diff options
Diffstat (limited to 'www/wiki/includes/specials/SpecialLinkAccounts.php')
-rw-r--r-- | www/wiki/includes/specials/SpecialLinkAccounts.php | 111 |
1 files changed, 111 insertions, 0 deletions
diff --git a/www/wiki/includes/specials/SpecialLinkAccounts.php b/www/wiki/includes/specials/SpecialLinkAccounts.php new file mode 100644 index 00000000..da10b90b --- /dev/null +++ b/www/wiki/includes/specials/SpecialLinkAccounts.php @@ -0,0 +1,111 @@ +<?php + +use MediaWiki\Auth\AuthenticationRequest; +use MediaWiki\Auth\AuthenticationResponse; +use MediaWiki\Auth\AuthManager; + +/** + * Links/unlinks external accounts to the current user. + * + * To interact with this page, account providers need to register themselves with AuthManager. + */ +class SpecialLinkAccounts extends AuthManagerSpecialPage { + protected static $allowedActions = [ + AuthManager::ACTION_LINK, AuthManager::ACTION_LINK_CONTINUE, + ]; + + public function __construct() { + parent::__construct( 'LinkAccounts' ); + } + + protected function getGroupName() { + return 'users'; + } + + public function isListed() { + return AuthManager::singleton()->canLinkAccounts(); + } + + protected function getRequestBlacklist() { + return $this->getConfig()->get( 'ChangeCredentialsBlacklist' ); + } + + /** + * @param null|string $subPage + * @throws MWException + * @throws PermissionsError + */ + public function execute( $subPage ) { + $this->setHeaders(); + $this->loadAuth( $subPage ); + + if ( !$this->isActionAllowed( $this->authAction ) ) { + if ( $this->authAction === AuthManager::ACTION_LINK ) { + // looks like no linking provider is installed or willing to take this user + $titleMessage = wfMessage( 'cannotlink-no-provider-title' ); + $errorMessage = wfMessage( 'cannotlink-no-provider' ); + throw new ErrorPageError( $titleMessage, $errorMessage ); + } else { + // user probably back-button-navigated into an auth session that no longer exists + // FIXME would be nice to show a message + $this->getOutput()->redirect( $this->getPageTitle()->getFullURL( '', false, + PROTO_HTTPS ) ); + return; + } + } + + $this->outputHeader(); + + $status = $this->trySubmit(); + + if ( $status === false || !$status->isOK() ) { + $this->displayForm( $status ); + return; + } + + $response = $status->getValue(); + + switch ( $response->status ) { + case AuthenticationResponse::PASS: + $this->success(); + break; + case AuthenticationResponse::FAIL: + $this->loadAuth( '', AuthManager::ACTION_LINK, true ); + $this->displayForm( StatusValue::newFatal( $response->message ) ); + break; + case AuthenticationResponse::REDIRECT: + $this->getOutput()->redirect( $response->redirectTarget ); + break; + case AuthenticationResponse::UI: + $this->authAction = AuthManager::ACTION_LINK_CONTINUE; + $this->authRequests = $response->neededRequests; + $this->displayForm( StatusValue::newFatal( $response->message ) ); + break; + default: + throw new LogicException( 'invalid AuthenticationResponse' ); + } + } + + protected function getDefaultAction( $subPage ) { + return AuthManager::ACTION_LINK; + } + + /** + * @param AuthenticationRequest[] $requests + * @param string $action AuthManager action name, should be ACTION_LINK or ACTION_LINK_CONTINUE + * @return HTMLForm + */ + protected function getAuthForm( array $requests, $action ) { + $form = parent::getAuthForm( $requests, $action ); + $form->setSubmitTextMsg( 'linkaccounts-submit' ); + return $form; + } + + /** + * Show a success message. + */ + protected function success() { + $this->loadAuth( '', AuthManager::ACTION_LINK, true ); + $this->displayForm( StatusValue::newFatal( $this->msg( 'linkaccounts-success-text' ) ) ); + } +} |