3 * Copyright © 2016 Brad Jorsch <bjorsch@wikimedia.org>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
24 use MediaWiki\Auth\AuthManager
;
27 * A query action to return meta information about AuthManager state.
31 class ApiQueryAuthManagerInfo
extends ApiQueryBase
{
33 public function __construct( ApiQuery
$query, $moduleName ) {
34 parent
::__construct( $query, $moduleName, 'ami' );
37 public function execute() {
38 $params = $this->extractRequestParams();
39 $helper = new ApiAuthManagerHelper( $this );
41 $manager = AuthManager
::singleton();
43 'canauthenticatenow' => $manager->canAuthenticateNow(),
44 'cancreateaccounts' => $manager->canCreateAccounts(),
45 'canlinkaccounts' => $manager->canLinkAccounts(),
48 if ( $params['securitysensitiveoperation'] !== null ) {
49 $ret['securitysensitiveoperationstatus'] = $manager->securitySensitiveOperationStatus(
50 $params['securitysensitiveoperation']
54 if ( $params['requestsfor'] ) {
55 $action = $params['requestsfor'];
57 $preservedReq = $helper->getPreservedRequest();
58 if ( $preservedReq ) {
60 'haspreservedstate' => $preservedReq->hasStateForAction( $action ),
61 'hasprimarypreservedstate' => $preservedReq->hasPrimaryStateForAction( $action ),
62 'preservedusername' => (string)$preservedReq->username
,
66 'haspreservedstate' => false,
67 'hasprimarypreservedstate' => false,
68 'preservedusername' => '',
72 $reqs = $manager->getAuthenticationRequests( $action, $this->getUser() );
74 // Filter out blacklisted requests, depending on the action
76 case AuthManager
::ACTION_CHANGE
:
77 $reqs = ApiAuthManagerHelper
::blacklistAuthenticationRequests(
78 $reqs, $this->getConfig()->get( 'ChangeCredentialsBlacklist' )
81 case AuthManager
::ACTION_REMOVE
:
82 $reqs = ApiAuthManagerHelper
::blacklistAuthenticationRequests(
83 $reqs, $this->getConfig()->get( 'RemoveCredentialsBlacklist' )
88 $ret +
= $helper->formatRequests( $reqs );
91 $this->getResult()->addValue( [ 'query' ], $this->getModuleName(), $ret );
94 public function isReadMode() {
98 public function getAllowedParams() {
100 'securitysensitiveoperation' => null,
102 ApiBase
::PARAM_TYPE
=> [
103 AuthManager
::ACTION_LOGIN
,
104 AuthManager
::ACTION_LOGIN_CONTINUE
,
105 AuthManager
::ACTION_CREATE
,
106 AuthManager
::ACTION_CREATE_CONTINUE
,
107 AuthManager
::ACTION_LINK
,
108 AuthManager
::ACTION_LINK_CONTINUE
,
109 AuthManager
::ACTION_CHANGE
,
110 AuthManager
::ACTION_REMOVE
,
111 AuthManager
::ACTION_UNLINK
,
114 ] + ApiAuthManagerHelper
::getStandardParams( '', 'mergerequestfields', 'messageformat' );
117 protected function getExamplesMessages() {
119 'action=query&meta=authmanagerinfo&amirequestsfor=' . urlencode( AuthManager
::ACTION_LOGIN
)
120 => 'apihelp-query+authmanagerinfo-example-login',
121 'action=query&meta=authmanagerinfo&amirequestsfor=' . urlencode( AuthManager
::ACTION_LOGIN
) .
122 '&amimergerequestfields=1'
123 => 'apihelp-query+authmanagerinfo-example-login-merged',
124 'action=query&meta=authmanagerinfo&amisecuritysensitiveoperation=foo'
125 => 'apihelp-query+authmanagerinfo-example-securitysensitiveoperation',
129 public function getHelpUrls() {
130 return 'https://www.mediawiki.org/wiki/API:Authmanagerinfo';