)$oldRevId;
592 $r['newrevid'] = (int)$newRevId;
593 $r['newtimestamp'] = wfTimestamp( TS_ISO_8601,
594 $pageObj->getTimestamp() );
595 }
596
597 if ( $watch ) {
598 $r['watched'] = true;
599
600 $watchlistExpiry = $this->getWatchlistExpiry(
601 $this->watchedItemStore,
602 $titleObj,
603 $user
604 );
605
606 if ( $watchlistExpiry ) {
607 $r['watchlistexpiry'] = $watchlistExpiry;
608 }
609 }
610 $this->persistGlobalSession();
611
612 // If the temporary account was created in this request,
613 // or if the temporary account has zero edits (implying
614 // that the account was created during a failed edit
615 // attempt in a previous request), perform the top-level
616 // redirect to ensure the account is attached.
617 // Note that the temp user could already have performed
618 // the top-level redirect if this a first edit on
619 // a wiki that is not the user's home wiki.
620 $shouldRedirectForTempUser = isset( $result['savedTempUser'] ) ||
621 ( $user->isTemp() && ( $user->getEditCount() === 0 ) );
622 if ( $shouldRedirectForTempUser ) {
623 $r['tempusercreated'] = true;
624 $params['returnto'] ??= $titleObj->getPrefixedDBkey();
625 $redirectUrl = $this->getTempUserRedirectUrl(
626 $params,
627 $result['savedTempUser'] ?? $user
628 );
629 if ( $redirectUrl ) {
630 $r['tempusercreatedredirect'] = $redirectUrl;
631 }
632 }
633
634 break;
635
636 default:
637 if ( !$status->getMessages() ) {
638 // EditPage sometimes only sets the status code without setting
639 // any actual error messages. Supply defaults for those cases.
640 switch ( $statusValue ) {
641 // Currently needed
642 case EditPage::AS_IMAGE_REDIRECT_ANON:
643 $status->fatal( 'apierror-noimageredirect-anon' );
644 break;
645 case EditPage::AS_IMAGE_REDIRECT_LOGGED:
646 $status->fatal( 'apierror-noimageredirect' );
647 break;
648 case EditPage::AS_READ_ONLY_PAGE_ANON:
649 $status->fatal( 'apierror-noedit-anon' );
650 break;
651 case EditPage::AS_NO_CHANGE_CONTENT_MODEL:
652 $status->fatal( 'apierror-cantchangecontentmodel' );
653 break;
654 case EditPage::AS_ARTICLE_WAS_DELETED:
655 $status->fatal( 'apierror-pagedeleted' );
656 break;
657 case EditPage::AS_CONFLICT_DETECTED:
658 $status->fatal( 'edit-conflict' );
659 break;
660
661 // Currently shouldn't be needed, but here in case
662 // hooks use them without setting appropriate
663 // errors on the status.
664 // @codeCoverageIgnoreStart
665 case EditPage::AS_SPAM_ERROR:
666 // @phan-suppress-next-line PhanTypePossiblyInvalidDimOffset
667 $status->fatal( 'apierror-spamdetected', $result['spam'] );
668 break;
669 case EditPage::AS_READ_ONLY_PAGE_LOGGED:
670 $status->fatal( 'apierror-noedit' );
671 break;
672 case EditPage::AS_RATE_LIMITED:
673 $status->fatal( 'apierror-ratelimited' );
674 break;
675 case EditPage::AS_NO_CREATE_PERMISSION:
676 $status->fatal( 'nocreate-loggedin' );
677 break;
678 case EditPage::AS_BLANK_ARTICLE:
679 $status->fatal( 'apierror-emptypage' );
680 break;
681 case EditPage::AS_TEXTBOX_EMPTY:
682 $status->fatal( 'apierror-emptynewsection' );
683 break;
684 case EditPage::AS_SUMMARY_NEEDED:
685 $status->fatal( 'apierror-summaryrequired' );
686 break;
687 default:
688 wfWarn( __METHOD__ . ": Unknown EditPage code $statusValue with no message" );
689 $status->fatal( 'apierror-unknownerror-editpage', $statusValue );
690 break;
691 // @codeCoverageIgnoreEnd
692 }
693 }
694 $this->dieStatus( $status );
695 }
696 $apiResult->addValue( null, $this->getModuleName(), $r );
697 }
698
699 public function mustBePosted() {
700 return true;
701 }
702
703 public function isWriteMode() {
704 return true;
705 }
706
707 public function getAllowedParams() {
708 $params = [
709 'title' => [
710 ParamValidator::PARAM_TYPE => 'string',
711 ],
712 'pageid' => [
713 ParamValidator::PARAM_TYPE => 'integer',
714 ],
715 'section' => null,
716 'sectiontitle' => [
717 ParamValidator::PARAM_TYPE => 'string',
718 ],
719 'text' => [
720 ParamValidator::PARAM_TYPE => 'text',
721 ],
722 'summary' => null,
723 'tags' => [
724 ParamValidator::PARAM_TYPE => 'tags',
725 ParamValidator::PARAM_ISMULTI => true,
726 ],
727 'minor' => false,
728 'notminor' => false,
729 'bot' => false,
730 'baserevid' => [
731 ParamValidator::PARAM_TYPE => 'integer',
732 ],
733 'basetimestamp' => [
734 ParamValidator::PARAM_TYPE => 'timestamp',
735 ],
736 'starttimestamp' => [
737 ParamValidator::PARAM_TYPE => 'timestamp',
738 ],
739 'recreate' => false,
740 'createonly' => false,
741 'nocreate' => false,
742 'watch' => [
743 ParamValidator::PARAM_DEFAULT => false,
744 ParamValidator::PARAM_DEPRECATED => true,
745 ],
746 'unwatch' => [
747 ParamValidator::PARAM_DEFAULT => false,
748 ParamValidator::PARAM_DEPRECATED => true,
749 ],
750 ];
751
752 // Params appear in the docs in the order they are defined,
753 // which is why this is here and not at the bottom.
754 $params += $this->getWatchlistParams();
755
756 $params += [
757 'md5' => null,
758 'prependtext' => [
759 ParamValidator::PARAM_TYPE => 'text',
760 ],
761 'appendtext' => [
762 ParamValidator::PARAM_TYPE => 'text',
763 ],
764 'undo' => [
765 ParamValidator::PARAM_TYPE => 'integer',
766 IntegerDef::PARAM_MIN => 0,
767 ApiBase::PARAM_RANGE_ENFORCE => true,
768 ],
769 'undoafter' => [
770 ParamValidator::PARAM_TYPE => 'integer',
771 IntegerDef::PARAM_MIN => 0,
772 ApiBase::PARAM_RANGE_ENFORCE => true,
773 ],
774 'redirect' => [
775 ParamValidator::PARAM_TYPE => 'boolean',
776 ParamValidator::PARAM_DEFAULT => false,
777 ],
778 'contentformat' => [
779 ParamValidator::PARAM_TYPE => $this->contentHandlerFactory->getAllContentFormats(),
780 ],
781 'contentmodel' => [
782 ParamValidator::PARAM_TYPE => $this->contentHandlerFactory->getContentModels(),
783 ],
784 'token' => [
785 // Standard definition automatically inserted
786 ApiBase::PARAM_HELP_MSG_APPEND => [ 'apihelp-edit-param-token' ],
787 ],
788 ];
789
790 $params += $this->getCreateTempUserParams();
791
792 return $params;
793 }
794
795 public function needsToken() {
796 return 'csrf';
797 }
798
799 protected function getExamplesMessages() {
800 return [
801 'action=edit&title=Test&summary=test%20summary&' .
802 'text=article%20content&baserevid=1234567&token=123ABC'
803 => 'apihelp-edit-example-edit',
804 'action=edit&title=Test&summary=NOTOC&minor=&' .
805 'prependtext=__NOTOC__%0A&basetimestamp=2007-08-24T12:34:54Z&token=123ABC'
806 => 'apihelp-edit-example-prepend',
807 'action=edit&title=Test&undo=13585&undoafter=13579&' .
808 'basetimestamp=2007-08-24T12:34:54Z&token=123ABC'
809 => 'apihelp-edit-example-undo',
810 ];
811 }
812
813 public function getHelpUrls() {
814 return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Edit';
815 }
816}
817
819class_alias( ApiEditPage::class, 'ApiEditPage' );
NS_MEDIAWIKI
const NS_MEDIAWIKI
Definition Defines.php:73
wfWarn
wfWarn( $msg, $callerOffset=1, $level=E_USER_NOTICE)
Send a warning either to the debug log or in a PHP error depending on $wgDevelopmentWarnings.
Definition GlobalFunctions.php:820
wfTimestampNow
wfTimestampNow()
Convenience function; returns MediaWiki timestamp for the present time.
Definition GlobalFunctions.php:1360
wfEscapeWikiText
wfEscapeWikiText( $input)
Escapes the given text so that it may be output using addWikiText() without any linking,...
Definition GlobalFunctions.php:1097
wfTimestamp
wfTimestamp( $outputtype=TS_UNIX, $ts=0)
Get a timestamp string in one of various formats.
Definition GlobalFunctions.php:1331
$wgRequest
global $wgRequest
Definition Setup.php:438
$wgTitle
if(!defined( 'MW_NO_SESSION') &&MW_ENTRY_POINT !=='cli' $wgTitle
Definition Setup.php:559
MediaWiki\Api\ApiBase
This abstract class implements many basic API functions, and is the base of all API classes.
Definition ApiBase.php:75
MediaWiki\Api\ApiBase\dieWithError
dieWithError( $msg, $code=null, $data=null, $httpCode=0)
Abort execution with an error.
Definition ApiBase.php:1526
MediaWiki\Api\ApiBase\getModuleName
getModuleName()
Get the name of the module being executed by this instance.
Definition ApiBase.php:557
MediaWiki\Api\ApiBase\requireAtLeastOneParameter
requireAtLeastOneParameter( $params,... $required)
Die if 0 of a certain set of parameters is set and not false.
Definition ApiBase.php:1040
MediaWiki\Api\ApiBase\getMain
getMain()
Get the main module.
Definition ApiBase.php:575
MediaWiki\Api\ApiBase\useTransactionalTimeLimit
useTransactionalTimeLimit()
Call wfTransactionalTimeLimit() if this request was POSTed.
Definition ApiBase.php:1374
MediaWiki\Api\ApiBase\getResult
getResult()
Get the result object.
Definition ApiBase.php:696
MediaWiki\Api\ApiBase\PARAM_RANGE_ENFORCE
const PARAM_RANGE_ENFORCE
(boolean) Inverse of IntegerDef::PARAM_IGNORE_RANGE
Definition ApiBase.php:170
MediaWiki\Api\ApiBase\PARAM_HELP_MSG_APPEND
const PARAM_HELP_MSG_APPEND
((string|array|Message)[]) Specify additional i18n messages to append to the normal message for this ...
Definition ApiBase.php:189
MediaWiki\Api\ApiBase\dieWithException
dieWithException(Throwable $exception, array $options=[])
Abort execution with an error derived from a throwable.
Definition ApiBase.php:1539
MediaWiki\Api\ApiBase\dieBlocked
dieBlocked(Block $block)
Throw an ApiUsageException, which will (if uncaught) call the main module's error handler and die wit...
Definition ApiBase.php:1554
MediaWiki\Api\ApiBase\dieStatus
dieStatus(StatusValue $status)
Throw an ApiUsageException based on the Status object.
Definition ApiBase.php:1577
MediaWiki\Api\ApiBase\extractRequestParams
extractRequestParams( $options=[])
Using getAllowedParams(), this function makes an array of the values provided by the user,...
Definition ApiBase.php:837
MediaWiki\Api\ApiBase\dieReadOnly
dieReadOnly()
Helper function for readonly errors.
Definition ApiBase.php:1619
MediaWiki\Api\ApiBase\checkTitleUserPermissions
checkTitleUserPermissions(PageIdentity $pageIdentity, $actions, array $options=[])
Helper function for permission-denied errors.
Definition ApiBase.php:1658
MediaWiki\Api\ApiBase\getTitleOrPageId
getTitleOrPageId( $params, $load=false)
Attempts to load a WikiPage object from a title or pageid parameter, if possible.
Definition ApiBase.php:1162
MediaWiki\Api\ApiEditPage
A module that allows for editing and creating pages.
Definition ApiEditPage.php:68
MediaWiki\Api\ApiEditPage\execute
execute()
Evaluates the parameters, performs the requested query, and sets up the result.
Definition ApiEditPage.php:134
MediaWiki\Api\ApiEditPage\isWriteMode
isWriteMode()
Indicates whether this module requires write access to the wiki.
Definition ApiEditPage.php:703
MediaWiki\Api\ApiEditPage\getHelpUrls
getHelpUrls()
Return links to more detailed help pages about the module.
Definition ApiEditPage.php:813
MediaWiki\Api\ApiEditPage\__construct
__construct(ApiMain $mainModule, string $moduleName, ?IContentHandlerFactory $contentHandlerFactory=null, ?RevisionLookup $revisionLookup=null, ?WatchedItemStoreInterface $watchedItemStore=null, ?WikiPageFactory $wikiPageFactory=null, ?WatchlistManager $watchlistManager=null, ?UserOptionsLookup $userOptionsLookup=null, ?RedirectLookup $redirectLookup=null, ?TempUserCreator $tempUserCreator=null, ?UserFactory $userFactory=null)
Definition ApiEditPage.php:87
MediaWiki\Api\ApiEditPage\getAllowedParams
getAllowedParams()
Returns an array of allowed parameters (parameter name) => (default value) or (parameter name) => (ar...
Definition ApiEditPage.php:707
MediaWiki\Api\ApiEditPage\mustBePosted
mustBePosted()
Indicates whether this module must be called with a POST request.
Definition ApiEditPage.php:699
MediaWiki\Api\ApiEditPage\getExamplesMessages
getExamplesMessages()
Returns usage examples for this module.
Definition ApiEditPage.php:799
MediaWiki\Api\ApiEditPage\needsToken
needsToken()
Returns the token type this module requires in order to execute.
Definition ApiEditPage.php:795
MediaWiki\Api\ApiMain
This is the main API class, used for both external and internal processing.
Definition ApiMain.php:79
MediaWiki\Api\ApiMessage\create
static create( $msg, $code=null, ?array $data=null)
Create an IApiMessage for the message.
Definition ApiMessage.php:49
MediaWiki\Api\ApiResult\setIndexedTagName
static setIndexedTagName(array &$arr, $tag)
Set the tag name for numeric-keyed values in XML format.
Definition ApiResult.php:618
MediaWiki\ChangeTags\ChangeTags
Recent changes tagging.
Definition ChangeTags.php:64
MediaWiki\Content\ContentHandler
Base class for content handling.
Definition ContentHandler.php:89
MediaWiki\Content\TextContent
Content object implementation for representing flat text.
Definition TextContent.php:41
MediaWiki\Context\ContextSource\msg
msg( $key,... $params)
Get a Message object with context set Parameters are the same as wfMessage()
Definition ContextSource.php:224
MediaWiki\Context\RequestContext
Group all the pieces relevant to the context of a request into one instance.
Definition RequestContext.php:68
MediaWiki\EditPage\EditPage
The HTML user interface for page editing.
Definition EditPage.php:154
MediaWiki\Exception\MWContentSerializationException
Exception representing a failure to serialize or unserialize a content object.
Definition MWContentSerializationException.php:11
MediaWiki\MainConfigNames
A class containing constants representing the names of configuration variables.
Definition MainConfigNames.php:22
MediaWiki\MainConfigNames\WatchlistExpiry
const WatchlistExpiry
Name constant for the WatchlistExpiry setting, for use with Config::get()
Definition MainConfigNames.php:3739
MediaWiki\MainConfigNames\WatchlistExpiryMaxDuration
const WatchlistExpiryMaxDuration
Name constant for the WatchlistExpiryMaxDuration setting, for use with Config::get()
Definition MainConfigNames.php:3751
MediaWiki\MediaWikiServices
Service locator for MediaWiki core services.
Definition MediaWikiServices.php:250
MediaWiki\MediaWikiServices\getInstance
static getInstance()
Returns the global default instance of the top level service locator.
Definition MediaWikiServices.php:338
MediaWiki\Message\Message
The Message class deals with fetching and processing of interface message into a variety of formats.
Definition Message.php:157
MediaWiki\Message\Message\plaintextParam
static plaintextParam( $plaintext)
Definition Message.php:1354
MediaWiki\Page\Article
Legacy class representing an editable page and handling UI for some page actions.
Definition Article.php:76
MediaWiki\Page\WikiPageFactory
Service for creating WikiPage objects.
Definition WikiPageFactory.php:18
MediaWiki\Request\DerivativeRequest
Similar to MediaWiki\Request\FauxRequest, but only fakes URL parameters and method (POST or GET) and ...
Definition DerivativeRequest.php:40
MediaWiki\Revision\RevisionRecord
Page revision base class.
Definition RevisionRecord.php:49
MediaWiki\Revision\SlotRecord
Value object representing a content slot associated with a page revision.
Definition SlotRecord.php:40
MediaWiki\Title\Title
Represents a title within MediaWiki.
Definition Title.php:78
MediaWiki\User\Options\UserOptionsLookup
Provides access to user options.
Definition UserOptionsLookup.php:31
MediaWiki\User\TempUser\TempUserCreator
Service for temporary user creation.
Definition TempUserCreator.php:30
MediaWiki\User\UserFactory
Create User objects.
Definition UserFactory.php:46
MediaWiki\User\User
User class for the MediaWiki software.
Definition User.php:123
Wikimedia\ParamValidator\ParamValidator
Service for formatting and validating API parameters.
Definition ParamValidator.php:42
Wikimedia\ParamValidator\TypeDef\IntegerDef
Type definition for integer types.
Definition IntegerDef.php:23
MediaWiki\Api\ApiCreateTempUserTrait
trait ApiCreateTempUserTrait
Methods needed by APIs that create a temporary user.
Definition ApiCreateTempUserTrait.php:17
MediaWiki\Api\ApiWatchlistTrait
trait ApiWatchlistTrait
An ApiWatchlistTrait adds class properties and convenience methods for APIs that allow you to watch a...
Definition ApiWatchlistTrait.php:26
MediaWiki\Page\RedirectLookup
Service for resolving a wiki page redirect.
Definition RedirectLookup.php:34
MediaWiki\Revision\RevisionLookup
Service for looking up page revisions.
Definition RevisionLookup.php:38
MediaWiki\Api\getWatchlistValue
getWatchlistValue(string $watchlist, PageIdentity $page, User $user, ?string $userOption=null)
Return true if we're to watch the page, false if not.
Definition ApiWatchlistTrait.php:112
MediaWiki\Api\getWatchlistParams
getWatchlistParams(array $watchOptions=[])
Get additional allow params specific to watchlisting.
Definition ApiWatchlistTrait.php:55
MediaWiki\Api\getExpiryFromParams
getExpiryFromParams(array $params, ?PageIdentity $page=null, ?UserIdentity $user=null, string $userOption='watchdefault-expiry')
Get formatted expiry from the given parameters.
Definition ApiWatchlistTrait.php:163
MediaWiki\Api\getWatchlistExpiry
getWatchlistExpiry(WatchedItemStoreInterface $store, PageIdentity $page, UserIdentity $user)
Get existing expiry from the database.
Definition ApiWatchlistTrait.php:197