| blob | 27f4556bf71e0b431608855690c8b4f41e13b01b |
1 <?php
2 /**
3 * Page edition user interface.
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
19 *
20 * @file
21 */
23 /**
24 * The edit page/HTML interface (split from Article)
25 * The actual database and text munging is still in Article,
26 * but it should get easier to call those from alternate
27 * interfaces.
28 *
29 * EditPage cares about two distinct titles:
30 * $this->mContextTitle is the page that forms submit to, links point to,
31 * redirects go to, etc. $this->mTitle (as well as $mArticle) is the
32 * page in the database that is actually being edited. These are
33 * usually the same, but they are now allowed to be different.
34 *
35 * Surgeon General's Warning: prolonged exposure to this class is known to cause
36 * headaches, which may be fatal.
37 */
40 /**
41 * Status: Article successfully updated
42 */
45 /**
46 * Status: Article successfully created
47 */
50 /**
51 * Status: Article update aborted by a hook function
52 */
55 /**
56 * Status: A hook function returned an error
57 */
60 /**
61 * Status: User is blocked from editing this page
62 */
65 /**
66 * Status: Content too big (> $wgMaxArticleSize)
67 */
70 /**
71 * Status: User cannot edit? (not used)
72 */
75 /**
76 * Status: this anonymous user is not allowed to edit this page
77 */
80 /**
81 * Status: this logged in user is not allowed to edit this page
82 */
85 /**
86 * Status: wiki is in readonly mode (wfReadOnly() == true)
87 */
90 /**
91 * Status: rate limiter for action 'edit' was tripped
92 */
95 /**
96 * Status: article was deleted while editing and param wpRecreate == false or form
97 * was not posted
98 */
101 /**
102 * Status: user tried to create this page, but is not allowed to do that
103 * ( Title->userCan('create') == false )
104 */
107 /**
108 * Status: user tried to create a blank page
109 */
112 /**
113 * Status: (non-resolvable) edit conflict
114 */
117 /**
118 * Status: no edit summary given and the user has forceeditsummary set and the user is not
119 * editing in his own userspace or talkspace and wpIgnoreBlankSummary == false
120 */
123 /**
124 * Status: user tried to create a new section without content
125 */
128 /**
129 * Status: article is too big (> $wgMaxArticleSize), after merging in the new section
130 */
133 /**
134 * not used
135 */
138 /**
139 * Status: WikiPage::doEdit() was unsuccessful
140 */
143 /**
144 * Status: summary contained spam according to one of the regexes in $wgSummarySpamRegex
145 */
148 /**
149 * Status: anonymous user is not allowed to upload (User::isAllowed('upload') == false)
150 */
153 /**
154 * Status: logged in user is not allowed to upload (User::isAllowed('upload') == false)
155 */
158 /**
159 * Status: can't parse content
160 */
163 /**
164 * HTML id and name for the beginning of the edit form.
165 */
168 /**
169 * Prefix of key for cookie used to pass post-edit state.
170 * The revision id edited is added after this
171 */
174 /**
175 * Duration of PostEdit cookie, in seconds.
176 * The cookie will be removed instantly if the JavaScript runs.
177 *
178 * Otherwise, though, we don't want the cookies to accumulate.
179 * RFC 2109 ( https://www.ietf.org/rfc/rfc2109.txt ) specifies a possible limit of only 20 cookies per domain.
180 * This still applies at least to some versions of IE without full updates:
181 * https://blogs.msdn.com/b/ieinternals/archive/2009/08/20/wininet-ie-cookie-internals-faq.aspx
182 *
183 * A value of 20 minutes should be enough to take into account slow loads and minor
184 * clock skew while still avoiding cookie accumulation when JavaScript is turned off.
185 */
188 /**
189 * @var Article
190 */
193 /**
194 * @var Title
195 */
220 #var $mPreviewTemplates;
222 /**
223 * @var ParserOutput
224 */
227 /**
228 * Has a summary been preset using GET parameter &summary= ?
229 * @var Bool
230 */
236 # Form values
244 # Placeholders for text injection by hooks (must be HTML)
245 # extensions should take care to _append_ to the present value
256 /* $didSave should be set to true whenever an article was successfully altered. */
262 /**
263 * Set to true to allow editing of non-text content types.
264 *
265 * @var bool
266 */
269 /**
270 * @param $article Article
271 */
280 }
282 /**
283 * @return Article
284 */
287 }
289 /**
290 * @since 1.19
291 * @return Title
292 */
295 }
297 /**
298 * Set the context Title object
299 *
300 * @param $title Title object or null
301 */
304 }
306 /**
307 * Get the context title object.
308 * If not set, $wgTitle will be returned. This behavior might change in
309 * the future to return $this->mTitle instead.
310 *
311 * @return Title object
312 */
319 }
320 }
324 }
326 /**
327 * This is the function that gets called for "action=edit". It
328 * sets up various member variables, then passes execution to
329 * another function, usually showEditForm()
330 *
331 * The edit form is self-submitting, so that when things like
332 * preview and edit conflicts occur, we get the same form back
333 * with the extra stuff added. Only when the final submission
334 * is made and all is well do we actually save and redirect to
335 * the newly-edited page.
336 */
339 // Allow extensions to modify/prevent this form or submission
342 }
347 // If they used redlink=1 and the page exists, redirect to the main article
352 }
361 }
364 // Force preview
367 }
381 }
382 }
387 // Auto-block user's IP if the account was "hard" blocked
394 }
399 // css / js subpages of user pages get a special treatment
405 # Show applicable editing introductions
408 }
410 # Attempt submission here. This will check for edit conflicts,
411 # and redundantly check for locked database, blocked IPs, etc.
412 # that edit() already checked just in case someone tries to sneak
413 # in the back door with a hand-edited submission URL.
420 }
421 }
423 # First time through: get contents, set time for conflict
424 # checking, etc.
431 }
437 }
439 }
444 }
446 /**
447 * @return array
448 */
452 # Can this title be created?
456 }
457 # Ignore some permissions errors when a user is just previewing/viewing diffs
462 {
464 }
465 }
468 }
470 /**
471 * Display a permissions error page, like OutputPage::showPermissionsErrorPage(),
472 * but with the following differences:
473 * - If redlink=1, the user will be redirected to the page
474 * - If there is content to display or the error occurs while either saving,
475 * previewing or showing the difference, it will be a
476 * "View source for ..." page displaying the source code after the error message.
477 *
478 * @since 1.19
479 * @param array $permErrors of permissions errors, as returned by
480 * Title::getUserPermissionsErrors().
481 * @throws PermissionsError
482 */
487 // The edit page was reached via a red link.
488 // Redirect to the article page and let them click the edit tab if
489 // they really want a permission error.
492 }
496 # Use the normal message if there's nothing to display
501 }
504 $wgOut->setPageTitle( wfMessage( 'viewsource-title', $this->getContextTitle()->getPrefixedText() ) );
509 # If the user made changes, preserve them when showing the markup
510 # (This happens when a user is blocked during edit, for instance)
517 }
526 }
527 }
529 /**
530 * Show a read-only error
531 * Parameters are the same as OutputPage:readOnlyPage()
532 * Redirect to the article page if redlink=1
533 * @deprecated in 1.19; use displayPermissionsError() instead
534 */
535 function readOnlyPage( $source = null, $protected = false, $reasons = array(), $action = null ) {
540 // The edit page was reached via a red link.
541 // Redirect to the article page and let them click the edit tab if
542 // they really want a permission error.
546 }
547 }
549 /**
550 * Should we show a preview when the edit form is first shown?
551 *
552 * @return bool
553 */
557 // Explicit override from request
560 // Explicit override from request
563 // Nothing *to* preview for new sections
565 } elseif ( ( $wgRequest->getVal( 'preload' ) !== null || $this->mTitle->exists() ) && $wgUser->getOption( 'previewonfirst' ) ) {
566 // Standard preference behavior
571 {
572 // Categories are special
576 }
577 }
579 /**
580 * Checks whether the user entered a skin name in uppercase,
581 * e.g. "User:Example/Monobook.css" instead of "monobook.css"
582 *
583 * @return bool
584 */
591 );
596 }
597 }
599 /**
600 * Returns whether section editing is supported for the current page.
601 * Subclasses may override this to replace the default behavior, which is
602 * to check ContentHandler::supportsSections.
603 *
604 * @return bool true if this edit page supports sections, false otherwise.
605 */
609 }
611 /**
612 * This function collects the form data and uses it to populate various member variables.
613 * @param $request WebRequest
614 */
620 # Section edit can come from either the form or a link
626 }
631 # These fields need to be checked for encoding.
632 # Also remove trailing whitespace, but don't remove _initial_
633 # whitespace from the text boxes. This may be significant formatting.
636 // Skip this if wpTextbox2 has input, it indicates that we came
637 // from a conflict page with raw page text, not a custom form
638 // modified by subclasses
643 }
646 }
648 # Truncate for whole multibyte characters
651 # If the summary consists of a heading, e.g. '==Foobar==', extract the title from the
652 # header syntax, e.g. 'Foobar'. This is mainly an issue when we are using wpSummary for
653 # section titles.
656 # Treat sectiontitle the same way as summary.
657 # Note that wpSectionTitle is not yet a part of the actual edit form, as wpSummary is
658 # currently doing double duty as both edit summary and section title. Right now this
659 # is just to allow API edits to work around this limitation, but this should be
660 # incorporated into the actual edit form when EditPage is rewritten (Bugs 18654, 26312).
670 // wpTextbox1 field is missing, possibly due to being "too big"
671 // according to some filter rules such as Suhosin's setting for
672 // suhosin.request.max_value_length (d'oh)
675 // edittime should be one of our last fields; if it's missing,
676 // the submission probably broke somewhere in the middle.
678 }
680 # If the form is incomplete, force to preview.
685 /* Fallback for live preview */
689 // Remember whether a save was requested, so we can indicate
690 // if we forced preview due to session failure.
694 # Some browsers will not report any submit button
695 # if the user hits enter in the comment box.
696 # The unmarked state will be assumed to be a save,
697 # if the form seems otherwise complete.
700 # Failed token check, but only requested "Show Changes".
703 # Page might be a hack attempt posted from
704 # an external site. Preview instead of saving.
707 }
708 }
712 }
716 }
723 # Don't force edit summaries when a user is editing their own user or talk page
726 {
729 $this->allowBlankSummary = $request->getBool( 'wpIgnoreBlankSummary' ) || !$wgUser->getOption( 'forceeditsummary' );
730 }
734 # Not a posted form? Start with nothing.
746 $this->watchthis = $request->getBool( 'watchthis', false ); // Watch may be overridden by request parameters
749 // When creating a new section, we can preload a section title by passing it as the
750 // preloadtitle parameter in the URL (Bug 13100)
753 // Once wpSummary isn't being use for setting section titles, we should delete this.
755 }
760 }
761 }
765 }
766 }
774 $this->contentModel = $request->getText( 'model', $content_handler->getModelID() ); #may be overridden by revision
775 $this->contentFormat = $request->getText( 'format', $content_handler->getDefaultFormat() ); #may be overridden by revision
777 #TODO: check if the desired model is allowed in this namespace, and if a transition from the page's current model to the new model is allowed
778 #TODO: check if the desired content model supports the given content format!
782 // Custom edit intro for new sections
785 // Allow extensions to modify form data
789 }
791 /**
792 * Subpage overridable method for extracting the page content data from the
793 * posted form to be placed in $this->textbox1, if using customized input
794 * this method should be overridden and return the page text that will be used
795 * for saving, preview parsing and so on...
796 *
797 * @param $request WebRequest
798 */
801 }
803 /**
804 * Initialise form fields in the object
805 * Called on the first invocation, e.g. when a user clicks an edit link
806 * @return bool -- if the requested section is valid
807 */
815 }
818 // activate checkboxes if user wants them to be always active
819 # Sort out the "watch" checkbox
821 # Watch all edits
824 # Watch creations
827 # Already watched
829 }
832 }
835 }
838 }
840 /**
841 * Fetch initial editing page content.
842 *
843 * @param $def_text string|bool
844 * @return mixed string on success, $def_text for invalid sections
845 * @private
846 * @deprecated since 1.21, get WikiPage::getContent() instead.
847 */
855 }
859 // Note: EditPage should only be used with text based content anyway.
861 }
863 /**
864 * @param Content|null $def_content The default value to return
865 *
866 * @return mixed Content on success, $def_content for invalid sections
867 *
868 * @since 1.21
869 */
877 // For message page not locally set, use the i18n message.
878 // For other non-existent articles, use preload text if any.
881 # If this is a system message, get the default text.
885 }
887 # If requested, preload some text.
889 // Custom preload text for new sections
893 }
894 // For existing pages, get text based on "undo" or section parameters.
897 // Get section edit text (returns $def_text for invalid sections)
903 }
910 # If they got undoafter and undo round the wrong way, switch them
912 }
917 # Sanity check, make sure it's the right page,
918 # the revisions exist and they were not deleted.
919 # Otherwise, $content will be left as-is.
929 # Warn the user that something went wrong
932 # Inform the user of our success and set an automatic edit summary
935 # If we just undid one rev, use an autosummary
938 $undoSummary = wfMessage( 'undo-summary', $undo, $undorev->getUserText() )->inContentLanguage()->text();
944 }
946 }
948 }
950 // Failed basic sanity checks.
951 // Older revisions may have been removed since the link
952 // was created, or we may simply have got bogus input.
954 }
959 }
963 }
964 }
965 }
969 }
971 /**
972 * Get the content of the wanted revision, without section extraction.
973 *
974 * The result of this function can be used to compare user's input with
975 * section replaced in its context (using WikiPage::replaceSection())
976 * to the original text of the edit.
977 *
978 * This differs from Article::getContent() that when a missing revision is
979 * encountered the result will be null and not the
980 * 'missing-revision' message.
981 *
982 * @since 1.19
983 * @return Content|null
984 */
988 }
993 }
997 }
1000 }
1002 /**
1003 * Get the current content of the page. This is basically similar to
1004 * WikiPage::getContent( Revision::RAW ) except that when the page doesn't exist an empty
1005 * content object is returned instead of null.
1006 *
1007 * @since 1.21
1008 * @return Content
1009 */
1017 }
1022 # nasty side-effect, but needed for consistency
1027 }
1028 }
1030 /**
1031 * Use this method before edit() to preload some text into the edit box
1032 *
1033 * @param $text string
1034 * @deprecated since 1.21, use setPreloadedContent() instead.
1035 */
1042 }
1044 /**
1045 * Use this method before edit() to preload some content into the edit box
1046 *
1047 * @param $content Content
1048 *
1049 * @since 1.21
1050 */
1053 }
1055 /**
1056 * Get the contents to be preloaded into the box, either set by
1057 * an earlier setPreloadText() or by loading the given page.
1058 *
1059 * @param string $preload representing the title to preload from.
1060 *
1061 * @return String
1062 *
1063 * @deprecated since 1.21, use getPreloadedContent() instead
1064 */
1072 }
1074 /**
1075 * Get the contents to be preloaded into the box, either set by
1076 * an earlier setPreloadText() or by loading the given page.
1077 *
1078 * @param string $preload representing the title to preload from.
1079 *
1080 * @return Content
1081 *
1082 * @since 1.21
1083 */
1089 }
1095 }
1098 # Check for existence to avoid getting MediaWiki:Noarticletext
1100 //TODO: somehow show a warning to the user!
1102 }
1107 # Same as before
1109 //TODO: somehow show a warning to the user!
1111 }
1113 }
1119 //TODO: somehow show a warning to the user!
1121 }
1127 //TODO: somehow show a warning to the user!
1133 }
1136 }
1139 }
1141 /**
1142 * Make sure the form isn't faking a user's credentials.
1143 *
1144 * @param $request WebRequest
1145 * @return bool
1146 * @private
1147 */
1154 }
1156 /**
1157 * Sets post-edit cookie indicating the user just saved a particular revision.
1158 *
1159 * This uses a temporary cookie for each revision ID so separate saves will never
1160 * interfere with each other.
1161 *
1162 * The cookie is deleted in the mediawiki.action.view.postEdit JS module after
1163 * the redirect. It must be clearable by JavaScript code, so it must not be
1164 * marked HttpOnly. The JavaScript code converts the cookie to a wgPostEdit config
1165 * variable.
1166 *
1167 * Since WebResponse::setcookie does not allow forcing HttpOnly for a single
1168 * cookie, we have to use PHP's setcookie() directly.
1169 *
1170 * We use a path of '/' since wgCookiePath is not exposed to JS
1171 *
1172 * If the variable were set on the server, it would be cached, which is unwanted
1173 * since the post-edit state should only apply to the load right after the save.
1174 */
1180 setcookie( $wgCookiePrefix . $postEditKey, '1', time() + self::POST_EDIT_COOKIE_DURATION, '/', $wgCookieDomain );
1181 }
1183 /**
1184 * Attempt submission
1185 * @throws UserBlockedError|ReadOnlyError|ThrottledError|PermissionsError
1186 * @return bool false if output is done, true if the rest of the form should be displayed
1187 */
1192 # Allow bots to exempt some edits from bot flagging
1195 // FIXME: once the interface for internalAttemptSave() is made nicer, this should use the message in $status
1196 if ( $status->value == self::AS_SUCCESS_UPDATE || $status->value == self::AS_SUCCESS_NEW_ARTICLE ) {
1200 }
1201 }
1231 // Give extensions a chance to modify URL query on update
1232 wfRunHooks( 'ArticleUpdateBeforeRedirect', array( $this->mArticle, &$sectionanchor, &$extraQuery ) );
1239 }
1240 }
1274 // We don't recognize $status->value. The only way that can happen
1275 // is if an extension hook aborted from inside ArticleSave.
1276 // Render the status object into $this->hookError
1277 // FIXME this sucks, we should just use the Status object throughout
1281 }
1282 }
1284 /**
1285 * Run hooks that can filter edits just before they get saved.
1286 *
1287 * @param Content $content the Content to filter.
1288 * @param Status $status for reporting the outcome to the caller
1289 * @param User $user the user performing the edit
1290 *
1291 * @return bool
1292 */
1294 // Run old style post-section-merge edit filter
1298 # Error messages etc. could be handled within the hook...
1303 # ...or the hook could be expecting us to produce an error
1307 }
1309 // Run new style post-section-merge edit filter
1314 # Error messages etc. could be handled within the hook...
1315 // XXX: $status->value may already be something informative...
1321 # ...or the hook could be expecting us to produce an error
1322 // FIXME this sucks, we should just use the Status object throughout
1327 }
1330 }
1332 /**
1333 * Attempt submission (no UI)
1334 *
1335 * @param array $result array to add statuses to, currently with the possible keys:
1336 * spam - string - Spam string from content if any spam is detected by matchSpamRegex
1337 * sectionanchor - string - Section anchor for a section save
1338 * nullEdit - boolean - Set if doEditContent is OK. True if null edit, false otherwise.
1339 * redirect - boolean - Set if doEditContent is OK. True if resulting revision is a redirect
1340 * @param bool $bot True if edit is being made under the bot right.
1341 *
1342 * @return Status object, possibly with a message, but always with one of the AS_* constants in $status->value,
1343 *
1344 * FIXME: This interface is TERRIBLE, but hard to get rid of due to various error display idiosyncrasies. There are
1345 * also lots of cases where error metadata is set in the object and retrieved later instead of being returned, e.g.
1346 * AS_CONTENT_TOO_BIG and AS_BLOCKED_PAGE_FOR_USER. All that stuff needs to be cleaned up some time.
1347 */
1363 }
1366 # Construct Content object
1369 $status->fatal( 'content-failed-to-parse', $this->contentModel, $this->contentFormat, $ex->getMessage() );
1374 }
1376 # Check image redirect
1387 }
1389 # Check for spam
1393 }
1405 }
1406 if ( !wfRunHooks( 'EditFilter', array( $this, $this->textbox1, $this->section, &$this->hookError, $this->summary ) ) ) {
1407 # Error messages etc. could be handled within the hook...
1414 # ...or the hook could be expecting us to produce an error
1420 }
1423 // Auto-block user's IP if the account was "hard" blocked
1425 # Check block state against master, thus 'false'.
1430 }
1434 // Error will be displayed by showEditForm()
1440 }
1454 }
1455 }
1463 }
1470 }
1472 # If the article has been deleted while editing, don't save it without
1473 # confirmation
1479 }
1483 # Load the page data from the master. If anything changes in the meantime,
1484 # we detect it by using page_latest like a token in a 1 try compare-and-swap.
1489 // Late check for create permission, just in case *PARANOIA*
1496 }
1498 # Don't save a new article if it's blank.
1503 }
1508 }
1515 // Insert the section title above the content.
1518 // Jump to the new section
1519 $result['sectionanchor'] = $wgParser->guessLegacySectionNameFromWikiText( $this->sectiontitle );
1521 // If no edit summary was specified, create one automatically from the section
1522 // title and have it link to the new section. Otherwise, respect the summary as
1523 // passed.
1528 }
1530 // Insert the section title above the content.
1533 // Jump to the new section
1536 // Create a link to the new section from the edit summary.
1540 }
1541 }
1547 # Article exists. Check for edit conflict.
1559 // Probably a duplicate submission of a new comment.
1560 // This can happen when squid resends a request after
1561 // a timeout but the first one actually went through.
1564 // New comment; suppress conflict.
1567 }
1568 } elseif ( $this->section == '' && Revision::userWasLastToEdit( DB_MASTER, $this->mTitle->getArticleID(),
1570 # Suppress edit conflict with self, except for section edits where merging is required.
1573 }
1574 }
1576 // If sectiontitle is set, use it, otherwise use the summary as the section title (for
1577 // backwards compatibility with old forms/bots).
1582 }
1587 wfDebug( __METHOD__ . ": conflict! getting section '{$this->section}' for time '{$this->edittime}'"
1590 $content = $this->mArticle->replaceSectionContent( $this->section, $textbox_content, $sectionTitle, $this->edittime );
1593 $content = $this->mArticle->replaceSectionContent( $this->section, $textbox_content, $sectionTitle );
1594 }
1601 # Attempt merge
1603 // Successful merge! Maybe we should tell the user the good news?
1610 }
1611 }
1617 }
1622 }
1625 // Handle the user preference to force summaries here
1632 }
1634 // Do not allow the user to post an empty comment
1641 }
1646 ) {
1652 }
1654 # All's well
1660 // If no edit summary was specified, create one automatically from the section
1661 // title and have it link to the new section. Otherwise, respect the summary as
1662 // passed.
1667 }
1670 # This is a new section, so create a link to the new section
1671 # in the revision summary.
1675 }
1677 # Try to get a section anchor from the section source, redirect to edited section if header found
1678 # XXX: might be better to integrate this into Article::replaceSection
1679 # for duplicate heading checking and maybe parsing
1681 # we can't deal with anchors, includes, html etc in the header for now,
1682 # headline would need to be parsed to improve this
1685 }
1686 }
1690 // Save errors may fall down to the edit form, but we've now
1691 // merged the section into full text. Clear the section field
1692 // so that later submission of conflict forms won't try to
1693 // replace that into a duplicated mess.
1698 }
1700 // Check for length errors again now that the section is merged in
1707 }
1718 // Failure from doEdit()
1719 // Show the edit conflict page for certain recognized errors from doEdit(),
1720 // but don't show it for errors from extension hooks
1724 {
1726 // Destroys data doEdit() put in $status->value but who cares
1728 }
1731 }
1738 }
1740 /**
1741 * Register the change of watch status
1742 */
1751 // Do this in its own transaction to reduce contention...
1759 }
1761 } );
1762 }
1763 }
1765 /**
1766 * Attempts to merge text content with base and current revisions
1767 *
1768 * @param $editText string
1769 *
1770 * @return bool
1771 * @deprecated since 1.21, use mergeChangesIntoContent() instead
1772 */
1783 }
1785 }
1787 /**
1788 * Attempts to do 3-way merge of edit content with a base revision
1789 * and current content, in case of edit conflict, in whichever way appropriate
1790 * for the content type.
1791 *
1792 * @since 1.21
1793 *
1794 * @param $editContent
1795 *
1796 * @return bool
1797 */
1803 // This is the revision the editor started from
1810 }
1812 // The current state, we want to merge updates into it
1819 }
1829 }
1833 }
1835 /**
1836 * @return Revision
1837 */
1846 }
1847 }
1849 /**
1850 * Check given input text against $wgSpamRegex, and return the text of the first match.
1851 *
1852 * @param $text string
1853 *
1854 * @return string|bool matching string or false
1855 */
1858 // For back compatibility, $wgSpamRegex may be a single string or an array of regexes.
1861 }
1863 /**
1864 * Check given input text against $wgSpamRegex, and return the text of the first match.
1865 *
1866 * @param $text string
1867 *
1868 * @return string|bool matching string or false
1869 */
1874 }
1876 /**
1877 * @param $text string
1878 * @param $regexes array
1879 * @return bool|string
1880 */
1886 }
1887 }
1889 }
1898 }
1902 }
1904 // Bug #19334: textarea jumps when editing articles in IE8
1909 # Enabled article-related sidebar, toplinks, etc.
1918 $msg = $contextTitle->exists() || ( $contextTitle->getNamespace() == NS_MEDIAWIKI && $contextTitle->getDefaultMessageText() !== false ) ?
1920 }
1921 # Use the title defined by DISPLAYTITLE magic word when present
1922 $displayTitle = isset( $this->mParserOutput ) ? $this->mParserOutput->getDisplayTitle() : false;
1925 }
1927 }
1929 /**
1930 * Show all applicable editing introductions
1931 */
1936 }
1941 # Show a warning if editing an interface message
1944 # Show a hint to shared repo
1948 # there must be a description url to show a hint to shared repo
1953 ) );
1957 ) );
1958 }
1959 }
1960 }
1961 }
1963 # Show a warning message when someone creates/edits a user (talk) page but the user does not exist
1964 # Show log extract when the user is currently blocked
1985 )
1986 )
1987 );
1988 }
1989 }
1990 # Try to add a custom edit intro, or use the standard one if this is not possible.
1995 $wgOut->wrapWikiMsg( "<div class=\"mw-newarticletextanon\">\n$1\n</div>", 'newarticletextanon' );
1996 }
1997 }
1998 # Give a notice if the user is editing a deleted/moved page...
2007 )
2008 );
2009 }
2010 }
2012 /**
2013 * Attempt to show a custom editing introduction, if supplied
2014 *
2015 * @return bool
2016 */
2022 // Added using template syntax, to take <noinclude>'s into account.
2025 }
2026 }
2028 }
2030 /**
2031 * Gets an editable textual representation of $content.
2032 * The textual representation can be turned by into a Content object by the
2033 * toEditContent() method.
2034 *
2035 * If $content is null or false or a string, $content is returned unchanged.
2036 *
2037 * If the given Content object is not of a type that can be edited using the text base EditPage,
2038 * an exception will be raised. Set $this->allowNonTextContent to true to allow editing of non-textual
2039 * content.
2040 *
2041 * @param Content|null|bool|string $content
2042 * @return String the editable text form of the content.
2043 *
2044 * @throws MWException if $content is not an instance of TextContent and $this->allowNonTextContent is not true.
2045 */
2049 }
2053 }
2058 }
2061 }
2063 /**
2064 * Turns the given text into a Content object by unserializing it.
2065 *
2066 * If the resulting Content object is not of a type that can be edited using the text base EditPage,
2067 * an exception will be raised. Set $this->allowNonTextContent to true to allow editing of non-textual
2068 * content.
2069 *
2070 * @param string|null|bool $text Text to unserialize
2071 * @return Content The content object created from $text. If $text was false or null, false resp. null will be
2072 * returned instead.
2073 *
2074 * @throws MWException if unserializing the text results in a Content object that is not an instance of TextContent
2075 * and $this->allowNonTextContent is not true.
2076 */
2080 }
2088 }
2091 }
2093 /**
2094 * Send the edit form and related headers to $wgOut
2095 * @param $formCallback Callback|null that takes an OutputPage parameter; will be called
2096 * during form output near the top, for captchas and the like.
2097 */
2103 # need to parse the preview early so that we know which templates are used,
2104 # otherwise users with "show preview after edit box" will get a blank list
2105 # we parse this near the beginning so that setHeaders can do the title
2106 # setting work instead of leaving it in getPreviewText
2110 }
2119 }
2125 }
2132 // Hide the toolbar and edit area, user can click preview to get it back
2133 // Add an confirmation checkbox and explanation.
2138 }
2139 }
2141 // @todo add EditForm plugin interface and use it here!
2142 // search for textarea1 and textares2, and allow EditForm to override all uses.
2143 $wgOut->addHTML( Html::openElement( 'form', array( 'id' => self::EDITFORM_ID, 'name' => self::EDITFORM_ID,
2149 }
2153 // Put these up at the top to ensure they aren't lost on early form submission
2160 // It is better to not parse the comment at all than to have templates expanded in the middle
2161 // TODO: can the checkLabel be moved outside of the div so that wrapWikiMsg could be used?
2163 ? 'confirmrecreate-noreason'
2170 ) .
2171 '</div>'
2172 );
2173 }
2175 # When the summary is hidden, also hide them on preview/show changes
2178 }
2180 # If a blank edit summary was previously provided, and the appropriate
2181 # user preference is active, pass a hidden tag as wpIgnoreBlankSummary. This will stop the
2182 # user being bounced back more than once in the event that a summary
2183 # is not required.
2184 #####
2185 # For a bit more sophisticated detection of blank summaries, hash the
2186 # automatic one and pass that in the hidden field wpAutoSummary.
2189 }
2193 }
2196 // If a summary has been preset using &summary= we don't want to prompt for
2197 // a different summary. Only prompt for a summary if the summary is blanked.
2198 // (Bug 17416)
2200 }
2213 }
2219 }
2222 // In an edit conflict bypass the overridable content form method
2223 // and fallback to the raw wpTextbox1 since editconflicts can't be
2224 // resolved between page source edits and custom ui edits using the
2225 // custom edit ui.
2234 }
2258 // this can't really happen, but be nice if it does.
2259 $msg = wfMessage( 'content-failed-to-parse', $this->contentModel, $this->contentFormat, $ex->getMessage() );
2261 }
2262 }
2268 }
2271 }
2273 /**
2274 * Extract the section title from current section text, if any.
2275 *
2276 * @param string $text
2277 * @return Mixed|string or false
2278 */
2286 }
2287 }
2294 }
2296 // Add edit notices
2304 // We use $this->section to much before this and getVal('wgSection') directly in other places
2305 // at this point we can't reset $this->section to '' to fallback to non-section editing.
2306 // Someone is welcome to try refactoring though
2309 }
2316 }
2317 }
2318 }
2322 }
2326 }
2329 $wgOut->wrapWikiMsg( "<div id='mw-missingcommentheader'>\n$1\n</div>", 'missingcommentheader' );
2330 }
2334 }
2338 }
2343 // Let sysop know that this will make private content public if saved
2346 $wgOut->wrapWikiMsg( "<div class='mw-warning plainlinks'>\n$1\n</div>\n", 'rev-deleted-text-permission' );
2348 $wgOut->wrapWikiMsg( "<div class='mw-warning plainlinks'>\n$1\n</div>\n", 'rev-deleted-text-view' );
2349 }
2354 }
2356 // Something went wrong
2360 }
2361 }
2362 }
2365 $wgOut->wrapWikiMsg( "<div id=\"mw-read-only-warning\">\n$1\n</div>", array( 'readonlywarning', wfReadOnlyReason() ) );
2371 }
2374 # Check the skin exists
2376 $wgOut->wrapWikiMsg( "<div class='error' id='mw-userinvalidcssjstitle'>\n$1\n</div>", array( 'userinvalidcssjstitle', $this->mTitle->getSkinFromCssJsSubpage() ) );
2377 }
2380 $wgOut->wrapWikiMsg( "<div id='mw-usercssyoucanpreview'>\n$1\n</div>", array( 'usercssyoucanpreview' ) );
2381 }
2384 $wgOut->wrapWikiMsg( "<div id='mw-userjsyoucanpreview'>\n$1\n</div>", array( 'userjsyoucanpreview' ) );
2385 }
2386 }
2387 }
2388 }
2391 # Is the title semi-protected?
2395 # Then it must be protected based on static groups (regular)
2397 }
2400 }
2402 # Is this page under cascading protection from some source pages?
2407 # Explain, and list the titles responsible
2410 }
2411 }
2414 }
2421 }
2425 }
2429 array( 'longpageerror', $wgLang->formatNum( $this->kblength ), $wgLang->formatNum( $wgMaxArticleSize ) ) );
2433 array( 'longpage-hint', $wgLang->formatSize( strlen( $this->textbox1 ) ), strlen( $this->textbox1 ) )
2434 );
2435 }
2436 }
2437 # Add header copyright warning
2439 }
2441 /**
2442 * Standard summary input and label (wgSummary), abstracted so EditPage
2443 * subclasses may reorganize the form.
2444 * Note that you do not need to worry about the label's for=, it will be
2445 * inferred by the id given to the input. You can remove them both by
2446 * passing array( 'id' => false ) to $userInputAttrs.
2447 *
2448 * @param string $summary The value of the summary input
2449 * @param string $labelText The html to place inside the label
2450 * @param array $inputAttrs of attrs to use on the input
2451 * @param array $spanLabelAttrs of attrs to use on the span inside the label
2452 *
2453 * @return array An array in the format array( $label, $input )
2454 */
2455 function getSummaryInput( $summary = "", $labelText = null, $inputAttrs = null, $spanLabelAttrs = null ) {
2456 // Note: the maxlength is overridden in JS to 255 and to make it use UTF-8 bytes, not characters.
2468 );
2472 $label = Xml::tags( 'label', $inputAttrs['id'] ? array( 'for' => $inputAttrs['id'] ) : null, $labelText );
2474 }
2479 }
2481 /**
2482 * @param $isSubjectPreview Boolean: true if this is the section subject/title
2483 * up top, or false if this is the comment summary
2484 * down below the textarea
2485 * @param string $summary The text of the summary to display
2486 * @return String
2487 */
2490 # Add a class if 'missingsummary' is triggered to allow styling of the summary line
2495 }
2499 }
2500 }
2503 list( $label, $input ) = $this->getSummaryInput( $summary, $labelText, array( 'class' => $summaryClass ), array() );
2505 }
2507 /**
2508 * @param $isSubjectPreview Boolean: true if this is the section subject/title
2509 * up top, or false if this is the comment summary
2510 * down below the textarea
2511 * @param string $summary the text of the summary to display
2512 * @return String
2513 */
2515 // avoid spaces in preview, gets always trimmed on save
2519 }
2526 }
2530 $summary = wfMessage( $message )->parse() . Linker::commentBlock( $summary, $this->mTitle, $isSubjectPreview );
2532 }
2543 HTML
2544 );
2547 }
2548 }
2552 /**
2553 * To make it harder for someone to slip a user a page
2554 * which submits an edit form to the wiki without their
2555 * knowledge, a random token is associated with the login
2556 * session. If it's not passed back with the submission,
2557 * we won't save the page, or render user JavaScript and
2558 * CSS previews.
2559 *
2560 * For anon editors, who may not have a session, we just
2561 * include the constant suffix to prevent editing from
2562 * broken text-mangling proxies.
2563 */
2565 }
2567 /**
2568 * Subpage overridable method for printing the form for page content editing
2569 * By default this simply outputs wpTextbox1
2570 * Subclasses can override this to provide a custom UI for editing;
2571 * be it a form, or simply wpTextbox1 with a modified content that will be
2572 * reverse modified when extracted from the post data.
2573 * Note that this is basically the inverse for importContentFormData
2574 */
2577 }
2579 /**
2580 * Method to output wpTextbox1
2581 * The $textoverride method can be used by subclasses overriding showContentForm
2582 * to pass back to this method.
2583 *
2584 * @param array $customAttribs of html attributes to use in the textarea
2585 * @param string $textoverride optional text to override $this->textarea1 with
2586 */
2593 # Is the title semi-protected?
2597 # Then it must be protected based on static groups (regular)
2599 }
2600 # Is the title cascade-protected?
2603 }
2604 }
2610 }
2615 }
2617 }
2618 }
2620 $this->showTextbox( $textoverride !== null ? $textoverride : $this->textbox1, 'wpTextbox1', $attribs );
2621 }
2625 }
2632 // Ensure there's a newline at the end, otherwise adding lines
2633 // is awkward.
2634 // But don't add a newline if the ext is empty, or Firefox in XHTML
2635 // mode will show an extra newline. A bit annoying.
2637 }
2644 'style' => '' // avoid php notices when appending preferences (appending allows customAttribs['style'] to still work
2645 );
2652 }
2659 }
2665 }
2671 }
2679 $msg = wfMessage( 'content-failed-to-parse', $this->contentModel, $this->contentFormat, $ex->getMessage() );
2681 }
2682 }
2683 }
2685 /**
2686 * Append preview output to $wgOut.
2687 * Includes category rendering if this is a category page.
2688 *
2689 * @param string $text the HTML to be output for the preview.
2690 */
2695 }
2696 # This hook seems slightly odd here, but makes things more
2697 # consistent for extensions.
2702 }
2703 }
2705 /**
2706 * Get a diff between the current contents of the edit box and the
2707 * version of the page we're editing from.
2708 *
2709 * If this is a section edit, we'll replace the section as for final
2710 * save and then make a comparison.
2711 */
2716 # if message does not exist, show diff against the preloaded default
2724 }
2727 }
2741 }
2743 if ( ( $oldContent && !$oldContent->isEmpty() ) || ( $newContent && !$newContent->isEmpty() ) ) {
2749 }
2753 }
2755 $de = $oldContent->getContentHandler()->createDifferenceEngine( $this->mArticle->getContext() );
2762 }
2765 }
2767 /**
2768 * Show the header copyright warning.
2769 */
2776 }
2777 }
2779 /**
2780 * Give a chance for site and per-namespace customizations of
2781 * terms of service summary link that might exist separately
2782 * from the copyright notice.
2783 *
2784 * This will display between the save button and the edit tools,
2785 * so should remain short!
2786 */
2795 }
2796 }
2803 }
2805 /**
2806 * Get the copyright warning
2807 *
2808 * Renamed to getCopyrightWarning(), old name kept around for backwards compatibility
2809 */
2812 }
2823 }
2824 // Allow for site and per-namespace customization of contribution/copyright notice.
2829 }
2838 }
2844 // Show copyright warning.
2854 }
2855 $edithelpurl = Skin::makeInternalOrExternalUrl( wfMessage( 'edithelppage' )->inContentLanguage()->text() );
2864 }
2866 /**
2867 * Show an edit conflict. textbox1 is already shown in showEditForm().
2868 * If you want to use another entry point to this function, be careful.
2869 */
2885 );
2889 }
2890 }
2892 /**
2893 * @return string
2894 */
2899 }
2905 $cancelParams
2906 );
2907 }
2909 /**
2910 * Returns the URL to use in the form's action attribute.
2911 * This is used by EditPage subclasses when simply customizing the action
2912 * variable in the constructor is not enough. This can be used when the
2913 * EditPage lives inside of a Special page rather than a custom page action.
2914 *
2915 * @param $title Title object for which is being edited (where we go to for &action= links)
2916 * @return string
2917 */
2920 }
2922 /**
2923 * Check if a page was deleted while the user was editing it, before submit.
2924 * Note that we rely on the logging table, which hasn't been always there,
2925 * but that doesn't matter, because this only applies to brand new
2926 * deletes.
2927 */
2931 }
2941 }
2942 }
2943 }
2946 }
2962 'user_name'
2968 'user_id=log_user'
2969 ),
2970 __METHOD__,
2972 );
2973 // Quick paranoid permission checks...
2977 }
2981 }
2982 }
2984 }
2986 /**
2987 * Get the rendered text for previewing.
2988 * @throws MWException
2989 * @return string
2990 */
2997 // Could be an offsite preview attempt. This is very unsafe if
2998 // HTML is enabled, as it could be an attack.
3001 // Do not put big scary notice, if previewing the empty
3002 // string, which happens when you initially edit
3003 // a category page, due to automatic preview-on-open.
3006 }
3009 }
3017 if ( !wfRunHooks( 'AlternateEditPreview', array( $this, &$content, &$previewHTML, &$this->mParserOutput ) ) ) {
3020 }
3028 }
3033 ' [[#' . self::EDITFORM_ID . '|' . $wgLang->getArrow() . ' ' . wfMessage( 'continue-editing' )->text() . ']]';
3034 }
3041 # don't parse non-wikitext pages, show message about preview
3049 }
3057 }
3059 # Used messages to make sure grep find them:
3060 # Messages: usercsspreview, userjspreview, sitecsspreview, sitejspreview
3062 $note = "<div id='mw-{$level}{$format}preview'>" . wfMessage( "{$level}{$format}preview" )->text() . "</div>";
3063 }
3064 }
3071 # If we're adding a comment, we need to show the
3072 # summary as the headline
3075 }
3083 # For CSS/JS pages, we should have called the ShowRawCssJs hook here.
3084 # But it's now deprecated, so never mind
3087 $parserOutput = $content->getParserOutput( $this->getArticle()->getTitle(), null, $parserOptions );
3095 }
3096 }
3098 $m = wfMessage( 'content-failed-to-parse', $this->contentModel, $this->contentFormat, $ex->getMessage() );
3101 }
3104 $conflict = '<h2 id="mw-previewconflict">' . wfMessage( 'previewconflict' )->escaped() . "</h2>\n";
3107 }
3120 }
3122 /**
3123 * @return Array
3124 */
3130 }
3134 }
3135 }
3139 }
3140 }
3142 /**
3143 * Shows a bulletin board style toolbar for common editing functions.
3144 * It can be disabled in the user preferences.
3145 * The necessary JavaScript code can be found in skins/common/edit.js.
3146 *
3147 * @return string
3148 */
3155 /**
3156 * $toolarray is an array of arrays each of which includes the
3157 * filename of the button image (without path), the opening
3158 * tag, the closing tag, optionally a sample text that is
3159 * inserted between the two when no selection is highlighted
3160 * and. The tip text is shown when the user moves the mouse
3161 * over the button.
3162 *
3163 * Also here: accesskeys (key), which are not used yet until
3164 * someone can figure out a way to make them work in
3165 * IE. However, we should make sure these keys are not defined
3166 * on the edit page.
3167 */
3177 ),
3186 ),
3195 ),
3204 ),
3213 ),
3249 ),
3258 ),
3267 )
3268 );
3274 }
3278 // Note that we use the tip both for the ALT tag and the TITLE tag of the image.
3279 // Older browsers show a "speedtip" type message only for ALT.
3280 // Ideally these should be different, realistically they
3281 // probably don't need to be.
3287 );
3290 }
3292 // This used to be called on DOMReady from mediawiki.action.edit, which
3293 // ended up causing race conditions with the setup code above.
3299 $wgOut->addScript( Html::inlineScript( ResourceLoader::makeLoaderConditionalScript( $script ) ) );
3306 }
3308 /**
3309 * Returns an array of html code of the following checkboxes:
3310 * minor and watch
3311 *
3312 * @param int $tabindex Current tabindex
3313 * @param array $checked of checkbox => bool, where bool indicates the checked
3314 * status of the checkbox
3315 *
3316 * @return array
3317 */
3323 // don't show the minor edit checkbox if it's a new page or section
3332 );
3336 Xml::expandAttributes( array( 'title' => Linker::titleAttrib( 'minoredit', 'withaccess' ) ) ) .
3338 }
3339 }
3348 );
3354 }
3357 }
3359 /**
3360 * Returns an array of html code of the following buttons:
3361 * save, diff, preview and live
3362 *
3363 * @param int $tabindex Current tabindex
3364 *
3365 * @return array
3366 */
3377 'title' => wfMessage( 'tooltip-save' )->text() . ' [' . wfMessage( 'accesskey-save' )->text() . ']',
3378 );
3389 'title' => wfMessage( 'tooltip-preview' )->text() . ' [' . wfMessage( 'accesskey-preview' )->text() . ']',
3390 );
3401 'title' => wfMessage( 'tooltip-diff' )->text() . ' [' . wfMessage( 'accesskey-diff' )->text() . ']',
3402 );
3407 }
3409 /**
3410 * Output preview text only. This can be sucked into the edit page
3411 * via JavaScript, and saves the server time rendering the skin as
3412 * well as theoretically being more robust on the client (doesn't
3413 * disturb the edit box's undo history, won't eat your text on
3414 * failure, etc).
3415 *
3416 * @todo This doesn't include category or interlanguage links.
3417 * Would need to enhance it a bit, "<s>maybe wrap them in XML
3418 * or something...</s>" that might also require more skin
3419 * initialization, so check whether that's a problem.
3420 */
3428 #$categories = $skin->getCategoryLinks();
3434 #. Xml::element( 'category', null, $categories )
3435 );
3437 }
3439 /**
3440 * Call the stock "user is blocked" page
3441 *
3442 * @deprecated in 1.19; throw an exception directly instead
3443 */
3449 }
3451 /**
3452 * Produce the stock "please login to edit pages" page
3453 *
3454 * @deprecated in 1.19; throw an exception directly instead
3455 */
3459 }
3461 /**
3462 * Show an error page saying to the user that he has insufficient permissions
3463 * to create a new page
3464 *
3465 * @deprecated in 1.19; throw an exception directly instead
3466 */
3471 }
3473 /**
3474 * Creates a basic error page which informs the user that
3475 * they have attempted to edit a nonexistent section.
3476 */
3487 }
3489 /**
3490 * Produce the stock "your edit contains spam" page
3491 *
3492 * @param string|bool $match Text which triggered one or more filters
3493 * @deprecated since 1.17 Use method spamPageWithContent() instead
3494 */
3506 }
3510 }
3512 /**
3513 * Show "your edit contains spam" page with your diff and text
3514 *
3515 * @param $match string|Array|bool Text (or array of texts) which triggered one or more filters
3516 */
3523 }
3530 }
3540 }
3542 /**
3543 * Format an anchor fragment as it would appear for a given section name
3544 * @param $text String
3545 * @return String
3546 * @private
3547 */
3551 }
3553 /**
3554 * Check if the browser is on a blacklist of user-agents known to
3555 * mangle UTF-8 data on form submission. Returns true if Unicode
3556 * should make it through, false if it's known to be a problem.
3557 * @return bool
3558 * @private
3559 */
3565 // No User-Agent header sent? Trust it by default...
3567 }
3572 }
3573 }
3575 }
3577 /**
3578 * Filter an input field through a Unicode de-armoring process if it
3579 * came from an old browser with known broken Unicode editing issues.
3580 *
3581 * @param $request WebRequest
3582 * @param $field String
3583 * @return String
3584 * @private
3585 */
3591 }
3593 /**
3594 * @param $request WebRequest
3595 * @param $text string
3596 * @return string
3597 */
3603 }
3605 /**
3606 * Filter an output field through a Unicode armoring process if it is
3607 * going to an old browser with known broken Unicode editing issues.
3608 *
3609 * @param $text String
3610 * @return String
3611 * @private
3612 */
3617 ? $codedText
3619 }
3621 /**
3622 * A number of web browsers are known to corrupt non-ASCII characters
3623 * in a UTF-8 text editing environment. To protect against this,
3624 * detected browsers will be served an armored version of the text,
3625 * with non-ASCII chars converted to numeric HTML character references.
3626 *
3627 * Preexisting such character references will have a 0 added to them
3628 * to ensure that round-trips do not alter the original data.
3629 *
3630 * @param $invalue String
3631 * @return String
3632 * @private
3633 */
3635 // Armor existing references for reversibility.
3652 }
3662 }
3663 }
3665 }
3667 /**
3668 * Reverse the previously applied transliteration of non-ASCII characters
3669 * back to UTF-8. Used to protect data from corruption by broken web browsers
3670 * as listed in $wgBrowserBlackList.
3671 *
3672 * @param $invalue String
3673 * @return String
3674 * @private
3675 */
3687 // Do some sanity checks. These aren't needed for reversibility,
3688 // but should help keep the breakage down if the editor
3689 // breaks one of the entities whilst editing.
3695 }
3698 }
3699 }
3700 // reverse the transform that we made for reversibility reasons.
3702 }
3703 }