93 'mEmailAuthenticated',
160 'move-categorypages',
161 'move-rootuserpages',
165 'override-export-depth',
187 'userrights-interwiki',
323 return (
string)$this->
getName();
348 return ( !defined(
'MW_NO_SESSION' ) && $wgFullyInitialised ) ||
349 $this->mLoadedItems ===
true || $this->mFrom !==
'session';
357 public function load( $flags = self::READ_NORMAL ) {
360 if ( $this->mLoadedItems ===
true ) {
366 $this->mLoadedItems =
true;
367 $this->queryFlagsUsed = $flags;
370 if ( !$wgFullyInitialised && $this->mFrom ===
'session' ) {
372 ->warning(
'User::loadFromSession called before the end of Setup.php', [
373 'exception' =>
new Exception(
'User::loadFromSession called before the end of Setup.php' ),
376 $this->mLoadedItems = $oldLoadedItems;
380 switch ( $this->mFrom ) {
386 $lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
387 if ( $lb->hasOrMadeRecentMasterChanges() ) {
388 $flags |= self::READ_LATEST;
389 $this->queryFlagsUsed = $flags;
392 $this->mId = self::idFromName( $this->mName, $flags );
402 if ( $this->mId != 0 ) {
403 $lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
404 if ( $lb->hasOrMadeRecentMasterChanges() ) {
405 $flags |= self::READ_LATEST;
406 $this->queryFlagsUsed = $flags;
414 $lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
415 if ( $lb->hasOrMadeRecentMasterChanges() ) {
416 $flags |= self::READ_LATEST;
417 $this->queryFlagsUsed = $flags;
421 $row =
wfGetDB( $index )->selectRow(
423 [
'actor_user',
'actor_name' ],
424 [
'actor_id' => $this->mActorId ],
432 } elseif ( $row->actor_user ) {
433 $this->mId = $row->actor_user;
444 Hooks::run(
'UserLoadAfterLoadFromSession', [ $this ] );
448 "Unrecognised value for User->mFrom: \"{$this->mFrom}\"" );
458 if ( $this->mId == 0 ) {
476 $this->mLoadedItems =
true;
477 $this->queryFlagsUsed = $flags;
487 public static function purge( $wikiId, $userId ) {
488 $cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
489 $key =
$cache->makeGlobalKey(
'user',
'id', $wikiId, $userId );
499 $cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
500 $lbFactory = MediaWikiServices::getInstance()->getDBLoadBalancerFactory();
511 $id = $this->
getId();
513 return $id ? [ $this->
getCacheKey( $cache ) ] : [];
524 $data =
$cache->getWithSetCallback(
529 wfDebug(
"User: cache miss for user {$this->mId}\n" );
536 foreach ( self::$mCacheVars
as $name ) {
537 $data[
$name] = $this->$name;
544 foreach ( $this->mGroupMemberships
as $ugm ) {
545 if ( $ugm->getExpiry() ) {
546 $secondsUntilExpiry =
wfTimestamp( TS_UNIX, $ugm->getExpiry() ) - time();
547 if ( $secondsUntilExpiry > 0 && $secondsUntilExpiry < $ttl ) {
548 $ttl = $secondsUntilExpiry;
555 [
'pcTTL' => $cache::TTL_PROC_LONG,
'version' => self::VERSION ]
559 foreach ( self::$mCacheVars
as $name ) {
560 $this->$name = $data[
$name];
586 if ( $validate ===
true ) {
589 $name = self::getCanonicalName(
$name, $validate );
590 if (
$name ===
false ) {
597 $u->setItemLoaded(
'name' );
612 $u->setItemLoaded(
'id' );
630 'Cannot use ' . __METHOD__
631 .
' when $wgActorTableSchemaMigrationStage lacks SCHEMA_COMPAT_NEW' 638 $u->setItemLoaded(
'actor' );
652 if ( $identity instanceof
User ) {
656 return self::newFromAnyId(
679 $user->mFrom =
'defaults';
684 $user->mActorId = (int)$actorId;
685 if (
$user->mActorId !== 0 ) {
686 $user->mFrom =
'actor';
688 $user->setItemLoaded(
'actor' );
691 if ( $userName !==
null && $userName !==
'' ) {
692 $user->mName = $userName;
693 $user->mFrom =
'name';
694 $user->setItemLoaded(
'name' );
697 if ( $userId !==
null ) {
698 $user->mId = (int)$userId;
699 if (
$user->mId !== 0 ) {
702 $user->setItemLoaded(
'id' );
705 if (
$user->mFrom ===
'defaults' ) {
707 'Cannot create a user with no name, no ID, and no actor ID' 726 $db = ( $flags & self::READ_LATEST ) == self::READ_LATEST
730 $id = $db->selectField(
734 'user_email_token' => md5(
$code ),
735 'user_email_token_expires > ' . $db->addQuotes( $db->timestamp() ),
739 return $id ? self::newFromId( $id ) :
null;
751 $user->mFrom =
'session';
773 $user->loadFromRow( $row, $data );
814 'validate' =>
'valid',
820 if (
$name ===
false ) {
825 $userQuery = self::getQueryInfo();
826 $row =
$dbr->selectRow(
827 $userQuery[
'tables'],
828 $userQuery[
'fields'],
829 [
'user_name' =>
$name ],
837 $row = $dbw->selectRow(
838 $userQuery[
'tables'],
839 $userQuery[
'fields'],
840 [
'user_name' =>
$name ],
850 ? self::createNew(
$name, [
'token' => self::INVALID_TOKEN ] )
854 $user = self::newFromRow( $row );
858 if (
$user->mEmail ||
$user->mToken !== self::INVALID_TOKEN ||
859 AuthManager::singleton()->userCanAuthenticate(
$name )
866 AuthManager::singleton()->revokeAccessForUser(
$name );
868 $user->invalidateEmail();
869 $user->mToken = self::INVALID_TOKEN;
870 $user->saveSettings();
871 SessionManager::singleton()->preventSessionsForUser(
$user->getName() );
884 public static function whoIs( $id ) {
908 if ( is_null( $nt ) ) {
913 if ( !( $flags & self::READ_LATEST ) && array_key_exists(
$name, self::$idCacheByName ) ) {
914 return self::$idCacheByName[
$name];
923 [
'user_name' => $nt->getText() ],
928 if (
$s ===
false ) {
936 if ( count( self::$idCacheByName ) > 1000 ) {
937 self::$idCacheByName = [];
947 self::$idCacheByName = [];
967 return preg_match(
'/^\d{1,3}\.\d{1,3}\.\d{1,3}\.(?:xxx|\d{1,3})$/',
$name )
996 || self::isIP(
$name )
997 || strpos(
$name,
'/' ) !==
false 998 || strlen(
$name ) > $wgMaxNameChars
999 ||
$name != MediaWikiServices::getInstance()->getContentLanguage()->ucfirst(
$name )
1007 if ( is_null( $parsed )
1008 || $parsed->getNamespace()
1009 || strcmp(
$name, $parsed->getPrefixedText() ) ) {
1015 $unicodeBlacklist =
'/[' .
1016 '\x{0080}-\x{009f}' . # iso-8859-1 control chars
1017 '\x{00a0}' . # non-breaking space
1018 '\x{2000}-\x{200f}' . # various whitespace
1019 '\x{2028}-\x{202f}' . # breaks
and control chars
1020 '\x{3000}' . # ideographic space
1021 '\x{e000}-\x{f8ff}' . #
private use 1023 if ( preg_match( $unicodeBlacklist,
$name ) ) {
1044 if ( !self::isValidUserName(
$name ) ) {
1048 static $reservedUsernames =
false;
1049 if ( !$reservedUsernames ) {
1051 Hooks::run(
'UserGetReservedNames', [ &$reservedUsernames ] );
1055 foreach ( $reservedUsernames
as $reserved ) {
1056 if ( substr( $reserved, 0, 4 ) ==
'msg:' ) {
1057 $reserved =
wfMessage( substr( $reserved, 4 ) )->inContentLanguage()->plain();
1059 if ( $reserved ==
$name ) {
1077 if ( $groups === [] ) {
1081 $groups = array_unique( (
array)$groups );
1082 $limit = min( 5000, $limit );
1084 $conds = [
'ug_group' => $groups ];
1085 if ( $after !==
null ) {
1086 $conds[] =
'ug_user > ' . (int)$after;
1090 $ids =
$dbr->selectFieldValues(
1097 'ORDER BY' =>
'ug_user',
1122 if ( strlen(
$name ) > 235 ) {
1124 ": '$name' invalid due to length" );
1129 if ( $wgInvalidUsernameCharacters !==
'' ) {
1130 if ( preg_match(
'/[' . preg_quote( $wgInvalidUsernameCharacters,
'/' ) .
']/',
$name ) ) {
1132 ": '$name' invalid due to wgInvalidUsernameCharacters" );
1137 return self::isUsableName(
$name );
1166 foreach (
$result->getErrorsByType(
'error' )
as $error ) {
1169 foreach (
$result->getErrorsByType(
'warning' )
as $warning ) {
1202 $wgPasswordPolicy[
'policies'],
1203 $wgPasswordPolicy[
'checks']
1215 $status->merge( $upp->checkUserPassword( $this, $password ),
true );
1217 } elseif (
$result ===
true ) {
1240 $name = MediaWikiServices::getInstance()->getContentLanguage()->ucfirst(
$name );
1242 # Reject names containing '#'; these will be cleaned up 1243 # with title normalisation, but then it's too late to 1245 if ( strpos(
$name,
'#' ) !==
false ) {
1251 $t = ( $validate !==
false ) ?
1254 if ( is_null(
$t ) ||
$t->getNamespace() !==
NS_USER ||
$t->isExternal() ) {
1259 $name = AuthManager::callLegacyAuthPlugin(
1260 'getCanonicalName', [
$t->getText() ],
$t->getText()
1263 switch ( $validate ) {
1267 if ( !self::isValidUserName(
$name ) ) {
1272 if ( !self::isUsableName(
$name ) ) {
1277 if ( !self::isCreatableName(
$name ) ) {
1283 'Invalid parameter value for $validate in ' . __METHOD__ );
1309 $this->mName =
$name;
1310 $this->mActorId =
null;
1311 $this->mRealName =
'';
1313 $this->mOptionOverrides =
null;
1314 $this->mOptionsLoaded =
false;
1316 $loggedOut = $this->mRequest && !defined(
'MW_NO_SESSION' )
1317 ? $this->mRequest->getSession()->getLoggedOutTimestamp() : 0;
1318 if ( $loggedOut !== 0 ) {
1319 $this->mTouched =
wfTimestamp( TS_MW, $loggedOut );
1321 $this->mTouched =
'1'; # Allow any
pages to be cached
1324 $this->mToken =
null;
1325 $this->mEmailAuthenticated =
null;
1326 $this->mEmailToken =
'';
1327 $this->mEmailTokenExpires =
null;
1329 $this->mGroupMemberships = [];
1347 return ( $this->mLoadedItems ===
true && $all ===
'all' ) ||
1348 ( isset( $this->mLoadedItems[$item] ) && $this->mLoadedItems[$item] ===
true );
1357 if ( is_array( $this->mLoadedItems ) ) {
1358 $this->mLoadedItems[$item] =
true;
1377 $session = $this->
getRequest()->getSession();
1378 $user = $session->getUser();
1379 if (
$user->isLoggedIn() ) {
1381 if (
$user->isBlocked() ) {
1389 $session->set(
'wsUserID', $this->
getId() );
1390 $session->set(
'wsUserName', $this->
getName() );
1391 $session->set(
'wsToken', $this->
getToken() );
1404 if ( $block && $this->
getRequest()->getCookie(
'BlockID' ) ===
null ) {
1406 $shouldSetCookie =
false;
1408 if ( $this->
isAnon() && $config->get(
'CookieSetOnIpBlock' ) ) {
1410 $shouldSetCookie = in_array( $block->getType(), [
1413 if ( $shouldSetCookie ) {
1414 $block->setCookie( $this->
getRequest()->response() );
1417 $stats = MediaWikiServices::getInstance()->getStatsdDataFactory();
1418 $stats->increment(
'block.ipblock.setCookie.success' );
1420 } elseif ( $this->
isLoggedIn() && $config->get(
'CookieSetOnAutoblock' ) ) {
1421 $shouldSetCookie = $block->getType() ===
Block::TYPE_USER && $block->isAutoblocking();
1422 if ( $shouldSetCookie ) {
1423 $block->setCookie( $this->
getRequest()->response() );
1438 $this->mId = intval( $this->mId );
1440 if ( !$this->mId ) {
1449 $userQuery = self::getQueryInfo();
1450 $s = $db->selectRow(
1451 $userQuery[
'tables'],
1452 $userQuery[
'fields'],
1453 [
'user_id' => $this->mId ],
1459 $this->queryFlagsUsed = $flags;
1462 if (
$s !==
false ) {
1465 $this->mGroupMemberships =
null;
1491 if ( !is_object( $row ) ) {
1497 $this->mGroupMemberships =
null;
1502 if ( isset( $row->actor_id ) ) {
1503 $this->mActorId = (int)$row->actor_id;
1504 if ( $this->mActorId !== 0 ) {
1505 $this->mFrom =
'actor';
1513 if ( isset( $row->user_name ) && $row->user_name !==
'' ) {
1514 $this->mName = $row->user_name;
1515 $this->mFrom =
'name';
1521 if ( isset( $row->user_real_name ) ) {
1522 $this->mRealName = $row->user_real_name;
1528 if ( isset( $row->user_id ) ) {
1529 $this->mId = intval( $row->user_id );
1530 if ( $this->mId !== 0 ) {
1531 $this->mFrom =
'id';
1538 if ( isset( $row->user_id ) && isset( $row->user_name ) && $row->user_name !==
'' ) {
1539 self::$idCacheByName[$row->user_name] = $row->user_id;
1542 if ( isset( $row->user_editcount ) ) {
1543 $this->mEditCount = $row->user_editcount;
1548 if ( isset( $row->user_touched ) ) {
1549 $this->mTouched =
wfTimestamp( TS_MW, $row->user_touched );
1554 if ( isset( $row->user_token ) ) {
1558 $this->mToken = rtrim( $row->user_token,
" \0" );
1559 if ( $this->mToken ===
'' ) {
1560 $this->mToken =
null;
1566 if ( isset( $row->user_email ) ) {
1567 $this->mEmail = $row->user_email;
1568 $this->mEmailAuthenticated =
wfTimestampOrNull( TS_MW, $row->user_email_authenticated );
1569 $this->mEmailToken = $row->user_email_token;
1570 $this->mEmailTokenExpires =
wfTimestampOrNull( TS_MW, $row->user_email_token_expires );
1577 $this->mLoadedItems =
true;
1580 if ( is_array( $data ) ) {
1581 if ( isset( $data[
'user_groups'] ) && is_array( $data[
'user_groups'] ) ) {
1582 if ( $data[
'user_groups'] === [] ) {
1583 $this->mGroupMemberships = [];
1585 $firstGroup = reset( $data[
'user_groups'] );
1586 if ( is_array( $firstGroup ) || is_object( $firstGroup ) ) {
1587 $this->mGroupMemberships = [];
1588 foreach ( $data[
'user_groups']
as $row ) {
1590 $this->mGroupMemberships[$ugm->getGroup()] = $ugm;
1595 if ( isset( $data[
'user_properties'] ) && is_array( $data[
'user_properties'] ) ) {
1608 foreach ( self::$mCacheVars
as $var ) {
1609 $this->$var =
$user->$var;
1617 if ( is_null( $this->mGroupMemberships ) ) {
1618 $db = ( $this->queryFlagsUsed & self::READ_LATEST )
1648 if ( $toPromote === [] ) {
1658 foreach ( $toPromote
as $group ) {
1661 $newGroups = array_merge( $oldGroups, $toPromote );
1665 Hooks::run(
'UserGroupsChanged', [ $this, $toPromote, [],
false,
false, $oldUGMs, $newUGMs ] );
1666 AuthManager::callLegacyAuthPlugin(
'updateExternalDBGroups', [ $this, $toPromote ] );
1669 $logEntry->setPerformer( $this );
1671 $logEntry->setParameters( [
1672 '4::oldgroups' => $oldGroups,
1673 '5::newgroups' => $newGroups,
1675 $logid = $logEntry->insert();
1676 if ( $wgAutopromoteOnceLogInRC ) {
1677 $logEntry->publish( $logid );
1693 if ( $this->mTouched ) {
1695 $conditions[
'user_touched'] = $db->
timestamp( $this->mTouched );
1713 if ( !$this->mId ) {
1721 $dbw->update(
'user',
1722 [
'user_touched' => $dbw->timestamp( $newTouched ) ],
1724 'user_id' => $this->mId,
1728 $success = ( $dbw->affectedRows() > 0 );
1731 $this->mTouched = $newTouched;
1749 $this->mNewtalk = -1;
1750 $this->mDatePreference =
null;
1751 $this->mBlockedby = -1; # Unset
1752 $this->mHash =
false;
1753 $this->mRights =
null;
1754 $this->mEffectiveGroups =
null;
1755 $this->mImplicitGroups =
null;
1756 $this->mGroupMemberships =
null;
1757 $this->mOptions =
null;
1758 $this->mOptionsLoaded =
false;
1759 $this->mEditCount =
null;
1761 if ( $reloadFrom ) {
1762 $this->mLoadedItems = [];
1763 $this->mFrom = $reloadFrom;
1776 static $defOpt =
null;
1777 static $defOptLang =
null;
1779 $contLang = MediaWikiServices::getInstance()->getContentLanguage();
1780 if ( $defOpt !==
null && $defOptLang === $contLang->getCode() ) {
1789 $defOptLang = $contLang->getCode();
1790 $defOpt[
'language'] = $defOptLang;
1792 if ( $langCode === $contLang->getCode() ) {
1793 $defOpt[
'variant'] = $langCode;
1795 $defOpt[
"variant-$langCode"] = $langCode;
1802 foreach ( $wgNamespacesToBeSearchedDefault
as $nsnum => $val ) {
1803 $defOpt[
'searchNs' . $nsnum] = (bool)$val;
1807 Hooks::run(
'UserGetDefaultOptions', [ &$defOpt ] );
1819 $defOpts = self::getDefaultOptions();
1832 if ( $this->mBlockedby != -1 ) {
1836 wfDebug( __METHOD__ .
": checking...\n" );
1845 # We only need to worry about passing the IP address to the Block generator if the 1846 # user is not immune to autoblocks/hardblocks, and they are the current user so we 1847 # know which IP address they're actually coming from 1849 if ( !$this->
isAllowed(
'ipblock-exempt' ) ) {
1852 $globalUserName = $wgUser->isSafeToLoad()
1853 ? $wgUser->getName()
1855 if ( $this->
getName() === $globalUserName ) {
1864 if ( !$block instanceof
Block ) {
1869 if ( !$block instanceof Block && $ip !==
null && !in_array( $ip, $wgProxyWhitelist ) ) {
1871 if ( self::isLocallyBlockedProxy( $ip ) ) {
1872 $block =
new Block( [
1876 'systemBlock' =>
'proxy',
1879 $block =
new Block( [
1883 'systemBlock' =>
'dnsbl',
1889 if ( !$block instanceof Block
1890 && $wgApplyIpBlocksToXff
1892 && !in_array( $ip, $wgProxyWhitelist )
1894 $xff = $this->
getRequest()->getHeader(
'X-Forwarded-For' );
1895 $xff = array_map(
'trim', explode(
',', $xff ) );
1896 $xff = array_diff( $xff, [ $ip ] );
1899 if ( $block instanceof Block ) {
1900 # Mangle the reason to alert the user that the block 1901 # originated from matching the X-Forwarded-For header. 1902 $block->mReason =
wfMessage(
'xffblockreason', $block->mReason )->plain();
1906 if ( !$block instanceof Block
1911 $block =
new Block( [
1913 'byText' =>
'MediaWiki default',
1916 'systemBlock' =>
'wgSoftBlockRanges',
1920 if ( $block instanceof Block ) {
1921 wfDebug( __METHOD__ .
": Found block.\n" );
1922 $this->mBlock = $block;
1923 $this->mBlockedby = $block->getByName();
1924 $this->mBlockreason = $block->mReason;
1925 $this->mHideName = $block->mHideName;
1926 $this->mAllowUsertalk = !$block->prevents(
'editownusertalk' );
1928 $this->mBlock =
null;
1929 $this->mBlockedby =
'';
1930 $this->mBlockreason =
'';
1931 $this->mHideName = 0;
1932 $this->mAllowUsertalk =
false;
1948 if ( strlen( $blockCookieVal ) < 1 || !is_numeric( substr( $blockCookieVal, 0, 1 ) ) ) {
1953 if ( $blockCookieId !==
null ) {
1956 if ( $tmpBlock instanceof
Block ) {
1959 switch ( $tmpBlock->getType() ) {
1961 $blockIsValid = !$tmpBlock->isExpired() && $tmpBlock->isAutoblocking();
1962 $useBlockCookie = ( $config->get(
'CookieSetOnAutoblock' ) ===
true );
1967 $blockIsValid = !$tmpBlock->isExpired() && !$this->
isLoggedIn();
1968 $useBlockCookie = ( $config->get(
'CookieSetOnIpBlock' ) ===
true );
1971 $blockIsValid =
false;
1972 $useBlockCookie =
false;
1975 if ( $blockIsValid && $useBlockCookie ) {
2000 if ( !$wgEnableDnsBlacklist ) {
2004 if ( $checkWhitelist && in_array( $ip, $wgProxyWhitelist ) ) {
2023 $ipReversed = implode(
'.', array_reverse( explode(
'.', $ip ) ) );
2029 if ( is_array( $base ) ) {
2030 if ( count( $base ) >= 2 ) {
2032 $host =
"{$base[1]}.$ipReversed.{$base[0]}";
2034 $host =
"$ipReversed.{$base[0]}";
2036 $basename = $base[0];
2038 $host =
"$ipReversed.$base";
2042 $ipList = gethostbynamel( $host );
2045 wfDebugLog(
'dnsblacklist',
"Hostname $host is {$ipList[0]}, it's a proxy says $basename!" );
2049 wfDebugLog(
'dnsblacklist',
"Requested $host, not found in $basename." );
2067 if ( !$wgProxyList ) {
2071 if ( !is_array( $wgProxyList ) ) {
2073 $wgProxyList = array_map(
'trim',
file( $wgProxyList ) );
2076 $resultProxyList = [];
2077 $deprecatedIPEntries = [];
2080 foreach ( $wgProxyList
as $key =>
$value ) {
2083 if ( $keyIsIP && !$valueIsIP ) {
2084 $deprecatedIPEntries[] = $key;
2085 $resultProxyList[] = $key;
2086 } elseif ( $keyIsIP && $valueIsIP ) {
2087 $deprecatedIPEntries[] = $key;
2088 $resultProxyList[] = $key;
2089 $resultProxyList[] =
$value;
2091 $resultProxyList[] =
$value;
2095 if ( $deprecatedIPEntries ) {
2097 'IP addresses in the keys of $wgProxyList (found the following IP addresses in keys: ' .
2098 implode(
', ', $deprecatedIPEntries ) .
', please move them to values)',
'1.30' );
2101 $proxyListIPSet =
new IPSet( $resultProxyList );
2102 return $proxyListIPSet->match( $ip );
2118 return !$this->
isAllowed(
'noratelimit' );
2145 if ( !isset( $wgRateLimits[$action] ) ) {
2149 $limits = array_merge(
2150 [
'&can-bypass' =>
true ],
2151 $wgRateLimits[$action]
2160 $id = $this->
getId();
2167 if ( isset( $limits[
'anon'] ) ) {
2168 $keys[
$cache->makeKey(
'limiter', $action,
'anon' )] = $limits[
'anon'];
2172 if ( isset( $limits[
'user'] ) ) {
2173 $userLimit = $limits[
'user'];
2180 if ( isset( $limits[
'ip'] ) ) {
2182 $keys[
"mediawiki:limiter:$action:ip:$ip"] = $limits[
'ip'];
2185 if ( isset( $limits[
'subnet'] ) ) {
2188 if ( $subnet !==
false ) {
2189 $keys[
"mediawiki:limiter:$action:subnet:$subnet"] = $limits[
'subnet'];
2197 if ( isset( $limits[$group] ) ) {
2198 if ( $userLimit ===
false 2199 || $limits[$group][0] / $limits[$group][1] > $userLimit[0] / $userLimit[1]
2201 $userLimit = $limits[$group];
2207 if ( $id !== 0 && $isNewbie && isset( $limits[
'newbie'] ) ) {
2208 $userLimit = $limits[
'newbie'];
2212 if ( $userLimit !==
false ) {
2213 list( $max, $period ) = $userLimit;
2214 wfDebug( __METHOD__ .
": effective user limit: $max in {$period}s\n" );
2215 $keys[
$cache->makeKey(
'limiter', $action,
'user', $id )] = $userLimit;
2219 if ( isset( $limits[
'ip-all'] ) ) {
2222 if ( $isNewbie || $userLimit ===
false 2223 || $limits[
'ip-all'][0] / $limits[
'ip-all'][1] > $userLimit[0] / $userLimit[1] ) {
2224 $keys[
"mediawiki:limiter:$action:ip-all:$ip"] = $limits[
'ip-all'];
2229 if ( isset( $limits[
'subnet-all'] ) ) {
2232 if ( $subnet !==
false ) {
2234 if ( $isNewbie || $userLimit ===
false 2235 || $limits[
'ip-all'][0] / $limits[
'ip-all'][1]
2236 > $userLimit[0] / $userLimit[1] ) {
2237 $keys[
"mediawiki:limiter:$action:subnet-all:$subnet"] = $limits[
'subnet-all'];
2243 foreach (
$keys as $key => $limit ) {
2244 list( $max, $period ) = $limit;
2245 $summary =
"(limit $max in {$period}s)";
2246 $count =
$cache->get( $key );
2249 if ( $count >= $max ) {
2250 wfDebugLog(
'ratelimit',
"User '{$this->getName()}' " .
2251 "(IP {$this->getRequest()->getIP()}) tripped $key at $count $summary" );
2254 wfDebug( __METHOD__ .
": ok. $key at $count $summary\n" );
2257 wfDebug( __METHOD__ .
": adding record for $key $summary\n" );
2258 if ( $incrBy > 0 ) {
2259 $cache->add( $key, 0, intval( $period ) );
2262 if ( $incrBy > 0 ) {
2263 $cache->incr( $key, $incrBy );
2289 return $this->mBlock instanceof
Block ? $this->mBlock :
null;
2303 $block = $this->
getBlock( $fromReplica );
2307 if (
$title->equals( $this->getTalkPage() ) ) {
2308 if ( $block->isSitewide() ) {
2312 $blocked = $block->prevents(
'editownusertalk' );
2317 $blocked = $block->appliesToPage(
$title->getArticleID() );
2321 if ( !$blocked && $block->appliesToNamespace(
NS_USER_TALK ) ) {
2322 $blocked = $block->prevents(
'editownusertalk' );
2329 $blocked = $block->appliesToTitle(
$title );
2337 Hooks::run(
'UserIsBlockedFrom', [ $this,
$title, &$blocked, &$allowUsertalk ] );
2366 return ( $this->mBlock ? $this->mBlock->getId() :
false );
2392 if ( $this->mGlobalBlock !==
null ) {
2393 return $this->mGlobalBlock ?:
null;
2405 Hooks::run(
'UserIsBlockedGlobally', [ &
$user, $ip, &$blocked, &$block ] );
2407 if ( $blocked && $block ===
null ) {
2409 $block =
new Block( [
2411 'systemBlock' =>
'global-block' 2415 $this->mGlobalBlock = $blocked ? $block :
false;
2416 return $this->mGlobalBlock ?:
null;
2425 if ( $this->mLocked !==
null ) {
2430 $authUser = AuthManager::callLegacyAuthPlugin(
'getUserInstance', [ &
$user ],
null );
2431 $this->mLocked = $authUser && $authUser->isLocked();
2432 Hooks::run(
'UserIsLocked', [ $this, &$this->mLocked ] );
2442 if ( $this->mHideName !==
null ) {
2446 if ( !$this->mHideName ) {
2449 $authUser = AuthManager::callLegacyAuthPlugin(
'getUserInstance', [ &
$user ],
null );
2450 $this->mHideName = $authUser && $authUser->isHidden();
2451 Hooks::run(
'UserIsHidden', [ $this, &$this->mHideName ] );
2461 if ( $this->mId ===
null && $this->mName !==
null && self::isIP( $this->mName ) ) {
2491 if ( $this->mName ===
false ) {
2514 $this->mName = $str;
2541 if ( $this->mActorId ===
null || !$this->mActorId && $dbw ) {
2547 if ( $q[
'actor_user'] ===
null && self::isUsableName( $q[
'actor_name'] ) ) {
2549 'Cannot create an actor for a usable name that is not an existing user' 2552 if ( $q[
'actor_name'] ===
'' ) {
2555 $dbw->insert(
'actor', $q, __METHOD__, [
'IGNORE' ] );
2556 if ( $dbw->affectedRows() ) {
2557 $this->mActorId = (int)$dbw->insertId();
2561 $this->mActorId = (int)$dbw->selectField(
2566 [
'LOCK IN SHARE MODE' ]
2568 if ( !$this->mActorId ) {
2570 "Cannot create actor ID for user_id={$this->getId()} user_name={$this->getName()}" 2578 $this->mActorId = (int)$db->selectField(
'actor',
'actor_id', $q, __METHOD__,
$options );
2591 return str_replace(
' ',
'_', $this->
getName() );
2602 if ( $this->mNewtalk === -1 ) {
2603 $this->mNewtalk =
false; # reset talk
page status
2607 if ( !$this->mId ) {
2609 if ( $wgDisableAnonTalk ) {
2611 $this->mNewtalk =
false;
2616 $this->mNewtalk = $this->
checkNewtalk(
'user_id', $this->mId );
2648 $timestamp =
$dbr->selectField(
'user_newtalk',
2649 'MIN(user_last_timestamp)',
2650 $this->
isAnon() ? [
'user_ip' => $this->
getName() ] : [
'user_id' => $this->
getId() ],
2656 'link' => $utp->getLocalURL(),
2668 $newMessageRevisionId =
null;
2670 if ( $newMessageLinks ) {
2674 if ( count( $newMessageLinks ) === 1
2676 && $newMessageLinks[0][
'rev']
2679 $newMessageRevision = $newMessageLinks[0][
'rev'];
2680 $newMessageRevisionId = $newMessageRevision->getId();
2683 return $newMessageRevisionId;
2697 $ok =
$dbr->selectField(
'user_newtalk', $field, [ $field => $id ], __METHOD__ );
2699 return $ok !==
false;
2711 $prevRev = $curRev ? $curRev->getPrevious() :
false;
2712 $ts = $prevRev ? $prevRev->getTimestamp() :
null;
2715 $dbw->insert(
'user_newtalk',
2716 [ $field => $id,
'user_last_timestamp' => $dbw->timestampOrNull( $ts ) ],
2719 if ( $dbw->affectedRows() ) {
2720 wfDebug( __METHOD__ .
": set on ($field, $id)\n" );
2723 wfDebug( __METHOD__ .
" already set ($field, $id)\n" );
2736 $dbw->delete(
'user_newtalk',
2739 if ( $dbw->affectedRows() ) {
2740 wfDebug( __METHOD__ .
": killed on ($field, $id)\n" );
2743 wfDebug( __METHOD__ .
": already gone ($field, $id)\n" );
2760 $this->mNewtalk = $val;
2767 $id = $this->
getId();
2790 if ( $this->mTouched && $time <= $this->mTouched ) {
2808 if ( !$this->
getId() ) {
2814 if ( $mode ===
'refresh' ) {
2815 $cache->delete( $key, 1 );
2817 $lb = MediaWikiServices::getInstance()->getDBLoadBalancer();
2818 if ( $lb->hasOrMadeRecentMasterChanges() ) {
2819 $lb->getConnection(
DB_MASTER )->onTransactionPreCommitOrIdle(
2854 $id = $this->
getId();
2856 $cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
2857 $key =
$cache->makeKey(
'user-quicktouched',
'id', $id );
2858 $cache->touchCheckKey( $key );
2859 $this->mQuickTouched =
null;
2869 return ( $timestamp >= $this->
getTouched() );
2884 if ( $this->mQuickTouched ===
null ) {
2885 $cache = MediaWikiServices::getInstance()->getMainWANObjectCache();
2886 $key =
$cache->makeKey(
'user-quicktouched',
'id', $this->mId );
2891 return max( $this->mTouched, $this->mQuickTouched );
2951 $manager = AuthManager::singleton();
2954 if ( !$manager->userExists( $this->getName() ) ) {
2955 throw new LogicException(
'Cannot set a password for a user that is not in the database.' );
2959 'username' => $this->
getName(),
2965 ->info( __METHOD__ .
': Password change rejected: ' 2970 $this->
setOption(
'watchlisttoken',
false );
2971 SessionManager::singleton()->invalidateSessionsForUser( $this );
2989 $manager = AuthManager::singleton();
2990 $reqs = $manager->getAuthenticationRequests( AuthManager::ACTION_CHANGE, $this );
2991 $reqs = AuthenticationRequest::loadRequestsFromSubmission( $reqs, $data );
2994 foreach ( $reqs
as $req ) {
2995 $status->merge( $manager->allowsAuthenticationDataChange( $req ),
true );
2997 if (
$status->getValue() ===
'ignored' ) {
2998 $status->warning(
'authenticationdatachange-ignored' );
3002 foreach ( $reqs
as $req ) {
3003 $manager->changeAuthenticationData( $req );
3019 if ( !$this->mToken && $forceCreation ) {
3023 if ( !$this->mToken ) {
3026 } elseif ( $this->mToken === self::INVALID_TOKEN ) {
3030 } elseif ( $wgAuthenticationTokenVersion ===
null ) {
3038 $len = max( 32, self::TOKEN_LENGTH );
3039 if ( strlen(
$ret ) < $len ) {
3041 throw new \UnexpectedValueException(
'Hmac returned less than 128 bits' );
3043 return substr(
$ret, -$len );
3055 if ( $this->mToken === self::INVALID_TOKEN ) {
3057 ->debug( __METHOD__ .
": Ignoring attempt to set token for system user \"$this\"" );
3058 } elseif ( !$token ) {
3061 $this->mToken = $token;
3083 Hooks::run(
'UserGetEmail', [ $this, &$this->mEmail ] );
3093 Hooks::run(
'UserGetEmailAuthenticationTimestamp', [ $this, &$this->mEmailAuthenticated ] );
3103 if ( $str == $this->mEmail ) {
3107 $this->mEmail = $str;
3108 Hooks::run(
'UserSetEmail', [ $this, &$this->mEmail ] );
3121 if ( !$wgEnableEmail ) {
3126 if ( $str === $oldaddr ) {
3130 $type = $oldaddr !=
'' ?
'changed' :
'set';
3131 $notificationResult =
null;
3133 if ( $wgEmailAuthentication ) {
3136 if (
$type ==
'changed' ) {
3137 $change = $str !=
'' ?
'changed' :
'removed';
3138 $notificationResult = $this->
sendMail(
3139 wfMessage(
'notificationemail_subject_' . $change )->
text(),
3140 wfMessage(
'notificationemail_body_' . $change,
3150 if ( $str !==
'' && $wgEmailAuthentication ) {
3154 if ( $notificationResult !==
null ) {
3155 $result->merge( $notificationResult );
3187 $this->mRealName = $str;
3200 public function getOption( $oname, $defaultOverride =
null, $ignoreHidden =
false ) {
3204 # We want 'disabled' preferences to always behave as the default value for 3205 # users, even if they have set the option explicitly in their settings (ie they 3206 # set it, and then it was disabled removing their ability to change it). But 3207 # we don't want to erase the preferences in the database in case the preference 3208 # is re-enabled again. So don't touch $mOptions, just override the returned value 3209 if ( !$ignoreHidden && in_array( $oname, $wgHiddenPrefs ) ) {
3210 return self::getDefaultOption( $oname );
3213 if ( array_key_exists( $oname, $this->mOptions ) ) {
3214 return $this->mOptions[$oname];
3216 return $defaultOverride;
3233 # We want 'disabled' preferences to always behave as the default value for 3234 # users, even if they have set the option explicitly in their settings (ie they 3235 # set it, and then it was disabled removing their ability to change it). But 3236 # we don't want to erase the preferences in the database in case the preference 3237 # is re-enabled again. So don't touch $mOptions, just override the returned value 3238 foreach ( $wgHiddenPrefs
as $pref ) {
3239 $default = self::getDefaultOption( $pref );
3240 if ( $default !==
null ) {
3245 if ( $flags & self::GETOPTIONS_EXCLUDE_DEFAULTS ) {
3260 return (
bool)$this->
getOption( $oname );
3274 $val = $defaultOverride;
3276 return intval( $val );
3291 if ( is_null( $val ) ) {
3292 $val = self::getDefaultOption( $oname );
3295 $this->mOptions[$oname] = $val;
3311 $id = $this->
getId();
3312 if ( !$id || in_array( $oname, $wgHiddenPrefs ) ) {
3321 $token = hash_hmac(
'sha1',
"$oname:$id", $this->
getToken() );
3338 if ( in_array( $oname, $wgHiddenPrefs ) ) {
3373 'registered-multiselect',
3374 'registered-checkmatrix',
3399 $preferencesFactory = MediaWikiServices::getInstance()->getPreferencesFactory();
3400 $prefs = $preferencesFactory->getFormDescriptor( $this, $context );
3405 $specialOptions = array_fill_keys( $preferencesFactory->getSaveBlacklist(),
true );
3407 unset( $prefs[
$name] );
3412 $multiselectOptions = [];
3413 foreach ( $prefs
as $name => $info ) {
3414 if ( ( isset( $info[
'type'] ) && $info[
'type'] ==
'multiselect' ) ||
3417 $prefix = $info[
'prefix'] ??
$name;
3420 $multiselectOptions[
"$prefix$value"] =
true;
3423 unset( $prefs[$name] );
3426 $checkmatrixOptions = [];
3427 foreach ( $prefs
as $name => $info ) {
3428 if ( ( isset( $info[
'type'] ) && $info[
'type'] ==
'checkmatrix' ) ||
3432 $prefix = $info[
'prefix'] ??
$name;
3434 foreach ( $columns
as $column ) {
3436 $checkmatrixOptions[
"$prefix$column-$row"] =
true;
3440 unset( $prefs[$name] );
3446 if ( isset( $prefs[$key] ) ) {
3447 $mapping[$key] =
'registered';
3448 } elseif ( isset( $multiselectOptions[$key] ) ) {
3449 $mapping[$key] =
'registered-multiselect';
3450 } elseif ( isset( $checkmatrixOptions[$key] ) ) {
3451 $mapping[$key] =
'registered-checkmatrix';
3452 } elseif ( isset( $specialOptions[$key] ) ) {
3453 $mapping[$key] =
'special';
3454 } elseif ( substr( $key, 0, 7 ) ===
'userjs-' ) {
3455 $mapping[$key] =
'userjs';
3457 $mapping[$key] =
'unused';
3479 $resetKinds = [
'registered',
'registered-multiselect',
'registered-checkmatrix',
'unused' ],
3483 $defaultOptions = self::getDefaultOptions();
3485 if ( !is_array( $resetKinds ) ) {
3486 $resetKinds = [ $resetKinds ];
3489 if ( in_array(
'all', $resetKinds ) ) {
3490 $newOptions = $defaultOptions;
3497 $resetKinds = array_intersect( $resetKinds, self::listOptionKinds() );
3502 foreach ( $this->mOptions
as $key =>
$value ) {
3503 if ( in_array( $optionKinds[$key], $resetKinds ) ) {
3504 if ( array_key_exists( $key, $defaultOptions ) ) {
3505 $newOptions[$key] = $defaultOptions[$key];
3508 $newOptions[$key] =
$value;
3513 Hooks::run(
'UserResetAllOptions', [ $this, &$newOptions, $this->mOptions, $resetKinds ] );
3515 $this->mOptions = $newOptions;
3516 $this->mOptionsLoaded =
true;
3525 if ( is_null( $this->mDatePreference ) ) {
3528 $map = $wgLang->getDatePreferenceMigrationMap();
3529 if ( isset( $map[
$value] ) ) {
3532 $this->mDatePreference =
$value;
3545 if ( !$wgSecureLogin ) {
3549 Hooks::run(
'UserRequiresHTTPS', [ $this, &$https ] );
3565 if ( $threshold > $wgMaxArticleSize * 1024 ) {
3578 if ( is_null( $this->mRights ) ) {
3580 Hooks::run(
'UserGetRights', [ $this, &$this->mRights ] );
3584 if ( !defined(
'MW_NO_SESSION' ) ) {
3585 $allowedRights = $this->
getRequest()->getSession()->getAllowedUserRights();
3586 if ( $allowedRights !==
null ) {
3587 $this->mRights = array_intersect( $this->mRights, $allowedRights );
3591 Hooks::run(
'UserGetRightsRemove', [ $this, &$this->mRights ] );
3593 $this->mRights = array_values( array_unique( $this->mRights ) );
3604 $config->get(
'BlockDisablesLogin' ) &&
3608 $this->mRights = array_intersect( $this->mRights, $anon->getRights() );
3623 return array_keys( $this->mGroupMemberships );
3647 if ( $recache || is_null( $this->mEffectiveGroups ) ) {
3648 $this->mEffectiveGroups = array_unique( array_merge(
3655 Hooks::run(
'UserEffectiveGroups', [ &
$user, &$this->mEffectiveGroups ] );
3657 $this->mEffectiveGroups = array_values( array_unique( $this->mEffectiveGroups ) );
3670 if ( $recache || is_null( $this->mImplicitGroups ) ) {
3671 $this->mImplicitGroups = [
'*' ];
3672 if ( $this->
getId() ) {
3673 $this->mImplicitGroups[] =
'user';
3675 $this->mImplicitGroups = array_unique( array_merge(
3676 $this->mImplicitGroups,
3683 $this->mEffectiveGroups =
null;
3701 if ( is_null( $this->mFormerGroups ) ) {
3702 $db = ( $this->queryFlagsUsed & self::READ_LATEST )
3705 $res = $db->select(
'user_former_groups',
3707 [
'ufg_user' => $this->mId ],
3709 $this->mFormerGroups = [];
3710 foreach (
$res as $row ) {
3711 $this->mFormerGroups[] = $row->ufg_group;
3723 if ( !$this->
getId() ) {
3727 if ( $this->mEditCount ===
null ) {
3731 $count =
$dbr->selectField(
3732 'user',
'user_editcount',
3733 [
'user_id' => $this->mId ],
3737 if ( $count ===
null ) {
3741 $this->mEditCount = $count;
3765 if ( !
Hooks::run(
'UserAddGroup', [ $this, &$group, &$expiry ] ) ) {
3771 if ( !$ugm->insert(
true ) ) {
3775 $this->mGroupMemberships[$group] = $ugm;
3780 $this->mRights =
null;
3796 if ( !
Hooks::run(
'UserRemoveGroup', [ $this, &$group ] ) ) {
3802 if ( !$ugm || !$ugm->delete() ) {
3807 unset( $this->mGroupMemberships[$group] );
3812 $this->mRights =
null;
3824 return $this->
getId() != 0;
3845 Hooks::run(
"UserIsBot", [ $this, &$isBot ] );
3857 $permissions = func_get_args();
3858 foreach ( $permissions
as $permission ) {
3859 if ( $this->
isAllowed( $permission ) ) {
3872 $permissions = func_get_args();
3873 foreach ( $permissions
as $permission ) {
3874 if ( !$this->
isAllowed( $permission ) ) {
3887 if ( $action ===
'' ) {
3892 return in_array( $action, $this->
getRights(),
true );
3901 return $wgUseRCPatrol && $this->
isAllowedAny(
'patrol',
'patrolmarks' );
3911 ( $wgUseRCPatrol || $wgUseNPPatrol )
3923 ( $wgUseRCPatrol || $wgUseFilePatrol )
3934 if ( $this->mRequest ) {
3951 if (
$title->isWatchable() && ( !$checkRights || $this->
isAllowed(
'viewmywatchlist' ) ) ) {
3952 return MediaWikiServices::getInstance()->getWatchedItemStore()->isWatched( $this,
$title );
3965 if ( !$checkRights || $this->
isAllowed(
'editmywatchlist' ) ) {
3966 MediaWikiServices::getInstance()->getWatchedItemStore()->addWatchBatchForUser(
3982 if ( !$checkRights || $this->
isAllowed(
'editmywatchlist' ) ) {
3983 $store = MediaWikiServices::getInstance()->getWatchedItemStore();
3984 $store->removeWatch( $this,
$title->getSubjectPage() );
3985 $store->removeWatch( $this,
$title->getTalkPage() );
4007 if ( !$this->
isAllowed(
'editmywatchlist' ) ) {
4015 if ( !
Hooks::run(
'UserClearNewTalkNotification', [ &
$user, $oldid ] ) ) {
4038 if ( !$wgUseEnotif && !$wgShowUpdatedMarker ) {
4056 MediaWikiServices::getInstance()->getWatchedItemStore()
4057 ->resetNotificationTimestamp( $this,
$title, $force, $oldid );
4073 if ( !$wgUseEnotif && !$wgShowUpdatedMarker ) {
4078 $id = $this->
getId();
4083 $watchedItemStore = MediaWikiServices::getInstance()->getWatchedItemStore();
4084 $watchedItemStore->resetAllNotificationTimestampsForUser( $this );
4108 $learnerRegistration =
wfTimestamp( TS_MW, $now - $wgLearnerMemberSince * 86400 );
4109 $experiencedRegistration =
wfTimestamp( TS_MW, $now - $wgExperiencedUserMemberSince * 86400 );
4112 $editCount < $wgLearnerEdits ||
4113 $registration > $learnerRegistration
4117 $editCount > $wgExperiencedUserEdits &&
4118 $registration <= $experiencedRegistration
4120 return 'experienced';
4136 if ( $this->mId == 0 ) {
4140 $session = $this->
getRequest()->getSession();
4142 $session = $session->sessionWithRequest(
$request );
4144 $delay = $session->delaySave();
4146 if ( !$session->getUser()->equals( $this ) ) {
4147 if ( !$session->canSetUser() ) {
4149 ->warning( __METHOD__ .
4150 ": Cannot save user \"$this\" to a user \"{$session->getUser()}\"'s immutable session" 4154 $session->setUser( $this );
4157 $session->setRememberUser( $rememberMe );
4158 if ( $secure !==
null ) {
4159 $session->setForceHTTPS( $secure );
4162 $session->persist();
4164 ScopedCallback::consume( $delay );
4183 $session = $this->
getRequest()->getSession();
4184 if ( !$session->canSetUser() ) {
4186 ->warning( __METHOD__ .
": Cannot log out of an immutable session" );
4187 $error =
'immutable';
4188 } elseif ( !$session->getUser()->equals( $this ) ) {
4190 ->warning( __METHOD__ .
4191 ": Cannot log user \"$this\" out of a user \"{$session->getUser()}\"'s session" 4195 $error =
'wronguser';
4198 $delay = $session->delaySave();
4199 $session->unpersist();
4200 $session->setLoggedOutTimestamp( time() );
4201 $session->setUser(
new User );
4202 $session->set(
'wsUserID', 0 );
4203 $session->resetAllTokens();
4204 ScopedCallback::consume( $delay );
4208 'event' =>
'logout',
4209 'successful' => $error ===
false,
4210 'status' => $error ?:
'success',
4224 "Could not update user with ID '{$this->mId}'; DB is read-only." 4230 if ( $this->mId == 0 ) {
4240 $dbw->doAtomicSection( __METHOD__,
function ( $dbw,
$fname )
use ( $newTouched ) {
4243 $dbw->update(
'user',
4245 'user_name' => $this->mName,
4246 'user_real_name' => $this->mRealName,
4247 'user_email' => $this->mEmail,
4248 'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
4249 'user_touched' => $dbw->timestamp( $newTouched ),
4250 'user_token' => strval( $this->mToken ),
4252 'user_email_token_expires' => $dbw->timestampOrNull( $this->mEmailTokenExpires ),
4254 'user_id' => $this->mId,
4258 if ( !$dbw->affectedRows() ) {
4262 $from = ( $this->queryFlagsUsed & self::READ_LATEST ) ?
'master' :
'replica';
4263 LoggerFactory::getInstance(
'preferences' )->warning(
4264 "CAS update failed on user_touched for user ID '{user_id}' ({db_flag} read)",
4265 [
'user_id' => $this->mId,
'db_flag' => $from ]
4267 throw new MWException(
"CAS update failed on user_touched. " .
4268 "The version of the user to be saved is older than the current version." 4275 [
'actor_name' => $this->mName ],
4276 [
'actor_user' => $this->mId ],
4282 $this->mTouched = $newTouched;
4302 $db = ( ( $flags & self::READ_LATEST ) == self::READ_LATEST )
4306 $options = ( ( $flags & self::READ_LOCKING ) == self::READ_LOCKING )
4307 ? [
'LOCK IN SHARE MODE' ]
4310 $id = $db->selectField(
'user',
4311 'user_id', [
'user_name' =>
$s ], __METHOD__,
$options );
4332 foreach ( [
'password',
'newpassword',
'newpass_time',
'password_expires' ]
as $field ) {
4333 if ( isset(
$params[$field] ) ) {
4334 wfDeprecated( __METHOD__ .
" with param '$field'",
'1.27' );
4342 if ( isset(
$params[
'options'] ) ) {
4351 'user_name' =>
$name,
4352 'user_password' => $noPass,
4353 'user_newpassword' => $noPass,
4354 'user_email' =>
$user->mEmail,
4355 'user_email_authenticated' => $dbw->timestampOrNull(
$user->mEmailAuthenticated ),
4356 'user_real_name' =>
$user->mRealName,
4357 'user_token' => strval(
$user->mToken ),
4358 'user_registration' => $dbw->timestamp(
$user->mRegistration ),
4359 'user_editcount' => 0,
4360 'user_touched' => $dbw->timestamp(
$user->newTouchedTimestamp() ),
4363 $fields[
"user_$name"] =
$value;
4366 return $dbw->doAtomicSection( __METHOD__,
function ( $dbw,
$fname )
use ( $fields ) {
4367 $dbw->insert(
'user', $fields,
$fname, [
'IGNORE' ] );
4368 if ( $dbw->affectedRows() ) {
4369 $newUser = self::newFromId( $dbw->insertId() );
4370 $newUser->mName = $fields[
'user_name'];
4371 $newUser->updateActorId( $dbw );
4373 $newUser->load( self::READ_LATEST );
4409 if ( !$this->mToken ) {
4413 if ( !is_string( $this->mName ) ) {
4420 $status = $dbw->doAtomicSection( __METHOD__,
function ( $dbw,
$fname ) {
4422 $dbw->insert(
'user',
4424 'user_name' => $this->mName,
4425 'user_password' => $noPass,
4426 'user_newpassword' => $noPass,
4427 'user_email' => $this->mEmail,
4428 'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
4430 'user_token' => strval( $this->mToken ),
4431 'user_registration' => $dbw->timestamp( $this->mRegistration ),
4432 'user_editcount' => 0,
4433 'user_touched' => $dbw->timestamp( $this->mTouched ),
4437 if ( !$dbw->affectedRows() ) {
4439 $this->mId = $dbw->selectField(
4442 [
'user_name' => $this->mName ],
4444 [
'LOCK IN SHARE MODE' ]
4454 "to insert user '{$this->mName}' row, but it was not present in select!" );
4458 $this->mId = $dbw->insertId();
4485 [
'actor_user' => $this->mId,
'actor_name' => $this->mName ],
4488 $this->mActorId = (int)$dbw->
insertId();
4511 wfDebug( __METHOD__ .
"()\n" );
4513 if ( $this->mId == 0 ) {
4518 if ( !$userblock ) {
4522 return (
bool)$userblock->doAutoblock( $this->
getRequest()->getIP() );
4531 if ( $this->mBlock && $this->mBlock->prevents(
'createaccount' ) ) {
4535 # T15611: if the IP address the user is trying to create an account from is 4536 # blocked with createaccount disabled, prevent new account creation there even 4537 # when the user is logged in 4538 if ( $this->mBlockedFromCreateAccount ===
false && !$this->
isAllowed(
'ipblock-exempt' ) ) {
4541 return $this->mBlockedFromCreateAccount instanceof
Block 4542 && $this->mBlockedFromCreateAccount->
prevents(
'createaccount' )
4543 ? $this->mBlockedFromCreateAccount
4553 return $this->mBlock && $this->mBlock->prevents(
'sendemail' );
4564 return $this->mBlock && $this->mBlock->prevents(
'upload' );
4591 return $title->getTalkPage();
4600 return !$this->
isAllowed(
'autoconfirmed' );
4612 $manager = AuthManager::singleton();
4613 $reqs = AuthenticationRequest::loadRequestsFromSubmission(
4614 $manager->getAuthenticationRequests( AuthManager::ACTION_LOGIN ),
4616 'username' => $this->
getName(),
4617 'password' => $password,
4620 $res = AuthManager::singleton()->beginAuthentication( $reqs,
'null:' );
4621 switch ( $res->status ) {
4622 case AuthenticationResponse::PASS:
4624 case AuthenticationResponse::FAIL:
4627 ->info( __METHOD__ .
': Authentication failed: ' . $res->message->plain() );
4631 'AuthManager returned a response unsupported by ' . __METHOD__
4669 return $request->getSession()->getToken( $salt );
4716 $val = substr( $val, 0, strspn( $val,
'0123456789abcdef' ) ) . Token::SUFFIX;
4735 if (
$type ==
'created' ||
$type ===
false ) {
4736 $message =
'confirmemail_body';
4737 } elseif (
$type ===
true ) {
4738 $message =
'confirmemail_body_changed';
4741 $message =
'confirmemail_body_' .
$type;
4749 $wgLang->userTimeAndDate( $expiration, $this ),
4751 $wgLang->userDate( $expiration, $this ),
4752 $wgLang->userTime( $expiration, $this ) )->
text() );
4769 if ( $from instanceof
User ) {
4778 'replyTo' => $replyto,
4799 $hash = md5( $token );
4800 $this->mEmailToken = $hash;
4801 $this->mEmailTokenExpires = $expiration;
4811 return $this->
getTokenUrl(
'ConfirmEmail', $token );
4820 return $this->
getTokenUrl(
'InvalidateEmail', $token );
4840 return $title->getCanonicalURL();
4855 Hooks::run(
'ConfirmEmailComplete', [ $this ] );
4869 $this->mEmailToken =
null;
4870 $this->mEmailTokenExpires =
null;
4873 Hooks::run(
'InvalidateEmailComplete', [ $this ] );
4883 $this->mEmailAuthenticated = $timestamp;
4884 Hooks::run(
'UserSetEmailAuthenticationTimestamp', [ $this, &$this->mEmailAuthenticated ] );
4894 if ( !$wgEnableEmail || !$wgEnableUserEmail || !$this->
isAllowed(
'sendemail' ) ) {
4951 return $wgEmailAuthentication &&
4953 $this->mEmailToken &&
4979 if ( $this->
getId() == 0 ) {
4984 $tsField = isset( $actorWhere[
'tables'][
'temp_rev_user'] )
4985 ?
'revactor_timestamp' :
'rev_timestamp';
4987 [
'revision' ] + $actorWhere[
'tables'],
4989 [ $actorWhere[
'conds'] ],
4991 [
'ORDER BY' =>
"$tsField ASC" ],
4992 $actorWhere[
'joins']
5010 foreach ( $groups
as $group ) {
5011 if ( isset( $wgGroupPermissions[$group] ) ) {
5012 $rights = array_merge( $rights,
5014 array_keys( array_filter( $wgGroupPermissions[$group] ) ) );
5018 foreach ( $groups
as $group ) {
5019 if ( isset( $wgRevokePermissions[$group] ) ) {
5020 $rights = array_diff( $rights,
5021 array_keys( array_filter( $wgRevokePermissions[$group] ) ) );
5024 return array_unique( $rights );
5035 $allowedGroups = [];
5036 foreach ( array_keys( $wgGroupPermissions )
as $group ) {
5037 if ( self::groupHasPermission( $group, $role ) ) {
5038 $allowedGroups[] = $group;
5041 return $allowedGroups;
5058 return isset( $wgGroupPermissions[$group][$role] ) && $wgGroupPermissions[$group][$role]
5059 && !( isset( $wgRevokePermissions[$group][$role] ) && $wgRevokePermissions[$group][$role] );
5082 if ( isset(
$cache[$right] ) && !defined(
'MW_PHPUNIT_TEST' ) ) {
5086 if ( !isset( $wgGroupPermissions[
'*'][$right] ) || !$wgGroupPermissions[
'*'][$right] ) {
5092 foreach ( $wgRevokePermissions
as $rights ) {
5093 if ( isset( $rights[$right] ) && $rights[$right] ) {
5101 if ( !defined(
'MW_NO_SESSION' ) ) {
5102 $allowedRights = SessionManager::getGlobalSession()->getAllowedUserRights();
5103 if ( $allowedRights !==
null && !in_array( $right, $allowedRights,
true ) ) {
5110 if ( !
Hooks::run(
'UserIsEveryoneAllowed', [ $right ] ) ) {
5152 return array_values( array_diff(
5153 array_merge( array_keys( $wgGroupPermissions ), array_keys( $wgRevokePermissions ) ),
5154 self::getImplicitGroups()
5163 if ( self::$mAllRights ===
false ) {
5165 if ( count( $wgAvailableRights ) ) {
5166 self::$mAllRights = array_unique( array_merge( self::$mCoreRights, $wgAvailableRights ) );
5168 self::$mAllRights = self::$mCoreRights;
5170 Hooks::run(
'UserGetAllRights', [ &self::$mAllRights ] );
5172 return self::$mAllRights;
5211 if ( $text ==
'' ) {
5216 return MediaWikiServices::getInstance()
5217 ->getLinkRenderer()->makeLink(
$title, $text );
5219 return htmlspecialchars( $text );
5236 if ( $text ==
'' ) {
5241 $page =
$title->getFullText();
5242 return "[[$page|$text]]";
5267 if ( empty( $wgAddGroups[$group] ) ) {
5269 } elseif ( $wgAddGroups[$group] ===
true ) {
5271 $groups[
'add'] = self::getAllGroups();
5272 } elseif ( is_array( $wgAddGroups[$group] ) ) {
5273 $groups[
'add'] = $wgAddGroups[$group];
5277 if ( empty( $wgRemoveGroups[$group] ) ) {
5279 } elseif ( $wgRemoveGroups[$group] ===
true ) {
5280 $groups[
'remove'] = self::getAllGroups();
5281 } elseif ( is_array( $wgRemoveGroups[$group] ) ) {
5282 $groups[
'remove'] = $wgRemoveGroups[$group];
5286 if ( empty( $wgGroupsAddToSelf[
'user'] ) || $wgGroupsAddToSelf[
'user'] !==
true ) {
5287 foreach ( $wgGroupsAddToSelf
as $key =>
$value ) {
5288 if ( is_int( $key ) ) {
5289 $wgGroupsAddToSelf[
'user'][] =
$value;
5294 if ( empty( $wgGroupsRemoveFromSelf[
'user'] ) || $wgGroupsRemoveFromSelf[
'user'] !==
true ) {
5295 foreach ( $wgGroupsRemoveFromSelf
as $key =>
$value ) {
5296 if ( is_int( $key ) ) {
5297 $wgGroupsRemoveFromSelf[
'user'][] =
$value;
5303 if ( empty( $wgGroupsAddToSelf[$group] ) ) {
5305 } elseif ( $wgGroupsAddToSelf[$group] ===
true ) {
5307 $groups[
'add-self'] = self::getAllGroups();
5308 } elseif ( is_array( $wgGroupsAddToSelf[$group] ) ) {
5309 $groups[
'add-self'] = $wgGroupsAddToSelf[$group];
5312 if ( empty( $wgGroupsRemoveFromSelf[$group] ) ) {
5314 } elseif ( $wgGroupsRemoveFromSelf[$group] ===
true ) {
5315 $groups[
'remove-self'] = self::getAllGroups();
5316 } elseif ( is_array( $wgGroupsRemoveFromSelf[$group] ) ) {
5317 $groups[
'remove-self'] = $wgGroupsRemoveFromSelf[$group];
5331 if ( $this->
isAllowed(
'userrights' ) ) {
5336 $all = array_merge( self::getAllGroups() );
5354 foreach ( $addergroups
as $addergroup ) {
5355 $groups = array_merge_recursive(
5358 $groups[
'add'] = array_unique( $groups[
'add'] );
5359 $groups[
'remove'] = array_unique( $groups[
'remove'] );
5360 $groups[
'add-self'] = array_unique( $groups[
'add-self'] );
5361 $groups[
'remove-self'] = array_unique( $groups[
'remove-self'] );
5386 $this->mEditCount = $count;
5401 $count = (int)
$dbr->selectField(
5402 [
'revision' ] + $actorWhere[
'tables'],
5404 [ $actorWhere[
'conds'] ],
5407 $actorWhere[
'joins']
5413 [
'user_editcount' => $count ],
5415 'user_id' => $this->
getId(),
5416 'user_editcount IS NULL OR user_editcount < ' . (
int)$count
5432 $key =
"right-$right";
5434 return $msg->isDisabled() ? $right : $msg->text();
5445 $key =
"grant-$grant";
5447 return $msg->isDisabled() ? $grant : $msg->text();
5496 if ( $this->mOptionsLoaded ) {
5500 $this->mOptions = self::getDefaultOptions();
5502 if ( !$this->
getId() ) {
5507 $variant = MediaWikiServices::getInstance()->getContentLanguage()->getDefaultVariant();
5508 $this->mOptions[
'variant'] = $variant;
5509 $this->mOptions[
'language'] = $variant;
5510 $this->mOptionsLoaded =
true;
5515 if ( !is_null( $this->mOptionOverrides ) ) {
5516 wfDebug(
"User: loading options for user " . $this->
getId() .
" from override cache.\n" );
5517 foreach ( $this->mOptionOverrides
as $key =>
$value ) {
5518 $this->mOptions[$key] =
$value;
5521 if ( !is_array( $data ) ) {
5522 wfDebug(
"User: loading options for user " . $this->
getId() .
" from database.\n" );
5524 $dbr = ( $this->queryFlagsUsed & self::READ_LATEST )
5530 [
'up_property',
'up_value' ],
5531 [
'up_user' => $this->
getId() ],
5535 $this->mOptionOverrides = [];
5537 foreach (
$res as $row ) {
5542 if ( $row->up_value ===
'0' ) {
5545 $data[$row->up_property] = $row->up_value;
5557 $this->mOptions[
'language']
5560 $this->mOptionsLoaded =
true;
5562 Hooks::run(
'UserLoadOptions', [ $this, &$this->mOptions ] );
5578 if ( !
Hooks::run(
'UserSaveOptions', [ $this, &$saveOptions ] ) ) {
5582 $userId = $this->
getId();
5585 foreach ( $saveOptions
as $key =>
$value ) {
5587 $defaultOption = self::getDefaultOption( $key );
5589 ||
$value != $defaultOption
5592 'up_user' => $userId,
5593 'up_property' => $key,
5601 $res = $dbw->select(
'user_properties',
5602 [
'up_property',
'up_value' ], [
'up_user' => $userId ], __METHOD__ );
5607 foreach (
$res as $row ) {
5608 if ( !isset( $saveOptions[$row->up_property] )
5609 || strcmp( $saveOptions[$row->up_property], $row->up_value ) != 0
5611 $keysDelete[] = $row->up_property;
5615 if ( count( $keysDelete ) ) {
5623 $dbw->delete(
'user_properties',
5624 [
'up_user' => $userId,
'up_property' => $keysDelete ], __METHOD__ );
5627 $dbw->insert(
'user_properties', $insert_rows, __METHOD__, [
'IGNORE' ] );
5645 'user_email_authenticated',
5647 'user_email_token_expires',
5648 'user_registration',
5666 'tables' => [
'user' ],
5674 'user_email_authenticated',
5676 'user_email_token_expires',
5677 'user_registration',
5686 $ret[
'tables'][
'user_actor'] =
'actor';
5687 $ret[
'fields'][] =
'user_actor.actor_id';
5688 $ret[
'joins'][
'user_actor'] = [
5690 [
'user_actor.actor_user = user_id' ]
5708 foreach ( self::getGroupsWithPermission( $permission )
as $group ) {
5713 return Status::newFatal(
'badaccess-groups', $wgLang->commaList( $groups ), count( $groups ) );
5729 if ( !$this->
getId() ) {
5734 if ( !
$user->loadFromId( self::READ_EXCLUSIVE ) ) {
getEmail()
Get the user's e-mail address.
The wiki should then use memcached to cache various data To use multiple just add more items to the array To increase the weight of a make its entry a array("192.168.0.1:11211", 2))
static randomPassword()
Return a random password.
$wgUserEmailConfirmationTokenExpiry
The time, in seconds, when an email confirmation email expires.
isHidden()
Check if user account is hidden.
makeUpdateConditions(Database $db, array $conditions)
Builds update conditions.
string null $wgAuthenticationTokenVersion
Versioning for authentication tokens.
static getGroupPage( $group)
Get the title of a page describing a particular group.
static getMembershipsForUser( $userId, IDatabase $db=null)
Returns UserGroupMembership objects for all the groups a user currently belongs to.
static getMembership( $userId, $group, IDatabase $db=null)
Returns a UserGroupMembership object that pertains to the given user and group, or false if the user ...
setInternalPassword( $str)
Set the password and reset the random token unconditionally.
static isValidRange( $ipRange)
Validate an IP range (valid address with a valid CIDR prefix).
const VERSION
int Serialized record version.
static isIPAddress( $ip)
Determine if a string is as valid IP address or network (CIDR prefix).
static getMainWANInstance()
Get the main WAN cache object.
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction $rows
deferred txt A few of the database updates required by various functions here can be deferred until after the result page is displayed to the user For updating the view updating the linked to tables after a etc PHP does not yet have any way to tell the server to actually return and disconnect while still running these but it might have such a feature in the future We handle these by creating a deferred update object and putting those objects on a global list
setRealName( $str)
Set the user's real name.
$wgMaxArticleSize
Maximum article size in kilobytes.
setItemLoaded( $item)
Set that an item has been loaded.
getNewMessageLinks()
Return the data needed to construct links for new talk page message alerts.
clearInstanceCache( $reloadFrom=false)
Clear various cached data stored in this object.
isNewbie()
Determine whether the user is a newbie.
static whoIs( $id)
Get the username corresponding to a given user ID.
static newFromID( $id)
Load a blocked user from their block id.
static normalizeKey( $key)
Normalize a skin preference value to a form that can be loaded.
addWatch( $title, $checkRights=self::CHECK_USER_RIGHTS)
Watch an article.
static chooseBlock(array $blocks, array $ipChain)
From a list of multiple blocks, find the most exact and strongest Block.
$wgMaxNameChars
Maximum number of bytes in username.
UserGroupMembership [] $mGroupMemberships
Associative array of (group name => UserGroupMembership object)
static getGroupName( $group)
Get the localized descriptive name for a group, if it exists.
$wgDefaultUserOptions
Settings added to this array will override the default globals for the user preferences used by anony...
loadFromSession()
Load user data from the session.
static changeableByGroup( $group)
Returns an array of the groups that a particular group can add/remove.
isAllowedToCreateAccount()
Get whether the user is allowed to create an account.
Block $mBlockedFromCreateAccount
logout()
Log this user out.
clearNotification(&$title, $oldid=0)
Clear the user's notification timestamp for the given title.
static getGroupPermissions( $groups)
Get the permissions associated with a given list of groups.
static getImplicitGroups()
Get a list of implicit groups TODO: Should we deprecate this? It's trivial, but we don't want to enco...
saveSettings()
Save this user's settings into the database.
processing should stop and the error should be shown to the user * false
setId( $v)
Set the user and reload all fields according to a given ID.
prevents( $action, $x=null)
Get/set whether the Block prevents a given action.
static send( $to, $from, $subject, $body, $options=[])
This function will perform a direct (authenticated) login to a SMTP Server to use for mail relaying i...
getFirstEditTimestamp()
Get the timestamp of the first edit.
static $mCoreRights
Array of Strings Core rights.
null means default in associative array with keys and values unescaped Should be merged with default with a value of false meaning to suppress the attribute in associative array with keys and values unescaped noclasses & $ret
static generateRandomPasswordString( $minLength=10)
Generate a random string suitable for a password.
static isEveryoneAllowed( $right)
Check if all users may be assumed to have the given permission.
static isIP( $name)
Does the string match an anonymous IP address?
Apache License January AND DISTRIBUTION Definitions License shall mean the terms and conditions for use
validateCache( $timestamp)
Validate the cache for this account.
const GETOPTIONS_EXCLUDE_DEFAULTS
Exclude user options that are set to their default value.
initEditCountInternal()
Initialize user_editcount from data out of the revision table.
isAllowedAny()
Check if user is allowed to access a feature / make an action.
isBlockedFromEmailuser()
Get whether the user is blocked from using Special:Emailuser.
getEffectiveGroups( $recache=false)
Get the list of implicit group memberships this user has.
const TOKEN_LENGTH
int Number of characters in user_token field.
touch()
Update the "touched" timestamp for the user.
Handles increment the edit count for a given set of users.
int $wgActorTableSchemaMigrationStage
Actor table schema migration stage.
static getWikiIdFromDomain( $domain)
Get the wiki ID of a database domain.
isBlockedGlobally( $ip='')
Check if user is blocked on all wikis.
static newFromTarget( $specificTarget, $vagueTarget=null, $fromMaster=false)
Given a target and the target's type, get an existing Block object if possible.
setName( $str)
Set the user name.
Status::newGood()` to allow deletion, and then `return false` from the hook function. Ensure you consume the 'ChangeTagAfterDelete' hook to carry out custom deletion actions. $tag:name of the tag $user:user initiating the action & $status:Status object. See above. 'ChangeTagsListActive':Allows you to nominate which of the tags your extension uses are in active use. & $tags:list of all active tags. Append to this array. 'ChangeTagsAfterUpdateTags':Called after tags have been updated with the ChangeTags::updateTags function. Params:$addedTags:tags effectively added in the update $removedTags:tags effectively removed in the update $prevTags:tags that were present prior to the update $rc_id:recentchanges table id $rev_id:revision table id $log_id:logging table id $params:tag params $rc:RecentChange being tagged when the tagging accompanies the action, or null $user:User who performed the tagging when the tagging is subsequent to the action, or null 'ChangeTagsAllowedAdd':Called when checking if a user can add tags to a change. & $allowedTags:List of all the tags the user is allowed to add. Any tags the user wants to add( $addTags) that are not in this array will cause it to fail. You may add or remove tags to this array as required. $addTags:List of tags user intends to add. $user:User who is adding the tags. 'ChangeUserGroups':Called before user groups are changed. $performer:The User who will perform the change $user:The User whose groups will be changed & $add:The groups that will be added & $remove:The groups that will be removed 'Collation::factory':Called if $wgCategoryCollation is an unknown collation. $collationName:Name of the collation in question & $collationObject:Null. Replace with a subclass of the Collation class that implements the collation given in $collationName. 'ConfirmEmailComplete':Called after a user 's email has been confirmed successfully. $user:user(object) whose email is being confirmed 'ContentAlterParserOutput':Modify parser output for a given content object. Called by Content::getParserOutput after parsing has finished. Can be used for changes that depend on the result of the parsing but have to be done before LinksUpdate is called(such as adding tracking categories based on the rendered HTML). $content:The Content to render $title:Title of the page, as context $parserOutput:ParserOutput to manipulate 'ContentGetParserOutput':Customize parser output for a given content object, called by AbstractContent::getParserOutput. May be used to override the normal model-specific rendering of page content. $content:The Content to render $title:Title of the page, as context $revId:The revision ID, as context $options:ParserOptions for rendering. To avoid confusing the parser cache, the output can only depend on parameters provided to this hook function, not on global state. $generateHtml:boolean, indicating whether full HTML should be generated. If false, generation of HTML may be skipped, but other information should still be present in the ParserOutput object. & $output:ParserOutput, to manipulate or replace 'ContentHandlerDefaultModelFor':Called when the default content model is determined for a given title. May be used to assign a different model for that title. $title:the Title in question & $model:the model name. Use with CONTENT_MODEL_XXX constants. 'ContentHandlerForModelID':Called when a ContentHandler is requested for a given content model name, but no entry for that model exists in $wgContentHandlers. Note:if your extension implements additional models via this hook, please use GetContentModels hook to make them known to core. $modeName:the requested content model name & $handler:set this to a ContentHandler object, if desired. 'ContentModelCanBeUsedOn':Called to determine whether that content model can be used on a given page. This is especially useful to prevent some content models to be used in some special location. $contentModel:ID of the content model in question $title:the Title in question. & $ok:Output parameter, whether it is OK to use $contentModel on $title. Handler functions that modify $ok should generally return false to prevent further hooks from further modifying $ok. 'ContribsPager::getQueryInfo':Before the contributions query is about to run & $pager:Pager object for contributions & $queryInfo:The query for the contribs Pager 'ContribsPager::reallyDoQuery':Called before really executing the query for My Contributions & $data:an array of results of all contribs queries $pager:The ContribsPager object hooked into $offset:Index offset, inclusive $limit:Exact query limit $descending:Query direction, false for ascending, true for descending 'ContributionsLineEnding':Called before a contributions HTML line is finished $page:SpecialPage object for contributions & $ret:the HTML line $row:the DB row for this line & $classes:the classes to add to the surrounding< li > & $attribs:associative array of other HTML attributes for the< li > element. Currently only data attributes reserved to MediaWiki are allowed(see Sanitizer::isReservedDataAttribute). 'ContributionsToolLinks':Change tool links above Special:Contributions $id:User identifier $title:User page title & $tools:Array of tool links $specialPage:SpecialPage instance for context and services. Can be either SpecialContributions or DeletedContributionsPage. Extensions should type hint against a generic SpecialPage though. 'ConvertContent':Called by AbstractContent::convert when a conversion to another content model is requested. Handler functions that modify $result should generally return false to disable further attempts at conversion. $content:The Content object to be converted. $toModel:The ID of the content model to convert to. $lossy:boolean indicating whether lossy conversion is allowed. & $result:Output parameter, in case the handler function wants to provide a converted Content object. Note that $result->getContentModel() must return $toModel. 'ContentSecurityPolicyDefaultSource':Modify the allowed CSP load sources. This affects all directives except for the script directive. If you want to add a script source, see ContentSecurityPolicyScriptSource hook. & $defaultSrc:Array of Content-Security-Policy allowed sources $policyConfig:Current configuration for the Content-Security-Policy header $mode:ContentSecurityPolicy::REPORT_ONLY_MODE or ContentSecurityPolicy::FULL_MODE depending on type of header 'ContentSecurityPolicyDirectives':Modify the content security policy directives. Use this only if ContentSecurityPolicyDefaultSource and ContentSecurityPolicyScriptSource do not meet your needs. & $directives:Array of CSP directives $policyConfig:Current configuration for the CSP header $mode:ContentSecurityPolicy::REPORT_ONLY_MODE or ContentSecurityPolicy::FULL_MODE depending on type of header 'ContentSecurityPolicyScriptSource':Modify the allowed CSP script sources. Note that you also have to use ContentSecurityPolicyDefaultSource if you want non-script sources to be loaded from whatever you add. & $scriptSrc:Array of CSP directives $policyConfig:Current configuration for the CSP header $mode:ContentSecurityPolicy::REPORT_ONLY_MODE or ContentSecurityPolicy::FULL_MODE depending on type of header 'CustomEditor':When invoking the page editor Return true to allow the normal editor to be used, or false if implementing a custom editor, e.g. for a special namespace, etc. $article:Article being edited $user:User performing the edit 'DatabaseOraclePostInit':Called after initialising an Oracle database $db:the DatabaseOracle object 'DeletedContribsPager::reallyDoQuery':Called before really executing the query for Special:DeletedContributions Similar to ContribsPager::reallyDoQuery & $data:an array of results of all contribs queries $pager:The DeletedContribsPager object hooked into $offset:Index offset, inclusive $limit:Exact query limit $descending:Query direction, false for ascending, true for descending 'DeletedContributionsLineEnding':Called before a DeletedContributions HTML line is finished. Similar to ContributionsLineEnding $page:SpecialPage object for DeletedContributions & $ret:the HTML line $row:the DB row for this line & $classes:the classes to add to the surrounding< li > & $attribs:associative array of other HTML attributes for the< li > element. Currently only data attributes reserved to MediaWiki are allowed(see Sanitizer::isReservedDataAttribute). 'DeleteUnknownPreferences':Called by the cleanupPreferences.php maintenance script to build a WHERE clause with which to delete preferences that are not known about. This hook is used by extensions that have dynamically-named preferences that should not be deleted in the usual cleanup process. For example, the Gadgets extension creates preferences prefixed with 'gadget-', and so anything with that prefix is excluded from the deletion. &where:An array that will be passed as the $cond parameter to IDatabase::select() to determine what will be deleted from the user_properties table. $db:The IDatabase object, useful for accessing $db->buildLike() etc. 'DifferenceEngineAfterLoadNewText':called in DifferenceEngine::loadNewText() after the new revision 's content has been loaded into the class member variable $differenceEngine->mNewContent but before returning true from this function. $differenceEngine:DifferenceEngine object 'DifferenceEngineLoadTextAfterNewContentIsLoaded':called in DifferenceEngine::loadText() after the new revision 's content has been loaded into the class member variable $differenceEngine->mNewContent but before checking if the variable 's value is null. This hook can be used to inject content into said class member variable. $differenceEngine:DifferenceEngine object 'DifferenceEngineMarkPatrolledLink':Allows extensions to change the "mark as patrolled" link which is shown both on the diff header as well as on the bottom of a page, usually wrapped in a span element which has class="patrollink". $differenceEngine:DifferenceEngine object & $markAsPatrolledLink:The "mark as patrolled" link HTML(string) $rcid:Recent change ID(rc_id) for this change(int) 'DifferenceEngineMarkPatrolledRCID':Allows extensions to possibly change the rcid parameter. For example the rcid might be set to zero due to the user being the same as the performer of the change but an extension might still want to show it under certain conditions. & $rcid:rc_id(int) of the change or 0 $differenceEngine:DifferenceEngine object $change:RecentChange object $user:User object representing the current user 'DifferenceEngineNewHeader':Allows extensions to change the $newHeader variable, which contains information about the new revision, such as the revision 's author, whether the revision was marked as a minor edit or not, etc. $differenceEngine:DifferenceEngine object & $newHeader:The string containing the various #mw-diff-otitle[1-5] divs, which include things like revision author info, revision comment, RevisionDelete link and more $formattedRevisionTools:Array containing revision tools, some of which may have been injected with the DiffRevisionTools hook $nextlink:String containing the link to the next revision(if any) $status
getOption( $oname, $defaultOverride=null, $ignoreHidden=false)
Get the user's current setting for a given option.
blockedBy()
If user is blocked, return the name of the user who placed the block.
string $mQuickTouched
TS_MW timestamp from cache.
$wgReservedUsernames
Array of usernames which may not be registered or logged in from Maintenance scripts can still use th...
wfGetDB( $db, $groups=[], $wiki=false)
Get a Database object.
static loadFromTimestamp( $db, $title, $timestamp)
Load the revision for the given title with the given timestamp.
getExperienceLevel()
Compute experienced level based on edit count and registration date.
Exception thrown when an actor can't be created.
null for the local wiki Added in
getRealName()
Get the user's real name.
$wgSecureLogin
This is to let user authenticate using https when they come from http.
checkNewtalk( $field, $id)
Internal uncached check for new messages.
This code would result in ircNotify being run twice when an article is and once for brion Hooks can return three possible true was required This is the default since MediaWiki *some string
sendMail( $subject, $body, $from=null, $replyto=null)
Send an e-mail to this user's account.
Check if a user's password complies with any password policies that apply to that user...
checkAndSetTouched()
Bump user_touched if it didn't change since this object was loaded.
changeableGroups()
Returns an array of groups that this user can add and remove.
clearAllNotifications()
Resets all of the given user's page-change notification timestamps.
static getCurrentWikiDomain()
const SCHEMA_COMPAT_READ_NEW
matchEditTokenNoSuffix( $val, $salt='', $request=null, $maxage=null)
Check given value against the token value stored in the session, ignoring the suffix.
isLoggedIn()
Get whether the user is logged in.
static clearCookie(WebResponse $response)
Unset the 'BlockID' cookie.
static getLocalClusterInstance()
Get the main cluster-local cache object.
injection txt This is an overview of how MediaWiki makes use of dependency injection The design described here grew from the discussion of RFC T384 The term dependency this means that anything an object needs to operate should be injected from the the object itself should only know narrow no concrete implementation of the logic it relies on The requirement to inject everything typically results in an architecture that based on two main types of and essentially stateless service objects that use other service objects to operate on the value objects As of the beginning MediaWiki is only starting to use the DI approach Much of the code still relies on global state or direct resulting in a highly cyclical dependency MediaWikiServices
setToken( $token=false)
Set the random token (used for persistent authentication) Called from loadDefaults() among other plac...
static idFromName( $name, $flags=self::READ_NORMAL)
Get database id given a user name.
static newFromConfirmationCode( $code, $flags=0)
Factory method to fetch whichever user has a given email confirmation code.
and how to run hooks for an and one after Each event has a preferably in CamelCase For ArticleDelete hook A clump of code and data that should be run when an event happens This can be either a function and a chunk of or an object and a method hook function The function part of a third party developers and local administrators to define code that will be run at certain points in the mainline and to modify the data run by that mainline code Hooks can keep mainline code and make it easier to write extensions Hooks are a principled alternative to local patches for two options in MediaWiki One reverses the order of a title before displaying the article
isBlockedFromUpload()
Get whether the user is blocked from using Special:Upload.
checkTemporaryPassword( $plaintext)
Check if the given clear-text password matches the temporary password sent by e-mail for password res...
$wgGroupsAddToSelf
A map of group names that the user is in, to group names that those users are allowed to add or revok...
isBlocked( $bFromReplica=true)
Check if user is blocked.
$wgHiddenPrefs
An array of preferences to not show for the user.
static getQueryInfo()
Return the tables, fields, and join conditions to be selected to create a new user object...
wfTimestampOrNull( $outputtype=TS_UNIX, $ts=null)
Return a formatted timestamp, or null if input is null.
static resetIdByNameCache()
Reset the cache used in idFromName().
getDBTouched()
Get the user_touched timestamp field (time of last DB updates)
$wgRevokePermissions
Permission keys revoked from users in each group.
static newFromActorId( $id)
Static factory method for creation from a given actor ID.
setOption( $oname, $val)
Set the given option for a user.
static getGroupMember( $group, $username='#')
Get the localized descriptive name for a member of a group, if it exists.
getGlobalBlock( $ip='')
Check if user is blocked on all wikis.
isDnsBlacklisted( $ip, $checkWhitelist=false)
Whether the given IP is in a DNS blacklist.
see documentation in includes Linker php for Linker::makeImageLink & $time
static getLink( $ugm, IContextSource $context, $format, $userName=null)
Gets a link for a user group, possibly including the expiry date if relevant.
$wgUseNPPatrol
Use new page patrolling to check new pages on Special:Newpages.
This list may contain false positives That usually means there is additional text with links below the first Each row contains links to the first and second as well as the first line of the second redirect text
Value object representing a logged-out user's edit token.
static getDBOptions( $bitfield)
Get an appropriate DB index, options, and fallback DB index for a query.
static getSubnet( $ip)
Returns the subnet of a given IP.
setCookies( $request=null, $secure=null, $rememberMe=false)
Persist this user's session (e.g.
getName()
Get the user name, or the IP of an anonymous user.
static selectFields()
Return the list of user fields that should be selected to create a new user object.
updateActorId(IDatabase $dbw)
Update the actor ID after an insert.
string $mName
Cache variables.
string $mRegistration
Cache variables.
$wgEnableEmail
Set to true to enable the e-mail basic features: Password reminders, etc.
$wgDnsBlacklistUrls
List of DNS blacklists to use, if $wgEnableDnsBlacklist is true.
int $mEditCount
Cache variables.
changeAuthenticationData(array $data)
Changes credentials of the user.
int null $mActorId
Cache variables.
removeWatch( $title, $checkRights=self::CHECK_USER_RIGHTS)
Stop watching an article.
The index of the header message $result[1]=The index of the body text message $result[2 through n]=Parameters passed to body text message. Please note the header message cannot receive/use parameters. 'ImportHandleLogItemXMLTag':When parsing a XML tag in a log item. Return false to stop further processing of the tag $reader:XMLReader object $logInfo:Array of information 'ImportHandlePageXMLTag':When parsing a XML tag in a page. Return false to stop further processing of the tag $reader:XMLReader object & $pageInfo:Array of information 'ImportHandleRevisionXMLTag':When parsing a XML tag in a page revision. Return false to stop further processing of the tag $reader:XMLReader object $pageInfo:Array of page information $revisionInfo:Array of revision information 'ImportHandleToplevelXMLTag':When parsing a top level XML tag. Return false to stop further processing of the tag $reader:XMLReader object 'ImportHandleUnknownUser':When a user doesn 't exist locally, this hook is called to give extensions an opportunity to auto-create it. If the auto-creation is successful, return false. $name:User name 'ImportHandleUploadXMLTag':When parsing a XML tag in a file upload. Return false to stop further processing of the tag $reader:XMLReader object $revisionInfo:Array of information 'ImportLogInterwikiLink':Hook to change the interwiki link used in log entries and edit summaries for transwiki imports. & $fullInterwikiPrefix:Interwiki prefix, may contain colons. & $pageTitle:String that contains page title. 'ImportSources':Called when reading from the $wgImportSources configuration variable. Can be used to lazy-load the import sources list. & $importSources:The value of $wgImportSources. Modify as necessary. See the comment in DefaultSettings.php for the detail of how to structure this array. 'InfoAction':When building information to display on the action=info page. $context:IContextSource object & $pageInfo:Array of information 'InitializeArticleMaybeRedirect':MediaWiki check to see if title is a redirect. & $title:Title object for the current page & $request:WebRequest & $ignoreRedirect:boolean to skip redirect check & $target:Title/string of redirect target & $article:Article object 'InternalParseBeforeLinks':during Parser 's internalParse method before links but after nowiki/noinclude/includeonly/onlyinclude and other processings. & $parser:Parser object & $text:string containing partially parsed text & $stripState:Parser 's internal StripState object 'InternalParseBeforeSanitize':during Parser 's internalParse method just before the parser removes unwanted/dangerous HTML tags and after nowiki/noinclude/includeonly/onlyinclude and other processings. Ideal for syntax-extensions after template/parser function execution which respect nowiki and HTML-comments. & $parser:Parser object & $text:string containing partially parsed text & $stripState:Parser 's internal StripState object 'InterwikiLoadPrefix':When resolving if a given prefix is an interwiki or not. Return true without providing an interwiki to continue interwiki search. $prefix:interwiki prefix we are looking for. & $iwData:output array describing the interwiki with keys iw_url, iw_local, iw_trans and optionally iw_api and iw_wikiid. 'InvalidateEmailComplete':Called after a user 's email has been invalidated successfully. $user:user(object) whose email is being invalidated 'IRCLineURL':When constructing the URL to use in an IRC notification. Callee may modify $url and $query, URL will be constructed as $url . $query & $url:URL to index.php & $query:Query string $rc:RecentChange object that triggered url generation 'IsFileCacheable':Override the result of Article::isFileCacheable()(if true) & $article:article(object) being checked 'IsTrustedProxy':Override the result of IP::isTrustedProxy() & $ip:IP being check & $result:Change this value to override the result of IP::isTrustedProxy() 'IsUploadAllowedFromUrl':Override the result of UploadFromUrl::isAllowedUrl() $url:URL used to upload from & $allowed:Boolean indicating if uploading is allowed for given URL 'isValidEmailAddr':Override the result of Sanitizer::validateEmail(), for instance to return false if the domain name doesn 't match your organization. $addr:The e-mail address entered by the user & $result:Set this and return false to override the internal checks 'isValidPassword':Override the result of User::isValidPassword() $password:The password entered by the user & $result:Set this and return false to override the internal checks $user:User the password is being validated for 'Language::getMessagesFileName':$code:The language code or the language we 're looking for a messages file for & $file:The messages file path, you can override this to change the location. 'LanguageGetNamespaces':Provide custom ordering for namespaces or remove namespaces. Do not use this hook to add namespaces. Use CanonicalNamespaces for that. & $namespaces:Array of namespaces indexed by their numbers 'LanguageGetTranslatedLanguageNames':Provide translated language names. & $names:array of language code=> language name $code:language of the preferred translations 'LanguageLinks':Manipulate a page 's language links. This is called in various places to allow extensions to define the effective language links for a page. $title:The page 's Title. & $links:Array with elements of the form "language:title" in the order that they will be output. & $linkFlags:Associative array mapping prefixed links to arrays of flags. Currently unused, but planned to provide support for marking individual language links in the UI, e.g. for featured articles. 'LanguageSelector':Hook to change the language selector available on a page. $out:The output page. $cssClassName:CSS class name of the language selector. 'LinkBegin':DEPRECATED since 1.28! Use HtmlPageLinkRendererBegin instead. Used when generating internal and interwiki links in Linker::link(), before processing starts. Return false to skip default processing and return $ret. See documentation for Linker::link() for details on the expected meanings of parameters. $skin:the Skin object $target:the Title that the link is pointing to & $html:the contents that the< a > tag should have(raw HTML) $result
checkPassword( $password)
Check to see if the given clear-text password is one of the accepted passwords.
getTitleKey()
Get the user's name escaped by underscores.
static getAllGroups()
Return the set of defined explicit groups.
static listOptionKinds()
Return a list of the types of user options currently returned by User::getOptionKinds().
$wgGroupPermissions
Permission keys given to users in each group.
static findUsersByGroup( $groups, $limit=5000, $after=null)
Return the users who are members of the given group(s).
static validateEmail( $addr)
Does a string look like an e-mail address?
The User object encapsulates all of the user-specific settings (user_id, name, rights, email address, options, last login time).
string $mEmailTokenExpires
Cache variables.
static getAllRights()
Get a list of all available permissions.
isEmailConfirmed()
Is this user's e-mail address valid-looking and confirmed within limits of the current site configura...
null means default in associative array with keys and values unescaped Should be merged with default with a value of false meaning to suppress the attribute in associative array with keys and values unescaped noclasses just before the function returns a value If you return true
getEditToken( $salt='', $request=null)
Initialize (if necessary) and return a session token value which can be used in edit forms to show th...
static getCanonicalName( $name, $validate='valid')
Given unvalidated user input, return a canonical username, or false if the username is invalid...
static newFatal( $message)
Factory function for fatal errors.
isBlockedFromCreateAccount()
Get whether the user is explicitly blocked from account creation.
loadFromId( $flags=self::READ_NORMAL)
Load user table data, given mId has already been set.
wfTimestamp( $outputtype=TS_UNIX, $ts=0)
Get a timestamp string in one of various formats.
static whoIsReal( $id)
Get the real name of a user given their user ID.
$mOptionsLoaded
Bool Whether the cache variables have been loaded.
makeGlobalKey( $class, $component=null)
updateNewtalk( $field, $id, $curRev=null)
Add or update the new messages flag.
string $mEmailToken
Cache variables.
getTokenFromOption( $oname)
Get a token stored in the preferences (like the watchlist one), resetting it if it's empty (and savin...
static addCallableUpdate( $callable, $stage=self::POSTSEND, $dbw=null)
Add a callable update.
addAutopromoteOnceGroups( $event)
Add the user to the group if he/she meets given criteria.
$wgPasswordPolicy
Password policy for the wiki.
getRegistration()
Get the timestamp of account creation.
getGroupMemberships()
Get the list of explicit group memberships this user has, stored as UserGroupMembership objects...
$wgRateLimitsExcludedIPs
Array of IPs / CIDR ranges which should be excluded from rate limits.
wfReadOnly()
Check whether the wiki is in read-only mode.
static getRightDescription( $right)
Get the description of a given right.
static newMigration()
Static constructor.
either a unescaped string or a HtmlArmor object after in associative array form externallinks including delete and has completed for all link tables whether this was an auto creation use $formDescriptor instead default is conds Array Extra conditions for the No matching items in log is displayed if loglist is empty msgKey Array If you want a nice box with a set this to the key of the message First element is the message additional optional elements are parameters for the key that are processed with wfMessage() -> params() ->parseAsBlock() - offset Set to overwrite offset parameter in $wgRequest set to '' to unset offset - wrap String Wrap the message in html(usually something like "<
static getMain()
Get the RequestContext object associated with the main request.
static isCreatableName( $name)
Usernames which fail to pass this function will be blocked from new account registrations, but may be used internally either by batch processes or by user accounts which have already been created.
confirmationTokenUrl( $token)
Return a URL the user can use to confirm their email address.
Using a hook running we can avoid having all this option specific stuff in our mainline code Using the function We ve cleaned up the code here by removing clumps of infrequently used code and moving them off somewhere else It s much easier for someone working with this code to see what s _really_ going and make changes or fix bugs In we can take all the code that deals with the little used title reversing we can concentrate it all in an extension file
getMutableCacheKeys(WANObjectCache $cache)
addNewUserLogEntryAutoCreate()
Add an autocreate newuser log entry for this user Used by things like CentralAuth and perhaps other a...
$wgExperiencedUserEdits
Name of the external diff engine to use.
isValidPassword( $password)
Is the input a valid password for this user?
static getGroupsWithPermission( $role)
Get all the groups who have a given permission.
static sanitizeIP( $ip)
Convert an IP into a verbose, uppercase, normalized form.
getBoolOption( $oname)
Get the user's current setting for a given option, as a boolean value.
isAnon()
Get whether the user is anonymous.
static getGroupMemberName( $group, $username)
Gets the localized name for a member of a group, if it exists.
getTokenUrl( $page, $token)
Internal function to format the e-mail validation/invalidation URLs.
$wgUseFilePatrol
Use file patrolling to check new files on Special:Newfiles.
static isLocallyBlockedProxy( $ip)
Check if an IP address is in the local proxy list.
Stores a single person's name and email address.
static purge( $wikiId, $userId)
const SCHEMA_COMPAT_WRITE_NEW
static getGrantName( $grant)
Get the name of a given grant.
resetTokenFromOption( $oname)
Reset a token stored in the preferences (like the watchlist one).
static getGroupName( $group)
Gets the localized friendly name for a group, if it exists.
static newGood( $value=null)
Factory function for good results.
int $queryFlagsUsed
User::READ_* constant bitfield used to load data.
$wgImplicitGroups
Implicit groups, aren't shown on Special:Listusers or somewhere else.
wfDebug( $text, $dest='all', array $context=[])
Sends a line to the debug log if enabled or, optionally, to a comment in output.
getEditTokenObject( $salt='', $request=null)
Initialize (if necessary) and return a session token value which can be used in edit forms to show th...
doLogout()
Clear the user's session, and reset the instance cache.
load( $flags=self::READ_NORMAL)
Load the user table data for this object from the source given by mFrom.
equals(UserIdentity $user)
Checks if two user objects point to the same user.
loadFromCache()
Load user data from shared cache, given mId has already been set.
isEmailConfirmationPending()
Check whether there is an outstanding request for e-mail confirmation.
const GAID_FOR_UPDATE
Used to be GAID_FOR_UPDATE define.
incEditCount()
Schedule a deferred update to update the user's edit count.
newTouchedTimestamp()
Generate a current or new-future timestamp to be stored in the user_touched field when we update thin...
inDnsBlacklist( $ip, $bases)
Whether the given IP is in a given DNS blacklist.
$wgShowUpdatedMarker
Show "Updated (since my last visit)" marker in RC view, watchlist and history view for watched pages ...
getOptionKinds(IContextSource $context, $options=null)
Return an associative array mapping preferences keys to the kind of a preference they're used for...
loadFromDatabase( $flags=self::READ_LATEST)
Load user and user_group data from the database.
$wgProxyList
Big list of banned IP addresses.
wfTimestampNow()
Convenience function; returns MediaWiki timestamp for the present time.
string $mTouched
TS_MW timestamp from the DB.
canSendEmail()
Is this user allowed to send e-mails within limits of current site configuration? ...
$wgAvailableRights
A list of available rights, in addition to the ones defined by the core.
setPasswordInternal( $str)
Actually set the password and such.
static logException( $e, $catcher=self::CAUGHT_BY_OTHER)
Log an exception to the exception log (if enabled).
$wgProxyWhitelist
Proxy whitelist, list of addresses that are assumed to be non-proxy despite what the other methods mi...
string $mEmailAuthenticated
Cache variables.
isAllowed( $action='')
Internal mechanics of testing a permission.
null means default in associative array with keys and values unescaped Should be merged with default with a value of false meaning to suppress the attribute in associative array with keys and values unescaped & $options
and(b) You must cause any modified files to carry prominent notices stating that You changed the files
array $wgLearnerEdits
The following variables define 3 user experience levels:
isWatched( $title, $checkRights=self::CHECK_USER_RIGHTS)
Check the watched status of an article.
static generateHex( $chars)
Generate a run of cryptographically random data and return it in hexadecimal string format...
isItemLoaded( $item, $all='all')
Return whether an item has been loaded.
this hook is for auditing only or null if authentication failed before getting that far or null if we can t even determine that When $user is not null
static isUsableName( $name)
Usernames which fail to pass this function will be blocked from user login and new account registrati...
if(ini_get('mbstring.func_overload'))
Pre-config setup: Before loading LocalSettings.php.
trackBlockWithCookie()
Set the 'BlockID' cookie depending on block type and user authentication status.
namespace and then decline to actually register it file or subcat img or subcat $title
requiresHTTPS()
Determine based on the wiki configuration and the user's options, whether this user must be over HTTP...
$wgRateLimits
Simple rate limiter options to brake edit floods.
isBlockedFrom( $title, $fromReplica=false)
Check if user is blocked from editing a particular article.
static $mAllRights
String Cached results of getAllRights()
loadFromUserObject( $user)
Load the data for this user object from another user object.
$wgUseRCPatrol
Use RC Patrolling to check for vandalism (from recent changes and watchlists) New pages and new files...
getPasswordValidity( $password)
Given unvalidated password input, return error message on failure.
spreadBlock()
If this (non-anonymous) user is blocked, block the IP address they've successfully logged in from...
static newFromUser(User $user)
Create a new MailAddress object for the given user.
static hasFlags( $bitfield, $flags)
$wgClockSkewFudge
Clock skew or the one-second resolution of time() can occasionally cause cache problems when the user...
$wgAutopromoteOnceLogInRC
Put user rights log entries for autopromotion in recent changes?
$wgExperiencedUserMemberSince
Name of the external diff engine to use.
$wgEnableUserEmail
Set to true to enable user-to-user e-mail.
setEmailAuthenticationTimestamp( $timestamp)
Set the e-mail authentication timestamp.
$wgNamespacesToBeSearchedDefault
List of namespaces which are searched by default.
presenting them properly to the user as errors is done by the caller return true use this to change the list i e etc $rev
static getGroupPage( $group)
Gets the title of a page describing a particular user group.
setEditCountInternal( $count)
This method should not be called outside User/UserEditCountUpdate.
$wgDisableAnonTalk
Disable links to talk pages of anonymous users (IPs) in listings on special pages like page history...
this hook is for auditing only or null if authentication failed before getting that far or null if we can t even determine that When $user is not it can be in the form of< username >< more info > e g for bot passwords intended to be added to log contexts Fields it might only if the login was with a bot password probably a stub it is not rendered in wiki pages or galleries in category pages allow injecting custom HTML after the section Any uses of the hook need to handle escaping see BaseTemplate::getToolbox and BaseTemplate::makeListItem for details on the format of individual items inside of this array or by returning and letting standard HTTP rendering take place modifiable or by returning false and taking over the output modifiable & $code
This document is intended to provide useful advice for parties seeking to redistribute MediaWiki to end users It s targeted particularly at maintainers for Linux since it s been observed that distribution packages of MediaWiki often break We ve consistently had to recommend that users seeking support use official tarballs instead of their distribution s and this often solves whatever problem the user is having It would be nice if this could such as
static newFromIdentity(UserIdentity $identity)
Returns a User object corresponding to the given UserIdentity.
clearSharedCache( $mode='changed')
Clear user data from memcached.
string $mToken
Cache variables.
if(defined( 'MW_SETUP_CALLBACK')) $fname
Customization point after all loading (constants, functions, classes, DefaultSettings, LocalSettings).
static groupHasPermission( $group, $role)
Check, if the given group has the given permission.
getToken( $forceCreation=true)
Get the user's current token.
foreach( $wgExtensionFunctions as $func) if(!defined( 'MW_NO_SESSION') &&! $wgCommandLineMode) if(! $wgCommandLineMode) $wgFullyInitialised
static newInvalidPassword()
Create an InvalidPassword.
useRCPatrol()
Check whether to enable recent changes patrol features for this user.
$wgPasswordSender
Sender email address for e-mail notifications.
$wgLearnerMemberSince
Name of the external diff engine to use.
loadDefaults( $name=false)
Set cached properties to default.
static getDefaultOption( $opt)
Get a given default option value.
string [] $wgSoftBlockRanges
IP ranges that should be considered soft-blocked (anon-only, account creation allowed).
$wgEmailAuthentication
Require email authentication before sending mail to an email address.
setNewpassword( $str, $throttle=true)
Set the password for a password reminder or new account email.
$mNewtalk
Lazy-initialized variables, invalidated with clearInstanceCache.
invalidateEmail()
Invalidate the user's e-mail confirmation, and unauthenticate the e-mail address if it was already co...
loadGroups()
Load the groups from the database if they aren't already loaded.
saveOptions()
Saves the non-default options for this user, as previously set e.g.
static makeTitleSafe( $ns, $title, $fragment='', $interwiki='')
Create a new Title from a namespace index and a DB key.
isIPRange()
Is the user an IP range?
static makeTitle( $ns, $title, $fragment='', $interwiki='')
Create a new Title from a namespace index and a DB key.
$wgApplyIpBlocksToXff
Whether to look at the X-Forwarded-For header's list of (potentially spoofed) IPs and apply IP blocks...
getStubThreshold()
Get the user preferred stub threshold.
getRequest()
Get the WebRequest object to use with this object.
injection txt This is an overview of how MediaWiki makes use of dependency injection The design described here grew from the discussion of RFC T384 The term dependency this means that anything an object needs to operate should be injected from the the object itself should only know narrow no concrete implementation of the logic it relies on The requirement to inject everything typically results in an architecture that based on two main types of and essentially stateless service objects that use other service objects to operate on the value objects As of the beginning MediaWiki is only starting to use the DI approach Much of the code still relies on global state or direct resulting in a highly cyclical dependency which acts as the top level factory for services in MediaWiki which can be used to gain access to default instances of various services MediaWikiServices however also allows new services to be defined and default services to be redefined Services are defined or redefined by providing a callback the instantiator that will return a new instance of the service When it will create an instance of MediaWikiServices and populate it with the services defined in the files listed by thereby bootstrapping the DI framework Per $wgServiceWiringFiles lists includes ServiceWiring php
string $mEmail
Cache variables.
static getBlocksForIPList(array $ipChain, $isAnon, $fromMaster=false)
Get all blocks that match any IP from an array of IP addresses.
this hook is for auditing only $req
static getIdFromCookieValue( $cookieValue)
Get the stored ID from the 'BlockID' cookie.
getNewtalk()
Check if the user has new messages.
this hook is for auditing only or null if authentication failed before getting that far $username
static isIPv6( $ip)
Given a string, determine if it as valid IP in IPv6 only.
static newFromId( $id)
Static factory method for creation from a given user ID.
loadFromRow( $row, $data=null)
Initialize this object from a row from the user table.
static addUpdate(DeferrableUpdate $update, $stage=self::POSTSEND)
Add an update to the deferred list to be run later by execute()
getGroups()
Get the list of explicit group memberships this user has.
static newFromAnyId( $userId, $userName, $actorId)
Static factory method for creation from an ID, name, and/or actor ID.
__construct()
Lightweight constructor for an anonymous user.
static replaceDeprecatedCodes( $code)
Replace deprecated language codes that were used in previous versions of MediaWiki to up-to-date...
getIntOption( $oname, $defaultOverride=0)
Get the user's current setting for a given option, as an integer value.
getBlockFromCookieValue( $blockCookieVal)
Try to load a Block from an ID given in a cookie value.
idForName( $flags=0)
If only this user's username is known, and it exists, return the user ID.
getOptions( $flags=0)
Get all user's options.
The ContentHandler facility adds support for arbitrary content types on wiki pages
$wgMinimalPasswordLength
Specifies the minimal length of a user password.
spreadAnyEditBlock()
If this user is logged-in and blocked, block any IP address they've successfully logged in from...
static isCurrentWikiId( $wikiId)
getBlock( $bFromReplica=true)
Get the block affecting the user, or null if the user is not blocked.
static isValidUserName( $name)
Is the input a valid username?
useFilePatrol()
Check whether to enable new files patrol features for this user.
getId()
Get the user's ID.
matchEditToken( $val, $salt='', $request=null, $maxage=null)
Check given value against the token value stored in the session.
getEmailAuthenticationTimestamp()
Get the timestamp of the user's e-mail authentication.
pingLimiter( $action='edit', $incrBy=1)
Primitive rate limits: enforce maximum actions per time period to put a brake on flooding.
loadOptions( $data=null)
Load the user options either from cache, the database or an array.
static makeGroupLinkHTML( $group, $text='')
Create a link to the group in HTML, if available; else return the group name.
static makeGroupLinkWiki( $group, $text='')
Create a link to the group in Wikitext, if available; else return the group name. ...
addToDatabase()
Add this existing user object to the database.
you have access to all of the normal MediaWiki so you can get a DB use the etc For full docs on the Maintenance class
getActorId(IDatabase $dbw=null)
Get the user's actor ID.
$wgInvalidUsernameCharacters
Characters to prevent during new account creations.
static newFromRow( $row, $data=null)
Create a new user object from a user row.
invalidateCache()
Immediately touch the user data cache for this account.
wfDebugLog( $logGroup, $text, $dest='all', array $context=[])
Send a line to a supplementary debug log file, if configured, or main debug log if not...
$wgDefaultSkin
Default skin, for new users and anonymous visitors.
confirmEmail()
Mark the e-mail address confirmed.
static newFatalPermissionDeniedStatus( $permission)
Factory function for fatal permission-denied errors.
wfDeprecated( $function, $version=false, $component=false, $callerOffset=2)
Throws a warning that $function is deprecated.
static newFromSession(WebRequest $request=null)
Create a new user object using data from session.
getEditCount()
Get the user's edit count.
getUserPage()
Get this user's personal page title.
setNewtalk( $val, $curRev=null)
Update the 'You have new messages!' status.
static isIPv4( $ip)
Given a string, determine if it as valid IP in IPv4 only.
getInstanceForUpdate()
Get a new instance of this user that was loaded from the master via a locking read.
useNPPatrol()
Check whether to enable new pages patrol features for this user.
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on and they can depend only on the ResourceLoaderContext $context
$wgAddGroups
$wgAddGroups and $wgRemoveGroups can be used to give finer control over who can assign which groups a...
getDatePreference()
Get the user's preferred date format.
getBlockId()
If user is blocked, return the ID for the block.
static isInRanges( $ip, $ranges)
Determines if an IP address is a list of CIDR a.b.c.d/n ranges.
sendConfirmationMail( $type='created')
Generate a new e-mail confirmation token and send a confirmation/invalidation mail to the user's give...
getNewMessageRevisionId()
Get the revision ID for the last talk page revision viewed by the talk page owner.
$mFrom
String Initialization data source if mLoadedItems!==true.
MediaWiki Logger LoggerFactory implements a PSR [0] compatible message logging system Named Psr Log LoggerInterface instances can be obtained from the MediaWiki Logger LoggerFactory::getInstance() static method. MediaWiki\Logger\LoggerFactory expects a class implementing the MediaWiki\Logger\Spi interface to act as a factory for new Psr\Log\LoggerInterface instances. The "Spi" in MediaWiki\Logger\Spi stands for "service provider interface". An SPI is an API intended to be implemented or extended by a third party. This software design pattern is intended to enable framework extension and replaceable components. It is specifically used in the MediaWiki\Logger\LoggerFactory service to allow alternate PSR-3 logging implementations to be easily integrated with MediaWiki. The service provider interface allows the backend logging library to be implemented in multiple ways. The $wgMWLoggerDefaultSpi global provides the classname of the default MediaWiki\Logger\Spi implementation to be loaded at runtime. This can either be the name of a class implementing the MediaWiki\Logger\Spi with a zero argument const ructor or a callable that will return an MediaWiki\Logger\Spi instance. Alternately the MediaWiki\Logger\LoggerFactory MediaWiki Logger LoggerFactory
Allows to change the fields on the form that will be generated $name
isLocked()
Check if user account is locked.
if(! $wgDBerrorLogTZ) $wgRequest
deleteNewtalk( $field, $id)
Clear the new messages flag for the given user.
canReceiveEmail()
Is this user allowed to receive e-mails within limits of current site configuration?
wfCanIPUseHTTPS( $ip)
Determine whether the client at a given source IP is likely to be able to access the wiki via HTTPS...
invalidationTokenUrl( $token)
Return a URL the user can use to invalidate their email address.
checkPasswordValidity( $password)
Check if this is a valid password for this user.
setEmailWithConfirmation( $str)
Set the user's e-mail address and a confirmation mail if needed.
static createNew( $name, $params=[])
Add a user to the database, return the user object.
getAutomaticGroups( $recache=false)
Get the list of implicit group memberships this user has.
array $mOptionOverrides
Cache variables.
static newFromName( $name, $validate='valid')
Static factory method for creation from username.
static getDefaultOptions()
Combine the language default options with any site-specific options and add the default language vari...
const INVALID_TOKEN
string An invalid value for user_token
setPassword( $str)
Set the password and reset the random token.
string $mRealName
Cache variables.
addGroup( $group, $expiry=null)
Add the user to the given group.
isSafeToLoad()
Test if it's safe to load this User object.
getBlockedStatus( $bFromReplica=true)
Get blocking information.
static newFromId( $id, $flags=0)
Load a page revision from a given revision ID number.
getCacheKey(WANObjectCache $cache)
setEmail( $str)
Set the user's e-mail address.
static array $languagesWithVariants
languages supporting variants
addNewUserLogEntry( $action=false, $reason='')
Add a newuser log entry for this user.
getTalkPage()
Get this user's talk page title.
static hmac( $data, $key, $raw=true)
Generate an acceptably unstable one-way-hmac of some text making use of the best hash algorithm that ...
isPingLimitable()
Is this user subject to rate limiting?
do that in ParserLimitReportFormat instead use this to modify the parameters of the image all existing parser cache entries will be invalid To avoid you ll need to handle that somehow(e.g. with the RejectParserCacheValue hook) because MediaWiki won 't do it for you. & $defaults also a ContextSource after deleting those rows but within the same transaction you ll probably need to make sure the header is varied on $request
removeGroup( $group)
Remove the user from the given group.
static $mCacheVars
Array of Strings List of member variables which are saved to the shared cache (memcached).
static newFromRow( $row)
Creates a new UserGroupMembership object from a database row.
return true to allow those checks to and false if checking is done & $user
getRights()
Get the permissions this user has.
getFormerGroups()
Returns the groups the user has belonged to.
blockedFor()
If user is blocked, return the specified reason for the block.
$wgEnableDnsBlacklist
Whether to use DNS blacklists in $wgDnsBlacklistUrls to check for open proxies.
static run( $event, array $args=[], $deprecatedVersion=null)
Call hook functions defined in Hooks::register and $wgHooks.
resetOptions( $resetKinds=[ 'registered', 'registered-multiselect', 'registered-checkmatrix', 'unused'], IContextSource $context=null)
Reset certain (or all) options to the site defaults.
static newSystemUser( $name, $options=[])
Static factory method for creation of a "system" user from username.
confirmationToken(&$expiration)
Generate, store, and return a new e-mail confirmation code.
getTouched()
Get the user touched timestamp.
$mLoadedItems
Array with already loaded items or true if all items have been loaded.
static newFromText( $text, $defaultNamespace=NS_MAIN)
Create a new Title from text, such as what one would find in a link.
1.8.13