Merge "Update docs/hooks.txt for ShowSearchHitTitle"
[mediawiki.git] / includes / api / ApiChangeAuthenticationData.php
blobc25920e72859d0da3d16430989b7899029012eac
1 <?php
2 /**
3 * Copyright © 2016 Brad Jorsch <bjorsch@wikimedia.org>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
20 * @file
23 use MediaWiki\Auth\AuthManager;
25 /**
26 * Change authentication data with AuthManager
28 * @ingroup API
30 class ApiChangeAuthenticationData extends ApiBase {
32 public function __construct( ApiMain $main, $action ) {
33 parent::__construct( $main, $action, 'changeauth' );
36 public function execute() {
37 if ( !$this->getUser()->isLoggedIn() ) {
38 $this->dieWithError( 'apierror-mustbeloggedin-changeauthenticationdata', 'notloggedin' );
41 $helper = new ApiAuthManagerHelper( $this );
42 $manager = AuthManager::singleton();
44 // Check security-sensitive operation status
45 $helper->securitySensitiveOperation( 'ChangeCredentials' );
47 // Fetch the request
48 $reqs = ApiAuthManagerHelper::blacklistAuthenticationRequests(
49 $helper->loadAuthenticationRequests( AuthManager::ACTION_CHANGE ),
50 $this->getConfig()->get( 'ChangeCredentialsBlacklist' )
52 if ( count( $reqs ) !== 1 ) {
53 $this->dieWithError( 'apierror-changeauth-norequest', 'badrequest' );
55 $req = reset( $reqs );
57 // Make the change
58 $status = $manager->allowsAuthenticationDataChange( $req, true );
59 Hooks::run( 'ChangeAuthenticationDataAudit', [ $req, $status ] );
60 if ( !$status->isGood() ) {
61 $this->dieStatus( $status );
63 $manager->changeAuthenticationData( $req );
65 $this->getResult()->addValue( null, 'changeauthenticationdata', [ 'status' => 'success' ] );
68 public function isWriteMode() {
69 return true;
72 public function needsToken() {
73 return 'csrf';
76 public function getAllowedParams() {
77 return ApiAuthManagerHelper::getStandardParams( AuthManager::ACTION_CHANGE,
78 'request'
82 public function dynamicParameterDocumentation() {
83 return [ 'api-help-authmanagerhelper-additional-params', AuthManager::ACTION_CHANGE ];
86 protected function getExamplesMessages() {
87 return [
88 'action=changeauthenticationdata' .
89 '&changeauthrequest=MediaWiki%5CAuth%5CPasswordAuthenticationRequest' .
90 '&password=ExamplePassword&retype=ExamplePassword&changeauthtoken=123ABC'
91 => 'apihelp-changeauthenticationdata-example-password',
95 public function getHelpUrls() {
96 return 'https://www.mediawiki.org/wiki/API:Manage_authentication_data';