MediaWiki master
ApiQueryAuthManagerInfo.php
Go to the documentation of this file.
1<?php
10namespace MediaWiki\Api;
11
12use MediaWiki\Auth\AuthManager;
13use MediaWiki\MainConfigNames;
14use Wikimedia\ParamValidator\ParamValidator;
15
21class ApiQueryAuthManagerInfo extends ApiQueryBase {
22
23 private AuthManager $authManager;
24
25 public function __construct(
26 ApiQuery $query,
27 string $moduleName,
28 AuthManager $authManager
29 ) {
30 parent::__construct( $query, $moduleName, 'ami' );
31 $this->authManager = $authManager;
32 }
33
34 public function execute() {
35 $params = $this->extractRequestParams();
36 $helper = new ApiAuthManagerHelper( $this, $this->authManager );
37 $ret = [
38 'canauthenticatenow' => $this->authManager->canAuthenticateNow(),
39 'cancreateaccounts' => $this->authManager->canCreateAccounts(),
40 'canlinkaccounts' => $this->authManager->canLinkAccounts(),
41 ];
42
43 if ( $params['securitysensitiveoperation'] !== null ) {
44 $ret['securitysensitiveoperationstatus'] = $this->authManager->securitySensitiveOperationStatus(
45 $params['securitysensitiveoperation']
46 );
47 }
48
49 if ( $params['requestsfor'] ) {
50 $action = $params['requestsfor'];
51
52 $preservedReq = $helper->getPreservedRequest();
53 if ( $preservedReq ) {
54 $ret += [
55 'haspreservedstate' => $preservedReq->hasStateForAction( $action ),
56 'hasprimarypreservedstate' => $preservedReq->hasPrimaryStateForAction( $action ),
57 'preservedusername' => (string)$preservedReq->username,
58 ];
59 } else {
60 $ret += [
61 'haspreservedstate' => false,
62 'hasprimarypreservedstate' => false,
63 'preservedusername' => '',
64 ];
65 }
66
67 $reqs = $this->authManager->getAuthenticationRequests( $action, $this->getUser() );
68
69 // Filter out blacklisted requests, depending on the action
70 switch ( $action ) {
71 case AuthManager::ACTION_CHANGE:
72 $reqs = ApiAuthManagerHelper::blacklistAuthenticationRequests( $reqs,
73 $this->getConfig()->get( MainConfigNames::ChangeCredentialsBlacklist )
74 );
75 break;
76 case AuthManager::ACTION_REMOVE:
77 $reqs = ApiAuthManagerHelper::blacklistAuthenticationRequests( $reqs,
78 $this->getConfig()->get( MainConfigNames::RemoveCredentialsBlacklist )
79 );
80 break;
81 }
82
83 $ret += $helper->formatRequests( $reqs );
84 }
85
86 $this->getResult()->addValue( [ 'query' ], $this->getModuleName(), $ret );
87 }
88
90 public function isReadMode() {
91 return false;
92 }
93
95 public function getAllowedParams() {
96 return [
97 'securitysensitiveoperation' => null,
98 'requestsfor' => [
99 ParamValidator::PARAM_TYPE => [
100 AuthManager::ACTION_LOGIN,
101 AuthManager::ACTION_LOGIN_CONTINUE,
102 AuthManager::ACTION_CREATE,
103 AuthManager::ACTION_CREATE_CONTINUE,
104 AuthManager::ACTION_LINK,
105 AuthManager::ACTION_LINK_CONTINUE,
106 AuthManager::ACTION_CHANGE,
107 AuthManager::ACTION_REMOVE,
108 AuthManager::ACTION_UNLINK,
109 ],
110 ],
111 ] + ApiAuthManagerHelper::getStandardParams( '', 'mergerequestfields', 'messageformat' );
112 }
113
115 protected function getExamplesMessages() {
116 return [
117 'action=query&meta=authmanagerinfo&amirequestsfor=' . urlencode( AuthManager::ACTION_LOGIN )
118 => 'apihelp-query+authmanagerinfo-example-login',
119 'action=query&meta=authmanagerinfo&amirequestsfor=' . urlencode( AuthManager::ACTION_LOGIN ) .
120 '&amimergerequestfields=1'
121 => 'apihelp-query+authmanagerinfo-example-login-merged',
122 'action=query&meta=authmanagerinfo&amisecuritysensitiveoperation=foo'
123 => 'apihelp-query+authmanagerinfo-example-securitysensitiveoperation',
124 ];
125 }
126
128 public function getHelpUrls() {
129 return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Authmanagerinfo';
130 }
131}
132
134class_alias( ApiQueryAuthManagerInfo::class, 'ApiQueryAuthManagerInfo' );
MediaWiki\Api\ApiAuthManagerHelper
Helper class for AuthManager-using API modules.
Definition ApiAuthManagerHelper.php:31
MediaWiki\Api\ApiAuthManagerHelper\getStandardParams
static getStandardParams( $action,... $wantedParams)
Fetch the standard parameters this helper recognizes.
Definition ApiAuthManagerHelper.php:363
MediaWiki\Api\ApiAuthManagerHelper\blacklistAuthenticationRequests
static blacklistAuthenticationRequests(array $reqs, array $remove)
Filter out authentication requests by class name.
Definition ApiAuthManagerHelper.php:133
MediaWiki\Api\ApiBase\getModuleName
getModuleName()
Get the name of the module being executed by this instance.
Definition ApiBase.php:543
MediaWiki\Api\ApiBase\getResult
getResult()
Get the result object.
Definition ApiBase.php:682
MediaWiki\Api\ApiBase\extractRequestParams
extractRequestParams( $options=[])
Using getAllowedParams(), this function makes an array of the values provided by the user,...
Definition ApiBase.php:823
MediaWiki\Api\ApiQueryAuthManagerInfo
A query action to return meta information about AuthManager state.
Definition ApiQueryAuthManagerInfo.php:21
MediaWiki\Api\ApiQueryAuthManagerInfo\getExamplesMessages
getExamplesMessages()
Returns usage examples for this module.Return value has query strings as keys, with values being eith...
Definition ApiQueryAuthManagerInfo.php:115
MediaWiki\Api\ApiQueryAuthManagerInfo\getAllowedParams
getAllowedParams()
Returns an array of allowed parameters (parameter name) => (default value) or (parameter name) => (ar...
Definition ApiQueryAuthManagerInfo.php:95
MediaWiki\Api\ApiQueryAuthManagerInfo\__construct
__construct(ApiQuery $query, string $moduleName, AuthManager $authManager)
Definition ApiQueryAuthManagerInfo.php:25
MediaWiki\Api\ApiQueryAuthManagerInfo\execute
execute()
Evaluates the parameters, performs the requested query, and sets up the result.
Definition ApiQueryAuthManagerInfo.php:34
MediaWiki\Api\ApiQueryAuthManagerInfo\isReadMode
isReadMode()
Indicates whether this module requires read rights.to override bool
Definition ApiQueryAuthManagerInfo.php:90
MediaWiki\Api\ApiQueryAuthManagerInfo\getHelpUrls
getHelpUrls()
Return links to more detailed help pages about the module.1.25, returning boolean false is deprecated...
Definition ApiQueryAuthManagerInfo.php:128
MediaWiki\Api\ApiQueryBase
This is a base class for all Query modules.
Definition ApiQueryBase.php:31
MediaWiki\Api\ApiQuery
This is the main query class.
Definition ApiQuery.php:36
MediaWiki\Auth\AuthManager
AuthManager is the authentication system in MediaWiki and serves entry point for authentication.
Definition AuthManager.php:109
MediaWiki\MainConfigNames
A class containing constants representing the names of configuration variables.
Definition MainConfigNames.php:22
MediaWiki\MainConfigNames\RemoveCredentialsBlacklist
const RemoveCredentialsBlacklist
Name constant for the RemoveCredentialsBlacklist setting, for use with Config::get()
Definition MainConfigNames.php:2601
MediaWiki\MainConfigNames\ChangeCredentialsBlacklist
const ChangeCredentialsBlacklist
Name constant for the ChangeCredentialsBlacklist setting, for use with Config::get()
Definition MainConfigNames.php:2595
Wikimedia\ParamValidator\ParamValidator
Service for formatting and validating API parameters.
Definition ParamValidator.php:42