master/php/SpecialUserLogin_8php_source.html

 <?php

 use MediaWiki\Auth\AuthManager;

 use MediaWiki\Logger\LoggerFactory;

 use MediaWiki\MainConfigNames;


 class SpecialUserLogin extends LoginSignupSpecialPage {

     protected static $allowedActions = [

         AuthManager::ACTION_LOGIN,

         AuthManager::ACTION_LOGIN_CONTINUE

     ];


     protected static $messages = [

         'authform-newtoken' => 'nocookiesforlogin',

         'authform-notoken' => 'sessionfailure',

         'authform-wrongtoken' => 'sessionfailure',

     ];


     public function __construct( AuthManager $authManager ) {

         parent::__construct( 'Userlogin' );

         $this->setAuthManager( $authManager );

     }


     public function doesWrites() {

         return true;

     }


     protected function getLoginSecurityLevel() {

         return false;

     }


     protected function getDefaultAction( $subPage ) {

         return AuthManager::ACTION_LOGIN;

     }


     public function getDescription() {

         return $this->msg( 'login' )->text();

     }


     public function setHeaders() {

         // override the page title if we are doing a forced reauthentication

         parent::setHeaders();

         if ( $this->securityLevel && $this->getUser()->isRegistered() ) {

             $this->getOutput()->setPageTitle( $this->msg( 'login-security' ) );

         }

     }


     protected function isSignup() {

         return false;

     }


     protected function beforeExecute( $subPage ) {

         if ( $subPage === 'signup' || $this->getRequest()->getText( 'type' ) === 'signup' ) {

             // B/C for old account creation URLs

             $title = SpecialPage::getTitleFor( 'CreateAccount' );

             $query = array_diff_key( $this->getRequest()->getValues(),

                 array_fill_keys( [ 'type', 'title' ], true ) );

             $url = $title->getFullURL( $query, false, PROTO_CURRENT );

             $this->getOutput()->redirect( $url );

             return false;

         }

         return parent::beforeExecute( $subPage );

     }


     protected function successfulAction( $direct = false, $extraMessages = null ) {

         $secureLogin = $this->getConfig()->get( MainConfigNames::SecureLogin );


         $user = $this->targetUser ?: $this->getUser();

         $session = $this->getRequest()->getSession();


         if ( $direct ) {

             $user->touch();


             $this->clearToken();


             if ( $user->requiresHTTPS() ) {

                 $this->mStickHTTPS = true;

             }

             $session->setForceHTTPS( $secureLogin && $this->mStickHTTPS );


             // If the user does not have a session cookie at this point, they probably need to

             // do something to their browser.

             if ( !$this->hasSessionCookie() ) {

                 $this->mainLoginForm( [ /*?*/ ], $session->getProvider()->whyNoSession() );

                 // TODO something more specific? This used to use nocookieslogin

                 return;

             }

         }


         # Run any hooks; display injected HTML if any, else redirect

         $injected_html = '';

         $this->getHookRunner()->onUserLoginComplete(

             $user, $injected_html, $direct );


         if ( $injected_html !== '' || $extraMessages ) {

             $this->showSuccessPage( 'success', $this->msg( 'loginsuccesstitle' ),

                 'loginsuccess', $injected_html, $extraMessages );

         } else {

             $helper = new LoginHelper( $this->getContext() );

             $helper->showReturnToPage( 'successredirect', $this->mReturnTo, $this->mReturnToQuery,

                 $this->mStickHTTPS );

         }

     }


     protected function getToken() {

         return $this->getRequest()->getSession()->getToken( '', 'login' );

     }


     protected function clearToken() {

         return $this->getRequest()->getSession()->resetToken( 'login' );

     }


     protected function getTokenName() {

         return 'wpLoginToken';

     }


     protected function getGroupName() {

         return 'login';

     }


     protected function logAuthResult( $success, $status = null ) {

         LoggerFactory::getInstance( 'authevents' )->info( 'Login attempt', [

             'event' => 'login',

             'successful' => $success,

             'status' => strval( $status ),

         ] );

     }

 }

PROTO_CURRENT
const PROTO_CURRENT
Definition: Defines.php:198

$success
$success
Definition: NoLocalSettings.php:42

AuthManagerSpecialPage\$subPage
string $subPage
Subpage of the special page.
Definition: AuthManagerSpecialPage.php:40

AuthManagerSpecialPage\getRequest
getRequest()
Get the WebRequest being used for this instance.
Definition: AuthManagerSpecialPage.php:73

LoginHelper
Helper functions for the login form that need to be shared with other special pages (such as CentralA...
Definition: LoginHelper.php:11

LoginSignupSpecialPage
Holds shared logic for login and account creation pages.
Definition: LoginSignupSpecialPage.php:40

LoginSignupSpecialPage\mainLoginForm
mainLoginForm(array $requests, $msg='', $msgtype='error')
Definition: LoginSignupSpecialPage.php:521

LoginSignupSpecialPage\showSuccessPage
showSuccessPage( $type, $title, $msgname, $injected_html, $extraMessages)
Show the success page.
Definition: LoginSignupSpecialPage.php:442

LoginSignupSpecialPage\hasSessionCookie
hasSessionCookie()
Check if a session cookie is present.
Definition: LoginSignupSpecialPage.php:1105

MediaWiki\Auth\AuthManager
This serves as the entry point to the authentication system.
Definition: AuthManager.php:106

MediaWiki\Logger\LoggerFactory
PSR-3 logger instance factory.
Definition: LoggerFactory.php:45

MediaWiki\MainConfigNames
A class containing constants representing the names of configuration variables.
Definition: MainConfigNames.php:23

SpecialPage\getOutput
getOutput()
Get the OutputPage being used for this instance.
Definition: SpecialPage.php:861

SpecialPage\getUser
getUser()
Shortcut to get the User executing this instance.
Definition: SpecialPage.php:871

SpecialPage\getTitleFor
static getTitleFor( $name, $subpage=false, $fragment='')
Get a localised Title object for a specified special page name If you don't need a full Title object,...
Definition: SpecialPage.php:131

SpecialPage\getContext
getContext()
Gets the context this SpecialPage is executed in.
Definition: SpecialPage.php:835

SpecialPage\getHookRunner
getHookRunner()
Definition: SpecialPage.php:1166

SpecialPage\msg
msg( $key,... $params)
Wrapper around wfMessage that sets the current context.
Definition: SpecialPage.php:983

SpecialPage\getConfig
getConfig()
Shortcut to get main config object.
Definition: SpecialPage.php:949

SpecialPage\setAuthManager
setAuthManager(AuthManager $authManager)
Set the injected AuthManager from the special page constructor.
Definition: SpecialPage.php:552

SpecialUserLogin
Implements Special:UserLogin.
Definition: SpecialUserLogin.php:33

SpecialUserLogin\getDescription
getDescription()
Returns the name that goes in the <h1> in the special page itself, and also the name that will be l...
Definition: SpecialUserLogin.php:65

SpecialUserLogin\isSignup
isSignup()
Definition: SpecialUserLogin.php:77

SpecialUserLogin\$allowedActions
static $allowedActions
Definition: SpecialUserLogin.php:34

SpecialUserLogin\getGroupName
getGroupName()
Under which header this special page is listed in Special:SpecialPages See messages 'specialpages-gro...
Definition: SpecialUserLogin.php:157

SpecialUserLogin\getDefaultAction
getDefaultAction( $subPage)
Get the default action for this special page, if none is given via URL/POST data.
Definition: SpecialUserLogin.php:61

SpecialUserLogin\beforeExecute
beforeExecute( $subPage)
Definition: SpecialUserLogin.php:81

SpecialUserLogin\logAuthResult
logAuthResult( $success, $status=null)
Logs to the authmanager-stats channel.
Definition: SpecialUserLogin.php:161

SpecialUserLogin\getLoginSecurityLevel
getLoginSecurityLevel()
Definition: SpecialUserLogin.php:57

SpecialUserLogin\setHeaders
setHeaders()
Sets headers - this should be called from the execute() method of all derived classes!
Definition: SpecialUserLogin.php:69

SpecialUserLogin\$messages
static $messages
Definition: SpecialUserLogin.php:39

SpecialUserLogin\getTokenName
getTokenName()
Returns the name of the CSRF token (under which it should be found in the POST or GET data).
Definition: SpecialUserLogin.php:153

SpecialUserLogin\__construct
__construct(AuthManager $authManager)
Definition: SpecialUserLogin.php:48

SpecialUserLogin\clearToken
clearToken()
Definition: SpecialUserLogin.php:149

SpecialUserLogin\successfulAction
successfulAction( $direct=false, $extraMessages=null)
Run any hooks registered for logins, then HTTP redirect to $this->mReturnTo (or Main Page if that's u...
Definition: SpecialUserLogin.php:105

SpecialUserLogin\doesWrites
doesWrites()
Indicates whether this special page may perform database writes.
Definition: SpecialUserLogin.php:53

SpecialUserLogin\getToken
getToken()
Returns the CSRF token.
Definition: SpecialUserLogin.php:145

$title
$title
Definition: testCompression.php:38