master/php/MWRestrictions_8php_source.html

<?php

use MediaWiki\Linker\LinkTarget;

use MediaWiki\Request\WebRequest;

use MediaWiki\Status\Status;

use Wikimedia\IPSet;

use Wikimedia\IPUtils;


class MWRestrictions {


    private $ipAddresses = [ '0.0.0.0/0', '::/0' ];


    private $pages = [];


    public StatusValue $validity;


    protected function __construct( array $restrictions = null ) {

        $this->validity = StatusValue::newGood();

        if ( $restrictions !== null ) {

            $this->loadFromArray( $restrictions );

        }

    }


    public static function newDefault() {

        return new self();

    }


    public static function newFromArray( array $restrictions ) {

        return new self( $restrictions );

    }


    public static function newFromJson( $json ) {

        $restrictions = FormatJson::decode( $json, true );

        if ( !is_array( $restrictions ) ) {

            throw new InvalidArgumentException( 'Invalid restrictions JSON' );

        }

        return new self( $restrictions );

    }


    private function loadFromArray( array $restrictions ) {

        static $neededKeys = [ 'IPAddresses' ];


        $keys = array_keys( $restrictions );

        $missingKeys = array_diff( $neededKeys, $keys );

        if ( $missingKeys ) {

            throw new InvalidArgumentException(

                'Array is missing required keys: ' . implode( ', ', $missingKeys )

            );

        }


        if ( !is_array( $restrictions['IPAddresses'] ) ) {

            throw new InvalidArgumentException( 'IPAddresses is not an array' );

        }

        foreach ( $restrictions['IPAddresses'] as $ip ) {

            if ( !IPUtils::isIPAddress( $ip ) ) {

                $this->validity->fatal( 'restrictionsfield-badip', $ip );

            }

        }

        $this->ipAddresses = $restrictions['IPAddresses'];


        if ( isset( $restrictions['Pages'] ) ) {

            if ( !is_array( $restrictions['Pages'] ) ) {

                throw new InvalidArgumentException( 'Pages is not an array of page names' );

            }

            foreach ( $restrictions['Pages'] as $page ) {

                if ( !is_string( $page ) ) {

                    throw new InvalidArgumentException( "Pages contains non-string value: $page" );

                }

            }

            $this->pages = $restrictions['Pages'];

        }

    }


    public function toArray() {

        $arr = [ 'IPAddresses' => $this->ipAddresses ];

        if ( count( $this->pages ) ) {

            $arr['Pages'] = $this->pages;

        }

        return $arr;

    }


    public function toJson( $pretty = false ) {

        return FormatJson::encode( $this->toArray(), $pretty, FormatJson::ALL_OK );

    }


    public function __toString() {

        return $this->toJson();

    }


    public function check( WebRequest $request ) {

        $ok = [

            'ip' => $this->checkIP( $request->getIP() ),

        ];

        $status = Status::newGood();

        $status->setResult( $ok === array_filter( $ok ), $ok );

        return $status;

    }


    public function userCan( LinkTarget $target ) {

        if ( !$this->checkPage( $target ) ) {

            return StatusValue::newFatal( 'session-page-restricted' );

        }

        return StatusValue::newGood();

    }


    public function checkIP( $ip ) {

        $set = new IPSet( $this->ipAddresses );

        return $set->match( $ip );

    }


    private function checkPage( LinkTarget $target ) {

        if ( count( $this->pages ) === 0 ) {

            return true;

        }

        $pagesNormalized = array_map( static function ( $titleText ) {

            $title = Title::newFromText( $titleText );

            return $title ? $title->getPrefixedText() : '';

        }, $this->pages );

        return in_array( Title::newFromLinkTarget( $target )->getPrefixedText(), $pagesNormalized, true );

    }

}


MWRestrictions
A class to check request restrictions expressed as a JSON object.
Definition MWRestrictions.php:30

MWRestrictions\newFromArray
static newFromArray(array $restrictions)
Definition MWRestrictions.php:61

MWRestrictions\newFromJson
static newFromJson( $json)
Definition MWRestrictions.php:70

MWRestrictions\newDefault
static newDefault()
Definition MWRestrictions.php:52

MWRestrictions\__construct
__construct(array $restrictions=null)
Definition MWRestrictions.php:42

MWRestrictions\toArray
toArray()
Return the restrictions as an array.
Definition MWRestrictions.php:116

MWRestrictions\checkIP
checkIP( $ip)
Test if an IP address is allowed by the restrictions.
Definition MWRestrictions.php:170

MWRestrictions\__toString
__toString()
Definition MWRestrictions.php:133

MWRestrictions\userCan
userCan(LinkTarget $target)
Test whether an action on the target is allowed by the restrictions.
Definition MWRestrictions.php:158

MWRestrictions\check
check(WebRequest $request)
Test against the passed WebRequest.
Definition MWRestrictions.php:142

MWRestrictions\$validity
StatusValue $validity
Definition MWRestrictions.php:36

MWRestrictions\toJson
toJson( $pretty=false)
Return the restrictions as a JSON string.
Definition MWRestrictions.php:129

MediaWiki\Request\WebRequest
The WebRequest class encapsulates getting at data passed in the URL or via a POSTed form,...
Definition WebRequest.php:51

MediaWiki\Request\WebRequest\getIP
getIP()
Work out the IP address based on various globals For trusted proxies, use the XFF client IP (first of...
Definition WebRequest.php:1286

MediaWiki\Status\Status
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Definition Status.php:54

StatusValue
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Definition StatusValue.php:49

MediaWiki\Linker\LinkTarget
Represents the target of a wiki link.
Definition LinkTarget.php:32