master/php/AuthorizationConstraint_8php_source.html

<?php

namespace MediaWiki\EditPage\Constraint;


use MediaWiki\Page\PageIdentity;

use MediaWiki\Permissions\Authority;

use MediaWiki\Permissions\PermissionStatus;

use StatusValue;


class AuthorizationConstraint implements IEditConstraint {


    private PermissionStatus $status;


    private Authority $performer;

    private PageIdentity $target;

    private bool $new;


    public function __construct(

        Authority $performer,

        PageIdentity $target,

        bool $new

    ) {

        $this->performer = $performer;

        $this->target = $target;

        $this->new = $new;

    }


    public function checkConstraint(): string {

        $this->status = PermissionStatus::newEmpty();


        if ( $this->new && !$this->performer->authorizeWrite( 'create', $this->target, $this->status ) ) {

            return self::CONSTRAINT_FAILED;

        }


        if ( !$this->performer->authorizeWrite( 'edit', $this->target, $this->status ) ) {

            return self::CONSTRAINT_FAILED;

        }


        return self::CONSTRAINT_PASSED;

    }


    public function getLegacyStatus(): StatusValue {

        $statusValue = StatusValue::newGood();


        if ( !$this->status->isGood() ) {

            // Report the most specific errors first

            if ( $this->status->isBlocked() ) {

                $statusValue->setResult( false, self::AS_BLOCKED_PAGE_FOR_USER );

            } elseif ( $this->status->isRateLimitExceeded() ) {

                $statusValue->setResult( false, self::AS_RATE_LIMITED );

            } elseif ( $this->status->getPermission() === 'create' ) {

                $statusValue->setResult( false, self::AS_NO_CREATE_PERMISSION );

            } elseif ( !$this->performer->isRegistered() ) {

                $statusValue->setResult( false, self::AS_READ_ONLY_PAGE_ANON );

            } else {

                $statusValue->setResult( false, self::AS_READ_ONLY_PAGE_LOGGED );

            }

        }


        // TODO: Use error messages from the PermissionStatus ($this->status) here - T384399

        return $statusValue;

    }


}


MediaWiki\EditPage\Constraint\AuthorizationConstraint
Verify authorization to edit the page (user rights, rate limits, blocks).
Definition AuthorizationConstraint.php:34

MediaWiki\EditPage\Constraint\AuthorizationConstraint\checkConstraint
checkConstraint()
Definition AuthorizationConstraint.php:52

MediaWiki\EditPage\Constraint\AuthorizationConstraint\getLegacyStatus
getLegacyStatus()
Get the legacy status for failure (or success)
Definition AuthorizationConstraint.php:66

MediaWiki\EditPage\Constraint\AuthorizationConstraint\__construct
__construct(Authority $performer, PageIdentity $target, bool $new)
Definition AuthorizationConstraint.php:42

MediaWiki\Permissions\PermissionStatus
A StatusValue for permission errors.
Definition PermissionStatus.php:39

StatusValue
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Definition StatusValue.php:52

StatusValue\setResult
setResult( $ok, $value=null)
Change operation result.
Definition StatusValue.php:195

MediaWiki\EditPage\Constraint\IEditConstraint
Interface for all constraints that can prevent edits.
Definition IEditConstraint.php:33

MediaWiki\Page\PageIdentity
Interface for objects (potentially) representing an editable wiki page.
Definition PageIdentity.php:67

MediaWiki\Permissions\Authority
This interface represents the authority associated with the current execution context,...
Definition Authority.php:37

MediaWiki\EditPage\Constraint
Definition AccidentalRecreationConstraint.php:21