MWRestrictions.php

Go to the documentation of this file.

<?php
use MediaWiki\Json\FormatJson;
use MediaWiki\Linker\LinkTarget;
use MediaWiki\Request\WebRequest;
use MediaWiki\Status\Status;
use MediaWiki\Title\Title;
use Wikimedia\IPSet;
use Wikimedia\IPUtils;
 
class MWRestrictions implements Stringable {
 
    private $ipAddresses = [ '0.0.0.0/0', '::/0' ];
 
    private $pages = [];
 
    public StatusValue $validity;
 
    protected function __construct( ?array $restrictions = null ) {
        $this->validity = StatusValue::newGood();
        if ( $restrictions !== null ) {
            $this->loadFromArray( $restrictions );
        }
    }
 
    public static function newDefault() {
        return new self();
    }
 
    public static function newFromArray( array $restrictions ) {
        return new self( $restrictions );
    }
 
    public static function newFromJson( $json ) {
        $restrictions = FormatJson::decode( $json, true );
        if ( !is_array( $restrictions ) ) {
            throw new InvalidArgumentException( 'Invalid restrictions JSON' );
        }
        return new self( $restrictions );
    }
 
    private function loadFromArray( array $restrictions ) {
        static $neededKeys = [ 'IPAddresses' ];
 
        $keys = array_keys( $restrictions );
        $missingKeys = array_diff( $neededKeys, $keys );
        if ( $missingKeys ) {
            throw new InvalidArgumentException(
                'Array is missing required keys: ' . implode( ', ', $missingKeys )
            );
        }
 
        if ( !is_array( $restrictions['IPAddresses'] ) ) {
            throw new InvalidArgumentException( 'IPAddresses is not an array' );
        }
        foreach ( $restrictions['IPAddresses'] as $ip ) {
            if ( !IPUtils::isIPAddress( $ip ) ) {
                $this->validity->fatal( 'restrictionsfield-badip', $ip );
            }
        }
        $this->ipAddresses = $restrictions['IPAddresses'];
 
        if ( isset( $restrictions['Pages'] ) ) {
            if ( !is_array( $restrictions['Pages'] ) ) {
                throw new InvalidArgumentException( 'Pages is not an array of page names' );
            }
            foreach ( $restrictions['Pages'] as $page ) {
                if ( !is_string( $page ) ) {
                    throw new InvalidArgumentException( "Pages contains non-string value: $page" );
                }
            }
            $this->pages = $restrictions['Pages'];
        }
    }
 
    public function toArray() {
        $arr = [ 'IPAddresses' => $this->ipAddresses ];
        if ( count( $this->pages ) ) {
            $arr['Pages'] = $this->pages;
        }
        return $arr;
    }
 
    public function toJson( $pretty = false ) {
        return FormatJson::encode( $this->toArray(), $pretty, FormatJson::ALL_OK );
    }
 
    public function __toString() {
        return $this->toJson();
    }
 
    public function check( WebRequest $request ) {
        $ok = [
            'ip' => $this->checkIP( $request->getIP() ),
        ];
        $status = Status::newGood();
        $status->setResult( $ok === array_filter( $ok ), $ok );
        return $status;
    }
 
    public function userCan( LinkTarget $target ) {
        if ( !$this->checkPage( $target ) ) {
            return StatusValue::newFatal( 'session-page-restricted' );
        }
        return StatusValue::newGood();
    }
 
    public function checkIP( $ip ) {
        $set = new IPSet( $this->ipAddresses );
        return $set->match( $ip );
    }
 
    private function checkPage( LinkTarget $target ) {
        if ( count( $this->pages ) === 0 ) {
            return true;
        }
        $pagesNormalized = array_map( static function ( $titleText ) {
            $title = Title::newFromText( $titleText );
            return $title ? $title->getPrefixedText() : '';
        }, $this->pages );
        return in_array( Title::newFromLinkTarget( $target )->getPrefixedText(), $pagesNormalized, true );
    }
}