search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Localization: Prefer showing the date before the time, like in lastmodifiedat (no...
[mediawiki.git] / includes / User.php
blobb7819e5c7849efce3ea6a42043f65ee3ae26d153
1 <?php
2 /**
3 * Implements the User class for the %MediaWiki software.
4 * @file
5 */
6
7 /**
8 * \type{\int} Number of characters in user_token field.
9 * @ingroup Constants
10 */
11 define( 'USER_TOKEN_LENGTH', 32 );
12
13 /**
14 * \type{\int} Serialized record version.
15 * @ingroup Constants
16 */
17 define( 'MW_USER_VERSION', 6 );
18
19 /**
20 * \type{\string} Some punctuation to prevent editing from broken text-mangling proxies.
21 * @ingroup Constants
22 */
23 define( 'EDIT_TOKEN_SUFFIX', '+\\' );
24
25 /**
26 * Thrown by User::setPassword() on error.
27 * @ingroup Exception
28 */
29 class PasswordError extends MWException {
30 // NOP
31 }
32
33 /**
34 * The User object encapsulates all of the user-specific settings (user_id,
35 * name, rights, password, email address, options, last login time). Client
36 * classes use the getXXX() functions to access these fields. These functions
37 * do all the work of determining whether the user is logged in,
38 * whether the requested option can be satisfied from cookies or
39 * whether a database query is needed. Most of the settings needed
40 * for rendering normal pages are set in the cookie to minimize use
41 * of the database.
42 */
43 class User {
44
45 /**
46 * \type{\arrayof{\string}} A list of default user toggles, i.e., boolean user
47 * preferences that are displayed by Special:Preferences as checkboxes.
48 * This list can be extended via the UserToggles hook or by
49 * $wgContLang::getExtraUserToggles().
50 * @showinitializer
51 */
52 public static $mToggles = array(
53 'highlightbroken',
54 'justify',
55 'hideminor',
56 'extendwatchlist',
57 'usenewrc',
58 'numberheadings',
59 'showtoolbar',
60 'editondblclick',
61 'editsection',
62 'editsectiononrightclick',
63 'showtoc',
64 'rememberpassword',
65 'editwidth',
66 'watchcreations',
67 'watchdefault',
68 'watchmoves',
69 'watchdeletion',
70 'minordefault',
71 'previewontop',
72 'previewonfirst',
73 'nocache',
74 'enotifwatchlistpages',
75 'enotifusertalkpages',
76 'enotifminoredits',
77 'enotifrevealaddr',
78 'shownumberswatching',
79 'fancysig',
80 'externaleditor',
81 'externaldiff',
82 'showjumplinks',
83 'uselivepreview',
84 'forceeditsummary',
85 'watchlisthideminor',
86 'watchlisthidebots',
87 'watchlisthideown',
88 'watchlisthideanons',
89 'watchlisthideliu',
90 'ccmeonemails',
91 'diffonly',
92 'showhiddencats',
93 'noconvertlink',
94 );
95
96 /**
97 * \type{\arrayof{\string}} List of member variables which are saved to the
98 * shared cache (memcached). Any operation which changes the
99 * corresponding database fields must call a cache-clearing function.
100 * @showinitializer
101 */
102 static $mCacheVars = array(
103 // user table
104 'mId',
105 'mName',
106 'mRealName',
107 'mPassword',
108 'mNewpassword',
109 'mNewpassTime',
110 'mEmail',
111 'mOptions',
112 'mTouched',
113 'mToken',
114 'mEmailAuthenticated',
115 'mEmailToken',
116 'mEmailTokenExpires',
117 'mRegistration',
118 'mEditCount',
119 // user_group table
120 'mGroups',
121 );
122
123 /**
124 * \type{\arrayof{\string}} Core rights.
125 * Each of these should have a corresponding message of the form
126 * "right-$right".
127 * @showinitializer
128 */
129 static $mCoreRights = array(
130 'apihighlimits',
131 'autoconfirmed',
132 'autopatrol',
133 'bigdelete',
134 'block',
135 'blockemail',
136 'bot',
137 'browsearchive',
138 'createaccount',
139 'createpage',
140 'createtalk',
141 'delete',
142 'deletedhistory',
143 'edit',
144 'editinterface',
145 'editusercssjs',
146 'import',
147 'importupload',
148 'ipblock-exempt',
149 'markbotedits',
150 'minoredit',
151 'move',
152 'nominornewtalk',
153 'noratelimit',
154 'patrol',
155 'protect',
156 'proxyunbannable',
157 'purge',
158 'read',
159 'reupload',
160 'reupload-shared',
161 'rollback',
162 'siteadmin',
163 'suppressredirect',
164 'trackback',
165 'undelete',
166 'unwatchedpages',
167 'upload',
168 'upload_by_url',
169 'userrights',
170 );
171 /**
172 * \type{\string} Cached results of getAllRights()
173 */
174 static $mAllRights = false;
175
176 /** @name Cache variables */
177 //@{
178 var $mId, $mName, $mRealName, $mPassword, $mNewpassword, $mNewpassTime,
179 $mEmail, $mOptions, $mTouched, $mToken, $mEmailAuthenticated,
180 $mEmailToken, $mEmailTokenExpires, $mRegistration, $mGroups;
181 //@}
182
183 /**
184 * \type{\bool} Whether the cache variables have been loaded.
185 */
186 var $mDataLoaded;
187
188 /**
189 * \type{\string} Initialization data source if mDataLoaded==false. May be one of:
190 * - 'defaults' anonymous user initialised from class defaults
191 * - 'name' initialise from mName
192 * - 'id' initialise from mId
193 * - 'session' log in from cookies or session if possible
194 *
195 * Use the User::newFrom*() family of functions to set this.
196 */
197 var $mFrom;
198
199 /** @name Lazy-initialized variables, invalidated with clearInstanceCache */
200 //@{
201 var $mNewtalk, $mDatePreference, $mBlockedby, $mHash, $mSkin, $mRights,
202 $mBlockreason, $mBlock, $mEffectiveGroups;
203 //@}
204
205 /**
206 * Lightweight constructor for an anonymous user.
207 * Use the User::newFrom* factory functions for other kinds of users.
208 *
209 * @see newFromName()
210 * @see newFromId()
211 * @see newFromConfirmationCode()
212 * @see newFromSession()
213 * @see newFromRow()
214 */
215 function User() {
216 $this->clearInstanceCache( 'defaults' );
217 }
218
219 /**
220 * Load the user table data for this object from the source given by mFrom.
221 */
222 function load() {
223 if ( $this->mDataLoaded ) {
224 return;
225 }
226 wfProfileIn( __METHOD__ );
227
228 # Set it now to avoid infinite recursion in accessors
229 $this->mDataLoaded = true;
230
231 switch ( $this->mFrom ) {
232 case 'defaults':
233 $this->loadDefaults();
234 break;
235 case 'name':
236 $this->mId = self::idFromName( $this->mName );
237 if ( !$this->mId ) {
238 # Nonexistent user placeholder object
239 $this->loadDefaults( $this->mName );
240 } else {
241 $this->loadFromId();
242 }
243 break;
244 case 'id':
245 $this->loadFromId();
246 break;
247 case 'session':
248 $this->loadFromSession();
249 break;
250 default:
251 throw new MWException( "Unrecognised value for User->mFrom: \"{$this->mFrom}\"" );
252 }
253 wfProfileOut( __METHOD__ );
254 }
255
256 /**
257 * Load user table data, given mId has already been set.
258 * @return \type{\bool} false if the ID does not exist, true otherwise
259 * @private
260 */
261 function loadFromId() {
262 global $wgMemc;
263 if ( $this->mId == 0 ) {
264 $this->loadDefaults();
265 return false;
266 }
267
268 # Try cache
269 $key = wfMemcKey( 'user', 'id', $this->mId );
270 $data = $wgMemc->get( $key );
271 if ( !is_array( $data ) || $data['mVersion'] < MW_USER_VERSION ) {
272 # Object is expired, load from DB
273 $data = false;
274 }
275
276 if ( !$data ) {
277 wfDebug( "Cache miss for user {$this->mId}\n" );
278 # Load from DB
279 if ( !$this->loadFromDatabase() ) {
280 # Can't load from ID, user is anonymous
281 return false;
282 }
283 $this->saveToCache();
284 } else {
285 wfDebug( "Got user {$this->mId} from cache\n" );
286 # Restore from cache
287 foreach ( self::$mCacheVars as $name ) {
288 $this->$name = $data[$name];
289 }
290 }
291 return true;
292 }
293
294 /**
295 * Save user data to the shared cache
296 */
297 function saveToCache() {
298 $this->load();
299 $this->loadGroups();
300 if ( $this->isAnon() ) {
301 // Anonymous users are uncached
302 return;
303 }
304 $data = array();
305 foreach ( self::$mCacheVars as $name ) {
306 $data[$name] = $this->$name;
307 }
308 $data['mVersion'] = MW_USER_VERSION;
309 $key = wfMemcKey( 'user', 'id', $this->mId );
310 global $wgMemc;
311 $wgMemc->set( $key, $data );
312 }
313
314
315 /** @name newFrom*() static factory methods */
316 //@{
317
318 /**
319 * Static factory method for creation from username.
320 *
321 * This is slightly less efficient than newFromId(), so use newFromId() if
322 * you have both an ID and a name handy.
323 *
324 * @param $name \type{\string} Username, validated by Title::newFromText()
325 * @param $validate \type{\mixed} Validate username. Takes the same parameters as
326 * User::getCanonicalName(), except that true is accepted as an alias
327 * for 'valid', for BC.
328 *
329 * @return \type{User} The User object, or null if the username is invalid. If the
330 * username is not present in the database, the result will be a user object
331 * with a name, zero user ID and default settings.
332 */
333 static function newFromName( $name, $validate = 'valid' ) {
334 if ( $validate === true ) {
335 $validate = 'valid';
336 }
337 $name = self::getCanonicalName( $name, $validate );
338 if ( $name === false ) {
339 return null;
340 } else {
341 # Create unloaded user object
342 $u = new User;
343 $u->mName = $name;
344 $u->mFrom = 'name';
345 return $u;
346 }
347 }
348
349 /**
350 * Static factory method for creation from a given user ID.
351 *
352 * @param $id \type{\int} Valid user ID
353 * @return \type{User} The corresponding User object
354 */
355 static function newFromId( $id ) {
356 $u = new User;
357 $u->mId = $id;
358 $u->mFrom = 'id';
359 return $u;
360 }
361
362 /**
363 * Factory method to fetch whichever user has a given email confirmation code.
364 * This code is generated when an account is created or its e-mail address
365 * has changed.
366 *
367 * If the code is invalid or has expired, returns NULL.
368 *
369 * @param $code \type{\string} Confirmation code
370 * @return \type{User}
371 */
372 static function newFromConfirmationCode( $code ) {
373 $dbr = wfGetDB( DB_SLAVE );
374 $id = $dbr->selectField( 'user', 'user_id', array(
375 'user_email_token' => md5( $code ),
376 'user_email_token_expires > ' . $dbr->addQuotes( $dbr->timestamp() ),
377 ) );
378 if( $id !== false ) {
379 return User::newFromId( $id );
380 } else {
381 return null;
382 }
383 }
384
385 /**
386 * Create a new user object using data from session or cookies. If the
387 * login credentials are invalid, the result is an anonymous user.
388 *
389 * @return \type{User}
390 */
391 static function newFromSession() {
392 $user = new User;
393 $user->mFrom = 'session';
394 return $user;
395 }
396
397 /**
398 * Create a new user object from a user row.
399 * The row should have all fields from the user table in it.
400 * @param $row array A row from the user table
401 * @return \type{User}
402 */
403 static function newFromRow( $row ) {
404 $user = new User;
405 $user->loadFromRow( $row );
406 return $user;
407 }
408
409 //@}
410
411
412 /**
413 * Get the username corresponding to a given user ID
414 * @param $id \type{\int} %User ID
415 * @return \type{\string} The corresponding username
416 */
417 static function whoIs( $id ) {
418 $dbr = wfGetDB( DB_SLAVE );
419 return $dbr->selectField( 'user', 'user_name', array( 'user_id' => $id ), 'User::whoIs' );
420 }
421
422 /**
423 * Get the real name of a user given their user ID
424 *
425 * @param $id \type{\int} %User ID
426 * @return \type{\string} The corresponding user's real name
427 */
428 static function whoIsReal( $id ) {
429 $dbr = wfGetDB( DB_SLAVE );
430 return $dbr->selectField( 'user', 'user_real_name', array( 'user_id' => $id ), __METHOD__ );
431 }
432
433 /**
434 * Get database id given a user name
435 * @param $name \type{\string} Username
436 * @return \twotypes{\int,\null} The corresponding user's ID, or null if user is nonexistent
437 * @static
438 */
439 static function idFromName( $name ) {
440 $nt = Title::newFromText( $name );
441 if( is_null( $nt ) ) {
442 # Illegal name
443 return null;
444 }
445 $dbr = wfGetDB( DB_SLAVE );
446 $s = $dbr->selectRow( 'user', array( 'user_id' ), array( 'user_name' => $nt->getText() ), __METHOD__ );
447
448 if ( $s === false ) {
449 return 0;
450 } else {
451 return $s->user_id;
452 }
453 }
454
455 /**
456 * Does the string match an anonymous IPv4 address?
457 *
458 * This function exists for username validation, in order to reject
459 * usernames which are similar in form to IP addresses. Strings such
460 * as 300.300.300.300 will return true because it looks like an IP
461 * address, despite not being strictly valid.
462 *
463 * We match \d{1,3}\.\d{1,3}\.\d{1,3}\.xxx as an anonymous IP
464 * address because the usemod software would "cloak" anonymous IP
465 * addresses like this, if we allowed accounts like this to be created
466 * new users could get the old edits of these anonymous users.
467 *
468 * @param $name \type{\string} String to match
469 * @return \type{\bool} True or false
470 */
471 static function isIP( $name ) {
472 return preg_match('/^\d{1,3}\.\d{1,3}\.\d{1,3}\.(?:xxx|\d{1,3})$/',$name) || IP::isIPv6($name);
473 }
474
475 /**
476 * Is the input a valid username?
477 *
478 * Checks if the input is a valid username, we don't want an empty string,
479 * an IP address, anything that containins slashes (would mess up subpages),
480 * is longer than the maximum allowed username size or doesn't begin with
481 * a capital letter.
482 *
483 * @param $name \type{\string} String to match
484 * @return \type{\bool} True or false
485 */
486 static function isValidUserName( $name ) {
487 global $wgContLang, $wgMaxNameChars;
488
489 if ( $name == ''
490 || User::isIP( $name )
491 || strpos( $name, '/' ) !== false
492 || strlen( $name ) > $wgMaxNameChars
493 || $name != $wgContLang->ucfirst( $name ) ) {
494 wfDebugLog( 'username', __METHOD__ .
495 ": '$name' invalid due to empty, IP, slash, length, or lowercase" );
496 return false;
497 }
498
499 // Ensure that the name can't be misresolved as a different title,
500 // such as with extra namespace keys at the start.
501 $parsed = Title::newFromText( $name );
502 if( is_null( $parsed )
503 || $parsed->getNamespace()
504 || strcmp( $name, $parsed->getPrefixedText() ) ) {
505 wfDebugLog( 'username', __METHOD__ .
506 ": '$name' invalid due to ambiguous prefixes" );
507 return false;
508 }
509
510 // Check an additional blacklist of troublemaker characters.
511 // Should these be merged into the title char list?
512 $unicodeBlacklist = '/[' .
513 '\x{0080}-\x{009f}' . # iso-8859-1 control chars
514 '\x{00a0}' . # non-breaking space
515 '\x{2000}-\x{200f}' . # various whitespace
516 '\x{2028}-\x{202f}' . # breaks and control chars
517 '\x{3000}' . # ideographic space
518 '\x{e000}-\x{f8ff}' . # private use
519 ']/u';
520 if( preg_match( $unicodeBlacklist, $name ) ) {
521 wfDebugLog( 'username', __METHOD__ .
522 ": '$name' invalid due to blacklisted characters" );
523 return false;
524 }
525
526 return true;
527 }
528
529 /**
530 * Usernames which fail to pass this function will be blocked
531 * from user login and new account registrations, but may be used
532 * internally by batch processes.
533 *
534 * If an account already exists in this form, login will be blocked
535 * by a failure to pass this function.
536 *
537 * @param $name \type{\string} String to match
538 * @return \type{\bool} True or false
539 */
540 static function isUsableName( $name ) {
541 global $wgReservedUsernames;
542 // Must be a valid username, obviously ;)
543 if ( !self::isValidUserName( $name ) ) {
544 return false;
545 }
546
547 static $reservedUsernames = false;
548 if ( !$reservedUsernames ) {
549 $reservedUsernames = $wgReservedUsernames;
550 wfRunHooks( 'UserGetReservedNames', array( &$reservedUsernames ) );
551 }
552
553 // Certain names may be reserved for batch processes.
554 foreach ( $reservedUsernames as $reserved ) {
555 if ( substr( $reserved, 0, 4 ) == 'msg:' ) {
556 $reserved = wfMsgForContent( substr( $reserved, 4 ) );
557 }
558 if ( $reserved == $name ) {
559 return false;
560 }
561 }
562 return true;
563 }
564
565 /**
566 * Usernames which fail to pass this function will be blocked
567 * from new account registrations, but may be used internally
568 * either by batch processes or by user accounts which have
569 * already been created.
570 *
571 * Additional character blacklisting may be added here
572 * rather than in isValidUserName() to avoid disrupting
573 * existing accounts.
574 *
575 * @param $name \type{\string} String to match
576 * @return \type{\bool} True or false
577 */
578 static function isCreatableName( $name ) {
579 return
580 self::isUsableName( $name ) &&
581
582 // Registration-time character blacklisting...
583 strpos( $name, '@' ) === false;
584 }
585
586 /**
587 * Is the input a valid password for this user?
588 *
589 * @param $password \type{\string} Desired password
590 * @return \type{\bool} True or false
591 */
592 function isValidPassword( $password ) {
593 global $wgMinimalPasswordLength, $wgContLang;
594
595 $result = null;
596 if( !wfRunHooks( 'isValidPassword', array( $password, &$result, $this ) ) )
597 return $result;
598 if( $result === false )
599 return false;
600
601 // Password needs to be long enough, and can't be the same as the username
602 return strlen( $password ) >= $wgMinimalPasswordLength
603 && $wgContLang->lc( $password ) !== $wgContLang->lc( $this->mName );
604 }
605
606 /**
607 * Does a string look like an e-mail address?
608 *
609 * There used to be a regular expression here, it got removed because it
610 * rejected valid addresses. Actually just check if there is '@' somewhere
611 * in the given address.
612 *
613 * @todo Check for RFC 2822 compilance (bug 959)
614 *
615 * @param $addr \type{\string} E-mail address
616 * @return \type{\bool} True or false
617 */
618 public static function isValidEmailAddr( $addr ) {
619 $result = null;
620 if( !wfRunHooks( 'isValidEmailAddr', array( $addr, &$result ) ) ) {
621 return $result;
622 }
623
624 return strpos( $addr, '@' ) !== false;
625 }
626
627 /**
628 * Given unvalidated user input, return a canonical username, or false if
629 * the username is invalid.
630 * @param $name \type{\string} User input
631 * @param $validate \twotypes{\string,\bool} Type of validation to use:
632 * - false No validation
633 * - 'valid' Valid for batch processes
634 * - 'usable' Valid for batch processes and login
635 * - 'creatable' Valid for batch processes, login and account creation
636 */
637 static function getCanonicalName( $name, $validate = 'valid' ) {
638 # Force usernames to capital
639 global $wgContLang;
640 $name = $wgContLang->ucfirst( $name );
641
642 # Reject names containing '#'; these will be cleaned up
643 # with title normalisation, but then it's too late to
644 # check elsewhere
645 if( strpos( $name, '#' ) !== false )
646 return false;
647
648 # Clean up name according to title rules
649 $t = Title::newFromText( $name );
650 if( is_null( $t ) ) {
651 return false;
652 }
653
654 # Reject various classes of invalid names
655 $name = $t->getText();
656 global $wgAuth;
657 $name = $wgAuth->getCanonicalName( $t->getText() );
658
659 switch ( $validate ) {
660 case false:
661 break;
662 case 'valid':
663 if ( !User::isValidUserName( $name ) ) {
664 $name = false;
665 }
666 break;
667 case 'usable':
668 if ( !User::isUsableName( $name ) ) {
669 $name = false;
670 }
671 break;
672 case 'creatable':
673 if ( !User::isCreatableName( $name ) ) {
674 $name = false;
675 }
676 break;
677 default:
678 throw new MWException( 'Invalid parameter value for $validate in '.__METHOD__ );
679 }
680 return $name;
681 }
682
683 /**
684 * Count the number of edits of a user
685 * @todo It should not be static and some day should be merged as proper member function / deprecated -- domas
686 *
687 * @param $uid \type{\int} %User ID to check
688 * @return \type{\int} The user's edit count
689 */
690 static function edits( $uid ) {
691 wfProfileIn( __METHOD__ );
692 $dbr = wfGetDB( DB_SLAVE );
693 // check if the user_editcount field has been initialized
694 $field = $dbr->selectField(
695 'user', 'user_editcount',
696 array( 'user_id' => $uid ),
697 __METHOD__
698 );
699
700 if( $field === null ) { // it has not been initialized. do so.
701 $dbw = wfGetDB( DB_MASTER );
702 $count = $dbr->selectField(
703 'revision', 'count(*)',
704 array( 'rev_user' => $uid ),
705 __METHOD__
706 );
707 $dbw->update(
708 'user',
709 array( 'user_editcount' => $count ),
710 array( 'user_id' => $uid ),
711 __METHOD__
712 );
713 } else {
714 $count = $field;
715 }
716 wfProfileOut( __METHOD__ );
717 return $count;
718 }
719
720 /**
721 * Return a random password. Sourced from mt_rand, so it's not particularly secure.
722 * @todo hash random numbers to improve security, like generateToken()
723 *
724 * @return \type{\string} New random password
725 */
726 static function randomPassword() {
727 global $wgMinimalPasswordLength;
728 $pwchars = 'ABCDEFGHJKLMNPQRSTUVWXYZabcdefghjkmnpqrstuvwxyz';
729 $l = strlen( $pwchars ) - 1;
730
731 $pwlength = max( 7, $wgMinimalPasswordLength );
732 $digit = mt_rand(0, $pwlength - 1);
733 $np = '';
734 for ( $i = 0; $i < $pwlength; $i++ ) {
735 $np .= $i == $digit ? chr( mt_rand(48, 57) ) : $pwchars{ mt_rand(0, $l)};
736 }
737 return $np;
738 }
739
740 /**
741 * Set cached properties to default.
742 *
743 * @note This no longer clears uncached lazy-initialised properties;
744 * the constructor does that instead.
745 * @private
746 */
747 function loadDefaults( $name = false ) {
748 wfProfileIn( __METHOD__ );
749
750 global $wgCookiePrefix;
751
752 $this->mId = 0;
753 $this->mName = $name;
754 $this->mRealName = '';
755 $this->mPassword = $this->mNewpassword = '';
756 $this->mNewpassTime = null;
757 $this->mEmail = '';
758 $this->mOptions = null; # Defer init
759
760 if ( isset( $_COOKIE[$wgCookiePrefix.'LoggedOut'] ) ) {
761 $this->mTouched = wfTimestamp( TS_MW, $_COOKIE[$wgCookiePrefix.'LoggedOut'] );
762 } else {
763 $this->mTouched = '0'; # Allow any pages to be cached
764 }
765
766 $this->setToken(); # Random
767 $this->mEmailAuthenticated = null;
768 $this->mEmailToken = '';
769 $this->mEmailTokenExpires = null;
770 $this->mRegistration = wfTimestamp( TS_MW );
771 $this->mGroups = array();
772
773 wfRunHooks( 'UserLoadDefaults', array( $this, $name ) );
774
775 wfProfileOut( __METHOD__ );
776 }
777
778 /**
779 * @deprecated Use wfSetupSession().
780 */
781 function SetupSession() {
782 wfDeprecated( __METHOD__ );
783 wfSetupSession();
784 }
785
786 /**
787 * Load user data from the session or login cookie. If there are no valid
788 * credentials, initialises the user as an anonymous user.
789 * @return \type{\bool} True if the user is logged in, false otherwise.
790 */
791 private function loadFromSession() {
792 global $wgMemc, $wgCookiePrefix;
793
794 $result = null;
795 wfRunHooks( 'UserLoadFromSession', array( $this, &$result ) );
796 if ( $result !== null ) {
797 return $result;
798 }
799
800 if ( isset( $_SESSION['wsUserID'] ) ) {
801 if ( 0 != $_SESSION['wsUserID'] ) {
802 $sId = $_SESSION['wsUserID'];
803 } else {
804 $this->loadDefaults();
805 return false;
806 }
807 } else if ( isset( $_COOKIE["{$wgCookiePrefix}UserID"] ) ) {
808 $sId = intval( $_COOKIE["{$wgCookiePrefix}UserID"] );
809 $_SESSION['wsUserID'] = $sId;
810 } else {
811 $this->loadDefaults();
812 return false;
813 }
814 if ( isset( $_SESSION['wsUserName'] ) ) {
815 $sName = $_SESSION['wsUserName'];
816 } else if ( isset( $_COOKIE["{$wgCookiePrefix}UserName"] ) ) {
817 $sName = $_COOKIE["{$wgCookiePrefix}UserName"];
818 $_SESSION['wsUserName'] = $sName;
819 } else {
820 $this->loadDefaults();
821 return false;
822 }
823
824 $passwordCorrect = FALSE;
825 $this->mId = $sId;
826 if ( !$this->loadFromId() ) {
827 # Not a valid ID, loadFromId has switched the object to anon for us
828 return false;
829 }
830
831 if ( isset( $_SESSION['wsToken'] ) ) {
832 $passwordCorrect = $_SESSION['wsToken'] == $this->mToken;
833 $from = 'session';
834 } else if ( isset( $_COOKIE["{$wgCookiePrefix}Token"] ) ) {
835 $passwordCorrect = $this->mToken == $_COOKIE["{$wgCookiePrefix}Token"];
836 $from = 'cookie';
837
838 if ( ( $sName == $this->mName ) && $passwordCorrect ) {
839 # New session from old cookie - spread any applicable autoblocks
840 $this->spreadBlock();
841 }
842 } else {
843 # No session or persistent login cookie
844 $this->loadDefaults();
845 return false;
846 }
847
848 if ( ( $sName == $this->mName ) && $passwordCorrect ) {
849 $_SESSION['wsToken'] = $this->mToken;
850 wfDebug( "Logged in from $from\n" );
851 return true;
852 } else {
853 # Invalid credentials
854 wfDebug( "Can't log in from $from, invalid credentials\n" );
855 $this->loadDefaults();
856 return false;
857 }
858 }
859
860 /**
861 * Load user and user_group data from the database.
862 * $this::mId must be set, this is how the user is identified.
863 *
864 * @return \type{\bool} True if the user exists, false if the user is anonymous
865 * @private
866 */
867 function loadFromDatabase() {
868 # Paranoia
869 $this->mId = intval( $this->mId );
870
871 /** Anonymous user */
872 if( !$this->mId ) {
873 $this->loadDefaults();
874 return false;
875 }
876
877 $dbr = wfGetDB( DB_MASTER );
878 $s = $dbr->selectRow( 'user', '*', array( 'user_id' => $this->mId ), __METHOD__ );
879
880 if ( $s !== false ) {
881 # Initialise user table data
882 $this->loadFromRow( $s );
883 $this->mGroups = null; // deferred
884 $this->getEditCount(); // revalidation for nulls
885 return true;
886 } else {
887 # Invalid user_id
888 $this->mId = 0;
889 $this->loadDefaults();
890 return false;
891 }
892 }
893
894 /**
895 * Initialize this object from a row from the user table.
896 *
897 * @param $row \type{\arrayof{\mixed}} Row from the user table to load.
898 */
899 function loadFromRow( $row ) {
900 $this->mDataLoaded = true;
901
902 if ( isset( $row->user_id ) ) {
903 $this->mId = $row->user_id;
904 }
905 $this->mName = $row->user_name;
906 $this->mRealName = $row->user_real_name;
907 $this->mPassword = $row->user_password;
908 $this->mNewpassword = $row->user_newpassword;
909 $this->mNewpassTime = wfTimestampOrNull( TS_MW, $row->user_newpass_time );
910 $this->mEmail = $row->user_email;
911 $this->decodeOptions( $row->user_options );
912 $this->mTouched = wfTimestamp(TS_MW,$row->user_touched);
913 $this->mToken = $row->user_token;
914 $this->mEmailAuthenticated = wfTimestampOrNull( TS_MW, $row->user_email_authenticated );
915 $this->mEmailToken = $row->user_email_token;
916 $this->mEmailTokenExpires = wfTimestampOrNull( TS_MW, $row->user_email_token_expires );
917 $this->mRegistration = wfTimestampOrNull( TS_MW, $row->user_registration );
918 $this->mEditCount = $row->user_editcount;
919 }
920
921 /**
922 * Load the groups from the database if they aren't already loaded.
923 * @private
924 */
925 function loadGroups() {
926 if ( is_null( $this->mGroups ) ) {
927 $dbr = wfGetDB( DB_MASTER );
928 $res = $dbr->select( 'user_groups',
929 array( 'ug_group' ),
930 array( 'ug_user' => $this->mId ),
931 __METHOD__ );
932 $this->mGroups = array();
933 while( $row = $dbr->fetchObject( $res ) ) {
934 $this->mGroups[] = $row->ug_group;
935 }
936 }
937 }
938
939 /**
940 * Clear various cached data stored in this object.
941 * @param $reloadFrom \type{\string} Reload user and user_groups table data from a
942 * given source. May be "name", "id", "defaults", "session", or false for
943 * no reload.
944 */
945 function clearInstanceCache( $reloadFrom = false ) {
946 $this->mNewtalk = -1;
947 $this->mDatePreference = null;
948 $this->mBlockedby = -1; # Unset
949 $this->mHash = false;
950 $this->mSkin = null;
951 $this->mRights = null;
952 $this->mEffectiveGroups = null;
953
954 if ( $reloadFrom ) {
955 $this->mDataLoaded = false;
956 $this->mFrom = $reloadFrom;
957 }
958 }
959
960 /**
961 * Combine the language default options with any site-specific options
962 * and add the default language variants.
963 *
964 * @return \type{\arrayof{\string}} Array of options
965 */
966 static function getDefaultOptions() {
967 global $wgNamespacesToBeSearchedDefault;
968 /**
969 * Site defaults will override the global/language defaults
970 */
971 global $wgDefaultUserOptions, $wgContLang;
972 $defOpt = $wgDefaultUserOptions + $wgContLang->getDefaultUserOptionOverrides();
973
974 /**
975 * default language setting
976 */
977 $variant = $wgContLang->getPreferredVariant( false );
978 $defOpt['variant'] = $variant;
979 $defOpt['language'] = $variant;
980
981 foreach( $wgNamespacesToBeSearchedDefault as $nsnum => $val ) {
982 $defOpt['searchNs'.$nsnum] = $val;
983 }
984 return $defOpt;
985 }
986
987 /**
988 * Get a given default option value.
989 *
990 * @param $opt \type{\string} Name of option to retrieve
991 * @return \type{\string} Default option value
992 */
993 public static function getDefaultOption( $opt ) {
994 $defOpts = self::getDefaultOptions();
995 if( isset( $defOpts[$opt] ) ) {
996 return $defOpts[$opt];
997 } else {
998 return '';
999 }
1000 }
1001
1002 /**
1003 * Get a list of user toggle names
1004 * @return \type{\arrayof{\string}} Array of user toggle names
1005 */
1006 static function getToggles() {
1007 global $wgContLang;
1008 $extraToggles = array();
1009 wfRunHooks( 'UserToggles', array( &$extraToggles ) );
1010 return array_merge( self::$mToggles, $extraToggles, $wgContLang->getExtraUserToggles() );
1011 }
1012
1013
1014 /**
1015 * Get blocking information
1016 * @private
1017 * @param $bFromSlave \type{\bool} Whether to check the slave database first. To
1018 * improve performance, non-critical checks are done
1019 * against slaves. Check when actually saving should be
1020 * done against master.
1021 */
1022 function getBlockedStatus( $bFromSlave = true ) {
1023 global $wgEnableSorbs, $wgProxyWhitelist;
1024
1025 if ( -1 != $this->mBlockedby ) {
1026 wfDebug( "User::getBlockedStatus: already loaded.\n" );
1027 return;
1028 }
1029
1030 wfProfileIn( __METHOD__ );
1031 wfDebug( __METHOD__.": checking...\n" );
1032
1033 // Initialize data...
1034 // Otherwise something ends up stomping on $this->mBlockedby when
1035 // things get lazy-loaded later, causing false positive block hits
1036 // due to -1 !== 0. Probably session-related... Nothing should be
1037 // overwriting mBlockedby, surely?
1038 $this->load();
1039
1040 $this->mBlockedby = 0;
1041 $this->mHideName = 0;
1042 $ip = wfGetIP();
1043
1044 if ($this->isAllowed( 'ipblock-exempt' ) ) {
1045 # Exempt from all types of IP-block
1046 $ip = '';
1047 }
1048
1049 # User/IP blocking
1050 $this->mBlock = new Block();
1051 $this->mBlock->fromMaster( !$bFromSlave );
1052 if ( $this->mBlock->load( $ip , $this->mId ) ) {
1053 wfDebug( __METHOD__.": Found block.\n" );
1054 $this->mBlockedby = $this->mBlock->mBy;
1055 $this->mBlockreason = $this->mBlock->mReason;
1056 $this->mHideName = $this->mBlock->mHideName;
1057 } else {
1058 $this->mBlock = null;
1059 wfDebug( __METHOD__.": No block.\n" );
1060 }
1061
1062 # Proxy blocking
1063 if ( !$this->isAllowed('proxyunbannable') && !in_array( $ip, $wgProxyWhitelist ) ) {
1064 # Local list
1065 if ( wfIsLocallyBlockedProxy( $ip ) ) {
1066 $this->mBlockedby = wfMsg( 'proxyblocker' );
1067 $this->mBlockreason = wfMsg( 'proxyblockreason' );
1068 }
1069
1070 # DNSBL
1071 if ( !$this->mBlockedby && $wgEnableSorbs && !$this->getID() ) {
1072 if ( $this->inSorbsBlacklist( $ip ) ) {
1073 $this->mBlockedby = wfMsg( 'sorbs' );
1074 $this->mBlockreason = wfMsg( 'sorbsreason' );
1075 }
1076 }
1077 }
1078
1079 # Extensions
1080 wfRunHooks( 'GetBlockedStatus', array( &$this ) );
1081
1082 wfProfileOut( __METHOD__ );
1083 }
1084
1085 /**
1086 * Whether the given IP is in the SORBS blacklist.
1087 *
1088 * @param $ip \type{\string} IP to check
1089 * @return \type{\bool} True if blacklisted
1090 */
1091 function inSorbsBlacklist( $ip ) {
1092 global $wgEnableSorbs, $wgSorbsUrl;
1093
1094 return $wgEnableSorbs &&
1095 $this->inDnsBlacklist( $ip, $wgSorbsUrl );
1096 }
1097
1098 /**
1099 * Whether the given IP is in a given DNS blacklist.
1100 *
1101 * @param $ip \type{\string} IP to check
1102 * @param $base \type{\string} URL of the DNS blacklist
1103 * @return \type{\bool} True if blacklisted
1104 */
1105 function inDnsBlacklist( $ip, $base ) {
1106 wfProfileIn( __METHOD__ );
1107
1108 $found = false;
1109 $host = '';
1110 // FIXME: IPv6 ???
1111 $m = array();
1112 if ( preg_match( '/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/', $ip, $m ) ) {
1113 # Make hostname
1114 for ( $i=4; $i>=1; $i-- ) {
1115 $host .= $m[$i] . '.';
1116 }
1117 $host .= $base;
1118
1119 # Send query
1120 $ipList = gethostbynamel( $host );
1121
1122 if ( $ipList ) {
1123 wfDebug( "Hostname $host is {$ipList[0]}, it's a proxy says $base!\n" );
1124 $found = true;
1125 } else {
1126 wfDebug( "Requested $host, not found in $base.\n" );
1127 }
1128 }
1129
1130 wfProfileOut( __METHOD__ );
1131 return $found;
1132 }
1133
1134 /**
1135 * Is this user subject to rate limiting?
1136 *
1137 * @return \type{\bool} True if rate limited
1138 */
1139 public function isPingLimitable() {
1140 global $wgRateLimitsExcludedGroups;
1141 if( array_intersect( $this->getEffectiveGroups(), $wgRateLimitsExcludedGroups ) ) {
1142 // Deprecated, but kept for backwards-compatibility config
1143 return false;
1144 }
1145 return !$this->isAllowed('noratelimit');
1146 }
1147
1148 /**
1149 * Primitive rate limits: enforce maximum actions per time period
1150 * to put a brake on flooding.
1151 *
1152 * @note When using a shared cache like memcached, IP-address
1153 * last-hit counters will be shared across wikis.
1154 *
1155 * @param $action \type{\string} Action to enforce; 'edit' if unspecified
1156 * @return \type{\bool} True if a rate limiter was tripped
1157 */
1158 function pingLimiter( $action='edit' ) {
1159
1160 # Call the 'PingLimiter' hook
1161 $result = false;
1162 if( !wfRunHooks( 'PingLimiter', array( &$this, $action, $result ) ) ) {
1163 return $result;
1164 }
1165
1166 global $wgRateLimits;
1167 if( !isset( $wgRateLimits[$action] ) ) {
1168 return false;
1169 }
1170
1171 # Some groups shouldn't trigger the ping limiter, ever
1172 if( !$this->isPingLimitable() )
1173 return false;
1174
1175 global $wgMemc, $wgRateLimitLog;
1176 wfProfileIn( __METHOD__ );
1177
1178 $limits = $wgRateLimits[$action];
1179 $keys = array();
1180 $id = $this->getId();
1181 $ip = wfGetIP();
1182 $userLimit = false;
1183
1184 if( isset( $limits['anon'] ) && $id == 0 ) {
1185 $keys[wfMemcKey( 'limiter', $action, 'anon' )] = $limits['anon'];
1186 }
1187
1188 if( isset( $limits['user'] ) && $id != 0 ) {
1189 $userLimit = $limits['user'];
1190 }
1191 if( $this->isNewbie() ) {
1192 if( isset( $limits['newbie'] ) && $id != 0 ) {
1193 $keys[wfMemcKey( 'limiter', $action, 'user', $id )] = $limits['newbie'];
1194 }
1195 if( isset( $limits['ip'] ) ) {
1196 $keys["mediawiki:limiter:$action:ip:$ip"] = $limits['ip'];
1197 }
1198 $matches = array();
1199 if( isset( $limits['subnet'] ) && preg_match( '/^(\d+\.\d+\.\d+)\.\d+$/', $ip, $matches ) ) {
1200 $subnet = $matches[1];
1201 $keys["mediawiki:limiter:$action:subnet:$subnet"] = $limits['subnet'];
1202 }
1203 }
1204 // Check for group-specific permissions
1205 // If more than one group applies, use the group with the highest limit
1206 foreach ( $this->getGroups() as $group ) {
1207 if ( isset( $limits[$group] ) ) {
1208 if ( $userLimit === false || $limits[$group] > $userLimit ) {
1209 $userLimit = $limits[$group];
1210 }
1211 }
1212 }
1213 // Set the user limit key
1214 if ( $userLimit !== false ) {
1215 wfDebug( __METHOD__.": effective user limit: $userLimit\n" );
1216 $keys[ wfMemcKey( 'limiter', $action, 'user', $id ) ] = $userLimit;
1217 }
1218
1219 $triggered = false;
1220 foreach( $keys as $key => $limit ) {
1221 list( $max, $period ) = $limit;
1222 $summary = "(limit $max in {$period}s)";
1223 $count = $wgMemc->get( $key );
1224 if( $count ) {
1225 if( $count > $max ) {
1226 wfDebug( __METHOD__.": tripped! $key at $count $summary\n" );
1227 if( $wgRateLimitLog ) {
1228 @error_log( wfTimestamp( TS_MW ) . ' ' . wfWikiID() . ': ' . $this->getName() . " tripped $key at $count $summary\n", 3, $wgRateLimitLog );
1229 }
1230 $triggered = true;
1231 } else {
1232 wfDebug( __METHOD__.": ok. $key at $count $summary\n" );
1233 }
1234 } else {
1235 wfDebug( __METHOD__.": adding record for $key $summary\n" );
1236 $wgMemc->add( $key, 1, intval( $period ) );
1237 }
1238 $wgMemc->incr( $key );
1239 }
1240
1241 wfProfileOut( __METHOD__ );
1242 return $triggered;
1243 }
1244
1245 /**
1246 * Check if user is blocked
1247 *
1248 * @param $bFromSlave \type{\bool} Whether to check the slave database instead of the master
1249 * @return \type{\bool} True if blocked, false otherwise
1250 */
1251 function isBlocked( $bFromSlave = true ) { // hacked from false due to horrible probs on site
1252 wfDebug( "User::isBlocked: enter\n" );
1253 $this->getBlockedStatus( $bFromSlave );
1254 return $this->mBlockedby !== 0;
1255 }
1256
1257 /**
1258 * Check if user is blocked from editing a particular article
1259 *
1260 * @param $title \type{\string} Title to check
1261 * @param $bFromSlave \type{\bool} Whether to check the slave database instead of the master
1262 * @return \type{\bool} True if blocked, false otherwise
1263 */
1264 function isBlockedFrom( $title, $bFromSlave = false ) {
1265 global $wgBlockAllowsUTEdit;
1266 wfProfileIn( __METHOD__ );
1267 wfDebug( __METHOD__.": enter\n" );
1268
1269 wfDebug( __METHOD__.": asking isBlocked()\n" );
1270 $blocked = $this->isBlocked( $bFromSlave );
1271 # If a user's name is suppressed, they cannot make edits anywhere
1272 if ( !$this->mHideName && $wgBlockAllowsUTEdit && $title->getText() === $this->getName() &&
1273 $title->getNamespace() == NS_USER_TALK ) {
1274 $blocked = false;
1275 wfDebug( __METHOD__.": self-talk page, ignoring any blocks\n" );
1276 }
1277 wfProfileOut( __METHOD__ );
1278 return $blocked;
1279 }
1280
1281 /**
1282 * If user is blocked, return the name of the user who placed the block
1283 * @return \type{\string} name of blocker
1284 */
1285 function blockedBy() {
1286 $this->getBlockedStatus();
1287 return $this->mBlockedby;
1288 }
1289
1290 /**
1291 * If user is blocked, return the specified reason for the block
1292 * @return \type{\string} Blocking reason
1293 */
1294 function blockedFor() {
1295 $this->getBlockedStatus();
1296 return $this->mBlockreason;
1297 }
1298
1299 /**
1300 * Get the user's ID.
1301 * @return \type{\int} The user's ID; 0 if the user is anonymous or nonexistent
1302 */
1303 function getId() {
1304 if( $this->mId === null and $this->mName !== null
1305 and User::isIP( $this->mName ) ) {
1306 // Special case, we know the user is anonymous
1307 return 0;
1308 } elseif( $this->mId === null ) {
1309 // Don't load if this was initialized from an ID
1310 $this->load();
1311 }
1312 return $this->mId;
1313 }
1314
1315 /**
1316 * Set the user and reload all fields according to a given ID
1317 * @param $v \type{\int} %User ID to reload
1318 */
1319 function setId( $v ) {
1320 $this->mId = $v;
1321 $this->clearInstanceCache( 'id' );
1322 }
1323
1324 /**
1325 * Get the user name, or the IP of an anonymous user
1326 * @return \type{\string} User's name or IP address
1327 */
1328 function getName() {
1329 if ( !$this->mDataLoaded && $this->mFrom == 'name' ) {
1330 # Special case optimisation
1331 return $this->mName;
1332 } else {
1333 $this->load();
1334 if ( $this->mName === false ) {
1335 # Clean up IPs
1336 $this->mName = IP::sanitizeIP( wfGetIP() );
1337 }
1338 return $this->mName;
1339 }
1340 }
1341
1342 /**
1343 * Set the user name.
1344 *
1345 * This does not reload fields from the database according to the given
1346 * name. Rather, it is used to create a temporary "nonexistent user" for
1347 * later addition to the database. It can also be used to set the IP
1348 * address for an anonymous user to something other than the current
1349 * remote IP.
1350 *
1351 * @note User::newFromName() has rougly the same function, when the named user
1352 * does not exist.
1353 * @param $str \type{\string} New user name to set
1354 */
1355 function setName( $str ) {
1356 $this->load();
1357 $this->mName = $str;
1358 }
1359
1360 /**
1361 * Get the user's name escaped by underscores.
1362 * @return \type{\string} Username escaped by underscores
1363 */
1364 function getTitleKey() {
1365 return str_replace( ' ', '_', $this->getName() );
1366 }
1367
1368 /**
1369 * Check if the user has new messages.
1370 * @return \type{\bool} True if the user has new messages
1371 */
1372 function getNewtalk() {
1373 $this->load();
1374
1375 # Load the newtalk status if it is unloaded (mNewtalk=-1)
1376 if( $this->mNewtalk === -1 ) {
1377 $this->mNewtalk = false; # reset talk page status
1378
1379 # Check memcached separately for anons, who have no
1380 # entire User object stored in there.
1381 if( !$this->mId ) {
1382 global $wgMemc;
1383 $key = wfMemcKey( 'newtalk', 'ip', $this->getName() );
1384 $newtalk = $wgMemc->get( $key );
1385 if( strval( $newtalk ) !== '' ) {
1386 $this->mNewtalk = (bool)$newtalk;
1387 } else {
1388 // Since we are caching this, make sure it is up to date by getting it
1389 // from the master
1390 $this->mNewtalk = $this->checkNewtalk( 'user_ip', $this->getName(), true );
1391 $wgMemc->set( $key, (int)$this->mNewtalk, 1800 );
1392 }
1393 } else {
1394 $this->mNewtalk = $this->checkNewtalk( 'user_id', $this->mId );
1395 }
1396 }
1397
1398 return (bool)$this->mNewtalk;
1399 }
1400
1401 /**
1402 * Return the talk page(s) this user has new messages on.
1403 * @return \type{\arrayof{\string}} Array of page URLs
1404 */
1405 function getNewMessageLinks() {
1406 $talks = array();
1407 if (!wfRunHooks('UserRetrieveNewTalks', array(&$this, &$talks)))
1408 return $talks;
1409
1410 if (!$this->getNewtalk())
1411 return array();
1412 $up = $this->getUserPage();
1413 $utp = $up->getTalkPage();
1414 return array(array("wiki" => wfWikiID(), "link" => $utp->getLocalURL()));
1415 }
1416
1417
1418 /**
1419 * Internal uncached check for new messages
1420 *
1421 * @see getNewtalk()
1422 * @param $field \type{\string} 'user_ip' for anonymous users, 'user_id' otherwise
1423 * @param $id \twotypes{\string,\int} User's IP address for anonymous users, %User ID otherwise
1424 * @param $fromMaster \type{\bool} true to fetch from the master, false for a slave
1425 * @return \type{\bool} True if the user has new messages
1426 * @private
1427 */
1428 function checkNewtalk( $field, $id, $fromMaster = false ) {
1429 if ( $fromMaster ) {
1430 $db = wfGetDB( DB_MASTER );
1431 } else {
1432 $db = wfGetDB( DB_SLAVE );
1433 }
1434 $ok = $db->selectField( 'user_newtalk', $field,
1435 array( $field => $id ), __METHOD__ );
1436 return $ok !== false;
1437 }
1438
1439 /**
1440 * Add or update the new messages flag
1441 * @param $field \type{\string} 'user_ip' for anonymous users, 'user_id' otherwise
1442 * @param $id \twotypes{string,\int} User's IP address for anonymous users, %User ID otherwise
1443 * @return \type{\bool} True if successful, false otherwise
1444 * @private
1445 */
1446 function updateNewtalk( $field, $id ) {
1447 $dbw = wfGetDB( DB_MASTER );
1448 $dbw->insert( 'user_newtalk',
1449 array( $field => $id ),
1450 __METHOD__,
1451 'IGNORE' );
1452 if ( $dbw->affectedRows() ) {
1453 wfDebug( __METHOD__.": set on ($field, $id)\n" );
1454 return true;
1455 } else {
1456 wfDebug( __METHOD__." already set ($field, $id)\n" );
1457 return false;
1458 }
1459 }
1460
1461 /**
1462 * Clear the new messages flag for the given user
1463 * @param $field \type{\string} 'user_ip' for anonymous users, 'user_id' otherwise
1464 * @param $id \twotypes{\string,\int} User's IP address for anonymous users, %User ID otherwise
1465 * @return \type{\bool} True if successful, false otherwise
1466 * @private
1467 */
1468 function deleteNewtalk( $field, $id ) {
1469 $dbw = wfGetDB( DB_MASTER );
1470 $dbw->delete( 'user_newtalk',
1471 array( $field => $id ),
1472 __METHOD__ );
1473 if ( $dbw->affectedRows() ) {
1474 wfDebug( __METHOD__.": killed on ($field, $id)\n" );
1475 return true;
1476 } else {
1477 wfDebug( __METHOD__.": already gone ($field, $id)\n" );
1478 return false;
1479 }
1480 }
1481
1482 /**
1483 * Update the 'You have new messages!' status.
1484 * @param $val \type{\bool} Whether the user has new messages
1485 */
1486 function setNewtalk( $val ) {
1487 if( wfReadOnly() ) {
1488 return;
1489 }
1490
1491 $this->load();
1492 $this->mNewtalk = $val;
1493
1494 if( $this->isAnon() ) {
1495 $field = 'user_ip';
1496 $id = $this->getName();
1497 } else {
1498 $field = 'user_id';
1499 $id = $this->getId();
1500 }
1501 global $wgMemc;
1502
1503 if( $val ) {
1504 $changed = $this->updateNewtalk( $field, $id );
1505 } else {
1506 $changed = $this->deleteNewtalk( $field, $id );
1507 }
1508
1509 if( $this->isAnon() ) {
1510 // Anons have a separate memcached space, since
1511 // user records aren't kept for them.
1512 $key = wfMemcKey( 'newtalk', 'ip', $id );
1513 $wgMemc->set( $key, $val ? 1 : 0, 1800 );
1514 }
1515 if ( $changed ) {
1516 $this->invalidateCache();
1517 }
1518 }
1519
1520 /**
1521 * Generate a current or new-future timestamp to be stored in the
1522 * user_touched field when we update things.
1523 * @return \type{\string} Timestamp in TS_MW format
1524 */
1525 private static function newTouchedTimestamp() {
1526 global $wgClockSkewFudge;
1527 return wfTimestamp( TS_MW, time() + $wgClockSkewFudge );
1528 }
1529
1530 /**
1531 * Clear user data from memcached.
1532 * Use after applying fun updates to the database; caller's
1533 * responsibility to update user_touched if appropriate.
1534 *
1535 * Called implicitly from invalidateCache() and saveSettings().
1536 */
1537 private function clearSharedCache() {
1538 if( $this->mId ) {
1539 global $wgMemc;
1540 $wgMemc->delete( wfMemcKey( 'user', 'id', $this->mId ) );
1541 }
1542 }
1543
1544 /**
1545 * Immediately touch the user data cache for this account.
1546 * Updates user_touched field, and removes account data from memcached
1547 * for reload on the next hit.
1548 */
1549 function invalidateCache() {
1550 $this->load();
1551 if( $this->mId ) {
1552 $this->mTouched = self::newTouchedTimestamp();
1553
1554 $dbw = wfGetDB( DB_MASTER );
1555 $dbw->update( 'user',
1556 array( 'user_touched' => $dbw->timestamp( $this->mTouched ) ),
1557 array( 'user_id' => $this->mId ),
1558 __METHOD__ );
1559
1560 $this->clearSharedCache();
1561 }
1562 }
1563
1564 /**
1565 * Validate the cache for this account.
1566 * @param $timestamp \type{\string} A timestamp in TS_MW format
1567 */
1568 function validateCache( $timestamp ) {
1569 $this->load();
1570 return ($timestamp >= $this->mTouched);
1571 }
1572
1573 /**
1574 * Get the user touched timestamp
1575 */
1576 function getTouched() {
1577 $this->load();
1578 return $this->mTouched;
1579 }
1580
1581 /**
1582 * Set the password and reset the random token.
1583 * Calls through to authentication plugin if necessary;
1584 * will have no effect if the auth plugin refuses to
1585 * pass the change through or if the legal password
1586 * checks fail.
1587 *
1588 * As a special case, setting the password to null
1589 * wipes it, so the account cannot be logged in until
1590 * a new password is set, for instance via e-mail.
1591 *
1592 * @param $str \type{\string} New password to set
1593 * @throws PasswordError on failure
1594 */
1595 function setPassword( $str ) {
1596 global $wgAuth;
1597
1598 if( $str !== null ) {
1599 if( !$wgAuth->allowPasswordChange() ) {
1600 throw new PasswordError( wfMsg( 'password-change-forbidden' ) );
1601 }
1602
1603 if( !$this->isValidPassword( $str ) ) {
1604 global $wgMinimalPasswordLength;
1605 throw new PasswordError( wfMsgExt( 'passwordtooshort', array( 'parsemag' ),
1606 $wgMinimalPasswordLength ) );
1607 }
1608 }
1609
1610 if( !$wgAuth->setPassword( $this, $str ) ) {
1611 throw new PasswordError( wfMsg( 'externaldberror' ) );
1612 }
1613
1614 $this->setInternalPassword( $str );
1615
1616 return true;
1617 }
1618
1619 /**
1620 * Set the password and reset the random token unconditionally.
1621 *
1622 * @param $str \type{\string} New password to set
1623 */
1624 function setInternalPassword( $str ) {
1625 $this->load();
1626 $this->setToken();
1627
1628 if( $str === null ) {
1629 // Save an invalid hash...
1630 $this->mPassword = '';
1631 } else {
1632 $this->mPassword = self::crypt( $str );
1633 }
1634 $this->mNewpassword = '';
1635 $this->mNewpassTime = null;
1636 }
1637
1638 /**
1639 * Get the user's current token.
1640 * @return \type{\string} Token
1641 */
1642 function getToken() {
1643 $this->load();
1644 return $this->mToken;
1645 }
1646
1647 /**
1648 * Set the random token (used for persistent authentication)
1649 * Called from loadDefaults() among other places.
1650 *
1651 * @param $token \type{\string} If specified, set the token to this value
1652 * @private
1653 */
1654 function setToken( $token = false ) {
1655 global $wgSecretKey, $wgProxyKey;
1656 $this->load();
1657 if ( !$token ) {
1658 if ( $wgSecretKey ) {
1659 $key = $wgSecretKey;
1660 } elseif ( $wgProxyKey ) {
1661 $key = $wgProxyKey;
1662 } else {
1663 $key = microtime();
1664 }
1665 $this->mToken = md5( $key . mt_rand( 0, 0x7fffffff ) . wfWikiID() . $this->mId );
1666 } else {
1667 $this->mToken = $token;
1668 }
1669 }
1670
1671 /**
1672 * Set the cookie password
1673 *
1674 * @param $str \type{\string} New cookie password
1675 * @private
1676 */
1677 function setCookiePassword( $str ) {
1678 $this->load();
1679 $this->mCookiePassword = md5( $str );
1680 }
1681
1682 /**
1683 * Set the password for a password reminder or new account email
1684 *
1685 * @param $str \type{\string} New password to set
1686 * @param $throttle \type{\bool} If true, reset the throttle timestamp to the present
1687 */
1688 function setNewpassword( $str, $throttle = true ) {
1689 $this->load();
1690 $this->mNewpassword = self::crypt( $str );
1691 if ( $throttle ) {
1692 $this->mNewpassTime = wfTimestampNow();
1693 }
1694 }
1695
1696 /**
1697 * Has password reminder email been sent within the last
1698 * $wgPasswordReminderResendTime hours?
1699 * @return \type{\bool} True or false
1700 */
1701 function isPasswordReminderThrottled() {
1702 global $wgPasswordReminderResendTime;
1703 $this->load();
1704 if ( !$this->mNewpassTime || !$wgPasswordReminderResendTime ) {
1705 return false;
1706 }
1707 $expiry = wfTimestamp( TS_UNIX, $this->mNewpassTime ) + $wgPasswordReminderResendTime * 3600;
1708 return time() < $expiry;
1709 }
1710
1711 /**
1712 * Get the user's e-mail address
1713 * @return \type{\string} User's e-mail address
1714 */
1715 function getEmail() {
1716 $this->load();
1717 wfRunHooks( 'UserGetEmail', array( $this, &$this->mEmail ) );
1718 return $this->mEmail;
1719 }
1720
1721 /**
1722 * Get the timestamp of the user's e-mail authentication
1723 * @return \type{\string} TS_MW timestamp
1724 */
1725 function getEmailAuthenticationTimestamp() {
1726 $this->load();
1727 wfRunHooks( 'UserGetEmailAuthenticationTimestamp', array( $this, &$this->mEmailAuthenticated ) );
1728 return $this->mEmailAuthenticated;
1729 }
1730
1731 /**
1732 * Set the user's e-mail address
1733 * @param $str \type{\string} New e-mail address
1734 */
1735 function setEmail( $str ) {
1736 $this->load();
1737 $this->mEmail = $str;
1738 wfRunHooks( 'UserSetEmail', array( $this, &$this->mEmail ) );
1739 }
1740
1741 /**
1742 * Get the user's real name
1743 * @return \type{\string} User's real name
1744 */
1745 function getRealName() {
1746 $this->load();
1747 return $this->mRealName;
1748 }
1749
1750 /**
1751 * Set the user's real name
1752 * @param $str \type{\string} New real name
1753 */
1754 function setRealName( $str ) {
1755 $this->load();
1756 $this->mRealName = $str;
1757 }
1758
1759 /**
1760 * Get the user's current setting for a given option.
1761 *
1762 * @param $oname \type{\string} The option to check
1763 * @param $defaultOverride \type{\string} A default value returned if the option does not exist
1764 * @return \type{\string} User's current value for the option
1765 * @see getBoolOption()
1766 * @see getIntOption()
1767 */
1768 function getOption( $oname, $defaultOverride = '' ) {
1769 $this->load();
1770
1771 if ( is_null( $this->mOptions ) ) {
1772 if($defaultOverride != '') {
1773 return $defaultOverride;
1774 }
1775 $this->mOptions = User::getDefaultOptions();
1776 }
1777
1778 if ( array_key_exists( $oname, $this->mOptions ) ) {
1779 return trim( $this->mOptions[$oname] );
1780 } else {
1781 return $defaultOverride;
1782 }
1783 }
1784
1785 /**
1786 * Get the user's current setting for a given option, as a boolean value.
1787 *
1788 * @param $oname \type{\string} The option to check
1789 * @return \type{\bool} User's current value for the option
1790 * @see getOption()
1791 */
1792 function getBoolOption( $oname ) {
1793 return (bool)$this->getOption( $oname );
1794 }
1795
1796
1797 /**
1798 * Get the user's current setting for a given option, as a boolean value.
1799 *
1800 * @param $oname \type{\string} The option to check
1801 * @param $defaultOverride \type{\int} A default value returned if the option does not exist
1802 * @return \type{\int} User's current value for the option
1803 * @see getOption()
1804 */
1805 function getIntOption( $oname, $defaultOverride=0 ) {
1806 $val = $this->getOption( $oname );
1807 if( $val == '' ) {
1808 $val = $defaultOverride;
1809 }
1810 return intval( $val );
1811 }
1812
1813 /**
1814 * Set the given option for a user.
1815 *
1816 * @param $oname \type{\string} The option to set
1817 * @param $val \type{\mixed} New value to set
1818 */
1819 function setOption( $oname, $val ) {
1820 $this->load();
1821 if ( is_null( $this->mOptions ) ) {
1822 $this->mOptions = User::getDefaultOptions();
1823 }
1824 if ( $oname == 'skin' ) {
1825 # Clear cached skin, so the new one displays immediately in Special:Preferences
1826 unset( $this->mSkin );
1827 }
1828 // Filter out any newlines that may have passed through input validation.
1829 // Newlines are used to separate items in the options blob.
1830 if( $val ) {
1831 $val = str_replace( "\r\n", "\n", $val );
1832 $val = str_replace( "\r", "\n", $val );
1833 $val = str_replace( "\n", " ", $val );
1834 }
1835 // Explicitly NULL values should refer to defaults
1836 global $wgDefaultUserOptions;
1837 if( is_null($val) && isset($wgDefaultUserOptions[$oname]) ) {
1838 $val = $wgDefaultUserOptions[$oname];
1839 }
1840 $this->mOptions[$oname] = $val;
1841 }
1842
1843 /**
1844 * Get the user's preferred date format.
1845 * @return \type{\string} User's preferred date format
1846 */
1847 function getDatePreference() {
1848 // Important migration for old data rows
1849 if ( is_null( $this->mDatePreference ) ) {
1850 global $wgLang;
1851 $value = $this->getOption( 'date' );
1852 $map = $wgLang->getDatePreferenceMigrationMap();
1853 if ( isset( $map[$value] ) ) {
1854 $value = $map[$value];
1855 }
1856 $this->mDatePreference = $value;
1857 }
1858 return $this->mDatePreference;
1859 }
1860
1861 /**
1862 * Get the permissions this user has.
1863 * @return \type{\arrayof{\string}} Array of permission names
1864 */
1865 function getRights() {
1866 if ( is_null( $this->mRights ) ) {
1867 $this->mRights = self::getGroupPermissions( $this->getEffectiveGroups() );
1868 wfRunHooks( 'UserGetRights', array( $this, &$this->mRights ) );
1869 // Force reindexation of rights when a hook has unset one of them
1870 $this->mRights = array_values( $this->mRights );
1871 }
1872 return $this->mRights;
1873 }
1874
1875 /**
1876 * Get the list of explicit group memberships this user has.
1877 * The implicit * and user groups are not included.
1878 * @return \type{\arrayof{\string}} Array of internal group names
1879 */
1880 function getGroups() {
1881 $this->load();
1882 return $this->mGroups;
1883 }
1884
1885 /**
1886 * Get the list of implicit group memberships this user has.
1887 * This includes all explicit groups, plus 'user' if logged in,
1888 * '*' for all accounts and autopromoted groups
1889 *
1890 * @param $recache \type{\bool} Whether to avoid the cache
1891 * @return \type{\arrayof{\string}} Array of internal group names
1892 */
1893 function getEffectiveGroups( $recache = false ) {
1894 if ( $recache || is_null( $this->mEffectiveGroups ) ) {
1895 $this->mEffectiveGroups = $this->getGroups();
1896 $this->mEffectiveGroups[] = '*';
1897 if( $this->getId() ) {
1898 $this->mEffectiveGroups[] = 'user';
1899
1900 $this->mEffectiveGroups = array_unique( array_merge(
1901 $this->mEffectiveGroups,
1902 Autopromote::getAutopromoteGroups( $this )
1903 ) );
1904
1905 # Hook for additional groups
1906 wfRunHooks( 'UserEffectiveGroups', array( &$this, &$this->mEffectiveGroups ) );
1907 }
1908 }
1909 return $this->mEffectiveGroups;
1910 }
1911
1912 /**
1913 * Get the user's edit count.
1914 * @return \type{\int} User's edit count
1915 */
1916 function getEditCount() {
1917 if ($this->mId) {
1918 if ( !isset( $this->mEditCount ) ) {
1919 /* Populate the count, if it has not been populated yet */
1920 $this->mEditCount = User::edits($this->mId);
1921 }
1922 return $this->mEditCount;
1923 } else {
1924 /* nil */
1925 return null;
1926 }
1927 }
1928
1929 /**
1930 * Add the user to the given group.
1931 * This takes immediate effect.
1932 * @param $group \type{\string} Name of the group to add
1933 */
1934 function addGroup( $group ) {
1935 $dbw = wfGetDB( DB_MASTER );
1936 if( $this->getId() ) {
1937 $dbw->insert( 'user_groups',
1938 array(
1939 'ug_user' => $this->getID(),
1940 'ug_group' => $group,
1941 ),
1942 'User::addGroup',
1943 array( 'IGNORE' ) );
1944 }
1945
1946 $this->loadGroups();
1947 $this->mGroups[] = $group;
1948 $this->mRights = User::getGroupPermissions( $this->getEffectiveGroups( true ) );
1949
1950 $this->invalidateCache();
1951 }
1952
1953 /**
1954 * Remove the user from the given group.
1955 * This takes immediate effect.
1956 * @param $group \type{\string} Name of the group to remove
1957 */
1958 function removeGroup( $group ) {
1959 $this->load();
1960 $dbw = wfGetDB( DB_MASTER );
1961 $dbw->delete( 'user_groups',
1962 array(
1963 'ug_user' => $this->getID(),
1964 'ug_group' => $group,
1965 ),
1966 'User::removeGroup' );
1967
1968 $this->loadGroups();
1969 $this->mGroups = array_diff( $this->mGroups, array( $group ) );
1970 $this->mRights = User::getGroupPermissions( $this->getEffectiveGroups( true ) );
1971
1972 $this->invalidateCache();
1973 }
1974
1975
1976 /**
1977 * Get whether the user is logged in
1978 * @return \type{\bool} True or false
1979 */
1980 function isLoggedIn() {
1981 return $this->getID() != 0;
1982 }
1983
1984 /**
1985 * Get whether the user is anonymous
1986 * @return \type{\bool} True or false
1987 */
1988 function isAnon() {
1989 return !$this->isLoggedIn();
1990 }
1991
1992 /**
1993 * Get whether the user is a bot
1994 * @return \type{\bool} True or false
1995 * @deprecated
1996 */
1997 function isBot() {
1998 wfDeprecated( __METHOD__ );
1999 return $this->isAllowed( 'bot' );
2000 }
2001
2002 /**
2003 * Check if user is allowed to access a feature / make an action
2004 * @param $action \type{\string} action to be checked
2005 * @return \type{\bool} True if action is allowed, else false
2006 */
2007 function isAllowed($action='') {
2008 if ( $action === '' )
2009 // In the spirit of DWIM
2010 return true;
2011
2012 return in_array( $action, $this->getRights() );
2013 }
2014
2015 /**
2016 * Check whether to enable recent changes patrol features for this user
2017 * @return \type{\bool} True or false
2018 */
2019 public function useRCPatrol() {
2020 global $wgUseRCPatrol;
2021 return( $wgUseRCPatrol && ($this->isAllowed('patrol') || $this->isAllowed('patrolmarks')) );
2022 }
2023
2024 /**
2025 * Check whether to enable new pages patrol features for this user
2026 * @return \type{\bool} True or false
2027 */
2028 public function useNPPatrol() {
2029 global $wgUseRCPatrol, $wgUseNPPatrol;
2030 return( ($wgUseRCPatrol || $wgUseNPPatrol) && ($this->isAllowed('patrol') || $this->isAllowed('patrolmarks')) );
2031 }
2032
2033 /**
2034 * Get the current skin, loading it if required
2035 * @return \type{Skin} Current skin
2036 * @todo FIXME : need to check the old failback system [AV]
2037 */
2038 function &getSkin() {
2039 global $wgRequest;
2040 if ( ! isset( $this->mSkin ) ) {
2041 wfProfileIn( __METHOD__ );
2042
2043 # get the user skin
2044 $userSkin = $this->getOption( 'skin' );
2045 $userSkin = $wgRequest->getVal('useskin', $userSkin);
2046
2047 $this->mSkin =& Skin::newFromKey( $userSkin );
2048 wfProfileOut( __METHOD__ );
2049 }
2050 return $this->mSkin;
2051 }
2052
2053 /**
2054 * Check the watched status of an article.
2055 * @param $title \type{Title} Title of the article to look at
2056 * @return \type{\bool} True if article is watched
2057 */
2058 function isWatched( $title ) {
2059 $wl = WatchedItem::fromUserTitle( $this, $title );
2060 return $wl->isWatched();
2061 }
2062
2063 /**
2064 * Watch an article.
2065 * @param $title \type{Title} Title of the article to look at
2066 */
2067 function addWatch( $title ) {
2068 $wl = WatchedItem::fromUserTitle( $this, $title );
2069 $wl->addWatch();
2070 $this->invalidateCache();
2071 }
2072
2073 /**
2074 * Stop watching an article.
2075 * @param $title \type{Title} Title of the article to look at
2076 */
2077 function removeWatch( $title ) {
2078 $wl = WatchedItem::fromUserTitle( $this, $title );
2079 $wl->removeWatch();
2080 $this->invalidateCache();
2081 }
2082
2083 /**
2084 * Clear the user's notification timestamp for the given title.
2085 * If e-notif e-mails are on, they will receive notification mails on
2086 * the next change of the page if it's watched etc.
2087 * @param $title \type{Title} Title of the article to look at
2088 */
2089 function clearNotification( &$title ) {
2090 global $wgUser, $wgUseEnotif, $wgShowUpdatedMarker;
2091
2092 # Do nothing if the database is locked to writes
2093 if( wfReadOnly() ) {
2094 return;
2095 }
2096
2097 if ($title->getNamespace() == NS_USER_TALK &&
2098 $title->getText() == $this->getName() ) {
2099 if (!wfRunHooks('UserClearNewTalkNotification', array(&$this)))
2100 return;
2101 $this->setNewtalk( false );
2102 }
2103
2104 if( !$wgUseEnotif && !$wgShowUpdatedMarker ) {
2105 return;
2106 }
2107
2108 if( $this->isAnon() ) {
2109 // Nothing else to do...
2110 return;
2111 }
2112
2113 // Only update the timestamp if the page is being watched.
2114 // The query to find out if it is watched is cached both in memcached and per-invocation,
2115 // and when it does have to be executed, it can be on a slave
2116 // If this is the user's newtalk page, we always update the timestamp
2117 if ($title->getNamespace() == NS_USER_TALK &&
2118 $title->getText() == $wgUser->getName())
2119 {
2120 $watched = true;
2121 } elseif ( $this->getId() == $wgUser->getId() ) {
2122 $watched = $title->userIsWatching();
2123 } else {
2124 $watched = true;
2125 }
2126
2127 // If the page is watched by the user (or may be watched), update the timestamp on any
2128 // any matching rows
2129 if ( $watched ) {
2130 $dbw = wfGetDB( DB_MASTER );
2131 $dbw->update( 'watchlist',
2132 array( /* SET */
2133 'wl_notificationtimestamp' => NULL
2134 ), array( /* WHERE */
2135 'wl_title' => $title->getDBkey(),
2136 'wl_namespace' => $title->getNamespace(),
2137 'wl_user' => $this->getID()
2138 ), __METHOD__
2139 );
2140 }
2141 }
2142
2143 /**
2144 * Resets all of the given user's page-change notification timestamps.
2145 * If e-notif e-mails are on, they will receive notification mails on
2146 * the next change of any watched page.
2147 *
2148 * @param $currentUser \type{\int} %User ID
2149 */
2150 function clearAllNotifications( $currentUser ) {
2151 global $wgUseEnotif, $wgShowUpdatedMarker;
2152 if ( !$wgUseEnotif && !$wgShowUpdatedMarker ) {
2153 $this->setNewtalk( false );
2154 return;
2155 }
2156 if( $currentUser != 0 ) {
2157 $dbw = wfGetDB( DB_MASTER );
2158 $dbw->update( 'watchlist',
2159 array( /* SET */
2160 'wl_notificationtimestamp' => NULL
2161 ), array( /* WHERE */
2162 'wl_user' => $currentUser
2163 ), __METHOD__
2164 );
2165 # We also need to clear here the "you have new message" notification for the own user_talk page
2166 # This is cleared one page view later in Article::viewUpdates();
2167 }
2168 }
2169
2170 /**
2171 * Encode this user's options as a string
2172 * @return \type{\string} Encoded options
2173 * @private
2174 */
2175 function encodeOptions() {
2176 $this->load();
2177 if ( is_null( $this->mOptions ) ) {
2178 $this->mOptions = User::getDefaultOptions();
2179 }
2180 $a = array();
2181 foreach ( $this->mOptions as $oname => $oval ) {
2182 array_push( $a, $oname.'='.$oval );
2183 }
2184 $s = implode( "\n", $a );
2185 return $s;
2186 }
2187
2188 /**
2189 * Set this user's options from an encoded string
2190 * @param $str \type{\string} Encoded options to import
2191 * @private
2192 */
2193 function decodeOptions( $str ) {
2194 $this->mOptions = array();
2195 $a = explode( "\n", $str );
2196 foreach ( $a as $s ) {
2197 $m = array();
2198 if ( preg_match( "/^(.[^=]*)=(.*)$/", $s, $m ) ) {
2199 $this->mOptions[$m[1]] = $m[2];
2200 }
2201 }
2202 }
2203
2204 /**
2205 * Set a cookie on the user's client. Wrapper for
2206 * WebResponse::setCookie
2207 */
2208 protected function setCookie( $name, $value, $exp=0 ) {
2209 global $wgRequest;
2210 $wgRequest->response()->setcookie( $name, $value, $exp );
2211 }
2212
2213 /**
2214 * Clear a cookie on the user's client
2215 * @param $name \type{\string} Name of the cookie to clear
2216 */
2217 protected function clearCookie( $name ) {
2218 $this->setCookie( $name, '', time() - 86400 );
2219 }
2220
2221 /**
2222 * Set the default cookies for this session on the user's client.
2223 */
2224 function setCookies() {
2225 $this->load();
2226 if ( 0 == $this->mId ) return;
2227 $session = array(
2228 'wsUserID' => $this->mId,
2229 'wsToken' => $this->mToken,
2230 'wsUserName' => $this->getName()
2231 );
2232 $cookies = array(
2233 'UserID' => $this->mId,
2234 'UserName' => $this->getName(),
2235 );
2236 if ( 1 == $this->getOption( 'rememberpassword' ) ) {
2237 $cookies['Token'] = $this->mToken;
2238 } else {
2239 $cookies['Token'] = false;
2240 }
2241
2242 # Spread any applicable autoblocks
2243 $this->spreadBlock();
2244
2245 wfRunHooks( 'UserSetCookies', array( $this, &$session, &$cookies ) );
2246 $_SESSION = $session + $_SESSION;
2247 foreach ( $cookies as $name => $value ) {
2248 if ( $value === false ) {
2249 $this->clearCookie( $name );
2250 } else {
2251 $this->setCookie( $name, $value );
2252 }
2253 }
2254 }
2255
2256 /**
2257 * Log this user out.
2258 */
2259 function logout() {
2260 global $wgUser;
2261 if( wfRunHooks( 'UserLogout', array(&$this) ) ) {
2262 $this->doLogout();
2263 }
2264 }
2265
2266 /**
2267 * Clear the user's cookies and session, and reset the instance cache.
2268 * @private
2269 * @see logout()
2270 */
2271 function doLogout() {
2272 $this->clearInstanceCache( 'defaults' );
2273
2274 $_SESSION['wsUserID'] = 0;
2275
2276 $this->clearCookie( 'UserID' );
2277 $this->clearCookie( 'Token' );
2278
2279 # Remember when user logged out, to prevent seeing cached pages
2280 $this->setCookie( 'LoggedOut', wfTimestampNow(), time() + 86400 );
2281 }
2282
2283 /**
2284 * Save this user's settings into the database.
2285 * @todo Only rarely do all these fields need to be set!
2286 */
2287 function saveSettings() {
2288 $this->load();
2289 if ( wfReadOnly() ) { return; }
2290 if ( 0 == $this->mId ) { return; }
2291
2292 $this->mTouched = self::newTouchedTimestamp();
2293
2294 $dbw = wfGetDB( DB_MASTER );
2295 $dbw->update( 'user',
2296 array( /* SET */
2297 'user_name' => $this->mName,
2298 'user_password' => $this->mPassword,
2299 'user_newpassword' => $this->mNewpassword,
2300 'user_newpass_time' => $dbw->timestampOrNull( $this->mNewpassTime ),
2301 'user_real_name' => $this->mRealName,
2302 'user_email' => $this->mEmail,
2303 'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
2304 'user_options' => $this->encodeOptions(),
2305 'user_touched' => $dbw->timestamp($this->mTouched),
2306 'user_token' => $this->mToken,
2307 'user_email_token' => $this->mEmailToken,
2308 'user_email_token_expires' => $dbw->timestampOrNull( $this->mEmailTokenExpires ),
2309 ), array( /* WHERE */
2310 'user_id' => $this->mId
2311 ), __METHOD__
2312 );
2313 wfRunHooks( 'UserSaveSettings', array( $this ) );
2314 $this->clearSharedCache();
2315 }
2316
2317 /**
2318 * If only this user's username is known, and it exists, return the user ID.
2319 */
2320 function idForName() {
2321 $s = trim( $this->getName() );
2322 if ( $s === '' ) return 0;
2323
2324 $dbr = wfGetDB( DB_SLAVE );
2325 $id = $dbr->selectField( 'user', 'user_id', array( 'user_name' => $s ), __METHOD__ );
2326 if ( $id === false ) {
2327 $id = 0;
2328 }
2329 return $id;
2330 }
2331
2332 /**
2333 * Add a user to the database, return the user object
2334 *
2335 * @param $name \type{\string} Username to add
2336 * @param $params \type{\arrayof{\string}} Non-default parameters to save to the database:
2337 * - password The user's password. Password logins will be disabled if this is omitted.
2338 * - newpassword A temporary password mailed to the user
2339 * - email The user's email address
2340 * - email_authenticated The email authentication timestamp
2341 * - real_name The user's real name
2342 * - options An associative array of non-default options
2343 * - token Random authentication token. Do not set.
2344 * - registration Registration timestamp. Do not set.
2345 *
2346 * @return \type{User} A new User object, or null if the username already exists
2347 */
2348 static function createNew( $name, $params = array() ) {
2349 $user = new User;
2350 $user->load();
2351 if ( isset( $params['options'] ) ) {
2352 $user->mOptions = $params['options'] + $user->mOptions;
2353 unset( $params['options'] );
2354 }
2355 $dbw = wfGetDB( DB_MASTER );
2356 $seqVal = $dbw->nextSequenceValue( 'user_user_id_seq' );
2357 $fields = array(
2358 'user_id' => $seqVal,
2359 'user_name' => $name,
2360 'user_password' => $user->mPassword,
2361 'user_newpassword' => $user->mNewpassword,
2362 'user_newpass_time' => $dbw->timestamp( $user->mNewpassTime ),
2363 'user_email' => $user->mEmail,
2364 'user_email_authenticated' => $dbw->timestampOrNull( $user->mEmailAuthenticated ),
2365 'user_real_name' => $user->mRealName,
2366 'user_options' => $user->encodeOptions(),
2367 'user_token' => $user->mToken,
2368 'user_registration' => $dbw->timestamp( $user->mRegistration ),
2369 'user_editcount' => 0,
2370 );
2371 foreach ( $params as $name => $value ) {
2372 $fields["user_$name"] = $value;
2373 }
2374 $dbw->insert( 'user', $fields, __METHOD__, array( 'IGNORE' ) );
2375 if ( $dbw->affectedRows() ) {
2376 $newUser = User::newFromId( $dbw->insertId() );
2377 } else {
2378 $newUser = null;
2379 }
2380 return $newUser;
2381 }
2382
2383 /**
2384 * Add this existing user object to the database
2385 */
2386 function addToDatabase() {
2387 $this->load();
2388 $dbw = wfGetDB( DB_MASTER );
2389 $seqVal = $dbw->nextSequenceValue( 'user_user_id_seq' );
2390 $dbw->insert( 'user',
2391 array(
2392 'user_id' => $seqVal,
2393 'user_name' => $this->mName,
2394 'user_password' => $this->mPassword,
2395 'user_newpassword' => $this->mNewpassword,
2396 'user_newpass_time' => $dbw->timestamp( $this->mNewpassTime ),
2397 'user_email' => $this->mEmail,
2398 'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
2399 'user_real_name' => $this->mRealName,
2400 'user_options' => $this->encodeOptions(),
2401 'user_token' => $this->mToken,
2402 'user_registration' => $dbw->timestamp( $this->mRegistration ),
2403 'user_editcount' => 0,
2404 ), __METHOD__
2405 );
2406 $this->mId = $dbw->insertId();
2407
2408 // Clear instance cache other than user table data, which is already accurate
2409 $this->clearInstanceCache();
2410 }
2411
2412 /**
2413 * If this (non-anonymous) user is blocked, block any IP address
2414 * they've successfully logged in from.
2415 */
2416 function spreadBlock() {
2417 wfDebug( __METHOD__."()\n" );
2418 $this->load();
2419 if ( $this->mId == 0 ) {
2420 return;
2421 }
2422
2423 $userblock = Block::newFromDB( '', $this->mId );
2424 if ( !$userblock ) {
2425 return;
2426 }
2427
2428 $userblock->doAutoblock( wfGetIp() );
2429
2430 }
2431
2432 /**
2433 * Generate a string which will be different for any combination of
2434 * user options which would produce different parser output.
2435 * This will be used as part of the hash key for the parser cache,
2436 * so users will the same options can share the same cached data
2437 * safely.
2438 *
2439 * Extensions which require it should install 'PageRenderingHash' hook,
2440 * which will give them a chance to modify this key based on their own
2441 * settings.
2442 *
2443 * @return \type{\string} Page rendering hash
2444 */
2445 function getPageRenderingHash() {
2446 global $wgContLang, $wgUseDynamicDates, $wgLang;
2447 if( $this->mHash ){
2448 return $this->mHash;
2449 }
2450
2451 // stubthreshold is only included below for completeness,
2452 // it will always be 0 when this function is called by parsercache.
2453
2454 $confstr = $this->getOption( 'math' );
2455 $confstr .= '!' . $this->getOption( 'stubthreshold' );
2456 if ( $wgUseDynamicDates ) {
2457 $confstr .= '!' . $this->getDatePreference();
2458 }
2459 $confstr .= '!' . ($this->getOption( 'numberheadings' ) ? '1' : '');
2460 $confstr .= '!' . $wgLang->getCode();
2461 $confstr .= '!' . $this->getOption( 'thumbsize' );
2462 // add in language specific options, if any
2463 $extra = $wgContLang->getExtraHashOptions();
2464 $confstr .= $extra;
2465
2466 // Give a chance for extensions to modify the hash, if they have
2467 // extra options or other effects on the parser cache.
2468 wfRunHooks( 'PageRenderingHash', array( &$confstr ) );
2469
2470 // Make it a valid memcached key fragment
2471 $confstr = str_replace( ' ', '_', $confstr );
2472 $this->mHash = $confstr;
2473 return $confstr;
2474 }
2475
2476 /**
2477 * Get whether the user is explicitly blocked from account creation.
2478 * @return \type{\bool} True if blocked
2479 */
2480 function isBlockedFromCreateAccount() {
2481 $this->getBlockedStatus();
2482 return $this->mBlock && $this->mBlock->mCreateAccount;
2483 }
2484
2485 /**
2486 * Get whether the user is blocked from using Special:Emailuser.
2487 * @return \type{\bool} True if blocked
2488 */
2489 function isBlockedFromEmailuser() {
2490 $this->getBlockedStatus();
2491 return $this->mBlock && $this->mBlock->mBlockEmail;
2492 }
2493
2494 /**
2495 * Get whether the user is allowed to create an account.
2496 * @return \type{\bool} True if allowed
2497 */
2498 function isAllowedToCreateAccount() {
2499 return $this->isAllowed( 'createaccount' ) && !$this->isBlockedFromCreateAccount();
2500 }
2501
2502 /**
2503 * @deprecated
2504 */
2505 function setLoaded( $loaded ) {
2506 wfDeprecated( __METHOD__ );
2507 }
2508
2509 /**
2510 * Get this user's personal page title.
2511 *
2512 * @return \type{Title} User's personal page title
2513 */
2514 function getUserPage() {
2515 return Title::makeTitle( NS_USER, $this->getName() );
2516 }
2517
2518 /**
2519 * Get this user's talk page title.
2520 *
2521 * @return \type{Title} User's talk page title
2522 */
2523 function getTalkPage() {
2524 $title = $this->getUserPage();
2525 return $title->getTalkPage();
2526 }
2527
2528 /**
2529 * Get the maximum valid user ID.
2530 * @return \type{\int} %User ID
2531 * @static
2532 */
2533 function getMaxID() {
2534 static $res; // cache
2535
2536 if ( isset( $res ) )
2537 return $res;
2538 else {
2539 $dbr = wfGetDB( DB_SLAVE );
2540 return $res = $dbr->selectField( 'user', 'max(user_id)', false, 'User::getMaxID' );
2541 }
2542 }
2543
2544 /**
2545 * Determine whether the user is a newbie. Newbies are either
2546 * anonymous IPs, or the most recently created accounts.
2547 * @return \type{\bool} True if the user is a newbie
2548 */
2549 function isNewbie() {
2550 return !$this->isAllowed( 'autoconfirmed' );
2551 }
2552
2553 /**
2554 * Is the user active? We check to see if they've made at least
2555 * X number of edits in the last Y days.
2556 *
2557 * @return \type{\bool} True if the user is active, false if not.
2558 */
2559 public function isActiveEditor() {
2560 global $wgActiveUserEditCount, $wgActiveUserDays;
2561 $dbr = wfGetDB( DB_SLAVE );
2562
2563 // Stolen without shame from RC
2564 $cutoff_unixtime = time() - ( $wgActiveUserDays * 86400 );
2565 $cutoff_unixtime = $cutoff_unixtime - ( $cutoff_unixtime % 86400 );
2566 $oldTime = $dbr->addQuotes( $dbr->timestamp( $cutoff_unixtime ) );
2567
2568 $res = $dbr->select( 'revision', '1',
2569 array( 'rev_user_text' => $this->getName(), "rev_timestamp > $oldTime"),
2570 __METHOD__,
2571 array('LIMIT' => $wgActiveUserEditCount ) );
2572
2573 $count = $dbr->numRows($res);
2574 $dbr->freeResult($res);
2575
2576 return $count == $wgActiveUserEditCount;
2577 }
2578
2579 /**
2580 * Check to see if the given clear-text password is one of the accepted passwords
2581 * @param $password \type{\string} user password.
2582 * @return \type{\bool} True if the given password is correct, otherwise False.
2583 */
2584 function checkPassword( $password ) {
2585 global $wgAuth;
2586 $this->load();
2587
2588 // Even though we stop people from creating passwords that
2589 // are shorter than this, doesn't mean people wont be able
2590 // to. Certain authentication plugins do NOT want to save
2591 // domain passwords in a mysql database, so we should
2592 // check this (incase $wgAuth->strict() is false).
2593 if( !$this->isValidPassword( $password ) ) {
2594 return false;
2595 }
2596
2597 if( $wgAuth->authenticate( $this->getName(), $password ) ) {
2598 return true;
2599 } elseif( $wgAuth->strict() ) {
2600 /* Auth plugin doesn't allow local authentication */
2601 return false;
2602 } elseif( $wgAuth->strictUserAuth( $this->getName() ) ) {
2603 /* Auth plugin doesn't allow local authentication for this user name */
2604 return false;
2605 }
2606 if ( self::comparePasswords( $this->mPassword, $password, $this->mId ) ) {
2607 return true;
2608 } elseif ( function_exists( 'iconv' ) ) {
2609 # Some wikis were converted from ISO 8859-1 to UTF-8, the passwords can't be converted
2610 # Check for this with iconv
2611 $cp1252Password = iconv( 'UTF-8', 'WINDOWS-1252//TRANSLIT', $password );
2612 if ( self::comparePasswords( $this->mPassword, $cp1252Password, $this->mId ) ) {
2613 return true;
2614 }
2615 }
2616 return false;
2617 }
2618
2619 /**
2620 * Check if the given clear-text password matches the temporary password
2621 * sent by e-mail for password reset operations.
2622 * @return \type{\bool} True if matches, false otherwise
2623 */
2624 function checkTemporaryPassword( $plaintext ) {
2625 return self::comparePasswords( $this->mNewpassword, $plaintext, $this->getId() );
2626 }
2627
2628 /**
2629 * Initialize (if necessary) and return a session token value
2630 * which can be used in edit forms to show that the user's
2631 * login credentials aren't being hijacked with a foreign form
2632 * submission.
2633 *
2634 * @param $salt \twotypes{\string,\arrayof{\string}} Optional function-specific data for hashing
2635 * @return \type{\string} The new edit token
2636 */
2637 function editToken( $salt = '' ) {
2638 if ( $this->isAnon() ) {
2639 return EDIT_TOKEN_SUFFIX;
2640 } else {
2641 if( !isset( $_SESSION['wsEditToken'] ) ) {
2642 $token = $this->generateToken();
2643 $_SESSION['wsEditToken'] = $token;
2644 } else {
2645 $token = $_SESSION['wsEditToken'];
2646 }
2647 if( is_array( $salt ) ) {
2648 $salt = implode( '|', $salt );
2649 }
2650 return md5( $token . $salt ) . EDIT_TOKEN_SUFFIX;
2651 }
2652 }
2653
2654 /**
2655 * Generate a looking random token for various uses.
2656 *
2657 * @param $salt \type{\string} Optional salt value
2658 * @return \type{\string} The new random token
2659 */
2660 function generateToken( $salt = '' ) {
2661 $token = dechex( mt_rand() ) . dechex( mt_rand() );
2662 return md5( $token . $salt );
2663 }
2664
2665 /**
2666 * Check given value against the token value stored in the session.
2667 * A match should confirm that the form was submitted from the
2668 * user's own login session, not a form submission from a third-party
2669 * site.
2670 *
2671 * @param $val \type{\string} Input value to compare
2672 * @param $salt \type{\string} Optional function-specific data for hashing
2673 * @return \type{\bool} Whether the token matches
2674 */
2675 function matchEditToken( $val, $salt = '' ) {
2676 $sessionToken = $this->editToken( $salt );
2677 if ( $val != $sessionToken ) {
2678 wfDebug( "User::matchEditToken: broken session data\n" );
2679 }
2680 return $val == $sessionToken;
2681 }
2682
2683 /**
2684 * Check given value against the token value stored in the session,
2685 * ignoring the suffix.
2686 *
2687 * @param $val \type{\string} Input value to compare
2688 * @param $salt \type{\string} Optional function-specific data for hashing
2689 * @return \type{\bool} Whether the token matches
2690 */
2691 function matchEditTokenNoSuffix( $val, $salt = '' ) {
2692 $sessionToken = $this->editToken( $salt );
2693 return substr( $sessionToken, 0, 32 ) == substr( $val, 0, 32 );
2694 }
2695
2696 /**
2697 * Generate a new e-mail confirmation token and send a confirmation/invalidation
2698 * mail to the user's given address.
2699 *
2700 * @return \twotypes{\bool,WikiError} True on success, a WikiError object on failure.
2701 */
2702 function sendConfirmationMail() {
2703 global $wgLang;
2704 $expiration = null; // gets passed-by-ref and defined in next line.
2705 $token = $this->confirmationToken( $expiration );
2706 $url = $this->confirmationTokenUrl( $token );
2707 $invalidateURL = $this->invalidationTokenUrl( $token );
2708 $this->saveSettings();
2709
2710 return $this->sendMail( wfMsg( 'confirmemail_subject' ),
2711 wfMsg( 'confirmemail_body',
2712 wfGetIP(),
2713 $this->getName(),
2714 $url,
2715 $wgLang->timeanddate( $expiration, false ),
2716 $invalidateURL ) );
2717 }
2718
2719 /**
2720 * Send an e-mail to this user's account. Does not check for
2721 * confirmed status or validity.
2722 *
2723 * @param $subject \type{\string} Message subject
2724 * @param $body \type{\string} Message body
2725 * @param $from \type{\string} Optional From address; if unspecified, default $wgPasswordSender will be used
2726 * @param $replyto \type{\string} Reply-to address
2727 * @return \twotypes{\bool,WikiError} True on success, a WikiError object on failure
2728 */
2729 function sendMail( $subject, $body, $from = null, $replyto = null ) {
2730 if( is_null( $from ) ) {
2731 global $wgPasswordSender;
2732 $from = $wgPasswordSender;
2733 }
2734
2735 $to = new MailAddress( $this );
2736 $sender = new MailAddress( $from );
2737 return UserMailer::send( $to, $sender, $subject, $body, $replyto );
2738 }
2739
2740 /**
2741 * Generate, store, and return a new e-mail confirmation code.
2742 * A hash (unsalted, since it's used as a key) is stored.
2743 *
2744 * @note Call saveSettings() after calling this function to commit
2745 * this change to the database.
2746 *
2747 * @param[out] &$expiration \type{\mixed} Accepts the expiration time
2748 * @return \type{\string} New token
2749 * @private
2750 */
2751 function confirmationToken( &$expiration ) {
2752 $now = time();
2753 $expires = $now + 7 * 24 * 60 * 60;
2754 $expiration = wfTimestamp( TS_MW, $expires );
2755 $token = $this->generateToken( $this->mId . $this->mEmail . $expires );
2756 $hash = md5( $token );
2757 $this->load();
2758 $this->mEmailToken = $hash;
2759 $this->mEmailTokenExpires = $expiration;
2760 return $token;
2761 }
2762
2763 /**
2764 * Return a URL the user can use to confirm their email address.
2765 * @param $token \type{\string} Accepts the email confirmation token
2766 * @return \type{\string} New token URL
2767 * @private
2768 */
2769 function confirmationTokenUrl( $token ) {
2770 return $this->getTokenUrl( 'ConfirmEmail', $token );
2771 }
2772 /**
2773 * Return a URL the user can use to invalidate their email address.
2774 *
2775 * @param $token \type{\string} Accepts the email confirmation token
2776 * @return \type{\string} New token URL
2777 * @private
2778 */
2779 function invalidationTokenUrl( $token ) {
2780 return $this->getTokenUrl( 'Invalidateemail', $token );
2781 }
2782
2783 /**
2784 * Internal function to format the e-mail validation/invalidation URLs.
2785 * This uses $wgArticlePath directly as a quickie hack to use the
2786 * hardcoded English names of the Special: pages, for ASCII safety.
2787 *
2788 * @note Since these URLs get dropped directly into emails, using the
2789 * short English names avoids insanely long URL-encoded links, which
2790 * also sometimes can get corrupted in some browsers/mailers
2791 * (bug 6957 with Gmail and Internet Explorer).
2792 *
2793 * @param $page \type{\string} Special page
2794 * @param $token \type{\string} Token
2795 * @return \type{\string} Formatted URL
2796 */
2797 protected function getTokenUrl( $page, $token ) {
2798 global $wgArticlePath;
2799 return wfExpandUrl(
2800 str_replace(
2801 '$1',
2802 "Special:$page/$token",
2803 $wgArticlePath ) );
2804 }
2805
2806 /**
2807 * Mark the e-mail address confirmed.
2808 *
2809 * @note Call saveSettings() after calling this function to commit the change.
2810 */
2811 function confirmEmail() {
2812 $this->setEmailAuthenticationTimestamp( wfTimestampNow() );
2813 return true;
2814 }
2815
2816 /**
2817 * Invalidate the user's e-mail confirmation, and unauthenticate the e-mail
2818 * address if it was already confirmed.
2819 *
2820 * @note Call saveSettings() after calling this function to commit the change.
2821 */
2822 function invalidateEmail() {
2823 $this->load();
2824 $this->mEmailToken = null;
2825 $this->mEmailTokenExpires = null;
2826 $this->setEmailAuthenticationTimestamp( null );
2827 return true;
2828 }
2829
2830 /**
2831 * Set the e-mail authentication timestamp.
2832 * @param $timestamp \type{\string} TS_MW timestamp
2833 */
2834 function setEmailAuthenticationTimestamp( $timestamp ) {
2835 $this->load();
2836 $this->mEmailAuthenticated = $timestamp;
2837 wfRunHooks( 'UserSetEmailAuthenticationTimestamp', array( $this, &$this->mEmailAuthenticated ) );
2838 }
2839
2840 /**
2841 * Is this user allowed to send e-mails within limits of current
2842 * site configuration?
2843 * @return \type{\bool} True if allowed
2844 */
2845 function canSendEmail() {
2846 $canSend = $this->isEmailConfirmed();
2847 wfRunHooks( 'UserCanSendEmail', array( &$this, &$canSend ) );
2848 return $canSend;
2849 }
2850
2851 /**
2852 * Is this user allowed to receive e-mails within limits of current
2853 * site configuration?
2854 * @return \type{\bool} True if allowed
2855 */
2856 function canReceiveEmail() {
2857 return $this->isEmailConfirmed() && !$this->getOption( 'disablemail' );
2858 }
2859
2860 /**
2861 * Is this user's e-mail address valid-looking and confirmed within
2862 * limits of the current site configuration?
2863 *
2864 * @note If $wgEmailAuthentication is on, this may require the user to have
2865 * confirmed their address by returning a code or using a password
2866 * sent to the address from the wiki.
2867 *
2868 * @return \type{\bool} True if confirmed
2869 */
2870 function isEmailConfirmed() {
2871 global $wgEmailAuthentication;
2872 $this->load();
2873 $confirmed = true;
2874 if( wfRunHooks( 'EmailConfirmed', array( &$this, &$confirmed ) ) ) {
2875 if( $this->isAnon() )
2876 return false;
2877 if( !self::isValidEmailAddr( $this->mEmail ) )
2878 return false;
2879 if( $wgEmailAuthentication && !$this->getEmailAuthenticationTimestamp() )
2880 return false;
2881 return true;
2882 } else {
2883 return $confirmed;
2884 }
2885 }
2886
2887 /**
2888 * Check whether there is an outstanding request for e-mail confirmation.
2889 * @return \type{\bool} True if pending
2890 */
2891 function isEmailConfirmationPending() {
2892 global $wgEmailAuthentication;
2893 return $wgEmailAuthentication &&
2894 !$this->isEmailConfirmed() &&
2895 $this->mEmailToken &&
2896 $this->mEmailTokenExpires > wfTimestamp();
2897 }
2898
2899 /**
2900 * Get the timestamp of account creation.
2901 *
2902 * @return \twotypes{\string,\bool} string Timestamp of account creation, or false for
2903 * non-existent/anonymous user accounts.
2904 */
2905 public function getRegistration() {
2906 return $this->mId > 0
2907 ? $this->mRegistration
2908 : false;
2909 }
2910
2911 /**
2912 * Get the permissions associated with a given list of groups
2913 *
2914 * @param $groups \type{\arrayof{\string}} List of internal group names
2915 * @return \type{\arrayof{\string}} List of permission key names for given groups combined
2916 */
2917 static function getGroupPermissions( $groups ) {
2918 global $wgGroupPermissions;
2919 $rights = array();
2920 foreach( $groups as $group ) {
2921 if( isset( $wgGroupPermissions[$group] ) ) {
2922 $rights = array_merge( $rights,
2923 array_keys( array_filter( $wgGroupPermissions[$group] ) ) );
2924 }
2925 }
2926 return $rights;
2927 }
2928
2929 /**
2930 * Get all the groups who have a given permission
2931 *
2932 * @param $role \type{\string} Role to check
2933 * @return \type{\arrayof{\string}} List of internal group names with the given permission
2934 */
2935 static function getGroupsWithPermission( $role ) {
2936 global $wgGroupPermissions;
2937 $allowedGroups = array();
2938 foreach ( $wgGroupPermissions as $group => $rights ) {
2939 if ( isset( $rights[$role] ) && $rights[$role] ) {
2940 $allowedGroups[] = $group;
2941 }
2942 }
2943 return $allowedGroups;
2944 }
2945
2946 /**
2947 * Get the localized descriptive name for a group, if it exists
2948 *
2949 * @param $group \type{\string} Internal group name
2950 * @return \type{\string} Localized descriptive group name
2951 */
2952 static function getGroupName( $group ) {
2953 global $wgMessageCache;
2954 $wgMessageCache->loadAllMessages();
2955 $key = "group-$group";
2956 $name = wfMsg( $key );
2957 return $name == '' || wfEmptyMsg( $key, $name )
2958 ? $group
2959 : $name;
2960 }
2961
2962 /**
2963 * Get the localized descriptive name for a member of a group, if it exists
2964 *
2965 * @param $group \type{\string} Internal group name
2966 * @return \type{\string} Localized name for group member
2967 */
2968 static function getGroupMember( $group ) {
2969 global $wgMessageCache;
2970 $wgMessageCache->loadAllMessages();
2971 $key = "group-$group-member";
2972 $name = wfMsg( $key );
2973 return $name == '' || wfEmptyMsg( $key, $name )
2974 ? $group
2975 : $name;
2976 }
2977
2978 /**
2979 * Return the set of defined explicit groups.
2980 * The implicit groups (by default *, 'user' and 'autoconfirmed')
2981 * are not included, as they are defined automatically, not in the database.
2982 * @return \type{\arrayof{\string}} Array of internal group names
2983 */
2984 static function getAllGroups() {
2985 global $wgGroupPermissions;
2986 return array_diff(
2987 array_keys( $wgGroupPermissions ),
2988 self::getImplicitGroups()
2989 );
2990 }
2991
2992 /**
2993 * Get a list of all available permissions.
2994 * @return \type{\arrayof{\string}} Array of permission names
2995 */
2996 static function getAllRights() {
2997 if ( self::$mAllRights === false ) {
2998 global $wgAvailableRights;
2999 if ( count( $wgAvailableRights ) ) {
3000 self::$mAllRights = array_unique( array_merge( self::$mCoreRights, $wgAvailableRights ) );
3001 } else {
3002 self::$mAllRights = self::$mCoreRights;
3003 }
3004 wfRunHooks( 'UserGetAllRights', array( &self::$mAllRights ) );
3005 }
3006 return self::$mAllRights;
3007 }
3008
3009 /**
3010 * Get a list of implicit groups
3011 * @return \type{\arrayof{\string}} Array of internal group names
3012 */
3013 public static function getImplicitGroups() {
3014 global $wgImplicitGroups;
3015 $groups = $wgImplicitGroups;
3016 wfRunHooks( 'UserGetImplicitGroups', array( &$groups ) ); #deprecated, use $wgImplictGroups instead
3017 return $groups;
3018 }
3019
3020 /**
3021 * Get the title of a page describing a particular group
3022 *
3023 * @param $group \type{\string} Internal group name
3024 * @return \twotypes{Title,\bool} Title of the page if it exists, false otherwise
3025 */
3026 static function getGroupPage( $group ) {
3027 global $wgMessageCache;
3028 $wgMessageCache->loadAllMessages();
3029 $page = wfMsgForContent( 'grouppage-' . $group );
3030 if( !wfEmptyMsg( 'grouppage-' . $group, $page ) ) {
3031 $title = Title::newFromText( $page );
3032 if( is_object( $title ) )
3033 return $title;
3034 }
3035 return false;
3036 }
3037
3038 /**
3039 * Create a link to the group in HTML, if available;
3040 * else return the group name.
3041 *
3042 * @param $group \type{\string} Internal name of the group
3043 * @param $text \type{\string} The text of the link
3044 * @return \type{\string} HTML link to the group
3045 */
3046 static function makeGroupLinkHTML( $group, $text = '' ) {
3047 if( $text == '' ) {
3048 $text = self::getGroupName( $group );
3049 }
3050 $title = self::getGroupPage( $group );
3051 if( $title ) {
3052 global $wgUser;
3053 $sk = $wgUser->getSkin();
3054 return $sk->makeLinkObj( $title, htmlspecialchars( $text ) );
3055 } else {
3056 return $text;
3057 }
3058 }
3059
3060 /**
3061 * Create a link to the group in Wikitext, if available;
3062 * else return the group name.
3063 *
3064 * @param $group \type{\string} Internal name of the group
3065 * @param $text \type{\string} The text of the link
3066 * @return \type{\string} Wikilink to the group
3067 */
3068 static function makeGroupLinkWiki( $group, $text = '' ) {
3069 if( $text == '' ) {
3070 $text = self::getGroupName( $group );
3071 }
3072 $title = self::getGroupPage( $group );
3073 if( $title ) {
3074 $page = $title->getPrefixedText();
3075 return "[[$page|$text]]";
3076 } else {
3077 return $text;
3078 }
3079 }
3080
3081 /**
3082 * Increment the user's edit-count field.
3083 * Will have no effect for anonymous users.
3084 */
3085 function incEditCount() {
3086 if( !$this->isAnon() ) {
3087 $dbw = wfGetDB( DB_MASTER );
3088 $dbw->update( 'user',
3089 array( 'user_editcount=user_editcount+1' ),
3090 array( 'user_id' => $this->getId() ),
3091 __METHOD__ );
3092
3093 // Lazy initialization check...
3094 if( $dbw->affectedRows() == 0 ) {
3095 // Pull from a slave to be less cruel to servers
3096 // Accuracy isn't the point anyway here
3097 $dbr = wfGetDB( DB_SLAVE );
3098 $count = $dbr->selectField( 'revision',
3099 'COUNT(rev_user)',
3100 array( 'rev_user' => $this->getId() ),
3101 __METHOD__ );
3102
3103 // Now here's a goddamn hack...
3104 if( $dbr !== $dbw ) {
3105 // If we actually have a slave server, the count is
3106 // at least one behind because the current transaction
3107 // has not been committed and replicated.
3108 $count++;
3109 } else {
3110 // But if DB_SLAVE is selecting the master, then the
3111 // count we just read includes the revision that was
3112 // just added in the working transaction.
3113 }
3114
3115 $dbw->update( 'user',
3116 array( 'user_editcount' => $count ),
3117 array( 'user_id' => $this->getId() ),
3118 __METHOD__ );
3119 }
3120 }
3121 // edit count in user cache too
3122 $this->invalidateCache();
3123 }
3124
3125 /**
3126 * Get the description of a given right
3127 *
3128 * @param $right \type{\string} Right to query
3129 * @return \type{\string} Localized description of the right
3130 */
3131 static function getRightDescription( $right ) {
3132 global $wgMessageCache;
3133 $wgMessageCache->loadAllMessages();
3134 $key = "right-$right";
3135 $name = wfMsg( $key );
3136 return $name == '' || wfEmptyMsg( $key, $name )
3137 ? $right
3138 : $name;
3139 }
3140
3141 /**
3142 * Make an old-style password hash
3143 *
3144 * @param $password \type{\string} Plain-text password
3145 * @param $userId \type{\string} %User ID
3146 * @return \type{\string} Password hash
3147 */
3148 static function oldCrypt( $password, $userId ) {
3149 global $wgPasswordSalt;
3150 if ( $wgPasswordSalt ) {
3151 return md5( $userId . '-' . md5( $password ) );
3152 } else {
3153 return md5( $password );
3154 }
3155 }
3156
3157 /**
3158 * Make a new-style password hash
3159 *
3160 * @param $password \type{\string} Plain-text password
3161 * @param $salt \type{\string} Optional salt, may be random or the user ID.
3162 * If unspecified or false, will generate one automatically
3163 * @return \type{\string} Password hash
3164 */
3165 static function crypt( $password, $salt = false ) {
3166 global $wgPasswordSalt;
3167
3168 if($wgPasswordSalt) {
3169 if ( $salt === false ) {
3170 $salt = substr( wfGenerateToken(), 0, 8 );
3171 }
3172 return ':B:' . $salt . ':' . md5( $salt . '-' . md5( $password ) );
3173 } else {
3174 return ':A:' . md5( $password);
3175 }
3176 }
3177
3178 /**
3179 * Compare a password hash with a plain-text password. Requires the user
3180 * ID if there's a chance that the hash is an old-style hash.
3181 *
3182 * @param $hash \type{\string} Password hash
3183 * @param $password \type{\string} Plain-text password to compare
3184 * @param $userId \type{\string} %User ID for old-style password salt
3185 * @return \type{\bool} True if matches, false otherwise
3186 */
3187 static function comparePasswords( $hash, $password, $userId = false ) {
3188 $m = false;
3189 $type = substr( $hash, 0, 3 );
3190 if ( $type == ':A:' ) {
3191 # Unsalted
3192 return md5( $password ) === substr( $hash, 3 );
3193 } elseif ( $type == ':B:' ) {
3194 # Salted
3195 list( $salt, $realHash ) = explode( ':', substr( $hash, 3 ), 2 );
3196 return md5( $salt.'-'.md5( $password ) ) == $realHash;
3197 } else {
3198 # Old-style
3199 return self::oldCrypt( $password, $userId ) === $hash;
3200 }
3201 }
3202
3203 /**
3204 * Add a newuser log entry for this user
3205 * @param bool $byEmail, account made by email?
3206 */
3207 public function addNewUserLogEntry( $byEmail = false ) {
3208 global $wgUser, $wgContLang, $wgNewUserLog;
3209 if( empty($wgNewUserLog) ) {
3210 return true; // disabled
3211 }
3212 $talk = $wgContLang->getFormattedNsText( NS_TALK );
3213 if( $this->getName() == $wgUser->getName() ) {
3214 $action = 'create';
3215 $message = '';
3216 } else {
3217 $action = 'create2';
3218 $message = $byEmail ? wfMsgForContent( 'newuserlog-byemail' ) : '';
3219 }
3220 $log = new LogPage( 'newusers' );
3221 $log->addEntry( $action, $this->getUserPage(), $message, array( $this->getId() ) );
3222 return true;
3223 }
3224
3225 /**
3226 * Add an autocreate newuser log entry for this user
3227 * Used by things like CentralAuth and perhaps other authplugins.
3228 */
3229 public static function addNewUserLogEntryAutoCreate() {
3230 global $wgNewUserLog;
3231 if( empty($wgNewUserLog) ) {
3232 return true; // disabled
3233 }
3234 $log = new LogPage( 'newusers', false );
3235 $log->addEntry( 'autocreate', $this->getUserPage(), '', array( $this->getId() ) );
3236 return true;
3237 }
3238
3239 }
MediaWiki Core