master/php/SpecialPasswordReset_8php_source.html

<?php

namespace MediaWiki\Specials;


use ErrorPageError;

use HTMLForm;

use MediaWiki\MainConfigNames;

use MediaWiki\SpecialPage\FormSpecialPage;

use MediaWiki\Status\Status;

use MediaWiki\User\PasswordReset;

use MediaWiki\User\User;

use ThrottledError;


class SpecialPasswordReset extends FormSpecialPage {

    private $passwordReset;


    private $result;


    private $method;


    public function __construct( PasswordReset $passwordReset ) {

        parent::__construct( 'PasswordReset', 'editmyprivateinfo' );


        $this->passwordReset = $passwordReset;

    }


    public function doesWrites() {

        return true;

    }


    public function userCanExecute( User $user ) {

        return $this->passwordReset->isAllowed( $user )->isGood();

    }


    public function checkExecutePermissions( User $user ) {

        $status = Status::wrap( $this->passwordReset->isAllowed( $user ) );

        if ( !$status->isGood() ) {

            throw new ErrorPageError( 'internalerror', $status->getMessage() );

        }


        parent::checkExecutePermissions( $user );

    }


    public function execute( $par ) {

        $out = $this->getOutput();

        $out->disallowUserJs();

        parent::execute( $par );

    }


    protected function getFormFields() {

        $resetRoutes = $this->getConfig()->get( MainConfigNames::PasswordResetRoutes );

        $a = [];

        if ( isset( $resetRoutes['username'] ) && $resetRoutes['username'] ) {

            $a['Username'] = [

                'type' => 'text',

                'default' => $this->getRequest()->getSession()->suggestLoginUsername(),

                'label-message' => 'passwordreset-username',

            ];


            if ( $this->getUser()->isRegistered() ) {

                $a['Username']['default'] = $this->getUser()->getName();

            }

        }


        if ( isset( $resetRoutes['email'] ) && $resetRoutes['email'] ) {

            $a['Email'] = [

                'type' => 'email',

                'label-message' => 'passwordreset-email',

            ];

        }


        return $a;

    }


    protected function getDisplayFormat() {

        return 'ooui';

    }


    public function alterForm( HTMLForm $form ) {

        $resetRoutes = $this->getConfig()->get( MainConfigNames::PasswordResetRoutes );


        $form->setSubmitDestructive();


        $form->addHiddenFields( $this->getRequest()->getValues( 'returnto', 'returntoquery' ) );


        $i = 0;

        if ( isset( $resetRoutes['username'] ) && $resetRoutes['username'] ) {

            $i++;

        }

        if ( isset( $resetRoutes['email'] ) && $resetRoutes['email'] ) {

            $i++;

        }


        $message = ( $i > 1 ) ? 'passwordreset-text-many' : 'passwordreset-text-one';


        $form->setHeaderHtml( $this->msg( $message, $i )->parseAsBlock() );

        $form->setSubmitTextMsg( 'mailmypassword' );

    }


    public function onSubmit( array $data ) {

        $username = $data['Username'] ?? null;

        $email = $data['Email'] ?? null;


        $this->method = $username ? 'username' : 'email';

        $this->result = Status::wrap(

            $this->passwordReset->execute( $this->getUser(), $username, $email ) );


        if ( $this->result->hasMessage( 'actionthrottledtext' ) ) {

            throw new ThrottledError;

        }


        return $this->result;

    }


    public function onSuccess() {

        $output = $this->getOutput();


        // Information messages.

        $output->addWikiMsg( 'passwordreset-success' );

        $output->addWikiMsg( 'passwordreset-success-details-generic',

            $this->getConfig()->get( MainConfigNames::PasswordReminderResendTime ) );


        // Confirmation of what the user has just submitted.

        $info = "\n";

        $postVals = $this->getRequest()->getPostValues();

        if ( isset( $postVals['wpUsername'] ) && $postVals['wpUsername'] !== '' ) {

            $info .= "* " . $this->msg( 'passwordreset-username' ) . ' '

                . wfEscapeWikiText( $postVals['wpUsername'] ) . "\n";

        }

        if ( isset( $postVals['wpEmail'] ) && $postVals['wpEmail'] !== '' ) {

            $info .= "* " . $this->msg( 'passwordreset-email' ) . ' '

                . wfEscapeWikiText( $postVals['wpEmail'] ) . "\n";

        }

        $output->addWikiMsg( 'passwordreset-success-info', $info );


        // Link to main page.

        $output->returnToMain();

    }


    public function isListed() {

        if ( $this->passwordReset->isAllowed( $this->getUser() )->isGood() ) {

            return parent::isListed();

        }


        return false;

    }


    protected function getGroupName() {

        return 'login';

    }


}


class_alias( SpecialPasswordReset::class, 'SpecialPasswordReset' );

wfEscapeWikiText
wfEscapeWikiText( $text)
Escapes the given text so that it may be output using addWikiText() without any linking,...
Definition GlobalFunctions.php:1133

ErrorPageError
An error page which can definitely be safely rendered using the OutputPage.
Definition ErrorPageError.php:30

HTMLForm
Object handling generic submission, CSRF protection, layout and other logic for UI forms in a reusabl...
Definition HTMLForm.php:158

HTMLForm\setSubmitTextMsg
setSubmitTextMsg( $msg)
Set the text for the submit button to a message.
Definition HTMLForm.php:1625

HTMLForm\setSubmitDestructive
setSubmitDestructive()
Identify that the submit button in the form has a destructive action.
Definition HTMLForm.php:1611

HTMLForm\setHeaderHtml
setHeaderHtml( $html, $section=null)
Set header HTML, inside the form.
Definition HTMLForm.php:922

HTMLForm\addHiddenFields
addHiddenFields(array $fields)
Add an array of hidden fields to the output Array values are discarded for security reasons (per WebR...
Definition HTMLForm.php:1166

MediaWiki\MainConfigNames
A class containing constants representing the names of configuration variables.
Definition MainConfigNames.php:22

MediaWiki\MainConfigNames\PasswordReminderResendTime
const PasswordReminderResendTime
Name constant for the PasswordReminderResendTime setting, for use with Config::get()
Definition MainConfigNames.php:957

MediaWiki\MainConfigNames\PasswordResetRoutes
const PasswordResetRoutes
Name constant for the PasswordResetRoutes setting, for use with Config::get()
Definition MainConfigNames.php:2639

MediaWiki\SpecialPage\FormSpecialPage
Special page which uses an HTMLForm to handle processing.
Definition FormSpecialPage.php:40

MediaWiki\SpecialPage\FormSpecialPage\$par
string null $par
The sub-page of the special page.
Definition FormSpecialPage.php:45

MediaWiki\SpecialPage\SpecialPage\getUser
getUser()
Shortcut to get the User executing this instance.
Definition SpecialPage.php:900

MediaWiki\SpecialPage\SpecialPage\getConfig
getConfig()
Shortcut to get main config object.
Definition SpecialPage.php:965

MediaWiki\SpecialPage\SpecialPage\getRequest
getRequest()
Get the WebRequest being used for this instance.
Definition SpecialPage.php:880

MediaWiki\SpecialPage\SpecialPage\msg
msg( $key,... $params)
Wrapper around wfMessage that sets the current context.
Definition SpecialPage.php:999

MediaWiki\SpecialPage\SpecialPage\getOutput
getOutput()
Get the OutputPage being used for this instance.
Definition SpecialPage.php:890

MediaWiki\Specials\SpecialPasswordReset
Special page for requesting a password reset email.
Definition SpecialPasswordReset.php:44

MediaWiki\Specials\SpecialPasswordReset\isListed
isListed()
Hide the password reset page if resets are disabled.
Definition SpecialPasswordReset.php:198

MediaWiki\Specials\SpecialPasswordReset\execute
execute( $par)
Definition SpecialPasswordReset.php:87

MediaWiki\Specials\SpecialPasswordReset\onSubmit
onSubmit(array $data)
Process the form.
Definition SpecialPasswordReset.php:150

MediaWiki\Specials\SpecialPasswordReset\getGroupName
getGroupName()
Under which header this special page is listed in Special:SpecialPages See messages 'specialpages-gro...
Definition SpecialPasswordReset.php:206

MediaWiki\Specials\SpecialPasswordReset\onSuccess
onSuccess()
Show a message on the successful processing of the form.
Definition SpecialPasswordReset.php:169

MediaWiki\Specials\SpecialPasswordReset\userCanExecute
userCanExecute(User $user)
Checks if the given user (identified by an object) can execute this special page (as defined by $mRes...
Definition SpecialPasswordReset.php:71

MediaWiki\Specials\SpecialPasswordReset\doesWrites
doesWrites()
Indicates whether this special page may perform database writes.
Definition SpecialPasswordReset.php:67

MediaWiki\Specials\SpecialPasswordReset\alterForm
alterForm(HTMLForm $form)
Play with the HTMLForm if you need to more substantially.
Definition SpecialPasswordReset.php:122

MediaWiki\Specials\SpecialPasswordReset\getFormFields
getFormFields()
Get an HTMLForm descriptor array.
Definition SpecialPasswordReset.php:93

MediaWiki\Specials\SpecialPasswordReset\getDisplayFormat
getDisplayFormat()
Get display format for the form.
Definition SpecialPasswordReset.php:118

MediaWiki\Specials\SpecialPasswordReset\checkExecutePermissions
checkExecutePermissions(User $user)
Called from execute() to check if the given user can perform this action.
Definition SpecialPasswordReset.php:75

MediaWiki\Specials\SpecialPasswordReset\__construct
__construct(PasswordReset $passwordReset)
Definition SpecialPasswordReset.php:61

MediaWiki\Status\Status
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Definition Status.php:54

MediaWiki\User\PasswordReset
Helper class for the password reset functionality shared by the web UI and the API.
Definition PasswordReset.php:50

MediaWiki\User\User
internal since 1.36
Definition User.php:96

ThrottledError
Show an error when the user hits a rate limit.
Definition ThrottledError.php:28

MediaWiki\Specials
This program is free software; you can redistribute it and/or modify it under the terms of the GNU Ge...