master/php/SpecialUnlinkAccounts_8php_source.html

<?php


namespace MediaWiki\Specials;


use MediaWiki\Auth\AuthenticationResponse;

use MediaWiki\Auth\AuthManager;

use MediaWiki\Exception\ErrorPageError;

use MediaWiki\MainConfigNames;

use MediaWiki\Session\SessionManager;

use MediaWiki\SpecialPage\AuthManagerSpecialPage;

use MediaWiki\Status\Status;

use StatusValue;


class SpecialUnlinkAccounts extends AuthManagerSpecialPage {

    protected static $allowedActions = [ AuthManager::ACTION_UNLINK ];


    public function __construct(

        AuthManager $authManager,

        private readonly SessionManager $sessionManager,

    ) {

        parent::__construct( 'UnlinkAccounts' );

        $this->setAuthManager( $authManager );

    }


    protected function getLoginSecurityLevel() {

        return 'UnlinkAccount';

    }


    protected function getDefaultAction( $subPage ) {

        return AuthManager::ACTION_UNLINK;

    }


    protected function getGroupName() {

        return 'login';

    }


    public function isListed() {

        return $this->getAuthManager()->canLinkAccounts();

    }


    protected function getRequestBlacklist() {

        return $this->getConfig()->get( MainConfigNames::RemoveCredentialsBlacklist );

    }


    public function execute( $subPage ) {

        $this->setHeaders();

        $this->loadAuth( $subPage );


        if ( !$this->isActionAllowed( $this->authAction ) ) {

            if ( $this->authAction === AuthManager::ACTION_UNLINK ) {

                // Looks like there are no linked accounts to unlink

                $titleMessage = $this->msg( 'cannotunlink-no-provider-title' );

                $errorMessage = $this->msg( 'cannotunlink-no-provider' );

                throw new ErrorPageError( $titleMessage, $errorMessage );

            } else {

                // user probably back-button-navigated into an auth session that no longer exists

                // FIXME would be nice to show a message

                $this->getOutput()->redirect( $this->getPageTitle()->getFullURL( '', false, PROTO_HTTPS ) );

                return;

            }

        }


        $this->outputHeader();


        $status = $this->trySubmit();


        if ( $status === false || !$status->isOK() ) {

            $this->displayForm( $status );

            return;

        }


        $response = $status->getValue();


        if ( $response->status === AuthenticationResponse::FAIL ) {

            $this->displayForm( StatusValue::newFatal( $response->message ) );

            return;

        }


        $status = StatusValue::newGood();

        $status->warning( 'unlinkaccounts-success' );

        $this->loadAuth( $subPage, null, true ); // update requests so the unlinked one doesn't show up


        // Reset sessions - if the user unlinked an account because it was compromised,

        // log attackers out from sessions obtained via that account.

        $session = $this->getRequest()->getSession();

        $user = $this->getUser();

        $this->sessionManager->invalidateSessionsForUser( $user );

        $session->setUser( $user );

        $session->resetId();


        $this->displayForm( $status );

    }


    public function handleFormSubmit( $data ) {

        // unlink requests do not accept user input so repeat parent code but skip call to

        // AuthenticationRequest::loadRequestsFromSubmission

        $response = $this->performAuthenticationStep( $this->authAction, $this->authRequests );

        return Status::newGood( $response );

    }


}


class_alias( SpecialUnlinkAccounts::class, 'SpecialUnlinkAccounts' );

PROTO_HTTPS
const PROTO_HTTPS
Definition Defines.php:218

MediaWiki\Auth\AuthManager
AuthManager is the authentication system in MediaWiki and serves entry point for authentication.
Definition AuthManager.php:109

MediaWiki\Auth\AuthenticationResponse
This is a value object to hold authentication response data.
Definition AuthenticationResponse.php:21

MediaWiki\Exception\ErrorPageError
An error page which can definitely be safely rendered using the OutputPage.
Definition ErrorPageError.php:21

MediaWiki\MainConfigNames
A class containing constants representing the names of configuration variables.
Definition MainConfigNames.php:22

MediaWiki\MainConfigNames\RemoveCredentialsBlacklist
const RemoveCredentialsBlacklist
Name constant for the RemoveCredentialsBlacklist setting, for use with Config::get()
Definition MainConfigNames.php:2601

MediaWiki\Session\SessionManager
This serves as the entry point to the MediaWiki session handling system.
Definition SessionManager.php:53

MediaWiki\SpecialPage\AuthManagerSpecialPage
A special page subclass for authentication-related special pages.
Definition AuthManagerSpecialPage.php:38

MediaWiki\SpecialPage\AuthManagerSpecialPage\$subPage
string $subPage
Subpage of the special page.
Definition AuthManagerSpecialPage.php:59

MediaWiki\SpecialPage\AuthManagerSpecialPage\performAuthenticationStep
performAuthenticationStep( $action, array $requests)
Definition AuthManagerSpecialPage.php:402

MediaWiki\SpecialPage\AuthManagerSpecialPage\displayForm
displayForm( $status)
Display the form.
Definition AuthManagerSpecialPage.php:654

MediaWiki\SpecialPage\AuthManagerSpecialPage\isActionAllowed
isActionAllowed( $action)
Checks whether AuthManager is ready to perform the action.
Definition AuthManagerSpecialPage.php:362

MediaWiki\SpecialPage\AuthManagerSpecialPage\trySubmit
trySubmit()
Attempts to do an authentication step with the submitted data.
Definition AuthManagerSpecialPage.php:459

MediaWiki\SpecialPage\AuthManagerSpecialPage\loadAuth
loadAuth( $subPage, $authAction=null, $reset=false)
Load or initialize $authAction, $authRequests and $subPage.
Definition AuthManagerSpecialPage.php:292

MediaWiki\SpecialPage\AuthManagerSpecialPage\getRequest
getRequest()
Get the WebRequest being used for this instance.WebRequest 1.18
Definition AuthManagerSpecialPage.php:96

MediaWiki\SpecialPage\SpecialPage\setHeaders
setHeaders()
Sets headers - this should be called from the execute() method of all derived classes!
Definition SpecialPage.php:685

MediaWiki\SpecialPage\SpecialPage\getUser
getUser()
Shortcut to get the User executing this instance.
Definition SpecialPage.php:884

MediaWiki\SpecialPage\SpecialPage\setAuthManager
setAuthManager(AuthManager $authManager)
Set the injected AuthManager from the special page constructor.
Definition SpecialPage.php:561

MediaWiki\SpecialPage\SpecialPage\getPageTitle
getPageTitle( $subpage=false)
Get a self-referential title object.
Definition SpecialPage.php:828

MediaWiki\SpecialPage\SpecialPage\getConfig
getConfig()
Shortcut to get main config object.
Definition SpecialPage.php:949

MediaWiki\SpecialPage\SpecialPage\msg
msg( $key,... $params)
Wrapper around wfMessage that sets the current context.
Definition SpecialPage.php:985

MediaWiki\SpecialPage\SpecialPage\getOutput
getOutput()
Get the OutputPage being used for this instance.
Definition SpecialPage.php:874

MediaWiki\SpecialPage\SpecialPage\getAuthManager
getAuthManager()
Definition SpecialPage.php:571

MediaWiki\SpecialPage\SpecialPage\outputHeader
outputHeader( $summaryMessageKey='')
Outputs a summary message on top of special pages By default the message key is the canonical name of...
Definition SpecialPage.php:773

MediaWiki\Specials\SpecialUnlinkAccounts
Definition SpecialUnlinkAccounts.php:18

MediaWiki\Specials\SpecialUnlinkAccounts\getDefaultAction
getDefaultAction( $subPage)
Get the default action for this special page if none is given via URL/POST data.Subclasses should ove...
Definition SpecialUnlinkAccounts.php:36

MediaWiki\Specials\SpecialUnlinkAccounts\execute
execute( $subPage)
Default execute method Checks user permissions.This must be overridden by subclasses; it will be made...
Definition SpecialUnlinkAccounts.php:59

MediaWiki\Specials\SpecialUnlinkAccounts\getRequestBlacklist
getRequestBlacklist()
Allows blacklisting certain request types.to override array A list of AuthenticationRequest subclass ...
Definition SpecialUnlinkAccounts.php:54

MediaWiki\Specials\SpecialUnlinkAccounts\isListed
isListed()
Whether this special page is listed in Special:SpecialPages.to override 1.3 (r3583) bool
Definition SpecialUnlinkAccounts.php:49

MediaWiki\Specials\SpecialUnlinkAccounts\handleFormSubmit
handleFormSubmit( $data)
Submit handler callback for HTMLForm.Status
Definition SpecialUnlinkAccounts.php:110

MediaWiki\Specials\SpecialUnlinkAccounts\getLoginSecurityLevel
getLoginSecurityLevel()
to override bool|string
Definition SpecialUnlinkAccounts.php:31

MediaWiki\Specials\SpecialUnlinkAccounts\__construct
__construct(AuthManager $authManager, private readonly SessionManager $sessionManager,)
Definition SpecialUnlinkAccounts.php:22

MediaWiki\Specials\SpecialUnlinkAccounts\getGroupName
getGroupName()
Under which header this special page is listed in Special:SpecialPages.
Definition SpecialUnlinkAccounts.php:44

MediaWiki\Specials\SpecialUnlinkAccounts\$allowedActions
static $allowedActions
Definition SpecialUnlinkAccounts.php:20

MediaWiki\Status\Status
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Definition Status.php:44

StatusValue
Generic operation result class Has warning/error list, boolean status and arbitrary value.
Definition StatusValue.php:41

MediaWiki\Specials