search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
* (bug 15497) Removed encoding attribute from <?xml ?> tags
[mediawiki.git] / includes / User.php
blob5fa2ff5c28d18f6afc0b7a17a165c573a7cb0070
1 <?php
2 /**
3 * Implements the User class for the %MediaWiki software.
4 * @file
5 */
6
7 /**
8 * \type{\int} Number of characters in user_token field.
9 * @ingroup Constants
10 */
11 define( 'USER_TOKEN_LENGTH', 32 );
12
13 /**
14 * \type{\int} Serialized record version.
15 * @ingroup Constants
16 */
17 define( 'MW_USER_VERSION', 6 );
18
19 /**
20 * \type{\string} Some punctuation to prevent editing from broken text-mangling proxies.
21 * @ingroup Constants
22 */
23 define( 'EDIT_TOKEN_SUFFIX', '+\\' );
24
25 /**
26 * Thrown by User::setPassword() on error.
27 * @ingroup Exception
28 */
29 class PasswordError extends MWException {
30 // NOP
31 }
32
33 /**
34 * The User object encapsulates all of the user-specific settings (user_id,
35 * name, rights, password, email address, options, last login time). Client
36 * classes use the getXXX() functions to access these fields. These functions
37 * do all the work of determining whether the user is logged in,
38 * whether the requested option can be satisfied from cookies or
39 * whether a database query is needed. Most of the settings needed
40 * for rendering normal pages are set in the cookie to minimize use
41 * of the database.
42 */
43 class User {
44
45 /**
46 * \type{\arrayof{\string}} A list of default user toggles, i.e., boolean user
47 * preferences that are displayed by Special:Preferences as checkboxes.
48 * This list can be extended via the UserToggles hook or by
49 * $wgContLang::getExtraUserToggles().
50 * @showinitializer
51 */
52 public static $mToggles = array(
53 'highlightbroken',
54 'justify',
55 'hideminor',
56 'extendwatchlist',
57 'usenewrc',
58 'numberheadings',
59 'showtoolbar',
60 'editondblclick',
61 'editsection',
62 'editsectiononrightclick',
63 'showtoc',
64 'rememberpassword',
65 'editwidth',
66 'watchcreations',
67 'watchdefault',
68 'watchmoves',
69 'watchdeletion',
70 'minordefault',
71 'previewontop',
72 'previewonfirst',
73 'nocache',
74 'enotifwatchlistpages',
75 'enotifusertalkpages',
76 'enotifminoredits',
77 'enotifrevealaddr',
78 'shownumberswatching',
79 'fancysig',
80 'externaleditor',
81 'externaldiff',
82 'showjumplinks',
83 'uselivepreview',
84 'forceeditsummary',
85 'watchlisthideminor',
86 'watchlisthidebots',
87 'watchlisthideown',
88 'watchlisthideanons',
89 'watchlisthideliu',
90 'ccmeonemails',
91 'diffonly',
92 'showhiddencats',
93 'noconvertlink',
94 );
95
96 /**
97 * \type{\arrayof{\string}} List of member variables which are saved to the
98 * shared cache (memcached). Any operation which changes the
99 * corresponding database fields must call a cache-clearing function.
100 * @showinitializer
101 */
102 static $mCacheVars = array(
103 // user table
104 'mId',
105 'mName',
106 'mRealName',
107 'mPassword',
108 'mNewpassword',
109 'mNewpassTime',
110 'mEmail',
111 'mOptions',
112 'mTouched',
113 'mToken',
114 'mEmailAuthenticated',
115 'mEmailToken',
116 'mEmailTokenExpires',
117 'mRegistration',
118 'mEditCount',
119 // user_group table
120 'mGroups',
121 );
122
123 /**
124 * \type{\arrayof{\string}} Core rights.
125 * Each of these should have a corresponding message of the form
126 * "right-$right".
127 * @showinitializer
128 */
129 static $mCoreRights = array(
130 'apihighlimits',
131 'autoconfirmed',
132 'autopatrol',
133 'bigdelete',
134 'block',
135 'blockemail',
136 'bot',
137 'browsearchive',
138 'createaccount',
139 'createpage',
140 'createtalk',
141 'delete',
142 'deletedhistory',
143 'edit',
144 'editinterface',
145 'editusercssjs',
146 'import',
147 'importupload',
148 'ipblock-exempt',
149 'markbotedits',
150 'minoredit',
151 'move',
152 'nominornewtalk',
153 'noratelimit',
154 'patrol',
155 'protect',
156 'proxyunbannable',
157 'purge',
158 'read',
159 'reupload',
160 'reupload-shared',
161 'rollback',
162 'siteadmin',
163 'suppressredirect',
164 'trackback',
165 'undelete',
166 'unwatchedpages',
167 'upload',
168 'upload_by_url',
169 'userrights',
170 );
171 /**
172 * \type{\string} Cached results of getAllRights()
173 */
174 static $mAllRights = false;
175
176 /** @name Cache variables */
177 //@{
178 var $mId, $mName, $mRealName, $mPassword, $mNewpassword, $mNewpassTime,
179 $mEmail, $mOptions, $mTouched, $mToken, $mEmailAuthenticated,
180 $mEmailToken, $mEmailTokenExpires, $mRegistration, $mGroups;
181 //@}
182
183 /**
184 * \type{\bool} Whether the cache variables have been loaded.
185 */
186 var $mDataLoaded;
187
188 /**
189 * \type{\string} Initialization data source if mDataLoaded==false. May be one of:
190 * - 'defaults' anonymous user initialised from class defaults
191 * - 'name' initialise from mName
192 * - 'id' initialise from mId
193 * - 'session' log in from cookies or session if possible
194 *
195 * Use the User::newFrom*() family of functions to set this.
196 */
197 var $mFrom;
198
199 /** @name Lazy-initialized variables, invalidated with clearInstanceCache */
200 //@{
201 var $mNewtalk, $mDatePreference, $mBlockedby, $mHash, $mSkin, $mRights,
202 $mBlockreason, $mBlock, $mEffectiveGroups;
203 //@}
204
205 /**
206 * Lightweight constructor for an anonymous user.
207 * Use the User::newFrom* factory functions for other kinds of users.
208 *
209 * @see newFromName()
210 * @see newFromId()
211 * @see newFromConfirmationCode()
212 * @see newFromSession()
213 * @see newFromRow()
214 */
215 function User() {
216 $this->clearInstanceCache( 'defaults' );
217 }
218
219 /**
220 * Load the user table data for this object from the source given by mFrom.
221 */
222 function load() {
223 if ( $this->mDataLoaded ) {
224 return;
225 }
226 wfProfileIn( __METHOD__ );
227
228 # Set it now to avoid infinite recursion in accessors
229 $this->mDataLoaded = true;
230
231 switch ( $this->mFrom ) {
232 case 'defaults':
233 $this->loadDefaults();
234 break;
235 case 'name':
236 $this->mId = self::idFromName( $this->mName );
237 if ( !$this->mId ) {
238 # Nonexistent user placeholder object
239 $this->loadDefaults( $this->mName );
240 } else {
241 $this->loadFromId();
242 }
243 break;
244 case 'id':
245 $this->loadFromId();
246 break;
247 case 'session':
248 $this->loadFromSession();
249 break;
250 default:
251 throw new MWException( "Unrecognised value for User->mFrom: \"{$this->mFrom}\"" );
252 }
253 wfProfileOut( __METHOD__ );
254 }
255
256 /**
257 * Load user table data, given mId has already been set.
258 * @return \type{\bool} false if the ID does not exist, true otherwise
259 * @private
260 */
261 function loadFromId() {
262 global $wgMemc;
263 if ( $this->mId == 0 ) {
264 $this->loadDefaults();
265 return false;
266 }
267
268 # Try cache
269 $key = wfMemcKey( 'user', 'id', $this->mId );
270 $data = $wgMemc->get( $key );
271 if ( !is_array( $data ) || $data['mVersion'] < MW_USER_VERSION ) {
272 # Object is expired, load from DB
273 $data = false;
274 }
275
276 if ( !$data ) {
277 wfDebug( "Cache miss for user {$this->mId}\n" );
278 # Load from DB
279 if ( !$this->loadFromDatabase() ) {
280 # Can't load from ID, user is anonymous
281 return false;
282 }
283 $this->saveToCache();
284 } else {
285 wfDebug( "Got user {$this->mId} from cache\n" );
286 # Restore from cache
287 foreach ( self::$mCacheVars as $name ) {
288 $this->$name = $data[$name];
289 }
290 }
291 return true;
292 }
293
294 /**
295 * Save user data to the shared cache
296 */
297 function saveToCache() {
298 $this->load();
299 $this->loadGroups();
300 if ( $this->isAnon() ) {
301 // Anonymous users are uncached
302 return;
303 }
304 $data = array();
305 foreach ( self::$mCacheVars as $name ) {
306 $data[$name] = $this->$name;
307 }
308 $data['mVersion'] = MW_USER_VERSION;
309 $key = wfMemcKey( 'user', 'id', $this->mId );
310 global $wgMemc;
311 $wgMemc->set( $key, $data );
312 }
313
314
315 /** @name newFrom*() static factory methods */
316 //@{
317
318 /**
319 * Static factory method for creation from username.
320 *
321 * This is slightly less efficient than newFromId(), so use newFromId() if
322 * you have both an ID and a name handy.
323 *
324 * @param $name \type{\string} Username, validated by Title::newFromText()
325 * @param $validate \type{\mixed} Validate username. Takes the same parameters as
326 * User::getCanonicalName(), except that true is accepted as an alias
327 * for 'valid', for BC.
328 *
329 * @return \type{User} The User object, or null if the username is invalid. If the
330 * username is not present in the database, the result will be a user object
331 * with a name, zero user ID and default settings.
332 */
333 static function newFromName( $name, $validate = 'valid' ) {
334 if ( $validate === true ) {
335 $validate = 'valid';
336 }
337 $name = self::getCanonicalName( $name, $validate );
338 if ( $name === false ) {
339 return null;
340 } else {
341 # Create unloaded user object
342 $u = new User;
343 $u->mName = $name;
344 $u->mFrom = 'name';
345 return $u;
346 }
347 }
348
349 /**
350 * Static factory method for creation from a given user ID.
351 *
352 * @param $id \type{\int} Valid user ID
353 * @return \type{User} The corresponding User object
354 */
355 static function newFromId( $id ) {
356 $u = new User;
357 $u->mId = $id;
358 $u->mFrom = 'id';
359 return $u;
360 }
361
362 /**
363 * Factory method to fetch whichever user has a given email confirmation code.
364 * This code is generated when an account is created or its e-mail address
365 * has changed.
366 *
367 * If the code is invalid or has expired, returns NULL.
368 *
369 * @param $code \type{\string} Confirmation code
370 * @return \type{User}
371 */
372 static function newFromConfirmationCode( $code ) {
373 $dbr = wfGetDB( DB_SLAVE );
374 $id = $dbr->selectField( 'user', 'user_id', array(
375 'user_email_token' => md5( $code ),
376 'user_email_token_expires > ' . $dbr->addQuotes( $dbr->timestamp() ),
377 ) );
378 if( $id !== false ) {
379 return User::newFromId( $id );
380 } else {
381 return null;
382 }
383 }
384
385 /**
386 * Create a new user object using data from session or cookies. If the
387 * login credentials are invalid, the result is an anonymous user.
388 *
389 * @return \type{User}
390 */
391 static function newFromSession() {
392 $user = new User;
393 $user->mFrom = 'session';
394 return $user;
395 }
396
397 /**
398 * Create a new user object from a user row.
399 * The row should have all fields from the user table in it.
400 * @param $row array A row from the user table
401 * @return \type{User}
402 */
403 static function newFromRow( $row ) {
404 $user = new User;
405 $user->loadFromRow( $row );
406 return $user;
407 }
408
409 //@}
410
411
412 /**
413 * Get the username corresponding to a given user ID
414 * @param $id \type{\int} %User ID
415 * @return \type{\string} The corresponding username
416 */
417 static function whoIs( $id ) {
418 $dbr = wfGetDB( DB_SLAVE );
419 return $dbr->selectField( 'user', 'user_name', array( 'user_id' => $id ), 'User::whoIs' );
420 }
421
422 /**
423 * Get the real name of a user given their user ID
424 *
425 * @param $id \type{\int} %User ID
426 * @return \type{\string} The corresponding user's real name
427 */
428 static function whoIsReal( $id ) {
429 $dbr = wfGetDB( DB_SLAVE );
430 return $dbr->selectField( 'user', 'user_real_name', array( 'user_id' => $id ), __METHOD__ );
431 }
432
433 /**
434 * Get database id given a user name
435 * @param $name \type{\string} Username
436 * @return \twotypes{\int,\null} The corresponding user's ID, or null if user is nonexistent
437 * @static
438 */
439 static function idFromName( $name ) {
440 $nt = Title::newFromText( $name );
441 if( is_null( $nt ) ) {
442 # Illegal name
443 return null;
444 }
445 $dbr = wfGetDB( DB_SLAVE );
446 $s = $dbr->selectRow( 'user', array( 'user_id' ), array( 'user_name' => $nt->getText() ), __METHOD__ );
447
448 if ( $s === false ) {
449 return 0;
450 } else {
451 return $s->user_id;
452 }
453 }
454
455 /**
456 * Does the string match an anonymous IPv4 address?
457 *
458 * This function exists for username validation, in order to reject
459 * usernames which are similar in form to IP addresses. Strings such
460 * as 300.300.300.300 will return true because it looks like an IP
461 * address, despite not being strictly valid.
462 *
463 * We match \d{1,3}\.\d{1,3}\.\d{1,3}\.xxx as an anonymous IP
464 * address because the usemod software would "cloak" anonymous IP
465 * addresses like this, if we allowed accounts like this to be created
466 * new users could get the old edits of these anonymous users.
467 *
468 * @param $name \type{\string} String to match
469 * @return \type{\bool} True or false
470 */
471 static function isIP( $name ) {
472 return preg_match('/^\d{1,3}\.\d{1,3}\.\d{1,3}\.(?:xxx|\d{1,3})$/',$name) || IP::isIPv6($name);
473 }
474
475 /**
476 * Is the input a valid username?
477 *
478 * Checks if the input is a valid username, we don't want an empty string,
479 * an IP address, anything that containins slashes (would mess up subpages),
480 * is longer than the maximum allowed username size or doesn't begin with
481 * a capital letter.
482 *
483 * @param $name \type{\string} String to match
484 * @return \type{\bool} True or false
485 */
486 static function isValidUserName( $name ) {
487 global $wgContLang, $wgMaxNameChars;
488
489 if ( $name == ''
490 || User::isIP( $name )
491 || strpos( $name, '/' ) !== false
492 || strlen( $name ) > $wgMaxNameChars
493 || $name != $wgContLang->ucfirst( $name ) ) {
494 wfDebugLog( 'username', __METHOD__ .
495 ": '$name' invalid due to empty, IP, slash, length, or lowercase" );
496 return false;
497 }
498
499 // Ensure that the name can't be misresolved as a different title,
500 // such as with extra namespace keys at the start.
501 $parsed = Title::newFromText( $name );
502 if( is_null( $parsed )
503 || $parsed->getNamespace()
504 || strcmp( $name, $parsed->getPrefixedText() ) ) {
505 wfDebugLog( 'username', __METHOD__ .
506 ": '$name' invalid due to ambiguous prefixes" );
507 return false;
508 }
509
510 // Check an additional blacklist of troublemaker characters.
511 // Should these be merged into the title char list?
512 $unicodeBlacklist = '/[' .
513 '\x{0080}-\x{009f}' . # iso-8859-1 control chars
514 '\x{00a0}' . # non-breaking space
515 '\x{2000}-\x{200f}' . # various whitespace
516 '\x{2028}-\x{202f}' . # breaks and control chars
517 '\x{3000}' . # ideographic space
518 '\x{e000}-\x{f8ff}' . # private use
519 ']/u';
520 if( preg_match( $unicodeBlacklist, $name ) ) {
521 wfDebugLog( 'username', __METHOD__ .
522 ": '$name' invalid due to blacklisted characters" );
523 return false;
524 }
525
526 return true;
527 }
528
529 /**
530 * Usernames which fail to pass this function will be blocked
531 * from user login and new account registrations, but may be used
532 * internally by batch processes.
533 *
534 * If an account already exists in this form, login will be blocked
535 * by a failure to pass this function.
536 *
537 * @param $name \type{\string} String to match
538 * @return \type{\bool} True or false
539 */
540 static function isUsableName( $name ) {
541 global $wgReservedUsernames;
542 // Must be a valid username, obviously ;)
543 if ( !self::isValidUserName( $name ) ) {
544 return false;
545 }
546
547 static $reservedUsernames = false;
548 if ( !$reservedUsernames ) {
549 $reservedUsernames = $wgReservedUsernames;
550 wfRunHooks( 'UserGetReservedNames', array( &$reservedUsernames ) );
551 }
552
553 // Certain names may be reserved for batch processes.
554 foreach ( $reservedUsernames as $reserved ) {
555 if ( substr( $reserved, 0, 4 ) == 'msg:' ) {
556 $reserved = wfMsgForContent( substr( $reserved, 4 ) );
557 }
558 if ( $reserved == $name ) {
559 return false;
560 }
561 }
562 return true;
563 }
564
565 /**
566 * Usernames which fail to pass this function will be blocked
567 * from new account registrations, but may be used internally
568 * either by batch processes or by user accounts which have
569 * already been created.
570 *
571 * Additional character blacklisting may be added here
572 * rather than in isValidUserName() to avoid disrupting
573 * existing accounts.
574 *
575 * @param $name \type{\string} String to match
576 * @return \type{\bool} True or false
577 */
578 static function isCreatableName( $name ) {
579 return
580 self::isUsableName( $name ) &&
581
582 // Registration-time character blacklisting...
583 strpos( $name, '@' ) === false;
584 }
585
586 /**
587 * Is the input a valid password for this user?
588 *
589 * @param $password \type{\string} Desired password
590 * @return \type{\bool} True or false
591 */
592 function isValidPassword( $password ) {
593 global $wgMinimalPasswordLength, $wgContLang;
594
595 $result = null;
596 if( !wfRunHooks( 'isValidPassword', array( $password, &$result, $this ) ) )
597 return $result;
598 if( $result === false )
599 return false;
600
601 // Password needs to be long enough, and can't be the same as the username
602 return strlen( $password ) >= $wgMinimalPasswordLength
603 && $wgContLang->lc( $password ) !== $wgContLang->lc( $this->mName );
604 }
605
606 /**
607 * Does a string look like an e-mail address?
608 *
609 * There used to be a regular expression here, it got removed because it
610 * rejected valid addresses. Actually just check if there is '@' somewhere
611 * in the given address.
612 *
613 * @todo Check for RFC 2822 compilance (bug 959)
614 *
615 * @param $addr \type{\string} E-mail address
616 * @return \type{\bool} True or false
617 */
618 public static function isValidEmailAddr( $addr ) {
619 $result = null;
620 if( !wfRunHooks( 'isValidEmailAddr', array( $addr, &$result ) ) ) {
621 return $result;
622 }
623
624 return strpos( $addr, '@' ) !== false;
625 }
626
627 /**
628 * Given unvalidated user input, return a canonical username, or false if
629 * the username is invalid.
630 * @param $name \type{\string} User input
631 * @param $validate \twotypes{\string,\bool} Type of validation to use:
632 * - false No validation
633 * - 'valid' Valid for batch processes
634 * - 'usable' Valid for batch processes and login
635 * - 'creatable' Valid for batch processes, login and account creation
636 */
637 static function getCanonicalName( $name, $validate = 'valid' ) {
638 # Force usernames to capital
639 global $wgContLang;
640 $name = $wgContLang->ucfirst( $name );
641
642 # Reject names containing '#'; these will be cleaned up
643 # with title normalisation, but then it's too late to
644 # check elsewhere
645 if( strpos( $name, '#' ) !== false )
646 return false;
647
648 # Clean up name according to title rules
649 $t = Title::newFromText( $name );
650 if( is_null( $t ) ) {
651 return false;
652 }
653
654 # Reject various classes of invalid names
655 $name = $t->getText();
656 global $wgAuth;
657 $name = $wgAuth->getCanonicalName( $t->getText() );
658
659 switch ( $validate ) {
660 case false:
661 break;
662 case 'valid':
663 if ( !User::isValidUserName( $name ) ) {
664 $name = false;
665 }
666 break;
667 case 'usable':
668 if ( !User::isUsableName( $name ) ) {
669 $name = false;
670 }
671 break;
672 case 'creatable':
673 if ( !User::isCreatableName( $name ) ) {
674 $name = false;
675 }
676 break;
677 default:
678 throw new MWException( 'Invalid parameter value for $validate in '.__METHOD__ );
679 }
680 return $name;
681 }
682
683 /**
684 * Count the number of edits of a user
685 * @todo It should not be static and some day should be merged as proper member function / deprecated -- domas
686 *
687 * @param $uid \type{\int} %User ID to check
688 * @return \type{\int} The user's edit count
689 */
690 static function edits( $uid ) {
691 wfProfileIn( __METHOD__ );
692 $dbr = wfGetDB( DB_SLAVE );
693 // check if the user_editcount field has been initialized
694 $field = $dbr->selectField(
695 'user', 'user_editcount',
696 array( 'user_id' => $uid ),
697 __METHOD__
698 );
699
700 if( $field === null ) { // it has not been initialized. do so.
701 $dbw = wfGetDB( DB_MASTER );
702 $count = $dbr->selectField(
703 'revision', 'count(*)',
704 array( 'rev_user' => $uid ),
705 __METHOD__
706 );
707 $dbw->update(
708 'user',
709 array( 'user_editcount' => $count ),
710 array( 'user_id' => $uid ),
711 __METHOD__
712 );
713 } else {
714 $count = $field;
715 }
716 wfProfileOut( __METHOD__ );
717 return $count;
718 }
719
720 /**
721 * Return a random password. Sourced from mt_rand, so it's not particularly secure.
722 * @todo hash random numbers to improve security, like generateToken()
723 *
724 * @return \type{\string} New random password
725 */
726 static function randomPassword() {
727 global $wgMinimalPasswordLength;
728 $pwchars = 'ABCDEFGHJKLMNPQRSTUVWXYZabcdefghjkmnpqrstuvwxyz';
729 $l = strlen( $pwchars ) - 1;
730
731 $pwlength = max( 7, $wgMinimalPasswordLength );
732 $digit = mt_rand(0, $pwlength - 1);
733 $np = '';
734 for ( $i = 0; $i < $pwlength; $i++ ) {
735 $np .= $i == $digit ? chr( mt_rand(48, 57) ) : $pwchars{ mt_rand(0, $l)};
736 }
737 return $np;
738 }
739
740 /**
741 * Set cached properties to default.
742 *
743 * @note This no longer clears uncached lazy-initialised properties;
744 * the constructor does that instead.
745 * @private
746 */
747 function loadDefaults( $name = false ) {
748 wfProfileIn( __METHOD__ );
749
750 global $wgCookiePrefix;
751
752 $this->mId = 0;
753 $this->mName = $name;
754 $this->mRealName = '';
755 $this->mPassword = $this->mNewpassword = '';
756 $this->mNewpassTime = null;
757 $this->mEmail = '';
758 $this->mOptions = null; # Defer init
759
760 if ( isset( $_COOKIE[$wgCookiePrefix.'LoggedOut'] ) ) {
761 $this->mTouched = wfTimestamp( TS_MW, $_COOKIE[$wgCookiePrefix.'LoggedOut'] );
762 } else {
763 $this->mTouched = '0'; # Allow any pages to be cached
764 }
765
766 $this->setToken(); # Random
767 $this->mEmailAuthenticated = null;
768 $this->mEmailToken = '';
769 $this->mEmailTokenExpires = null;
770 $this->mRegistration = wfTimestamp( TS_MW );
771 $this->mGroups = array();
772
773 wfRunHooks( 'UserLoadDefaults', array( $this, $name ) );
774
775 wfProfileOut( __METHOD__ );
776 }
777
778 /**
779 * @deprecated Use wfSetupSession().
780 */
781 function SetupSession() {
782 wfDeprecated( __METHOD__ );
783 wfSetupSession();
784 }
785
786 /**
787 * Load user data from the session or login cookie. If there are no valid
788 * credentials, initialises the user as an anonymous user.
789 * @return \type{\bool} True if the user is logged in, false otherwise.
790 */
791 private function loadFromSession() {
792 global $wgMemc, $wgCookiePrefix;
793
794 $result = null;
795 wfRunHooks( 'UserLoadFromSession', array( $this, &$result ) );
796 if ( $result !== null ) {
797 return $result;
798 }
799
800 if ( isset( $_SESSION['wsUserID'] ) ) {
801 if ( 0 != $_SESSION['wsUserID'] ) {
802 $sId = $_SESSION['wsUserID'];
803 } else {
804 $this->loadDefaults();
805 return false;
806 }
807 } else if ( isset( $_COOKIE["{$wgCookiePrefix}UserID"] ) ) {
808 $sId = intval( $_COOKIE["{$wgCookiePrefix}UserID"] );
809 $_SESSION['wsUserID'] = $sId;
810 } else {
811 $this->loadDefaults();
812 return false;
813 }
814 if ( isset( $_SESSION['wsUserName'] ) ) {
815 $sName = $_SESSION['wsUserName'];
816 } else if ( isset( $_COOKIE["{$wgCookiePrefix}UserName"] ) ) {
817 $sName = $_COOKIE["{$wgCookiePrefix}UserName"];
818 $_SESSION['wsUserName'] = $sName;
819 } else {
820 $this->loadDefaults();
821 return false;
822 }
823
824 $passwordCorrect = FALSE;
825 $this->mId = $sId;
826 if ( !$this->loadFromId() ) {
827 # Not a valid ID, loadFromId has switched the object to anon for us
828 return false;
829 }
830
831 if ( isset( $_SESSION['wsToken'] ) ) {
832 $passwordCorrect = $_SESSION['wsToken'] == $this->mToken;
833 $from = 'session';
834 } else if ( isset( $_COOKIE["{$wgCookiePrefix}Token"] ) ) {
835 $passwordCorrect = $this->mToken == $_COOKIE["{$wgCookiePrefix}Token"];
836 $from = 'cookie';
837 } else {
838 # No session or persistent login cookie
839 $this->loadDefaults();
840 return false;
841 }
842
843 if ( ( $sName == $this->mName ) && $passwordCorrect ) {
844 $_SESSION['wsToken'] = $this->mToken;
845 wfDebug( "Logged in from $from\n" );
846 return true;
847 } else {
848 # Invalid credentials
849 wfDebug( "Can't log in from $from, invalid credentials\n" );
850 $this->loadDefaults();
851 return false;
852 }
853 }
854
855 /**
856 * Load user and user_group data from the database.
857 * $this::mId must be set, this is how the user is identified.
858 *
859 * @return \type{\bool} True if the user exists, false if the user is anonymous
860 * @private
861 */
862 function loadFromDatabase() {
863 # Paranoia
864 $this->mId = intval( $this->mId );
865
866 /** Anonymous user */
867 if( !$this->mId ) {
868 $this->loadDefaults();
869 return false;
870 }
871
872 $dbr = wfGetDB( DB_MASTER );
873 $s = $dbr->selectRow( 'user', '*', array( 'user_id' => $this->mId ), __METHOD__ );
874
875 if ( $s !== false ) {
876 # Initialise user table data
877 $this->loadFromRow( $s );
878 $this->mGroups = null; // deferred
879 $this->getEditCount(); // revalidation for nulls
880 return true;
881 } else {
882 # Invalid user_id
883 $this->mId = 0;
884 $this->loadDefaults();
885 return false;
886 }
887 }
888
889 /**
890 * Initialize this object from a row from the user table.
891 *
892 * @param $row \type{\arrayof{\mixed}} Row from the user table to load.
893 */
894 function loadFromRow( $row ) {
895 $this->mDataLoaded = true;
896
897 if ( isset( $row->user_id ) ) {
898 $this->mId = $row->user_id;
899 }
900 $this->mName = $row->user_name;
901 $this->mRealName = $row->user_real_name;
902 $this->mPassword = $row->user_password;
903 $this->mNewpassword = $row->user_newpassword;
904 $this->mNewpassTime = wfTimestampOrNull( TS_MW, $row->user_newpass_time );
905 $this->mEmail = $row->user_email;
906 $this->decodeOptions( $row->user_options );
907 $this->mTouched = wfTimestamp(TS_MW,$row->user_touched);
908 $this->mToken = $row->user_token;
909 $this->mEmailAuthenticated = wfTimestampOrNull( TS_MW, $row->user_email_authenticated );
910 $this->mEmailToken = $row->user_email_token;
911 $this->mEmailTokenExpires = wfTimestampOrNull( TS_MW, $row->user_email_token_expires );
912 $this->mRegistration = wfTimestampOrNull( TS_MW, $row->user_registration );
913 $this->mEditCount = $row->user_editcount;
914 }
915
916 /**
917 * Load the groups from the database if they aren't already loaded.
918 * @private
919 */
920 function loadGroups() {
921 if ( is_null( $this->mGroups ) ) {
922 $dbr = wfGetDB( DB_MASTER );
923 $res = $dbr->select( 'user_groups',
924 array( 'ug_group' ),
925 array( 'ug_user' => $this->mId ),
926 __METHOD__ );
927 $this->mGroups = array();
928 while( $row = $dbr->fetchObject( $res ) ) {
929 $this->mGroups[] = $row->ug_group;
930 }
931 }
932 }
933
934 /**
935 * Clear various cached data stored in this object.
936 * @param $reloadFrom \type{\string} Reload user and user_groups table data from a
937 * given source. May be "name", "id", "defaults", "session", or false for
938 * no reload.
939 */
940 function clearInstanceCache( $reloadFrom = false ) {
941 $this->mNewtalk = -1;
942 $this->mDatePreference = null;
943 $this->mBlockedby = -1; # Unset
944 $this->mHash = false;
945 $this->mSkin = null;
946 $this->mRights = null;
947 $this->mEffectiveGroups = null;
948
949 if ( $reloadFrom ) {
950 $this->mDataLoaded = false;
951 $this->mFrom = $reloadFrom;
952 }
953 }
954
955 /**
956 * Combine the language default options with any site-specific options
957 * and add the default language variants.
958 *
959 * @return \type{\arrayof{\string}} Array of options
960 */
961 static function getDefaultOptions() {
962 global $wgNamespacesToBeSearchedDefault;
963 /**
964 * Site defaults will override the global/language defaults
965 */
966 global $wgDefaultUserOptions, $wgContLang;
967 $defOpt = $wgDefaultUserOptions + $wgContLang->getDefaultUserOptionOverrides();
968
969 /**
970 * default language setting
971 */
972 $variant = $wgContLang->getPreferredVariant( false );
973 $defOpt['variant'] = $variant;
974 $defOpt['language'] = $variant;
975
976 foreach( $wgNamespacesToBeSearchedDefault as $nsnum => $val ) {
977 $defOpt['searchNs'.$nsnum] = $val;
978 }
979 return $defOpt;
980 }
981
982 /**
983 * Get a given default option value.
984 *
985 * @param $opt \type{\string} Name of option to retrieve
986 * @return \type{\string} Default option value
987 */
988 public static function getDefaultOption( $opt ) {
989 $defOpts = self::getDefaultOptions();
990 if( isset( $defOpts[$opt] ) ) {
991 return $defOpts[$opt];
992 } else {
993 return '';
994 }
995 }
996
997 /**
998 * Get a list of user toggle names
999 * @return \type{\arrayof{\string}} Array of user toggle names
1000 */
1001 static function getToggles() {
1002 global $wgContLang;
1003 $extraToggles = array();
1004 wfRunHooks( 'UserToggles', array( &$extraToggles ) );
1005 return array_merge( self::$mToggles, $extraToggles, $wgContLang->getExtraUserToggles() );
1006 }
1007
1008
1009 /**
1010 * Get blocking information
1011 * @private
1012 * @param $bFromSlave \type{\bool} Whether to check the slave database first. To
1013 * improve performance, non-critical checks are done
1014 * against slaves. Check when actually saving should be
1015 * done against master.
1016 */
1017 function getBlockedStatus( $bFromSlave = true ) {
1018 global $wgEnableSorbs, $wgProxyWhitelist;
1019
1020 if ( -1 != $this->mBlockedby ) {
1021 wfDebug( "User::getBlockedStatus: already loaded.\n" );
1022 return;
1023 }
1024
1025 wfProfileIn( __METHOD__ );
1026 wfDebug( __METHOD__.": checking...\n" );
1027
1028 // Initialize data...
1029 // Otherwise something ends up stomping on $this->mBlockedby when
1030 // things get lazy-loaded later, causing false positive block hits
1031 // due to -1 !== 0. Probably session-related... Nothing should be
1032 // overwriting mBlockedby, surely?
1033 $this->load();
1034
1035 $this->mBlockedby = 0;
1036 $this->mHideName = 0;
1037 $ip = wfGetIP();
1038
1039 if ($this->isAllowed( 'ipblock-exempt' ) ) {
1040 # Exempt from all types of IP-block
1041 $ip = '';
1042 }
1043
1044 # User/IP blocking
1045 $this->mBlock = new Block();
1046 $this->mBlock->fromMaster( !$bFromSlave );
1047 if ( $this->mBlock->load( $ip , $this->mId ) ) {
1048 wfDebug( __METHOD__.": Found block.\n" );
1049 $this->mBlockedby = $this->mBlock->mBy;
1050 $this->mBlockreason = $this->mBlock->mReason;
1051 $this->mHideName = $this->mBlock->mHideName;
1052 if ( $this->isLoggedIn() ) {
1053 $this->spreadBlock();
1054 }
1055 } else {
1056 $this->mBlock = null;
1057 wfDebug( __METHOD__.": No block.\n" );
1058 }
1059
1060 # Proxy blocking
1061 if ( !$this->isAllowed('proxyunbannable') && !in_array( $ip, $wgProxyWhitelist ) ) {
1062 # Local list
1063 if ( wfIsLocallyBlockedProxy( $ip ) ) {
1064 $this->mBlockedby = wfMsg( 'proxyblocker' );
1065 $this->mBlockreason = wfMsg( 'proxyblockreason' );
1066 }
1067
1068 # DNSBL
1069 if ( !$this->mBlockedby && $wgEnableSorbs && !$this->getID() ) {
1070 if ( $this->inSorbsBlacklist( $ip ) ) {
1071 $this->mBlockedby = wfMsg( 'sorbs' );
1072 $this->mBlockreason = wfMsg( 'sorbsreason' );
1073 }
1074 }
1075 }
1076
1077 # Extensions
1078 wfRunHooks( 'GetBlockedStatus', array( &$this ) );
1079
1080 wfProfileOut( __METHOD__ );
1081 }
1082
1083 /**
1084 * Whether the given IP is in the SORBS blacklist.
1085 *
1086 * @param $ip \type{\string} IP to check
1087 * @return \type{\bool} True if blacklisted
1088 */
1089 function inSorbsBlacklist( $ip ) {
1090 global $wgEnableSorbs, $wgSorbsUrl;
1091
1092 return $wgEnableSorbs &&
1093 $this->inDnsBlacklist( $ip, $wgSorbsUrl );
1094 }
1095
1096 /**
1097 * Whether the given IP is in a given DNS blacklist.
1098 *
1099 * @param $ip \type{\string} IP to check
1100 * @param $base \type{\string} URL of the DNS blacklist
1101 * @return \type{\bool} True if blacklisted
1102 */
1103 function inDnsBlacklist( $ip, $base ) {
1104 wfProfileIn( __METHOD__ );
1105
1106 $found = false;
1107 $host = '';
1108 // FIXME: IPv6 ???
1109 $m = array();
1110 if ( preg_match( '/^(\d{1,3})\.(\d{1,3})\.(\d{1,3})\.(\d{1,3})$/', $ip, $m ) ) {
1111 # Make hostname
1112 for ( $i=4; $i>=1; $i-- ) {
1113 $host .= $m[$i] . '.';
1114 }
1115 $host .= $base;
1116
1117 # Send query
1118 $ipList = gethostbynamel( $host );
1119
1120 if ( $ipList ) {
1121 wfDebug( "Hostname $host is {$ipList[0]}, it's a proxy says $base!\n" );
1122 $found = true;
1123 } else {
1124 wfDebug( "Requested $host, not found in $base.\n" );
1125 }
1126 }
1127
1128 wfProfileOut( __METHOD__ );
1129 return $found;
1130 }
1131
1132 /**
1133 * Is this user subject to rate limiting?
1134 *
1135 * @return \type{\bool} True if rate limited
1136 */
1137 public function isPingLimitable() {
1138 global $wgRateLimitsExcludedGroups;
1139 if( array_intersect( $this->getEffectiveGroups(), $wgRateLimitsExcludedGroups ) ) {
1140 // Deprecated, but kept for backwards-compatibility config
1141 return false;
1142 }
1143 return !$this->isAllowed('noratelimit');
1144 }
1145
1146 /**
1147 * Primitive rate limits: enforce maximum actions per time period
1148 * to put a brake on flooding.
1149 *
1150 * @note When using a shared cache like memcached, IP-address
1151 * last-hit counters will be shared across wikis.
1152 *
1153 * @param $action \type{\string} Action to enforce; 'edit' if unspecified
1154 * @return \type{\bool} True if a rate limiter was tripped
1155 */
1156 function pingLimiter( $action='edit' ) {
1157
1158 # Call the 'PingLimiter' hook
1159 $result = false;
1160 if( !wfRunHooks( 'PingLimiter', array( &$this, $action, $result ) ) ) {
1161 return $result;
1162 }
1163
1164 global $wgRateLimits;
1165 if( !isset( $wgRateLimits[$action] ) ) {
1166 return false;
1167 }
1168
1169 # Some groups shouldn't trigger the ping limiter, ever
1170 if( !$this->isPingLimitable() )
1171 return false;
1172
1173 global $wgMemc, $wgRateLimitLog;
1174 wfProfileIn( __METHOD__ );
1175
1176 $limits = $wgRateLimits[$action];
1177 $keys = array();
1178 $id = $this->getId();
1179 $ip = wfGetIP();
1180 $userLimit = false;
1181
1182 if( isset( $limits['anon'] ) && $id == 0 ) {
1183 $keys[wfMemcKey( 'limiter', $action, 'anon' )] = $limits['anon'];
1184 }
1185
1186 if( isset( $limits['user'] ) && $id != 0 ) {
1187 $userLimit = $limits['user'];
1188 }
1189 if( $this->isNewbie() ) {
1190 if( isset( $limits['newbie'] ) && $id != 0 ) {
1191 $keys[wfMemcKey( 'limiter', $action, 'user', $id )] = $limits['newbie'];
1192 }
1193 if( isset( $limits['ip'] ) ) {
1194 $keys["mediawiki:limiter:$action:ip:$ip"] = $limits['ip'];
1195 }
1196 $matches = array();
1197 if( isset( $limits['subnet'] ) && preg_match( '/^(\d+\.\d+\.\d+)\.\d+$/', $ip, $matches ) ) {
1198 $subnet = $matches[1];
1199 $keys["mediawiki:limiter:$action:subnet:$subnet"] = $limits['subnet'];
1200 }
1201 }
1202 // Check for group-specific permissions
1203 // If more than one group applies, use the group with the highest limit
1204 foreach ( $this->getGroups() as $group ) {
1205 if ( isset( $limits[$group] ) ) {
1206 if ( $userLimit === false || $limits[$group] > $userLimit ) {
1207 $userLimit = $limits[$group];
1208 }
1209 }
1210 }
1211 // Set the user limit key
1212 if ( $userLimit !== false ) {
1213 wfDebug( __METHOD__.": effective user limit: $userLimit\n" );
1214 $keys[ wfMemcKey( 'limiter', $action, 'user', $id ) ] = $userLimit;
1215 }
1216
1217 $triggered = false;
1218 foreach( $keys as $key => $limit ) {
1219 list( $max, $period ) = $limit;
1220 $summary = "(limit $max in {$period}s)";
1221 $count = $wgMemc->get( $key );
1222 if( $count ) {
1223 if( $count > $max ) {
1224 wfDebug( __METHOD__.": tripped! $key at $count $summary\n" );
1225 if( $wgRateLimitLog ) {
1226 @error_log( wfTimestamp( TS_MW ) . ' ' . wfWikiID() . ': ' . $this->getName() . " tripped $key at $count $summary\n", 3, $wgRateLimitLog );
1227 }
1228 $triggered = true;
1229 } else {
1230 wfDebug( __METHOD__.": ok. $key at $count $summary\n" );
1231 }
1232 } else {
1233 wfDebug( __METHOD__.": adding record for $key $summary\n" );
1234 $wgMemc->add( $key, 1, intval( $period ) );
1235 }
1236 $wgMemc->incr( $key );
1237 }
1238
1239 wfProfileOut( __METHOD__ );
1240 return $triggered;
1241 }
1242
1243 /**
1244 * Check if user is blocked
1245 *
1246 * @param $bFromSlave \type{\bool} Whether to check the slave database instead of the master
1247 * @return \type{\bool} True if blocked, false otherwise
1248 */
1249 function isBlocked( $bFromSlave = true ) { // hacked from false due to horrible probs on site
1250 wfDebug( "User::isBlocked: enter\n" );
1251 $this->getBlockedStatus( $bFromSlave );
1252 return $this->mBlockedby !== 0;
1253 }
1254
1255 /**
1256 * Check if user is blocked from editing a particular article
1257 *
1258 * @param $title \type{\string} Title to check
1259 * @param $bFromSlave \type{\bool} Whether to check the slave database instead of the master
1260 * @return \type{\bool} True if blocked, false otherwise
1261 */
1262 function isBlockedFrom( $title, $bFromSlave = false ) {
1263 global $wgBlockAllowsUTEdit;
1264 wfProfileIn( __METHOD__ );
1265 wfDebug( __METHOD__.": enter\n" );
1266
1267 wfDebug( __METHOD__.": asking isBlocked()\n" );
1268 $blocked = $this->isBlocked( $bFromSlave );
1269 # If a user's name is suppressed, they cannot make edits anywhere
1270 if ( !$this->mHideName && $wgBlockAllowsUTEdit && $title->getText() === $this->getName() &&
1271 $title->getNamespace() == NS_USER_TALK ) {
1272 $blocked = false;
1273 wfDebug( __METHOD__.": self-talk page, ignoring any blocks\n" );
1274 }
1275 wfProfileOut( __METHOD__ );
1276 return $blocked;
1277 }
1278
1279 /**
1280 * If user is blocked, return the name of the user who placed the block
1281 * @return \type{\string} name of blocker
1282 */
1283 function blockedBy() {
1284 $this->getBlockedStatus();
1285 return $this->mBlockedby;
1286 }
1287
1288 /**
1289 * If user is blocked, return the specified reason for the block
1290 * @return \type{\string} Blocking reason
1291 */
1292 function blockedFor() {
1293 $this->getBlockedStatus();
1294 return $this->mBlockreason;
1295 }
1296
1297 /**
1298 * Get the user's ID.
1299 * @return \type{\int} The user's ID; 0 if the user is anonymous or nonexistent
1300 */
1301 function getId() {
1302 if( $this->mId === null and $this->mName !== null
1303 and User::isIP( $this->mName ) ) {
1304 // Special case, we know the user is anonymous
1305 return 0;
1306 } elseif( $this->mId === null ) {
1307 // Don't load if this was initialized from an ID
1308 $this->load();
1309 }
1310 return $this->mId;
1311 }
1312
1313 /**
1314 * Set the user and reload all fields according to a given ID
1315 * @param $v \type{\int} %User ID to reload
1316 */
1317 function setId( $v ) {
1318 $this->mId = $v;
1319 $this->clearInstanceCache( 'id' );
1320 }
1321
1322 /**
1323 * Get the user name, or the IP of an anonymous user
1324 * @return \type{\string} User's name or IP address
1325 */
1326 function getName() {
1327 if ( !$this->mDataLoaded && $this->mFrom == 'name' ) {
1328 # Special case optimisation
1329 return $this->mName;
1330 } else {
1331 $this->load();
1332 if ( $this->mName === false ) {
1333 # Clean up IPs
1334 $this->mName = IP::sanitizeIP( wfGetIP() );
1335 }
1336 return $this->mName;
1337 }
1338 }
1339
1340 /**
1341 * Set the user name.
1342 *
1343 * This does not reload fields from the database according to the given
1344 * name. Rather, it is used to create a temporary "nonexistent user" for
1345 * later addition to the database. It can also be used to set the IP
1346 * address for an anonymous user to something other than the current
1347 * remote IP.
1348 *
1349 * @note User::newFromName() has rougly the same function, when the named user
1350 * does not exist.
1351 * @param $str \type{\string} New user name to set
1352 */
1353 function setName( $str ) {
1354 $this->load();
1355 $this->mName = $str;
1356 }
1357
1358 /**
1359 * Get the user's name escaped by underscores.
1360 * @return \type{\string} Username escaped by underscores
1361 */
1362 function getTitleKey() {
1363 return str_replace( ' ', '_', $this->getName() );
1364 }
1365
1366 /**
1367 * Check if the user has new messages.
1368 * @return \type{\bool} True if the user has new messages
1369 */
1370 function getNewtalk() {
1371 $this->load();
1372
1373 # Load the newtalk status if it is unloaded (mNewtalk=-1)
1374 if( $this->mNewtalk === -1 ) {
1375 $this->mNewtalk = false; # reset talk page status
1376
1377 # Check memcached separately for anons, who have no
1378 # entire User object stored in there.
1379 if( !$this->mId ) {
1380 global $wgMemc;
1381 $key = wfMemcKey( 'newtalk', 'ip', $this->getName() );
1382 $newtalk = $wgMemc->get( $key );
1383 if( strval( $newtalk ) !== '' ) {
1384 $this->mNewtalk = (bool)$newtalk;
1385 } else {
1386 // Since we are caching this, make sure it is up to date by getting it
1387 // from the master
1388 $this->mNewtalk = $this->checkNewtalk( 'user_ip', $this->getName(), true );
1389 $wgMemc->set( $key, (int)$this->mNewtalk, 1800 );
1390 }
1391 } else {
1392 $this->mNewtalk = $this->checkNewtalk( 'user_id', $this->mId );
1393 }
1394 }
1395
1396 return (bool)$this->mNewtalk;
1397 }
1398
1399 /**
1400 * Return the talk page(s) this user has new messages on.
1401 * @return \type{\arrayof{\string}} Array of page URLs
1402 */
1403 function getNewMessageLinks() {
1404 $talks = array();
1405 if (!wfRunHooks('UserRetrieveNewTalks', array(&$this, &$talks)))
1406 return $talks;
1407
1408 if (!$this->getNewtalk())
1409 return array();
1410 $up = $this->getUserPage();
1411 $utp = $up->getTalkPage();
1412 return array(array("wiki" => wfWikiID(), "link" => $utp->getLocalURL()));
1413 }
1414
1415
1416 /**
1417 * Internal uncached check for new messages
1418 *
1419 * @see getNewtalk()
1420 * @param $field \type{\string} 'user_ip' for anonymous users, 'user_id' otherwise
1421 * @param $id \twotypes{\string,\int} User's IP address for anonymous users, %User ID otherwise
1422 * @param $fromMaster \type{\bool} true to fetch from the master, false for a slave
1423 * @return \type{\bool} True if the user has new messages
1424 * @private
1425 */
1426 function checkNewtalk( $field, $id, $fromMaster = false ) {
1427 if ( $fromMaster ) {
1428 $db = wfGetDB( DB_MASTER );
1429 } else {
1430 $db = wfGetDB( DB_SLAVE );
1431 }
1432 $ok = $db->selectField( 'user_newtalk', $field,
1433 array( $field => $id ), __METHOD__ );
1434 return $ok !== false;
1435 }
1436
1437 /**
1438 * Add or update the new messages flag
1439 * @param $field \type{\string} 'user_ip' for anonymous users, 'user_id' otherwise
1440 * @param $id \twotypes{string,\int} User's IP address for anonymous users, %User ID otherwise
1441 * @return \type{\bool} True if successful, false otherwise
1442 * @private
1443 */
1444 function updateNewtalk( $field, $id ) {
1445 $dbw = wfGetDB( DB_MASTER );
1446 $dbw->insert( 'user_newtalk',
1447 array( $field => $id ),
1448 __METHOD__,
1449 'IGNORE' );
1450 if ( $dbw->affectedRows() ) {
1451 wfDebug( __METHOD__.": set on ($field, $id)\n" );
1452 return true;
1453 } else {
1454 wfDebug( __METHOD__." already set ($field, $id)\n" );
1455 return false;
1456 }
1457 }
1458
1459 /**
1460 * Clear the new messages flag for the given user
1461 * @param $field \type{\string} 'user_ip' for anonymous users, 'user_id' otherwise
1462 * @param $id \twotypes{\string,\int} User's IP address for anonymous users, %User ID otherwise
1463 * @return \type{\bool} True if successful, false otherwise
1464 * @private
1465 */
1466 function deleteNewtalk( $field, $id ) {
1467 $dbw = wfGetDB( DB_MASTER );
1468 $dbw->delete( 'user_newtalk',
1469 array( $field => $id ),
1470 __METHOD__ );
1471 if ( $dbw->affectedRows() ) {
1472 wfDebug( __METHOD__.": killed on ($field, $id)\n" );
1473 return true;
1474 } else {
1475 wfDebug( __METHOD__.": already gone ($field, $id)\n" );
1476 return false;
1477 }
1478 }
1479
1480 /**
1481 * Update the 'You have new messages!' status.
1482 * @param $val \type{\bool} Whether the user has new messages
1483 */
1484 function setNewtalk( $val ) {
1485 if( wfReadOnly() ) {
1486 return;
1487 }
1488
1489 $this->load();
1490 $this->mNewtalk = $val;
1491
1492 if( $this->isAnon() ) {
1493 $field = 'user_ip';
1494 $id = $this->getName();
1495 } else {
1496 $field = 'user_id';
1497 $id = $this->getId();
1498 }
1499 global $wgMemc;
1500
1501 if( $val ) {
1502 $changed = $this->updateNewtalk( $field, $id );
1503 } else {
1504 $changed = $this->deleteNewtalk( $field, $id );
1505 }
1506
1507 if( $this->isAnon() ) {
1508 // Anons have a separate memcached space, since
1509 // user records aren't kept for them.
1510 $key = wfMemcKey( 'newtalk', 'ip', $id );
1511 $wgMemc->set( $key, $val ? 1 : 0, 1800 );
1512 }
1513 if ( $changed ) {
1514 $this->invalidateCache();
1515 }
1516 }
1517
1518 /**
1519 * Generate a current or new-future timestamp to be stored in the
1520 * user_touched field when we update things.
1521 * @return \type{\string} Timestamp in TS_MW format
1522 */
1523 private static function newTouchedTimestamp() {
1524 global $wgClockSkewFudge;
1525 return wfTimestamp( TS_MW, time() + $wgClockSkewFudge );
1526 }
1527
1528 /**
1529 * Clear user data from memcached.
1530 * Use after applying fun updates to the database; caller's
1531 * responsibility to update user_touched if appropriate.
1532 *
1533 * Called implicitly from invalidateCache() and saveSettings().
1534 */
1535 private function clearSharedCache() {
1536 if( $this->mId ) {
1537 global $wgMemc;
1538 $wgMemc->delete( wfMemcKey( 'user', 'id', $this->mId ) );
1539 }
1540 }
1541
1542 /**
1543 * Immediately touch the user data cache for this account.
1544 * Updates user_touched field, and removes account data from memcached
1545 * for reload on the next hit.
1546 */
1547 function invalidateCache() {
1548 $this->load();
1549 if( $this->mId ) {
1550 $this->mTouched = self::newTouchedTimestamp();
1551
1552 $dbw = wfGetDB( DB_MASTER );
1553 $dbw->update( 'user',
1554 array( 'user_touched' => $dbw->timestamp( $this->mTouched ) ),
1555 array( 'user_id' => $this->mId ),
1556 __METHOD__ );
1557
1558 $this->clearSharedCache();
1559 }
1560 }
1561
1562 /**
1563 * Validate the cache for this account.
1564 * @param $timestamp \type{\string} A timestamp in TS_MW format
1565 */
1566 function validateCache( $timestamp ) {
1567 $this->load();
1568 return ($timestamp >= $this->mTouched);
1569 }
1570
1571 /**
1572 * Get the user touched timestamp
1573 */
1574 function getTouched() {
1575 $this->load();
1576 return $this->mTouched;
1577 }
1578
1579 /**
1580 * Set the password and reset the random token.
1581 * Calls through to authentication plugin if necessary;
1582 * will have no effect if the auth plugin refuses to
1583 * pass the change through or if the legal password
1584 * checks fail.
1585 *
1586 * As a special case, setting the password to null
1587 * wipes it, so the account cannot be logged in until
1588 * a new password is set, for instance via e-mail.
1589 *
1590 * @param $str \type{\string} New password to set
1591 * @throws PasswordError on failure
1592 */
1593 function setPassword( $str ) {
1594 global $wgAuth;
1595
1596 if( $str !== null ) {
1597 if( !$wgAuth->allowPasswordChange() ) {
1598 throw new PasswordError( wfMsg( 'password-change-forbidden' ) );
1599 }
1600
1601 if( !$this->isValidPassword( $str ) ) {
1602 global $wgMinimalPasswordLength;
1603 throw new PasswordError( wfMsgExt( 'passwordtooshort', array( 'parsemag' ),
1604 $wgMinimalPasswordLength ) );
1605 }
1606 }
1607
1608 if( !$wgAuth->setPassword( $this, $str ) ) {
1609 throw new PasswordError( wfMsg( 'externaldberror' ) );
1610 }
1611
1612 $this->setInternalPassword( $str );
1613
1614 return true;
1615 }
1616
1617 /**
1618 * Set the password and reset the random token unconditionally.
1619 *
1620 * @param $str \type{\string} New password to set
1621 */
1622 function setInternalPassword( $str ) {
1623 $this->load();
1624 $this->setToken();
1625
1626 if( $str === null ) {
1627 // Save an invalid hash...
1628 $this->mPassword = '';
1629 } else {
1630 $this->mPassword = self::crypt( $str );
1631 }
1632 $this->mNewpassword = '';
1633 $this->mNewpassTime = null;
1634 }
1635
1636 /**
1637 * Get the user's current token.
1638 * @return \type{\string} Token
1639 */
1640 function getToken() {
1641 $this->load();
1642 return $this->mToken;
1643 }
1644
1645 /**
1646 * Set the random token (used for persistent authentication)
1647 * Called from loadDefaults() among other places.
1648 *
1649 * @param $token \type{\string} If specified, set the token to this value
1650 * @private
1651 */
1652 function setToken( $token = false ) {
1653 global $wgSecretKey, $wgProxyKey;
1654 $this->load();
1655 if ( !$token ) {
1656 if ( $wgSecretKey ) {
1657 $key = $wgSecretKey;
1658 } elseif ( $wgProxyKey ) {
1659 $key = $wgProxyKey;
1660 } else {
1661 $key = microtime();
1662 }
1663 $this->mToken = md5( $key . mt_rand( 0, 0x7fffffff ) . wfWikiID() . $this->mId );
1664 } else {
1665 $this->mToken = $token;
1666 }
1667 }
1668
1669 /**
1670 * Set the cookie password
1671 *
1672 * @param $str \type{\string} New cookie password
1673 * @private
1674 */
1675 function setCookiePassword( $str ) {
1676 $this->load();
1677 $this->mCookiePassword = md5( $str );
1678 }
1679
1680 /**
1681 * Set the password for a password reminder or new account email
1682 *
1683 * @param $str \type{\string} New password to set
1684 * @param $throttle \type{\bool} If true, reset the throttle timestamp to the present
1685 */
1686 function setNewpassword( $str, $throttle = true ) {
1687 $this->load();
1688 $this->mNewpassword = self::crypt( $str );
1689 if ( $throttle ) {
1690 $this->mNewpassTime = wfTimestampNow();
1691 }
1692 }
1693
1694 /**
1695 * Has password reminder email been sent within the last
1696 * $wgPasswordReminderResendTime hours?
1697 * @return \type{\bool} True or false
1698 */
1699 function isPasswordReminderThrottled() {
1700 global $wgPasswordReminderResendTime;
1701 $this->load();
1702 if ( !$this->mNewpassTime || !$wgPasswordReminderResendTime ) {
1703 return false;
1704 }
1705 $expiry = wfTimestamp( TS_UNIX, $this->mNewpassTime ) + $wgPasswordReminderResendTime * 3600;
1706 return time() < $expiry;
1707 }
1708
1709 /**
1710 * Get the user's e-mail address
1711 * @return \type{\string} User's e-mail address
1712 */
1713 function getEmail() {
1714 $this->load();
1715 wfRunHooks( 'UserGetEmail', array( $this, &$this->mEmail ) );
1716 return $this->mEmail;
1717 }
1718
1719 /**
1720 * Get the timestamp of the user's e-mail authentication
1721 * @return \type{\string} TS_MW timestamp
1722 */
1723 function getEmailAuthenticationTimestamp() {
1724 $this->load();
1725 wfRunHooks( 'UserGetEmailAuthenticationTimestamp', array( $this, &$this->mEmailAuthenticated ) );
1726 return $this->mEmailAuthenticated;
1727 }
1728
1729 /**
1730 * Set the user's e-mail address
1731 * @param $str \type{\string} New e-mail address
1732 */
1733 function setEmail( $str ) {
1734 $this->load();
1735 $this->mEmail = $str;
1736 wfRunHooks( 'UserSetEmail', array( $this, &$this->mEmail ) );
1737 }
1738
1739 /**
1740 * Get the user's real name
1741 * @return \type{\string} User's real name
1742 */
1743 function getRealName() {
1744 $this->load();
1745 return $this->mRealName;
1746 }
1747
1748 /**
1749 * Set the user's real name
1750 * @param $str \type{\string} New real name
1751 */
1752 function setRealName( $str ) {
1753 $this->load();
1754 $this->mRealName = $str;
1755 }
1756
1757 /**
1758 * Get the user's current setting for a given option.
1759 *
1760 * @param $oname \type{\string} The option to check
1761 * @param $defaultOverride \type{\string} A default value returned if the option does not exist
1762 * @return \type{\string} User's current value for the option
1763 * @see getBoolOption()
1764 * @see getIntOption()
1765 */
1766 function getOption( $oname, $defaultOverride = '' ) {
1767 $this->load();
1768
1769 if ( is_null( $this->mOptions ) ) {
1770 if($defaultOverride != '') {
1771 return $defaultOverride;
1772 }
1773 $this->mOptions = User::getDefaultOptions();
1774 }
1775
1776 if ( array_key_exists( $oname, $this->mOptions ) ) {
1777 return trim( $this->mOptions[$oname] );
1778 } else {
1779 return $defaultOverride;
1780 }
1781 }
1782
1783 /**
1784 * Get the user's current setting for a given option, as a boolean value.
1785 *
1786 * @param $oname \type{\string} The option to check
1787 * @return \type{\bool} User's current value for the option
1788 * @see getOption()
1789 */
1790 function getBoolOption( $oname ) {
1791 return (bool)$this->getOption( $oname );
1792 }
1793
1794
1795 /**
1796 * Get the user's current setting for a given option, as a boolean value.
1797 *
1798 * @param $oname \type{\string} The option to check
1799 * @param $defaultOverride \type{\int} A default value returned if the option does not exist
1800 * @return \type{\int} User's current value for the option
1801 * @see getOption()
1802 */
1803 function getIntOption( $oname, $defaultOverride=0 ) {
1804 $val = $this->getOption( $oname );
1805 if( $val == '' ) {
1806 $val = $defaultOverride;
1807 }
1808 return intval( $val );
1809 }
1810
1811 /**
1812 * Set the given option for a user.
1813 *
1814 * @param $oname \type{\string} The option to set
1815 * @param $val \type{\mixed} New value to set
1816 */
1817 function setOption( $oname, $val ) {
1818 $this->load();
1819 if ( is_null( $this->mOptions ) ) {
1820 $this->mOptions = User::getDefaultOptions();
1821 }
1822 if ( $oname == 'skin' ) {
1823 # Clear cached skin, so the new one displays immediately in Special:Preferences
1824 unset( $this->mSkin );
1825 }
1826 // Filter out any newlines that may have passed through input validation.
1827 // Newlines are used to separate items in the options blob.
1828 if( $val ) {
1829 $val = str_replace( "\r\n", "\n", $val );
1830 $val = str_replace( "\r", "\n", $val );
1831 $val = str_replace( "\n", " ", $val );
1832 }
1833 // Explicitly NULL values should refer to defaults
1834 global $wgDefaultUserOptions;
1835 if( is_null($val) && isset($wgDefaultUserOptions[$oname]) ) {
1836 $val = $wgDefaultUserOptions[$oname];
1837 }
1838 $this->mOptions[$oname] = $val;
1839 }
1840
1841 /**
1842 * Get the user's preferred date format.
1843 * @return \type{\string} User's preferred date format
1844 */
1845 function getDatePreference() {
1846 // Important migration for old data rows
1847 if ( is_null( $this->mDatePreference ) ) {
1848 global $wgLang;
1849 $value = $this->getOption( 'date' );
1850 $map = $wgLang->getDatePreferenceMigrationMap();
1851 if ( isset( $map[$value] ) ) {
1852 $value = $map[$value];
1853 }
1854 $this->mDatePreference = $value;
1855 }
1856 return $this->mDatePreference;
1857 }
1858
1859 /**
1860 * Get the permissions this user has.
1861 * @return \type{\arrayof{\string}} Array of permission names
1862 */
1863 function getRights() {
1864 if ( is_null( $this->mRights ) ) {
1865 $this->mRights = self::getGroupPermissions( $this->getEffectiveGroups() );
1866 wfRunHooks( 'UserGetRights', array( $this, &$this->mRights ) );
1867 // Force reindexation of rights when a hook has unset one of them
1868 $this->mRights = array_values( $this->mRights );
1869 }
1870 return $this->mRights;
1871 }
1872
1873 /**
1874 * Get the list of explicit group memberships this user has.
1875 * The implicit * and user groups are not included.
1876 * @return \type{\arrayof{\string}} Array of internal group names
1877 */
1878 function getGroups() {
1879 $this->load();
1880 return $this->mGroups;
1881 }
1882
1883 /**
1884 * Get the list of implicit group memberships this user has.
1885 * This includes all explicit groups, plus 'user' if logged in,
1886 * '*' for all accounts and autopromoted groups
1887 *
1888 * @param $recache \type{\bool} Whether to avoid the cache
1889 * @return \type{\arrayof{\string}} Array of internal group names
1890 */
1891 function getEffectiveGroups( $recache = false ) {
1892 if ( $recache || is_null( $this->mEffectiveGroups ) ) {
1893 $this->mEffectiveGroups = $this->getGroups();
1894 $this->mEffectiveGroups[] = '*';
1895 if( $this->getId() ) {
1896 $this->mEffectiveGroups[] = 'user';
1897
1898 $this->mEffectiveGroups = array_unique( array_merge(
1899 $this->mEffectiveGroups,
1900 Autopromote::getAutopromoteGroups( $this )
1901 ) );
1902
1903 # Hook for additional groups
1904 wfRunHooks( 'UserEffectiveGroups', array( &$this, &$this->mEffectiveGroups ) );
1905 }
1906 }
1907 return $this->mEffectiveGroups;
1908 }
1909
1910 /**
1911 * Get the user's edit count.
1912 * @return \type{\int} User's edit count
1913 */
1914 function getEditCount() {
1915 if ($this->mId) {
1916 if ( !isset( $this->mEditCount ) ) {
1917 /* Populate the count, if it has not been populated yet */
1918 $this->mEditCount = User::edits($this->mId);
1919 }
1920 return $this->mEditCount;
1921 } else {
1922 /* nil */
1923 return null;
1924 }
1925 }
1926
1927 /**
1928 * Add the user to the given group.
1929 * This takes immediate effect.
1930 * @param $group \type{\string} Name of the group to add
1931 */
1932 function addGroup( $group ) {
1933 $dbw = wfGetDB( DB_MASTER );
1934 if( $this->getId() ) {
1935 $dbw->insert( 'user_groups',
1936 array(
1937 'ug_user' => $this->getID(),
1938 'ug_group' => $group,
1939 ),
1940 'User::addGroup',
1941 array( 'IGNORE' ) );
1942 }
1943
1944 $this->loadGroups();
1945 $this->mGroups[] = $group;
1946 $this->mRights = User::getGroupPermissions( $this->getEffectiveGroups( true ) );
1947
1948 $this->invalidateCache();
1949 }
1950
1951 /**
1952 * Remove the user from the given group.
1953 * This takes immediate effect.
1954 * @param $group \type{\string} Name of the group to remove
1955 */
1956 function removeGroup( $group ) {
1957 $this->load();
1958 $dbw = wfGetDB( DB_MASTER );
1959 $dbw->delete( 'user_groups',
1960 array(
1961 'ug_user' => $this->getID(),
1962 'ug_group' => $group,
1963 ),
1964 'User::removeGroup' );
1965
1966 $this->loadGroups();
1967 $this->mGroups = array_diff( $this->mGroups, array( $group ) );
1968 $this->mRights = User::getGroupPermissions( $this->getEffectiveGroups( true ) );
1969
1970 $this->invalidateCache();
1971 }
1972
1973
1974 /**
1975 * Get whether the user is logged in
1976 * @return \type{\bool} True or false
1977 */
1978 function isLoggedIn() {
1979 return $this->getID() != 0;
1980 }
1981
1982 /**
1983 * Get whether the user is anonymous
1984 * @return \type{\bool} True or false
1985 */
1986 function isAnon() {
1987 return !$this->isLoggedIn();
1988 }
1989
1990 /**
1991 * Get whether the user is a bot
1992 * @return \type{\bool} True or false
1993 * @deprecated
1994 */
1995 function isBot() {
1996 wfDeprecated( __METHOD__ );
1997 return $this->isAllowed( 'bot' );
1998 }
1999
2000 /**
2001 * Check if user is allowed to access a feature / make an action
2002 * @param $action \type{\string} action to be checked
2003 * @return \type{\bool} True if action is allowed, else false
2004 */
2005 function isAllowed($action='') {
2006 if ( $action === '' )
2007 // In the spirit of DWIM
2008 return true;
2009
2010 return in_array( $action, $this->getRights() );
2011 }
2012
2013 /**
2014 * Check whether to enable recent changes patrol features for this user
2015 * @return \type{\bool} True or false
2016 */
2017 public function useRCPatrol() {
2018 global $wgUseRCPatrol;
2019 return( $wgUseRCPatrol && ($this->isAllowed('patrol') || $this->isAllowed('patrolmarks')) );
2020 }
2021
2022 /**
2023 * Check whether to enable new pages patrol features for this user
2024 * @return \type{\bool} True or false
2025 */
2026 public function useNPPatrol() {
2027 global $wgUseRCPatrol, $wgUseNPPatrol;
2028 return( ($wgUseRCPatrol || $wgUseNPPatrol) && ($this->isAllowed('patrol') || $this->isAllowed('patrolmarks')) );
2029 }
2030
2031 /**
2032 * Get the current skin, loading it if required
2033 * @return \type{Skin} Current skin
2034 * @todo FIXME : need to check the old failback system [AV]
2035 */
2036 function &getSkin() {
2037 global $wgRequest;
2038 if ( ! isset( $this->mSkin ) ) {
2039 wfProfileIn( __METHOD__ );
2040
2041 # get the user skin
2042 $userSkin = $this->getOption( 'skin' );
2043 $userSkin = $wgRequest->getVal('useskin', $userSkin);
2044
2045 $this->mSkin =& Skin::newFromKey( $userSkin );
2046 wfProfileOut( __METHOD__ );
2047 }
2048 return $this->mSkin;
2049 }
2050
2051 /**
2052 * Check the watched status of an article.
2053 * @param $title \type{Title} Title of the article to look at
2054 * @return \type{\bool} True if article is watched
2055 */
2056 function isWatched( $title ) {
2057 $wl = WatchedItem::fromUserTitle( $this, $title );
2058 return $wl->isWatched();
2059 }
2060
2061 /**
2062 * Watch an article.
2063 * @param $title \type{Title} Title of the article to look at
2064 */
2065 function addWatch( $title ) {
2066 $wl = WatchedItem::fromUserTitle( $this, $title );
2067 $wl->addWatch();
2068 $this->invalidateCache();
2069 }
2070
2071 /**
2072 * Stop watching an article.
2073 * @param $title \type{Title} Title of the article to look at
2074 */
2075 function removeWatch( $title ) {
2076 $wl = WatchedItem::fromUserTitle( $this, $title );
2077 $wl->removeWatch();
2078 $this->invalidateCache();
2079 }
2080
2081 /**
2082 * Clear the user's notification timestamp for the given title.
2083 * If e-notif e-mails are on, they will receive notification mails on
2084 * the next change of the page if it's watched etc.
2085 * @param $title \type{Title} Title of the article to look at
2086 */
2087 function clearNotification( &$title ) {
2088 global $wgUser, $wgUseEnotif, $wgShowUpdatedMarker;
2089
2090 # Do nothing if the database is locked to writes
2091 if( wfReadOnly() ) {
2092 return;
2093 }
2094
2095 if ($title->getNamespace() == NS_USER_TALK &&
2096 $title->getText() == $this->getName() ) {
2097 if (!wfRunHooks('UserClearNewTalkNotification', array(&$this)))
2098 return;
2099 $this->setNewtalk( false );
2100 }
2101
2102 if( !$wgUseEnotif && !$wgShowUpdatedMarker ) {
2103 return;
2104 }
2105
2106 if( $this->isAnon() ) {
2107 // Nothing else to do...
2108 return;
2109 }
2110
2111 // Only update the timestamp if the page is being watched.
2112 // The query to find out if it is watched is cached both in memcached and per-invocation,
2113 // and when it does have to be executed, it can be on a slave
2114 // If this is the user's newtalk page, we always update the timestamp
2115 if ($title->getNamespace() == NS_USER_TALK &&
2116 $title->getText() == $wgUser->getName())
2117 {
2118 $watched = true;
2119 } elseif ( $this->getId() == $wgUser->getId() ) {
2120 $watched = $title->userIsWatching();
2121 } else {
2122 $watched = true;
2123 }
2124
2125 // If the page is watched by the user (or may be watched), update the timestamp on any
2126 // any matching rows
2127 if ( $watched ) {
2128 $dbw = wfGetDB( DB_MASTER );
2129 $dbw->update( 'watchlist',
2130 array( /* SET */
2131 'wl_notificationtimestamp' => NULL
2132 ), array( /* WHERE */
2133 'wl_title' => $title->getDBkey(),
2134 'wl_namespace' => $title->getNamespace(),
2135 'wl_user' => $this->getID()
2136 ), __METHOD__
2137 );
2138 }
2139 }
2140
2141 /**
2142 * Resets all of the given user's page-change notification timestamps.
2143 * If e-notif e-mails are on, they will receive notification mails on
2144 * the next change of any watched page.
2145 *
2146 * @param $currentUser \type{\int} %User ID
2147 */
2148 function clearAllNotifications( $currentUser ) {
2149 global $wgUseEnotif, $wgShowUpdatedMarker;
2150 if ( !$wgUseEnotif && !$wgShowUpdatedMarker ) {
2151 $this->setNewtalk( false );
2152 return;
2153 }
2154 if( $currentUser != 0 ) {
2155 $dbw = wfGetDB( DB_MASTER );
2156 $dbw->update( 'watchlist',
2157 array( /* SET */
2158 'wl_notificationtimestamp' => NULL
2159 ), array( /* WHERE */
2160 'wl_user' => $currentUser
2161 ), __METHOD__
2162 );
2163 # We also need to clear here the "you have new message" notification for the own user_talk page
2164 # This is cleared one page view later in Article::viewUpdates();
2165 }
2166 }
2167
2168 /**
2169 * Encode this user's options as a string
2170 * @return \type{\string} Encoded options
2171 * @private
2172 */
2173 function encodeOptions() {
2174 $this->load();
2175 if ( is_null( $this->mOptions ) ) {
2176 $this->mOptions = User::getDefaultOptions();
2177 }
2178 $a = array();
2179 foreach ( $this->mOptions as $oname => $oval ) {
2180 array_push( $a, $oname.'='.$oval );
2181 }
2182 $s = implode( "\n", $a );
2183 return $s;
2184 }
2185
2186 /**
2187 * Set this user's options from an encoded string
2188 * @param $str \type{\string} Encoded options to import
2189 * @private
2190 */
2191 function decodeOptions( $str ) {
2192 $this->mOptions = array();
2193 $a = explode( "\n", $str );
2194 foreach ( $a as $s ) {
2195 $m = array();
2196 if ( preg_match( "/^(.[^=]*)=(.*)$/", $s, $m ) ) {
2197 $this->mOptions[$m[1]] = $m[2];
2198 }
2199 }
2200 }
2201
2202 /**
2203 * Set a cookie on the user's client. Wrapper for
2204 * WebResponse::setCookie
2205 */
2206 protected function setCookie( $name, $value, $exp=0 ) {
2207 global $wgRequest;
2208 $wgRequest->response()->setcookie( $name, $value, $exp );
2209 }
2210
2211 /**
2212 * Clear a cookie on the user's client
2213 * @param $name \type{\string} Name of the cookie to clear
2214 */
2215 protected function clearCookie( $name ) {
2216 $this->setCookie( $name, '', time() - 86400 );
2217 }
2218
2219 /**
2220 * Set the default cookies for this session on the user's client.
2221 */
2222 function setCookies() {
2223 $this->load();
2224 if ( 0 == $this->mId ) return;
2225 $session = array(
2226 'wsUserID' => $this->mId,
2227 'wsToken' => $this->mToken,
2228 'wsUserName' => $this->getName()
2229 );
2230 $cookies = array(
2231 'UserID' => $this->mId,
2232 'UserName' => $this->getName(),
2233 );
2234 if ( 1 == $this->getOption( 'rememberpassword' ) ) {
2235 $cookies['Token'] = $this->mToken;
2236 } else {
2237 $cookies['Token'] = false;
2238 }
2239
2240 wfRunHooks( 'UserSetCookies', array( $this, &$session, &$cookies ) );
2241 $_SESSION = $session + $_SESSION;
2242 foreach ( $cookies as $name => $value ) {
2243 if ( $value === false ) {
2244 $this->clearCookie( $name );
2245 } else {
2246 $this->setCookie( $name, $value );
2247 }
2248 }
2249 }
2250
2251 /**
2252 * Log this user out.
2253 */
2254 function logout() {
2255 global $wgUser;
2256 if( wfRunHooks( 'UserLogout', array(&$this) ) ) {
2257 $this->doLogout();
2258 }
2259 }
2260
2261 /**
2262 * Clear the user's cookies and session, and reset the instance cache.
2263 * @private
2264 * @see logout()
2265 */
2266 function doLogout() {
2267 $this->clearInstanceCache( 'defaults' );
2268
2269 $_SESSION['wsUserID'] = 0;
2270
2271 $this->clearCookie( 'UserID' );
2272 $this->clearCookie( 'Token' );
2273
2274 # Remember when user logged out, to prevent seeing cached pages
2275 $this->setCookie( 'LoggedOut', wfTimestampNow(), time() + 86400 );
2276 }
2277
2278 /**
2279 * Save this user's settings into the database.
2280 * @todo Only rarely do all these fields need to be set!
2281 */
2282 function saveSettings() {
2283 $this->load();
2284 if ( wfReadOnly() ) { return; }
2285 if ( 0 == $this->mId ) { return; }
2286
2287 $this->mTouched = self::newTouchedTimestamp();
2288
2289 $dbw = wfGetDB( DB_MASTER );
2290 $dbw->update( 'user',
2291 array( /* SET */
2292 'user_name' => $this->mName,
2293 'user_password' => $this->mPassword,
2294 'user_newpassword' => $this->mNewpassword,
2295 'user_newpass_time' => $dbw->timestampOrNull( $this->mNewpassTime ),
2296 'user_real_name' => $this->mRealName,
2297 'user_email' => $this->mEmail,
2298 'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
2299 'user_options' => $this->encodeOptions(),
2300 'user_touched' => $dbw->timestamp($this->mTouched),
2301 'user_token' => $this->mToken,
2302 'user_email_token' => $this->mEmailToken,
2303 'user_email_token_expires' => $dbw->timestampOrNull( $this->mEmailTokenExpires ),
2304 ), array( /* WHERE */
2305 'user_id' => $this->mId
2306 ), __METHOD__
2307 );
2308 wfRunHooks( 'UserSaveSettings', array( $this ) );
2309 $this->clearSharedCache();
2310 }
2311
2312 /**
2313 * If only this user's username is known, and it exists, return the user ID.
2314 */
2315 function idForName() {
2316 $s = trim( $this->getName() );
2317 if ( $s === '' ) return 0;
2318
2319 $dbr = wfGetDB( DB_SLAVE );
2320 $id = $dbr->selectField( 'user', 'user_id', array( 'user_name' => $s ), __METHOD__ );
2321 if ( $id === false ) {
2322 $id = 0;
2323 }
2324 return $id;
2325 }
2326
2327 /**
2328 * Add a user to the database, return the user object
2329 *
2330 * @param $name \type{\string} Username to add
2331 * @param $params \type{\arrayof{\string}} Non-default parameters to save to the database:
2332 * - password The user's password. Password logins will be disabled if this is omitted.
2333 * - newpassword A temporary password mailed to the user
2334 * - email The user's email address
2335 * - email_authenticated The email authentication timestamp
2336 * - real_name The user's real name
2337 * - options An associative array of non-default options
2338 * - token Random authentication token. Do not set.
2339 * - registration Registration timestamp. Do not set.
2340 *
2341 * @return \type{User} A new User object, or null if the username already exists
2342 */
2343 static function createNew( $name, $params = array() ) {
2344 $user = new User;
2345 $user->load();
2346 if ( isset( $params['options'] ) ) {
2347 $user->mOptions = $params['options'] + $user->mOptions;
2348 unset( $params['options'] );
2349 }
2350 $dbw = wfGetDB( DB_MASTER );
2351 $seqVal = $dbw->nextSequenceValue( 'user_user_id_seq' );
2352 $fields = array(
2353 'user_id' => $seqVal,
2354 'user_name' => $name,
2355 'user_password' => $user->mPassword,
2356 'user_newpassword' => $user->mNewpassword,
2357 'user_newpass_time' => $dbw->timestamp( $user->mNewpassTime ),
2358 'user_email' => $user->mEmail,
2359 'user_email_authenticated' => $dbw->timestampOrNull( $user->mEmailAuthenticated ),
2360 'user_real_name' => $user->mRealName,
2361 'user_options' => $user->encodeOptions(),
2362 'user_token' => $user->mToken,
2363 'user_registration' => $dbw->timestamp( $user->mRegistration ),
2364 'user_editcount' => 0,
2365 );
2366 foreach ( $params as $name => $value ) {
2367 $fields["user_$name"] = $value;
2368 }
2369 $dbw->insert( 'user', $fields, __METHOD__, array( 'IGNORE' ) );
2370 if ( $dbw->affectedRows() ) {
2371 $newUser = User::newFromId( $dbw->insertId() );
2372 } else {
2373 $newUser = null;
2374 }
2375 return $newUser;
2376 }
2377
2378 /**
2379 * Add this existing user object to the database
2380 */
2381 function addToDatabase() {
2382 $this->load();
2383 $dbw = wfGetDB( DB_MASTER );
2384 $seqVal = $dbw->nextSequenceValue( 'user_user_id_seq' );
2385 $dbw->insert( 'user',
2386 array(
2387 'user_id' => $seqVal,
2388 'user_name' => $this->mName,
2389 'user_password' => $this->mPassword,
2390 'user_newpassword' => $this->mNewpassword,
2391 'user_newpass_time' => $dbw->timestamp( $this->mNewpassTime ),
2392 'user_email' => $this->mEmail,
2393 'user_email_authenticated' => $dbw->timestampOrNull( $this->mEmailAuthenticated ),
2394 'user_real_name' => $this->mRealName,
2395 'user_options' => $this->encodeOptions(),
2396 'user_token' => $this->mToken,
2397 'user_registration' => $dbw->timestamp( $this->mRegistration ),
2398 'user_editcount' => 0,
2399 ), __METHOD__
2400 );
2401 $this->mId = $dbw->insertId();
2402
2403 // Clear instance cache other than user table data, which is already accurate
2404 $this->clearInstanceCache();
2405 }
2406
2407 /**
2408 * If this (non-anonymous) user is blocked, block any IP address
2409 * they've successfully logged in from.
2410 */
2411 function spreadBlock() {
2412 wfDebug( __METHOD__."()\n" );
2413 $this->load();
2414 if ( $this->mId == 0 ) {
2415 return;
2416 }
2417
2418 $userblock = Block::newFromDB( '', $this->mId );
2419 if ( !$userblock ) {
2420 return;
2421 }
2422
2423 $userblock->doAutoblock( wfGetIp() );
2424
2425 }
2426
2427 /**
2428 * Generate a string which will be different for any combination of
2429 * user options which would produce different parser output.
2430 * This will be used as part of the hash key for the parser cache,
2431 * so users will the same options can share the same cached data
2432 * safely.
2433 *
2434 * Extensions which require it should install 'PageRenderingHash' hook,
2435 * which will give them a chance to modify this key based on their own
2436 * settings.
2437 *
2438 * @return \type{\string} Page rendering hash
2439 */
2440 function getPageRenderingHash() {
2441 global $wgContLang, $wgUseDynamicDates, $wgLang;
2442 if( $this->mHash ){
2443 return $this->mHash;
2444 }
2445
2446 // stubthreshold is only included below for completeness,
2447 // it will always be 0 when this function is called by parsercache.
2448
2449 $confstr = $this->getOption( 'math' );
2450 $confstr .= '!' . $this->getOption( 'stubthreshold' );
2451 if ( $wgUseDynamicDates ) {
2452 $confstr .= '!' . $this->getDatePreference();
2453 }
2454 $confstr .= '!' . ($this->getOption( 'numberheadings' ) ? '1' : '');
2455 $confstr .= '!' . $wgLang->getCode();
2456 $confstr .= '!' . $this->getOption( 'thumbsize' );
2457 // add in language specific options, if any
2458 $extra = $wgContLang->getExtraHashOptions();
2459 $confstr .= $extra;
2460
2461 // Give a chance for extensions to modify the hash, if they have
2462 // extra options or other effects on the parser cache.
2463 wfRunHooks( 'PageRenderingHash', array( &$confstr ) );
2464
2465 // Make it a valid memcached key fragment
2466 $confstr = str_replace( ' ', '_', $confstr );
2467 $this->mHash = $confstr;
2468 return $confstr;
2469 }
2470
2471 /**
2472 * Get whether the user is explicitly blocked from account creation.
2473 * @return \type{\bool} True if blocked
2474 */
2475 function isBlockedFromCreateAccount() {
2476 $this->getBlockedStatus();
2477 return $this->mBlock && $this->mBlock->mCreateAccount;
2478 }
2479
2480 /**
2481 * Get whether the user is blocked from using Special:Emailuser.
2482 * @return \type{\bool} True if blocked
2483 */
2484 function isBlockedFromEmailuser() {
2485 $this->getBlockedStatus();
2486 return $this->mBlock && $this->mBlock->mBlockEmail;
2487 }
2488
2489 /**
2490 * Get whether the user is allowed to create an account.
2491 * @return \type{\bool} True if allowed
2492 */
2493 function isAllowedToCreateAccount() {
2494 return $this->isAllowed( 'createaccount' ) && !$this->isBlockedFromCreateAccount();
2495 }
2496
2497 /**
2498 * @deprecated
2499 */
2500 function setLoaded( $loaded ) {
2501 wfDeprecated( __METHOD__ );
2502 }
2503
2504 /**
2505 * Get this user's personal page title.
2506 *
2507 * @return \type{Title} User's personal page title
2508 */
2509 function getUserPage() {
2510 return Title::makeTitle( NS_USER, $this->getName() );
2511 }
2512
2513 /**
2514 * Get this user's talk page title.
2515 *
2516 * @return \type{Title} User's talk page title
2517 */
2518 function getTalkPage() {
2519 $title = $this->getUserPage();
2520 return $title->getTalkPage();
2521 }
2522
2523 /**
2524 * Get the maximum valid user ID.
2525 * @return \type{\int} %User ID
2526 * @static
2527 */
2528 function getMaxID() {
2529 static $res; // cache
2530
2531 if ( isset( $res ) )
2532 return $res;
2533 else {
2534 $dbr = wfGetDB( DB_SLAVE );
2535 return $res = $dbr->selectField( 'user', 'max(user_id)', false, 'User::getMaxID' );
2536 }
2537 }
2538
2539 /**
2540 * Determine whether the user is a newbie. Newbies are either
2541 * anonymous IPs, or the most recently created accounts.
2542 * @return \type{\bool} True if the user is a newbie
2543 */
2544 function isNewbie() {
2545 return !$this->isAllowed( 'autoconfirmed' );
2546 }
2547
2548 /**
2549 * Is the user active? We check to see if they've made at least
2550 * X number of edits in the last Y days.
2551 *
2552 * @return \type{\bool} True if the user is active, false if not.
2553 */
2554 public function isActiveEditor() {
2555 global $wgActiveUserEditCount, $wgActiveUserDays;
2556 $dbr = wfGetDB( DB_SLAVE );
2557
2558 // Stolen without shame from RC
2559 $cutoff_unixtime = time() - ( $wgActiveUserDays * 86400 );
2560 $cutoff_unixtime = $cutoff_unixtime - ( $cutoff_unixtime % 86400 );
2561 $oldTime = $dbr->addQuotes( $dbr->timestamp( $cutoff_unixtime ) );
2562
2563 $res = $dbr->select( 'revision', '1',
2564 array( 'rev_user_text' => $this->getName(), "rev_timestamp > $oldTime"),
2565 __METHOD__,
2566 array('LIMIT' => $wgActiveUserEditCount ) );
2567
2568 $count = $dbr->numRows($res);
2569 $dbr->freeResult($res);
2570
2571 return $count == $wgActiveUserEditCount;
2572 }
2573
2574 /**
2575 * Check to see if the given clear-text password is one of the accepted passwords
2576 * @param $password \type{\string} user password.
2577 * @return \type{\bool} True if the given password is correct, otherwise False.
2578 */
2579 function checkPassword( $password ) {
2580 global $wgAuth;
2581 $this->load();
2582
2583 // Even though we stop people from creating passwords that
2584 // are shorter than this, doesn't mean people wont be able
2585 // to. Certain authentication plugins do NOT want to save
2586 // domain passwords in a mysql database, so we should
2587 // check this (incase $wgAuth->strict() is false).
2588 if( !$this->isValidPassword( $password ) ) {
2589 return false;
2590 }
2591
2592 if( $wgAuth->authenticate( $this->getName(), $password ) ) {
2593 return true;
2594 } elseif( $wgAuth->strict() ) {
2595 /* Auth plugin doesn't allow local authentication */
2596 return false;
2597 } elseif( $wgAuth->strictUserAuth( $this->getName() ) ) {
2598 /* Auth plugin doesn't allow local authentication for this user name */
2599 return false;
2600 }
2601 if ( self::comparePasswords( $this->mPassword, $password, $this->mId ) ) {
2602 return true;
2603 } elseif ( function_exists( 'iconv' ) ) {
2604 # Some wikis were converted from ISO 8859-1 to UTF-8, the passwords can't be converted
2605 # Check for this with iconv
2606 $cp1252Password = iconv( 'UTF-8', 'WINDOWS-1252//TRANSLIT', $password );
2607 if ( self::comparePasswords( $this->mPassword, $cp1252Password, $this->mId ) ) {
2608 return true;
2609 }
2610 }
2611 return false;
2612 }
2613
2614 /**
2615 * Check if the given clear-text password matches the temporary password
2616 * sent by e-mail for password reset operations.
2617 * @return \type{\bool} True if matches, false otherwise
2618 */
2619 function checkTemporaryPassword( $plaintext ) {
2620 return self::comparePasswords( $this->mNewpassword, $plaintext, $this->getId() );
2621 }
2622
2623 /**
2624 * Initialize (if necessary) and return a session token value
2625 * which can be used in edit forms to show that the user's
2626 * login credentials aren't being hijacked with a foreign form
2627 * submission.
2628 *
2629 * @param $salt \twotypes{\string,\arrayof{\string}} Optional function-specific data for hashing
2630 * @return \type{\string} The new edit token
2631 */
2632 function editToken( $salt = '' ) {
2633 if ( $this->isAnon() ) {
2634 return EDIT_TOKEN_SUFFIX;
2635 } else {
2636 if( !isset( $_SESSION['wsEditToken'] ) ) {
2637 $token = $this->generateToken();
2638 $_SESSION['wsEditToken'] = $token;
2639 } else {
2640 $token = $_SESSION['wsEditToken'];
2641 }
2642 if( is_array( $salt ) ) {
2643 $salt = implode( '|', $salt );
2644 }
2645 return md5( $token . $salt ) . EDIT_TOKEN_SUFFIX;
2646 }
2647 }
2648
2649 /**
2650 * Generate a looking random token for various uses.
2651 *
2652 * @param $salt \type{\string} Optional salt value
2653 * @return \type{\string} The new random token
2654 */
2655 function generateToken( $salt = '' ) {
2656 $token = dechex( mt_rand() ) . dechex( mt_rand() );
2657 return md5( $token . $salt );
2658 }
2659
2660 /**
2661 * Check given value against the token value stored in the session.
2662 * A match should confirm that the form was submitted from the
2663 * user's own login session, not a form submission from a third-party
2664 * site.
2665 *
2666 * @param $val \type{\string} Input value to compare
2667 * @param $salt \type{\string} Optional function-specific data for hashing
2668 * @return \type{\bool} Whether the token matches
2669 */
2670 function matchEditToken( $val, $salt = '' ) {
2671 $sessionToken = $this->editToken( $salt );
2672 if ( $val != $sessionToken ) {
2673 wfDebug( "User::matchEditToken: broken session data\n" );
2674 }
2675 return $val == $sessionToken;
2676 }
2677
2678 /**
2679 * Check given value against the token value stored in the session,
2680 * ignoring the suffix.
2681 *
2682 * @param $val \type{\string} Input value to compare
2683 * @param $salt \type{\string} Optional function-specific data for hashing
2684 * @return \type{\bool} Whether the token matches
2685 */
2686 function matchEditTokenNoSuffix( $val, $salt = '' ) {
2687 $sessionToken = $this->editToken( $salt );
2688 return substr( $sessionToken, 0, 32 ) == substr( $val, 0, 32 );
2689 }
2690
2691 /**
2692 * Generate a new e-mail confirmation token and send a confirmation/invalidation
2693 * mail to the user's given address.
2694 *
2695 * @return \twotypes{\bool,WikiError} True on success, a WikiError object on failure.
2696 */
2697 function sendConfirmationMail() {
2698 global $wgLang;
2699 $expiration = null; // gets passed-by-ref and defined in next line.
2700 $token = $this->confirmationToken( $expiration );
2701 $url = $this->confirmationTokenUrl( $token );
2702 $invalidateURL = $this->invalidationTokenUrl( $token );
2703 $this->saveSettings();
2704
2705 return $this->sendMail( wfMsg( 'confirmemail_subject' ),
2706 wfMsg( 'confirmemail_body',
2707 wfGetIP(),
2708 $this->getName(),
2709 $url,
2710 $wgLang->timeanddate( $expiration, false ),
2711 $invalidateURL ) );
2712 }
2713
2714 /**
2715 * Send an e-mail to this user's account. Does not check for
2716 * confirmed status or validity.
2717 *
2718 * @param $subject \type{\string} Message subject
2719 * @param $body \type{\string} Message body
2720 * @param $from \type{\string} Optional From address; if unspecified, default $wgPasswordSender will be used
2721 * @param $replyto \type{\string} Reply-to address
2722 * @return \twotypes{\bool,WikiError} True on success, a WikiError object on failure
2723 */
2724 function sendMail( $subject, $body, $from = null, $replyto = null ) {
2725 if( is_null( $from ) ) {
2726 global $wgPasswordSender;
2727 $from = $wgPasswordSender;
2728 }
2729
2730 $to = new MailAddress( $this );
2731 $sender = new MailAddress( $from );
2732 return UserMailer::send( $to, $sender, $subject, $body, $replyto );
2733 }
2734
2735 /**
2736 * Generate, store, and return a new e-mail confirmation code.
2737 * A hash (unsalted, since it's used as a key) is stored.
2738 *
2739 * @note Call saveSettings() after calling this function to commit
2740 * this change to the database.
2741 *
2742 * @param[out] &$expiration \type{\mixed} Accepts the expiration time
2743 * @return \type{\string} New token
2744 * @private
2745 */
2746 function confirmationToken( &$expiration ) {
2747 $now = time();
2748 $expires = $now + 7 * 24 * 60 * 60;
2749 $expiration = wfTimestamp( TS_MW, $expires );
2750 $token = $this->generateToken( $this->mId . $this->mEmail . $expires );
2751 $hash = md5( $token );
2752 $this->load();
2753 $this->mEmailToken = $hash;
2754 $this->mEmailTokenExpires = $expiration;
2755 return $token;
2756 }
2757
2758 /**
2759 * Return a URL the user can use to confirm their email address.
2760 * @param $token \type{\string} Accepts the email confirmation token
2761 * @return \type{\string} New token URL
2762 * @private
2763 */
2764 function confirmationTokenUrl( $token ) {
2765 return $this->getTokenUrl( 'ConfirmEmail', $token );
2766 }
2767 /**
2768 * Return a URL the user can use to invalidate their email address.
2769 *
2770 * @param $token \type{\string} Accepts the email confirmation token
2771 * @return \type{\string} New token URL
2772 * @private
2773 */
2774 function invalidationTokenUrl( $token ) {
2775 return $this->getTokenUrl( 'Invalidateemail', $token );
2776 }
2777
2778 /**
2779 * Internal function to format the e-mail validation/invalidation URLs.
2780 * This uses $wgArticlePath directly as a quickie hack to use the
2781 * hardcoded English names of the Special: pages, for ASCII safety.
2782 *
2783 * @note Since these URLs get dropped directly into emails, using the
2784 * short English names avoids insanely long URL-encoded links, which
2785 * also sometimes can get corrupted in some browsers/mailers
2786 * (bug 6957 with Gmail and Internet Explorer).
2787 *
2788 * @param $page \type{\string} Special page
2789 * @param $token \type{\string} Token
2790 * @return \type{\string} Formatted URL
2791 */
2792 protected function getTokenUrl( $page, $token ) {
2793 global $wgArticlePath;
2794 return wfExpandUrl(
2795 str_replace(
2796 '$1',
2797 "Special:$page/$token",
2798 $wgArticlePath ) );
2799 }
2800
2801 /**
2802 * Mark the e-mail address confirmed.
2803 *
2804 * @note Call saveSettings() after calling this function to commit the change.
2805 */
2806 function confirmEmail() {
2807 $this->setEmailAuthenticationTimestamp( wfTimestampNow() );
2808 return true;
2809 }
2810
2811 /**
2812 * Invalidate the user's e-mail confirmation, and unauthenticate the e-mail
2813 * address if it was already confirmed.
2814 *
2815 * @note Call saveSettings() after calling this function to commit the change.
2816 */
2817 function invalidateEmail() {
2818 $this->load();
2819 $this->mEmailToken = null;
2820 $this->mEmailTokenExpires = null;
2821 $this->setEmailAuthenticationTimestamp( null );
2822 return true;
2823 }
2824
2825 /**
2826 * Set the e-mail authentication timestamp.
2827 * @param $timestamp \type{\string} TS_MW timestamp
2828 */
2829 function setEmailAuthenticationTimestamp( $timestamp ) {
2830 $this->load();
2831 $this->mEmailAuthenticated = $timestamp;
2832 wfRunHooks( 'UserSetEmailAuthenticationTimestamp', array( $this, &$this->mEmailAuthenticated ) );
2833 }
2834
2835 /**
2836 * Is this user allowed to send e-mails within limits of current
2837 * site configuration?
2838 * @return \type{\bool} True if allowed
2839 */
2840 function canSendEmail() {
2841 $canSend = $this->isEmailConfirmed();
2842 wfRunHooks( 'UserCanSendEmail', array( &$this, &$canSend ) );
2843 return $canSend;
2844 }
2845
2846 /**
2847 * Is this user allowed to receive e-mails within limits of current
2848 * site configuration?
2849 * @return \type{\bool} True if allowed
2850 */
2851 function canReceiveEmail() {
2852 return $this->isEmailConfirmed() && !$this->getOption( 'disablemail' );
2853 }
2854
2855 /**
2856 * Is this user's e-mail address valid-looking and confirmed within
2857 * limits of the current site configuration?
2858 *
2859 * @note If $wgEmailAuthentication is on, this may require the user to have
2860 * confirmed their address by returning a code or using a password
2861 * sent to the address from the wiki.
2862 *
2863 * @return \type{\bool} True if confirmed
2864 */
2865 function isEmailConfirmed() {
2866 global $wgEmailAuthentication;
2867 $this->load();
2868 $confirmed = true;
2869 if( wfRunHooks( 'EmailConfirmed', array( &$this, &$confirmed ) ) ) {
2870 if( $this->isAnon() )
2871 return false;
2872 if( !self::isValidEmailAddr( $this->mEmail ) )
2873 return false;
2874 if( $wgEmailAuthentication && !$this->getEmailAuthenticationTimestamp() )
2875 return false;
2876 return true;
2877 } else {
2878 return $confirmed;
2879 }
2880 }
2881
2882 /**
2883 * Check whether there is an outstanding request for e-mail confirmation.
2884 * @return \type{\bool} True if pending
2885 */
2886 function isEmailConfirmationPending() {
2887 global $wgEmailAuthentication;
2888 return $wgEmailAuthentication &&
2889 !$this->isEmailConfirmed() &&
2890 $this->mEmailToken &&
2891 $this->mEmailTokenExpires > wfTimestamp();
2892 }
2893
2894 /**
2895 * Get the timestamp of account creation.
2896 *
2897 * @return \twotypes{\string,\bool} string Timestamp of account creation, or false for
2898 * non-existent/anonymous user accounts.
2899 */
2900 public function getRegistration() {
2901 return $this->mId > 0
2902 ? $this->mRegistration
2903 : false;
2904 }
2905
2906 /**
2907 * Get the permissions associated with a given list of groups
2908 *
2909 * @param $groups \type{\arrayof{\string}} List of internal group names
2910 * @return \type{\arrayof{\string}} List of permission key names for given groups combined
2911 */
2912 static function getGroupPermissions( $groups ) {
2913 global $wgGroupPermissions;
2914 $rights = array();
2915 foreach( $groups as $group ) {
2916 if( isset( $wgGroupPermissions[$group] ) ) {
2917 $rights = array_merge( $rights,
2918 array_keys( array_filter( $wgGroupPermissions[$group] ) ) );
2919 }
2920 }
2921 return $rights;
2922 }
2923
2924 /**
2925 * Get all the groups who have a given permission
2926 *
2927 * @param $role \type{\string} Role to check
2928 * @return \type{\arrayof{\string}} List of internal group names with the given permission
2929 */
2930 static function getGroupsWithPermission( $role ) {
2931 global $wgGroupPermissions;
2932 $allowedGroups = array();
2933 foreach ( $wgGroupPermissions as $group => $rights ) {
2934 if ( isset( $rights[$role] ) && $rights[$role] ) {
2935 $allowedGroups[] = $group;
2936 }
2937 }
2938 return $allowedGroups;
2939 }
2940
2941 /**
2942 * Get the localized descriptive name for a group, if it exists
2943 *
2944 * @param $group \type{\string} Internal group name
2945 * @return \type{\string} Localized descriptive group name
2946 */
2947 static function getGroupName( $group ) {
2948 global $wgMessageCache;
2949 $wgMessageCache->loadAllMessages();
2950 $key = "group-$group";
2951 $name = wfMsg( $key );
2952 return $name == '' || wfEmptyMsg( $key, $name )
2953 ? $group
2954 : $name;
2955 }
2956
2957 /**
2958 * Get the localized descriptive name for a member of a group, if it exists
2959 *
2960 * @param $group \type{\string} Internal group name
2961 * @return \type{\string} Localized name for group member
2962 */
2963 static function getGroupMember( $group ) {
2964 global $wgMessageCache;
2965 $wgMessageCache->loadAllMessages();
2966 $key = "group-$group-member";
2967 $name = wfMsg( $key );
2968 return $name == '' || wfEmptyMsg( $key, $name )
2969 ? $group
2970 : $name;
2971 }
2972
2973 /**
2974 * Return the set of defined explicit groups.
2975 * The implicit groups (by default *, 'user' and 'autoconfirmed')
2976 * are not included, as they are defined automatically, not in the database.
2977 * @return \type{\arrayof{\string}} Array of internal group names
2978 */
2979 static function getAllGroups() {
2980 global $wgGroupPermissions;
2981 return array_diff(
2982 array_keys( $wgGroupPermissions ),
2983 self::getImplicitGroups()
2984 );
2985 }
2986
2987 /**
2988 * Get a list of all available permissions.
2989 * @return \type{\arrayof{\string}} Array of permission names
2990 */
2991 static function getAllRights() {
2992 if ( self::$mAllRights === false ) {
2993 global $wgAvailableRights;
2994 if ( count( $wgAvailableRights ) ) {
2995 self::$mAllRights = array_unique( array_merge( self::$mCoreRights, $wgAvailableRights ) );
2996 } else {
2997 self::$mAllRights = self::$mCoreRights;
2998 }
2999 wfRunHooks( 'UserGetAllRights', array( &self::$mAllRights ) );
3000 }
3001 return self::$mAllRights;
3002 }
3003
3004 /**
3005 * Get a list of implicit groups
3006 * @return \type{\arrayof{\string}} Array of internal group names
3007 */
3008 public static function getImplicitGroups() {
3009 global $wgImplicitGroups;
3010 $groups = $wgImplicitGroups;
3011 wfRunHooks( 'UserGetImplicitGroups', array( &$groups ) ); #deprecated, use $wgImplictGroups instead
3012 return $groups;
3013 }
3014
3015 /**
3016 * Get the title of a page describing a particular group
3017 *
3018 * @param $group \type{\string} Internal group name
3019 * @return \twotypes{Title,\bool} Title of the page if it exists, false otherwise
3020 */
3021 static function getGroupPage( $group ) {
3022 global $wgMessageCache;
3023 $wgMessageCache->loadAllMessages();
3024 $page = wfMsgForContent( 'grouppage-' . $group );
3025 if( !wfEmptyMsg( 'grouppage-' . $group, $page ) ) {
3026 $title = Title::newFromText( $page );
3027 if( is_object( $title ) )
3028 return $title;
3029 }
3030 return false;
3031 }
3032
3033 /**
3034 * Create a link to the group in HTML, if available;
3035 * else return the group name.
3036 *
3037 * @param $group \type{\string} Internal name of the group
3038 * @param $text \type{\string} The text of the link
3039 * @return \type{\string} HTML link to the group
3040 */
3041 static function makeGroupLinkHTML( $group, $text = '' ) {
3042 if( $text == '' ) {
3043 $text = self::getGroupName( $group );
3044 }
3045 $title = self::getGroupPage( $group );
3046 if( $title ) {
3047 global $wgUser;
3048 $sk = $wgUser->getSkin();
3049 return $sk->makeLinkObj( $title, htmlspecialchars( $text ) );
3050 } else {
3051 return $text;
3052 }
3053 }
3054
3055 /**
3056 * Create a link to the group in Wikitext, if available;
3057 * else return the group name.
3058 *
3059 * @param $group \type{\string} Internal name of the group
3060 * @param $text \type{\string} The text of the link
3061 * @return \type{\string} Wikilink to the group
3062 */
3063 static function makeGroupLinkWiki( $group, $text = '' ) {
3064 if( $text == '' ) {
3065 $text = self::getGroupName( $group );
3066 }
3067 $title = self::getGroupPage( $group );
3068 if( $title ) {
3069 $page = $title->getPrefixedText();
3070 return "[[$page|$text]]";
3071 } else {
3072 return $text;
3073 }
3074 }
3075
3076 /**
3077 * Increment the user's edit-count field.
3078 * Will have no effect for anonymous users.
3079 */
3080 function incEditCount() {
3081 if( !$this->isAnon() ) {
3082 $dbw = wfGetDB( DB_MASTER );
3083 $dbw->update( 'user',
3084 array( 'user_editcount=user_editcount+1' ),
3085 array( 'user_id' => $this->getId() ),
3086 __METHOD__ );
3087
3088 // Lazy initialization check...
3089 if( $dbw->affectedRows() == 0 ) {
3090 // Pull from a slave to be less cruel to servers
3091 // Accuracy isn't the point anyway here
3092 $dbr = wfGetDB( DB_SLAVE );
3093 $count = $dbr->selectField( 'revision',
3094 'COUNT(rev_user)',
3095 array( 'rev_user' => $this->getId() ),
3096 __METHOD__ );
3097
3098 // Now here's a goddamn hack...
3099 if( $dbr !== $dbw ) {
3100 // If we actually have a slave server, the count is
3101 // at least one behind because the current transaction
3102 // has not been committed and replicated.
3103 $count++;
3104 } else {
3105 // But if DB_SLAVE is selecting the master, then the
3106 // count we just read includes the revision that was
3107 // just added in the working transaction.
3108 }
3109
3110 $dbw->update( 'user',
3111 array( 'user_editcount' => $count ),
3112 array( 'user_id' => $this->getId() ),
3113 __METHOD__ );
3114 }
3115 }
3116 // edit count in user cache too
3117 $this->invalidateCache();
3118 }
3119
3120 /**
3121 * Get the description of a given right
3122 *
3123 * @param $right \type{\string} Right to query
3124 * @return \type{\string} Localized description of the right
3125 */
3126 static function getRightDescription( $right ) {
3127 global $wgMessageCache;
3128 $wgMessageCache->loadAllMessages();
3129 $key = "right-$right";
3130 $name = wfMsg( $key );
3131 return $name == '' || wfEmptyMsg( $key, $name )
3132 ? $right
3133 : $name;
3134 }
3135
3136 /**
3137 * Make an old-style password hash
3138 *
3139 * @param $password \type{\string} Plain-text password
3140 * @param $userId \type{\string} %User ID
3141 * @return \type{\string} Password hash
3142 */
3143 static function oldCrypt( $password, $userId ) {
3144 global $wgPasswordSalt;
3145 if ( $wgPasswordSalt ) {
3146 return md5( $userId . '-' . md5( $password ) );
3147 } else {
3148 return md5( $password );
3149 }
3150 }
3151
3152 /**
3153 * Make a new-style password hash
3154 *
3155 * @param $password \type{\string} Plain-text password
3156 * @param $salt \type{\string} Optional salt, may be random or the user ID.
3157 * If unspecified or false, will generate one automatically
3158 * @return \type{\string} Password hash
3159 */
3160 static function crypt( $password, $salt = false ) {
3161 global $wgPasswordSalt;
3162
3163 if($wgPasswordSalt) {
3164 if ( $salt === false ) {
3165 $salt = substr( wfGenerateToken(), 0, 8 );
3166 }
3167 return ':B:' . $salt . ':' . md5( $salt . '-' . md5( $password ) );
3168 } else {
3169 return ':A:' . md5( $password);
3170 }
3171 }
3172
3173 /**
3174 * Compare a password hash with a plain-text password. Requires the user
3175 * ID if there's a chance that the hash is an old-style hash.
3176 *
3177 * @param $hash \type{\string} Password hash
3178 * @param $password \type{\string} Plain-text password to compare
3179 * @param $userId \type{\string} %User ID for old-style password salt
3180 * @return \type{\bool} True if matches, false otherwise
3181 */
3182 static function comparePasswords( $hash, $password, $userId = false ) {
3183 $m = false;
3184 $type = substr( $hash, 0, 3 );
3185 if ( $type == ':A:' ) {
3186 # Unsalted
3187 return md5( $password ) === substr( $hash, 3 );
3188 } elseif ( $type == ':B:' ) {
3189 # Salted
3190 list( $salt, $realHash ) = explode( ':', substr( $hash, 3 ), 2 );
3191 return md5( $salt.'-'.md5( $password ) ) == $realHash;
3192 } else {
3193 # Old-style
3194 return self::oldCrypt( $password, $userId ) === $hash;
3195 }
3196 }
3197 }
MediaWiki Core