| blob | d89e45e3e7263d1531182a97038efcbff2bd73f2 |
1 <?php
2 /**
3 * Implements the User class for the %MediaWiki software.
4 * @file
5 */
7 /**
8 * Int Number of characters in user_token field.
9 * @ingroup Constants
10 */
13 /**
14 * Int Serialized record version.
15 * @ingroup Constants
16 */
19 /**
20 * String Some punctuation to prevent editing from broken text-mangling proxies.
21 * @ingroup Constants
22 */
25 /**
26 * Thrown by User::setPassword() on error.
27 * @ingroup Exception
28 */
30 // NOP
31 }
33 /**
34 * The User object encapsulates all of the user-specific settings (user_id,
35 * name, rights, password, email address, options, last login time). Client
36 * classes use the getXXX() functions to access these fields. These functions
37 * do all the work of determining whether the user is logged in,
38 * whether the requested option can be satisfied from cookies or
39 * whether a database query is needed. Most of the settings needed
40 * for rendering normal pages are set in the cookie to minimize use
41 * of the database.
42 */
44 /**
45 * Global constants made accessible as class constants so that autoloader
46 * magic can be used.
47 */
52 /**
53 * Array of Strings List of member variables which are saved to the
54 * shared cache (memcached). Any operation which changes the
55 * corresponding database fields must call a cache-clearing function.
56 * @showinitializer
57 */
59 // user table
74 // user_group table
76 // user_properties table
78 );
80 /**
81 * Array of Strings Core rights.
82 * Each of these should have a corresponding message of the form
83 * "right-$right".
84 * @showinitializer
85 */
144 );
145 /**
146 * String Cached results of getAllRights()
147 */
150 /** @name Cache variables */
151 //@{
155 //@}
157 /**
158 * Bool Whether the cache variables have been loaded.
159 */
162 /**
163 * String Initialization data source if mDataLoaded==false. May be one of:
164 * - 'defaults' anonymous user initialised from class defaults
165 * - 'name' initialise from mName
166 * - 'id' initialise from mId
167 * - 'session' log in from cookies or session if possible
168 *
169 * Use the User::newFrom*() family of functions to set this.
170 */
173 /**
174 * Lazy-initialized variables, invalidated with clearInstanceCache
175 */
182 /**
183 * Lightweight constructor for an anonymous user.
184 * Use the User::newFrom* factory functions for other kinds of users.
185 *
186 * @see newFromName()
187 * @see newFromId()
188 * @see newFromConfirmationCode()
189 * @see newFromSession()
190 * @see newFromRow()
191 */
194 }
196 /**
197 * Load the user table data for this object from the source given by mFrom.
198 */
202 }
205 # Set it now to avoid infinite recursion in accessors
215 # Nonexistent user placeholder object
219 }
230 }
232 }
234 /**
235 * Load user table data, given mId has already been set.
236 * @return Bool false if the ID does not exist, true otherwise
237 * @private
238 */
244 }
246 # Try cache
250 # Object is expired, load from DB
252 }
256 # Load from DB
258 # Can't load from ID, user is anonymous
260 }
264 # Restore from cache
267 }
268 }
270 }
272 /**
273 * Save user data to the shared cache
274 */
280 // Anonymous users are uncached
282 }
286 }
291 }
294 /** @name newFrom*() static factory methods */
295 //@{
297 /**
298 * Static factory method for creation from username.
299 *
300 * This is slightly less efficient than newFromId(), so use newFromId() if
301 * you have both an ID and a name handy.
302 *
303 * @param $name String Username, validated by Title::newFromText()
304 * @param $validate String|Bool Validate username. Takes the same parameters as
305 * User::getCanonicalName(), except that true is accepted as an alias
306 * for 'valid', for BC.
307 *
308 * @return User object, or false if the username is invalid
309 * (e.g. if it contains illegal characters or is an IP address). If the
310 * username is not present in the database, the result will be a user object
311 * with a name, zero user ID and default settings.
312 */
316 }
321 # Create unloaded user object
326 }
327 }
329 /**
330 * Static factory method for creation from a given user ID.
331 *
332 * @param $id Int Valid user ID
333 * @return User The corresponding User object
334 */
340 }
342 /**
343 * Factory method to fetch whichever user has a given email confirmation code.
344 * This code is generated when an account is created or its e-mail address
345 * has changed.
346 *
347 * If the code is invalid or has expired, returns NULL.
348 *
349 * @param $code String Confirmation code
350 * @return User
351 */
357 ) );
362 }
363 }
365 /**
366 * Create a new user object using data from session or cookies. If the
367 * login credentials are invalid, the result is an anonymous user.
368 *
369 * @return User
370 */
375 }
377 /**
378 * Create a new user object from a user row.
379 * The row should have all fields from the user table in it.
380 * @param $row Array A row from the user table
381 * @return User
382 */
387 }
389 //@}
392 /**
393 * Get the username corresponding to a given user ID
394 * @param $id Int User ID
395 * @return String The corresponding username
396 */
400 }
402 /**
403 * Get the real name of a user given their user ID
404 *
405 * @param $id Int User ID
406 * @return String The corresponding user's real name
407 */
411 }
413 /**
414 * Get database id given a user name
415 * @param $name String Username
416 * @return Int|Null The corresponding user's ID, or null if user is nonexistent
417 */
421 # Illegal name
423 }
427 }
430 $s = $dbr->selectRow( 'user', array( 'user_id' ), array( 'user_name' => $nt->getText() ), __METHOD__ );
436 }
442 }
445 }
447 /**
448 * Reset the cache used in idFromName(). For use in tests.
449 */
452 }
454 /**
455 * Does the string match an anonymous IPv4 address?
456 *
457 * This function exists for username validation, in order to reject
458 * usernames which are similar in form to IP addresses. Strings such
459 * as 300.300.300.300 will return true because it looks like an IP
460 * address, despite not being strictly valid.
461 *
462 * We match \d{1,3}\.\d{1,3}\.\d{1,3}\.xxx as an anonymous IP
463 * address because the usemod software would "cloak" anonymous IP
464 * addresses like this, if we allowed accounts like this to be created
465 * new users could get the old edits of these anonymous users.
466 *
467 * @param $name String to match
468 * @return Bool
469 */
472 }
474 /**
475 * Is the input a valid username?
476 *
477 * Checks if the input is a valid username, we don't want an empty string,
478 * an IP address, anything that containins slashes (would mess up subpages),
479 * is longer than the maximum allowed username size or doesn't begin with
480 * a capital letter.
481 *
482 * @param $name String to match
483 * @return Bool
484 */
496 }
498 // Ensure that the name can't be misresolved as a different title,
499 // such as with extra namespace keys at the start.
507 }
509 // Check an additional blacklist of troublemaker characters.
510 // Should these be merged into the title char list?
523 }
526 }
528 /**
529 * Usernames which fail to pass this function will be blocked
530 * from user login and new account registrations, but may be used
531 * internally by batch processes.
532 *
533 * If an account already exists in this form, login will be blocked
534 * by a failure to pass this function.
535 *
536 * @param $name String to match
537 * @return Bool
538 */
541 // Must be a valid username, obviously ;)
544 }
550 }
552 // Certain names may be reserved for batch processes.
556 }
559 }
560 }
562 }
564 /**
565 * Usernames which fail to pass this function will be blocked
566 * from new account registrations, but may be used internally
567 * either by batch processes or by user accounts which have
568 * already been created.
569 *
570 * Additional blacklisting may be added here rather than in
571 * isValidUserName() to avoid disrupting existing accounts.
572 *
573 * @param $name String to match
574 * @return Bool
575 */
579 // Ensure that the username isn't longer than 235 bytes, so that
580 // (at least for the builtin skins) user javascript and css files
581 // will work. (bug 23080)
586 }
592 }
595 }
597 /**
598 * Is the input a valid password for this user?
599 *
600 * @param $password String Desired password
601 * @return Bool
602 */
604 //simple boolean wrapper for getPasswordValidity
606 }
608 /**
609 * Given unvalidated password input, return error message on failure.
610 *
611 * @param $password String Desired password
612 * @return mixed: true on success, string or array of error message on failure
613 */
620 );
632 } elseif ( isset( $blockedLogins[ $this->getName() ] ) && $password == $blockedLogins[ $this->getName() ] ) {
635 //it seems weird returning true here, but this is because of the
636 //initialization of $result to false above. If the hook is never run or it
637 //doesn't modify $result, then we will likely get down into this if with
638 //a valid password.
640 }
645 }
646 }
648 /**
649 * Does a string look like an e-mail address?
650 *
651 * This validates an email address using an HTML5 specification found at:
652 * http://www.whatwg.org/specs/web-apps/current-work/multipage/states-of-the-type-attribute.html#valid-e-mail-address
653 * Which as of 2011-01-24 says:
654 *
655 * A valid e-mail address is a string that matches the ABNF production
656 * 1*( atext / "." ) "@" ldh-str *( "." ldh-str ) where atext is defined
657 * in RFC 5322 section 3.2.3, and ldh-str is defined in RFC 1034 section
658 * 3.5.
659 *
660 * This function is an implementation of the specification as requested in
661 * bug 22449.
662 *
663 * Client-side forms will use the same standard validation rules via JS or
664 * HTML 5 validation; additional restrictions can be enforced server-side
665 * by extensions via the 'isValidEmailAddr' hook.
666 *
667 * Note that this validation doesn't 100% match RFC 2822, but is believed
668 * to be liberal enough for wide use. Some invalid addresses will still
669 * pass validation here.
670 *
671 * @param $addr String E-mail address
672 * @return Bool
673 */
678 }
680 // Please note strings below are enclosed in brackets [], this make the
681 // hyphen "-" a range indicator. Hence it is double backslashed below.
682 // See bug 26948
687 ^ # start of string
689 @ # 'apostrophe'
692 $ # End of string
696 }
698 /**
699 * Given unvalidated user input, return a canonical username, or false if
700 * the username is invalid.
701 * @param $name String User input
702 * @param $validate String|Bool type of validation to use:
703 * - false No validation
704 * - 'valid' Valid for batch processes
705 * - 'usable' Valid for batch processes and login
706 * - 'creatable' Valid for batch processes, login and account creation
707 */
709 # Force usernames to capital
713 # Reject names containing '#'; these will be cleaned up
714 # with title normalisation, but then it's too late to
715 # check elsewhere
719 # Clean up name according to title rules
722 # Check for invalid titles
725 }
727 # Reject various classes of invalid names
737 }
742 }
747 }
751 }
753 }
755 /**
756 * Count the number of edits of a user
757 * @todo It should not be static and some day should be merged as proper member function / deprecated -- domas
758 *
759 * @param $uid Int User ID to check
760 * @return Int the user's edit count
761 */
765 // check if the user_editcount field has been initialized
769 __METHOD__
770 );
777 __METHOD__
778 );
783 __METHOD__
784 );
787 }
790 }
792 /**
793 * Return a random password. Sourced from mt_rand, so it's not particularly secure.
794 * @todo hash random numbers to improve security, like generateToken()
795 *
796 * @return String new random password
797 */
808 }
810 }
812 /**
813 * Set cached properties to default.
814 *
815 * @note This no longer clears uncached lazy-initialised properties;
816 * the constructor does that instead.
817 * @private
818 */
837 }
849 }
851 /**
852 * Load user data from the session or login cookie. If there are no valid
853 * credentials, initialises the user as an anonymous user.
854 * @return Bool True if the user is logged in, false otherwise.
855 */
863 }
868 # TODO: Automatically create the user here (or probably a bit
869 # lower down, in fact)
870 }
871 }
880 }
888 }
892 }
902 }
906 # Not a valid ID, loadFromId has switched the object to anon for us
908 }
912 # User blocked and we've disabled blocked user logins
915 }
924 # No session or persistent login cookie
927 }
934 # Invalid credentials
938 }
939 }
941 /**
942 * Load user and user_group data from the database.
943 * $this::mId must be set, this is how the user is identified.
944 *
945 * @return Bool True if the user exists, false if the user is anonymous
946 * @private
947 */
949 # Paranoia
952 /** Anonymous user */
956 }
964 # Initialise user table data
970 # Invalid user_id
974 }
975 }
977 /**
978 * Initialize this object from a row from the user table.
979 *
980 * @param $row Array Row from the user table to load.
981 */
987 }
1002 }
1004 /**
1005 * Load the groups from the database if they aren't already loaded.
1006 * @private
1007 */
1014 __METHOD__ );
1018 }
1019 }
1020 }
1022 /**
1023 * Clear various cached data stored in this object.
1024 * @param $reloadFrom String Reload user and user_groups table data from a
1025 * given source. May be "name", "id", "defaults", "session", or false for
1026 * no reload.
1027 */
1041 }
1042 }
1044 /**
1045 * Combine the language default options with any site-specific options
1046 * and add the default language variants.
1047 *
1048 * @return Array of String options
1049 */
1052 /**
1053 * Site defaults will override the global/language defaults
1054 */
1058 /**
1059 * default language setting
1060 */
1066 }
1070 }
1072 /**
1073 * Get a given default option value.
1074 *
1075 * @param $opt String Name of option to retrieve
1076 * @return String Default option value
1077 */
1084 }
1085 }
1088 /**
1089 * Get blocking information
1090 * @private
1091 * @param $bFromSlave Bool Whether to check the slave database first. To
1092 * improve performance, non-critical checks are done
1093 * against slaves. Check when actually saving should be
1094 * done against master.
1095 */
1101 }
1106 // Initialize data...
1107 // Otherwise something ends up stomping on $this->mBlockedby when
1108 // things get lazy-loaded later, causing false positive block hits
1109 // due to -1 !== 0. Probably session-related... Nothing should be
1110 // overwriting mBlockedby, surely?
1117 # Check if we are looking at an IP or a logged-in user
1121 # Check if we are looking at the current user
1122 # If we don't, and the user is logged in, we don't know about
1123 # his IP / autoblock status, so ignore autoblock of current user's IP
1127 # Get IP of current user
1129 }
1130 }
1133 # Exempt from all types of IP-block
1135 }
1137 # User/IP blocking
1150 }
1152 // Bug 13611: don't remove mBlock here, to allow account creation blocks to
1153 // apply to users. Note that the existence of $this->mBlock is not used to
1154 // check for edit blocks, $this->mBlockedby is instead.
1155 }
1157 # Proxy blocking
1159 # Local list
1163 }
1165 # DNSBL
1170 }
1171 }
1172 }
1174 # Extensions
1178 }
1180 /**
1181 * Whether the given IP is in a DNS blacklist.
1182 *
1183 * @param $ip String IP to check
1184 * @param $checkWhitelist Bool: whether to check the whitelist first
1185 * @return Bool True if blacklisted.
1186 */
1199 }
1201 /**
1202 * Whether the given IP is in a given DNS blacklist.
1203 *
1204 * @param $ip String IP to check
1205 * @param $bases String|Array of Strings: URL of the DNS blacklist
1206 * @return Bool True if blacklisted.
1207 */
1212 // FIXME: IPv6 ??? (http://bugs.php.net/bug.php?id=33170)
1214 # Reverse IP, bug 21255
1218 # Make hostname
1221 # Send query
1230 }
1231 }
1232 }
1236 }
1238 /**
1239 * Is this user subject to rate limiting?
1240 *
1241 * @return Bool True if rate limited
1242 */
1247 // Deprecated, but kept for backwards-compatibility config
1249 }
1251 // No other good way currently to disable rate limits
1252 // for specific IPs. :P
1253 // But this is a crappy hack and should die.
1255 }
1257 }
1259 /**
1260 * Primitive rate limits: enforce maximum actions per time period
1261 * to put a brake on flooding.
1262 *
1263 * @note When using a shared cache like memcached, IP-address
1264 * last-hit counters will be shared across wikis.
1265 *
1266 * @param $action String Action to enforce; 'edit' if unspecified
1267 * @return Bool True if a rate limiter was tripped
1268 */
1270 # Call the 'PingLimiter' hook
1274 }
1279 }
1281 # Some groups shouldn't trigger the ping limiter, ever
1296 }
1300 }
1304 }
1307 }
1312 }
1313 }
1314 // Check for group-specific permissions
1315 // If more than one group applies, use the group with the highest limit
1320 }
1321 }
1322 }
1323 // Set the user limit key
1327 }
1334 // Already pinged?
1339 @error_log( wfTimestamp( TS_MW ) . ' ' . wfWikiID() . ': ' . $this->getName() . " tripped $key at $count $summary\n", 3, $wgRateLimitLog );
1340 }
1344 }
1348 }
1350 }
1354 }
1356 /**
1357 * Check if user is blocked
1358 *
1359 * @param $bFromSlave Bool Whether to check the slave database instead of the master
1360 * @return Bool True if blocked, false otherwise
1361 */
1365 }
1367 /**
1368 * Check if user is blocked from editing a particular article
1369 *
1370 * @param $title Title to check
1371 * @param $bFromSlave Bool whether to check the slave database instead of the master
1372 * @return Bool
1373 */
1380 # If a user's name is suppressed, they cannot make edits anywhere
1385 }
1391 }
1393 /**
1394 * If user is blocked, return the name of the user who placed the block
1395 * @return String name of blocker
1396 */
1400 }
1402 /**
1403 * If user is blocked, return the specified reason for the block
1404 * @return String Blocking reason
1405 */
1409 }
1411 /**
1412 * If user is blocked, return the ID for the block
1413 * @return Int Block ID
1414 */
1418 }
1420 /**
1421 * Check if user is blocked on all wikis.
1422 * Do not use for actual edit permission checks!
1423 * This is intented for quick UI checks.
1424 *
1425 * @param $ip String IP address, uses current client if none given
1426 * @return Bool True if blocked, false otherwise
1427 */
1431 }
1432 // User is already an IP?
1437 }
1442 }
1444 /**
1445 * Check if user account is locked
1446 *
1447 * @return Bool True if locked, false otherwise
1448 */
1452 }
1457 }
1459 /**
1460 * Check if user account is hidden
1461 *
1462 * @return Bool True if hidden, false otherwise
1463 */
1467 }
1473 }
1475 }
1477 /**
1478 * Get the user's ID.
1479 * @return Int The user's ID; 0 if the user is anonymous or nonexistent
1480 */
1484 // Special case, we know the user is anonymous
1487 // Don't load if this was initialized from an ID
1489 }
1491 }
1493 /**
1494 * Set the user and reload all fields according to a given ID
1495 * @param $v Int User ID to reload
1496 */
1500 }
1502 /**
1503 * Get the user name, or the IP of an anonymous user
1504 * @return String User's name or IP address
1505 */
1508 # Special case optimisation
1513 # Clean up IPs
1515 }
1517 }
1518 }
1520 /**
1521 * Set the user name.
1522 *
1523 * This does not reload fields from the database according to the given
1524 * name. Rather, it is used to create a temporary "nonexistent user" for
1525 * later addition to the database. It can also be used to set the IP
1526 * address for an anonymous user to something other than the current
1527 * remote IP.
1528 *
1529 * @note User::newFromName() has rougly the same function, when the named user
1530 * does not exist.
1531 * @param $str String New user name to set
1532 */
1536 }
1538 /**
1539 * Get the user's name escaped by underscores.
1540 * @return String Username escaped by underscores.
1541 */
1544 }
1546 /**
1547 * Check if the user has new messages.
1548 * @return Bool True if the user has new messages
1549 */
1553 # Load the newtalk status if it is unloaded (mNewtalk=-1)
1557 # Check memcached separately for anons, who have no
1558 # entire User object stored in there.
1566 // Since we are caching this, make sure it is up to date by getting it
1567 // from the master
1570 }
1573 }
1574 }
1577 }
1579 /**
1580 * Return the talk page(s) this user has new messages on.
1581 * @return Array of String page URLs
1582 */
1593 }
1595 /**
1596 * Internal uncached check for new messages
1597 *
1598 * @see getNewtalk()
1599 * @param $field String 'user_ip' for anonymous users, 'user_id' otherwise
1600 * @param $id String|Int User's IP address for anonymous users, User ID otherwise
1601 * @param $fromMaster Bool true to fetch from the master, false for a slave
1602 * @return Bool True if the user has new messages
1603 * @private
1604 */
1610 }
1614 }
1616 /**
1617 * Add or update the new messages flag
1618 * @param $field String 'user_ip' for anonymous users, 'user_id' otherwise
1619 * @param $id String|Int User's IP address for anonymous users, User ID otherwise
1620 * @return Bool True if successful, false otherwise
1621 * @private
1622 */
1627 __METHOD__,
1635 }
1636 }
1638 /**
1639 * Clear the new messages flag for the given user
1640 * @param $field String 'user_ip' for anonymous users, 'user_id' otherwise
1641 * @param $id String|Int User's IP address for anonymous users, User ID otherwise
1642 * @return Bool True if successful, false otherwise
1643 * @private
1644 */
1649 __METHOD__ );
1656 }
1657 }
1659 /**
1660 * Update the 'You have new messages!' status.
1661 * @param $val Bool Whether the user has new messages
1662 */
1666 }
1677 }
1684 }
1687 // Anons have a separate memcached space, since
1688 // user records aren't kept for them.
1691 }
1694 }
1695 }
1697 /**
1698 * Generate a current or new-future timestamp to be stored in the
1699 * user_touched field when we update things.
1700 * @return String Timestamp in TS_MW format
1701 */
1705 }
1707 /**
1708 * Clear user data from memcached.
1709 * Use after applying fun updates to the database; caller's
1710 * responsibility to update user_touched if appropriate.
1711 *
1712 * Called implicitly from invalidateCache() and saveSettings().
1713 */
1719 }
1720 }
1722 /**
1723 * Immediately touch the user data cache for this account.
1724 * Updates user_touched field, and removes account data from memcached
1725 * for reload on the next hit.
1726 */
1730 }
1739 __METHOD__ );
1742 }
1743 }
1745 /**
1746 * Validate the cache for this account.
1747 * @param $timestamp String A timestamp in TS_MW format
1748 */
1752 }
1754 /**
1755 * Get the user touched timestamp
1756 * @return String timestamp
1757 */
1761 }
1763 /**
1764 * Set the password and reset the random token.
1765 * Calls through to authentication plugin if necessary;
1766 * will have no effect if the auth plugin refuses to
1767 * pass the change through or if the legal password
1768 * checks fail.
1769 *
1770 * As a special case, setting the password to null
1771 * wipes it, so the account cannot be logged in until
1772 * a new password is set, for instance via e-mail.
1773 *
1774 * @param $str String New password to set
1775 * @throws PasswordError on failure
1776 */
1783 }
1794 }
1796 }
1797 }
1801 }
1806 }
1808 /**
1809 * Set the password and reset the random token unconditionally.
1810 *
1811 * @param $str String New password to set
1812 */
1818 // Save an invalid hash...
1822 }
1825 }
1827 /**
1828 * Get the user's current token.
1829 * @return String Token
1830 */
1834 }
1836 /**
1837 * Set the random token (used for persistent authentication)
1838 * Called from loadDefaults() among other places.
1839 *
1840 * @param $token String If specified, set the token to this value
1841 * @private
1842 */
1853 }
1857 }
1858 }
1860 /**
1861 * Set the cookie password
1862 *
1863 * @param $str String New cookie password
1864 * @private
1865 */
1869 }
1871 /**
1872 * Set the password for a password reminder or new account email
1873 *
1874 * @param $str String New password to set
1875 * @param $throttle Bool If true, reset the throttle timestamp to the present
1876 */
1882 }
1883 }
1885 /**
1886 * Has password reminder email been sent within the last
1887 * $wgPasswordReminderResendTime hours?
1888 * @return Bool
1889 */
1895 }
1898 }
1900 /**
1901 * Get the user's e-mail address
1902 * @return String User's email address
1903 */
1908 }
1910 /**
1911 * Get the timestamp of the user's e-mail authentication
1912 * @return String TS_MW timestamp
1913 */
1916 wfRunHooks( 'UserGetEmailAuthenticationTimestamp', array( $this, &$this->mEmailAuthenticated ) );
1918 }
1920 /**
1921 * Set the user's e-mail address
1922 * @param $str String New e-mail address
1923 */
1928 }
1930 /**
1931 * Get the user's real name
1932 * @return String User's real name
1933 */
1937 }
1939 /**
1940 * Set the user's real name
1941 * @param $str String New real name
1942 */
1946 }
1948 /**
1949 * Get the user's current setting for a given option.
1950 *
1951 * @param $oname String The option to check
1952 * @param $defaultOverride String A default value returned if the option does not exist
1953 * @return String User's current value for the option
1954 * @see getBoolOption()
1955 * @see getIntOption()
1956 */
1963 }
1965 }
1971 }
1972 }
1974 /**
1975 * Get all user's options
1976 *
1977 * @return array
1978 */
1982 }
1984 /**
1985 * Get the user's current setting for a given option, as a boolean value.
1986 *
1987 * @param $oname String The option to check
1988 * @return Bool User's current value for the option
1989 * @see getOption()
1990 */
1993 }
1996 /**
1997 * Get the user's current setting for a given option, as a boolean value.
1998 *
1999 * @param $oname String The option to check
2000 * @param $defaultOverride Int A default value returned if the option does not exist
2001 * @return Int User's current value for the option
2002 * @see getOption()
2003 */
2008 }
2010 }
2012 /**
2013 * Set the given option for a user.
2014 *
2015 * @param $oname String The option to set
2016 * @param $val mixed New value to set
2017 */
2023 # Clear cached skin, so the new one displays immediately in Special:Preferences
2025 }
2027 // Explicitly NULL values should refer to defaults
2031 }
2034 }
2036 /**
2037 * Reset all options to the site defaults
2038 */
2041 }
2043 /**
2044 * Get the user's preferred date format.
2045 * @return String User's preferred date format
2046 */
2048 // Important migration for old data rows
2055 }
2057 }
2059 }
2061 /**
2062 * Get the user preferred stub threshold
2063 */
2068 # If they have set an impossible value, disable the preference
2069 # so we can use the parser cache again.
2071 }
2073 }
2075 /**
2076 * Get the permissions this user has.
2077 * @return Array of String permission names
2078 */
2083 // Force reindexation of rights when a hook has unset one of them
2085 }
2087 }
2089 /**
2090 * Get the list of explicit group memberships this user has.
2091 * The implicit * and user groups are not included.
2092 * @return Array of String internal group names
2093 */
2097 }
2099 /**
2100 * Get the list of implicit group memberships this user has.
2101 * This includes all explicit groups, plus 'user' if logged in,
2102 * '*' for all accounts, and autopromoted groups
2103 * @param $recache Bool Whether to avoid the cache
2104 * @return Array of String internal group names
2105 */
2117 ) );
2119 # Hook for additional groups
2121 }
2123 }
2125 }
2127 /**
2128 * Get the user's edit count.
2129 * @return Int
2130 */
2134 /* Populate the count, if it has not been populated yet */
2136 }
2139 /* nil */
2141 }
2142 }
2144 /**
2145 * Add the user to the given group.
2146 * This takes immediate effect.
2147 * @param $group String Name of the group to add
2148 */
2156 ),
2157 __METHOD__,
2159 }
2166 }
2168 /**
2169 * Remove the user from the given group.
2170 * This takes immediate effect.
2171 * @param $group String Name of the group to remove
2172 */
2187 }
2189 /**
2190 * Get whether the user is logged in
2191 * @return Bool
2192 */
2195 }
2197 /**
2198 * Get whether the user is anonymous
2199 * @return Bool
2200 */
2203 }
2205 /**
2206 * Check if user is allowed to access a feature / make an action
2207 * @param $action String action to be checked
2208 * @return Boolean: True if action is allowed, else false
2209 */
2213 }
2214 # Patrolling may not be enabled
2219 }
2220 # Use strict parameter to avoid matching numeric 0 accidentally inserted
2221 # by misconfiguration: 0 == 'foo'
2223 }
2225 /**
2226 * Check whether to enable recent changes patrol features for this user
2227 * @return Boolean: True or false
2228 */
2231 return( $wgUseRCPatrol && ( $this->isAllowed( 'patrol' ) || $this->isAllowed( 'patrolmarks' ) ) );
2232 }
2234 /**
2235 * Check whether to enable new pages patrol features for this user
2236 * @return Bool True or false
2237 */
2240 return( ( $wgUseRCPatrol || $wgUseNPPatrol ) && ( $this->isAllowed( 'patrol' ) || $this->isAllowed( 'patrolmarks' ) ) );
2241 }
2243 /**
2244 * Get the current skin, loading it if required, and setting a title
2245 * @param $t Title: the title to use in the skin
2246 * @return Skin The current skin
2247 * @todo: FIXME : need to check the old failback system [AV]
2248 */
2257 }
2263 }
2266 }
2267 }
2269 // Creates a Skin object, for getSkin()
2276 # get the user skin
2280 # if we're not allowing users to override, then use the default
2283 }
2289 }
2291 /**
2292 * Check the watched status of an article.
2293 * @param $title Title of the article to look at
2294 * @return Bool
2295 */
2299 }
2301 /**
2302 * Watch an article.
2303 * @param $title Title of the article to look at
2304 */
2309 }
2311 /**
2312 * Stop watching an article.
2313 * @param $title Title of the article to look at
2314 */
2319 }
2321 /**
2322 * Clear the user's notification timestamp for the given title.
2323 * If e-notif e-mails are on, they will receive notification mails on
2324 * the next change of the page if it's watched etc.
2325 * @param $title Title of the article to look at
2326 */
2330 # Do nothing if the database is locked to writes
2333 }
2340 }
2344 }
2347 // Nothing else to do...
2349 }
2351 // Only update the timestamp if the page is being watched.
2352 // The query to find out if it is watched is cached both in memcached and per-invocation,
2353 // and when it does have to be executed, it can be on a slave
2354 // If this is the user's newtalk page, we always update the timestamp
2357 {
2363 }
2365 // If the page is watched by the user (or may be watched), update the timestamp on any
2366 // any matching rows
2376 ), __METHOD__
2377 );
2378 }
2379 }
2381 /**
2382 * Resets all of the given user's page-change notification timestamps.
2383 * If e-notif e-mails are on, they will receive notification mails on
2384 * the next change of any watched page.
2385 *
2386 * @param $currentUser Int User ID
2387 */
2393 }
2401 ), __METHOD__
2402 );
2403 # We also need to clear here the "you have new message" notification for the own user_talk page
2404 # This is cleared one page view later in Article::viewUpdates();
2405 }
2406 }
2408 /**
2409 * Set this user's options from an encoded string
2410 * @param $str String Encoded options to import
2411 * @private
2412 */
2420 // If an option is not set in $str, use the default value
2429 }
2430 }
2431 }
2433 /**
2434 * Set a cookie on the user's client. Wrapper for
2435 * WebResponse::setCookie
2436 * @param $name String Name of the cookie to set
2437 * @param $value String Value to set
2438 * @param $exp Int Expiration time, as a UNIX time value;
2439 * if 0 or not specified, use the default $wgCookieExpiration
2440 */
2444 }
2446 /**
2447 * Clear a cookie on the user's client
2448 * @param $name String Name of the cookie to clear
2449 */
2452 }
2454 /**
2455 * Set the default cookies for this session on the user's client.
2456 */
2464 );
2468 );
2473 }
2476 #check for null, since the hook could cause a null value
2479 }
2485 }
2486 }
2487 }
2489 /**
2490 * Log this user out.
2491 */
2495 }
2496 }
2498 /**
2499 * Clear the user's cookies and session, and reset the instance cache.
2500 * @private
2501 * @see logout()
2502 */
2511 # Remember when user logged out, to prevent seeing cached pages
2513 }
2515 /**
2516 * Save this user's settings into the database.
2517 * @todo Only rarely do all these fields need to be set!
2518 */
2543 ), __METHOD__
2544 );
2551 }
2553 /**
2554 * If only this user's username is known, and it exists, return the user ID.
2555 * @return Int
2556 */
2565 }
2567 }
2569 /**
2570 * Add a user to the database, return the user object
2571 *
2572 * @param $name String Username to add
2573 * @param $params Array of Strings Non-default parameters to save to the database:
2574 * - password The user's password. Password logins will be disabled if this is omitted.
2575 * - newpassword A temporary password mailed to the user
2576 * - email The user's email address
2577 * - email_authenticated The email authentication timestamp
2578 * - real_name The user's real name
2579 * - options An associative array of non-default options
2580 * - token Random authentication token. Do not set.
2581 * - registration Registration timestamp. Do not set.
2582 *
2583 * @return User object, or null if the username already exists
2584 */
2591 }
2608 );
2611 }
2617 }
2619 }
2621 /**
2622 * Add this existing user object to the database
2623 */
2642 ), __METHOD__
2643 );
2646 // Clear instance cache other than user table data, which is already accurate
2650 }
2652 /**
2653 * If this (non-anonymous) user is blocked, block any IP address
2654 * they've successfully logged in from.
2655 */
2661 }
2666 }
2669 }
2671 /**
2672 * Generate a string which will be different for any combination of
2673 * user options which would produce different parser output.
2674 * This will be used as part of the hash key for the parser cache,
2675 * so users with the same options can share the same cached data
2676 * safely.
2677 *
2678 * Extensions which require it should install 'PageRenderingHash' hook,
2679 * which will give them a chance to modify this key based on their own
2680 * settings.
2681 *
2682 * @deprecated @since 1.17 use the ParserOptions object to get the relevant options
2683 * @return String Page rendering hash
2684 */
2689 }
2692 // stubthreshold is only included below for completeness,
2693 // since it disables the parser cache, its value will always
2694 // be 0 when this function is called by parsercache.
2700 }
2704 // add in language specific options, if any
2708 // Since the skin could be overloading link(), it should be
2709 // included here but in practice, none of our skins do that.
2713 // Give a chance for extensions to modify the hash, if they have
2714 // extra options or other effects on the parser cache.
2717 // Make it a valid memcached key fragment
2721 }
2723 /**
2724 * Get whether the user is explicitly blocked from account creation.
2725 * @return Bool
2726 */
2730 }
2732 /**
2733 * Get whether the user is blocked from using Special:Emailuser.
2734 * @return Bool
2735 */
2739 }
2741 /**
2742 * Get whether the user is allowed to create an account.
2743 * @return Bool
2744 */
2747 }
2749 /**
2750 * Get this user's personal page title.
2751 *
2752 * @return Title: User's personal page title
2753 */
2756 }
2758 /**
2759 * Get this user's talk page title.
2760 *
2761 * @return Title: User's talk page title
2762 */
2766 }
2768 /**
2769 * Get the maximum valid user ID.
2770 * @return Integer: User ID
2771 * @static
2772 */
2781 }
2782 }
2784 /**
2785 * Determine whether the user is a newbie. Newbies are either
2786 * anonymous IPs, or the most recently created accounts.
2787 * @return Bool
2788 */
2791 }
2793 /**
2794 * Check to see if the given clear-text password is one of the accepted passwords
2795 * @param $password String: user password.
2796 * @return Boolean: True if the given password is correct, otherwise False.
2797 */
2802 // Even though we stop people from creating passwords that
2803 // are shorter than this, doesn't mean people wont be able
2804 // to. Certain authentication plugins do NOT want to save
2805 // domain passwords in a mysql database, so we should
2806 // check this (in case $wgAuth->strict() is false).
2809 }
2814 /* Auth plugin doesn't allow local authentication */
2817 /* Auth plugin doesn't allow local authentication for this user name */
2819 }
2823 # Some wikis were converted from ISO 8859-1 to UTF-8, the passwords can't be converted
2824 # Check for this with iconv
2828 }
2829 }
2831 }
2833 /**
2834 * Check if the given clear-text password matches the temporary password
2835 * sent by e-mail for password reset operations.
2836 * @return Boolean: True if matches, false otherwise
2837 */
2843 }
2848 }
2849 }
2851 /**
2852 * Initialize (if necessary) and return a session token value
2853 * which can be used in edit forms to show that the user's
2854 * login credentials aren't being hijacked with a foreign form
2855 * submission.
2856 *
2857 * @param $salt String|Array of Strings Optional function-specific data for hashing
2858 * @return String The new edit token
2859 */
2869 }
2872 }
2874 }
2875 }
2877 /**
2878 * Generate a looking random token for various uses.
2879 *
2880 * @param $salt String Optional salt value
2881 * @return String The new random token
2882 */
2886 }
2888 /**
2889 * Check given value against the token value stored in the session.
2890 * A match should confirm that the form was submitted from the
2891 * user's own login session, not a form submission from a third-party
2892 * site.
2893 *
2894 * @param $val String Input value to compare
2895 * @param $salt String Optional function-specific data for hashing
2896 * @return Boolean: Whether the token matches
2897 */
2902 }
2904 }
2906 /**
2907 * Check given value against the token value stored in the session,
2908 * ignoring the suffix.
2909 *
2910 * @param $val String Input value to compare
2911 * @param $salt String Optional function-specific data for hashing
2912 * @return Boolean: Whether the token matches
2913 */
2917 }
2919 /**
2920 * Generate a new e-mail confirmation token and send a confirmation/invalidation
2921 * mail to the user's given address.
2922 *
2923 * @param $type String: message to send, either "created", "changed" or "set"
2924 * @return Status object
2925 */
2940 }
2951 }
2953 /**
2954 * Send an e-mail to this user's account. Does not check for
2955 * confirmed status or validity.
2956 *
2957 * @param $subject String Message subject
2958 * @param $body String Message body
2959 * @param $from String Optional From address; if unspecified, default $wgPasswordSender will be used
2960 * @param $replyto String Reply-To address
2961 * @return Status
2962 */
2969 }
2973 }
2975 /**
2976 * Generate, store, and return a new e-mail confirmation code.
2977 * A hash (unsalted, since it's used as a key) is stored.
2978 *
2979 * @note Call saveSettings() after calling this function to commit
2980 * this change to the database.
2981 *
2982 * @param[out] &$expiration \mixed Accepts the expiration time
2983 * @return String New token
2984 * @private
2985 */
2996 }
2998 /**
2999 * Return a URL the user can use to confirm their email address.
3000 * @param $token String Accepts the email confirmation token
3001 * @return String New token URL
3002 * @private
3003 */
3006 }
3008 /**
3009 * Return a URL the user can use to invalidate their email address.
3010 * @param $token String Accepts the email confirmation token
3011 * @return String New token URL
3012 * @private
3013 */
3016 }
3018 /**
3019 * Internal function to format the e-mail validation/invalidation URLs.
3020 * This uses $wgArticlePath directly as a quickie hack to use the
3021 * hardcoded English names of the Special: pages, for ASCII safety.
3022 *
3023 * @note Since these URLs get dropped directly into emails, using the
3024 * short English names avoids insanely long URL-encoded links, which
3025 * also sometimes can get corrupted in some browsers/mailers
3026 * (bug 6957 with Gmail and Internet Explorer).
3027 *
3028 * @param $page String Special page
3029 * @param $token String Token
3030 * @return String Formatted URL
3031 */
3039 }
3041 /**
3042 * Mark the e-mail address confirmed.
3043 *
3044 * @note Call saveSettings() after calling this function to commit the change.
3045 */
3050 }
3052 /**
3053 * Invalidate the user's e-mail confirmation, and unauthenticate the e-mail
3054 * address if it was already confirmed.
3055 *
3056 * @note Call saveSettings() after calling this function to commit the change.
3057 */
3065 }
3067 /**
3068 * Set the e-mail authentication timestamp.
3069 * @param $timestamp String TS_MW timestamp
3070 */
3074 wfRunHooks( 'UserSetEmailAuthenticationTimestamp', array( $this, &$this->mEmailAuthenticated ) );
3075 }
3077 /**
3078 * Is this user allowed to send e-mails within limits of current
3079 * site configuration?
3080 * @return Bool
3081 */
3086 }
3090 }
3092 /**
3093 * Is this user allowed to receive e-mails within limits of current
3094 * site configuration?
3095 * @return Bool
3096 */
3099 }
3101 /**
3102 * Is this user's e-mail address valid-looking and confirmed within
3103 * limits of the current site configuration?
3104 *
3105 * @note If $wgEmailAuthentication is on, this may require the user to have
3106 * confirmed their address by returning a code or using a password
3107 * sent to the address from the wiki.
3108 *
3109 * @return Bool
3110 */
3125 }
3126 }
3128 /**
3129 * Check whether there is an outstanding request for e-mail confirmation.
3130 * @return Bool
3131 */
3138 }
3140 /**
3141 * Get the timestamp of account creation.
3142 *
3143 * @return String|Bool Timestamp of account creation, or false for
3144 * non-existent/anonymous user accounts.
3145 */
3150 }
3152 /**
3153 * Get the timestamp of the first edit
3154 *
3155 * @return String|Bool Timestamp of first edit, or false for
3156 * non-existent/anonymous user accounts.
3157 */
3161 }
3165 __METHOD__,
3167 );
3170 }
3172 }
3174 /**
3175 * Get the permissions associated with a given list of groups
3176 *
3177 * @param $groups Array of Strings List of internal group names
3178 * @return Array of Strings List of permission key names for given groups combined
3179 */
3183 // grant every granted permission first
3187 // array_filter removes empty items
3189 }
3190 }
3191 // now revoke the revoked permissions
3196 }
3197 }
3199 }
3201 /**
3202 * Get all the groups who have a given permission
3203 *
3204 * @param $role String Role to check
3205 * @return Array of Strings List of internal group names with the given permission
3206 */
3213 }
3214 }
3216 }
3218 /**
3219 * Get the localized descriptive name for a group, if it exists
3220 *
3221 * @param $group String Internal group name
3222 * @return String Localized descriptive group name
3223 */
3227 }
3229 /**
3230 * Get the localized descriptive name for a member of a group, if it exists
3231 *
3232 * @param $group String Internal group name
3233 * @return String Localized name for group member
3234 */
3238 }
3240 /**
3241 * Return the set of defined explicit groups.
3242 * The implicit groups (by default *, 'user' and 'autoconfirmed')
3243 * are not included, as they are defined automatically, not in the database.
3244 * @return Array of internal group names
3245 */
3251 );
3252 }
3254 /**
3255 * Get a list of all available permissions.
3256 * @return Array of permission names
3257 */
3265 }
3267 }
3269 }
3271 /**
3272 * Get a list of implicit groups
3273 * @return Array of Strings Array of internal group names
3274 */
3278 wfRunHooks( 'UserGetImplicitGroups', array( &$groups ) ); #deprecated, use $wgImplictGroups instead
3280 }
3282 /**
3283 * Get the title of a page describing a particular group
3284 *
3285 * @param $group String Internal group name
3286 * @return Title|Bool Title of the page if it exists, false otherwise
3287 */
3294 }
3296 }
3298 /**
3299 * Create a link to the group in HTML, if available;
3300 * else return the group name.
3301 *
3302 * @param $group String Internal name of the group
3303 * @param $text String The text of the link
3304 * @return String HTML link to the group
3305 */
3309 }
3317 }
3318 }
3320 /**
3321 * Create a link to the group in Wikitext, if available;
3322 * else return the group name.
3323 *
3324 * @param $group String Internal name of the group
3325 * @param $text String The text of the link
3326 * @return String Wikilink to the group
3327 */
3331 }
3338 }
3339 }
3341 /**
3342 * Returns an array of the groups that a particular group can add/remove.
3343 *
3344 * @param $group String: the group to check for whether it can add/remove
3345 * @return Array array( 'add' => array( addablegroups ),
3346 * 'remove' => array( removablegroups ),
3347 * 'add-self' => array( addablegroups to self),
3348 * 'remove-self' => array( removable groups from self) )
3349 */
3353 $groups = array( 'add' => array(), 'remove' => array(), 'add-self' => array(), 'remove-self' => array() );
3355 // Don't add anything to $groups
3357 // You get everything
3361 }
3363 // Same thing for remove
3369 }
3371 // Re-map numeric keys of AddToSelf/RemoveFromSelf to the 'user' key for backwards compatibility
3376 }
3377 }
3378 }
3384 }
3385 }
3386 }
3388 // Now figure out what groups the user can add to him/herself
3391 // No idea WHY this would be used, but it's there
3395 }
3402 }
3405 }
3407 /**
3408 * Returns an array of groups that this user can add and remove
3409 * @return Array array( 'add' => array( addablegroups ),
3410 * 'remove' => array( removablegroups ),
3411 * 'add-self' => array( addablegroups to self),
3412 * 'remove-self' => array( removable groups from self) )
3413 */
3416 // This group gives the right to modify everything (reverse-
3417 // compatibility with old "userrights lets you change
3418 // everything")
3419 // Using array_merge to make the groups reindexed
3426 );
3427 }
3429 // Okay, it's not so simple, we will have to go through the arrays
3435 );
3441 );
3446 }
3448 }
3450 /**
3451 * Increment the user's edit-count field.
3452 * Will have no effect for anonymous users.
3453 */
3460 __METHOD__ );
3462 // Lazy initialization check...
3464 // Pull from a slave to be less cruel to servers
3465 // Accuracy isn't the point anyway here
3470 __METHOD__ );
3472 // Now here's a goddamn hack...
3474 // If we actually have a slave server, the count is
3475 // at least one behind because the current transaction
3476 // has not been committed and replicated.
3479 // But if DB_SLAVE is selecting the master, then the
3480 // count we just read includes the revision that was
3481 // just added in the working transaction.
3482 }
3487 __METHOD__ );
3488 }
3489 }
3490 // edit count in user cache too
3492 }
3494 /**
3495 * Get the description of a given right
3496 *
3497 * @param $right String Right to query
3498 * @return String Localized description of the right
3499 */
3504 ? $right
3506 }
3508 /**
3509 * Make an old-style password hash
3510 *
3511 * @param $password String Plain-text password
3512 * @param $userId String User ID
3513 * @return String Password hash
3514 */
3521 }
3522 }
3524 /**
3525 * Make a new-style password hash
3526 *
3527 * @param $password String Plain-text password
3528 * @param $salt String Optional salt, may be random or the user ID.
3529 * If unspecified or false, will generate one automatically
3530 * @return String Password hash
3531 */
3536 if( !wfRunHooks( 'UserCryptPassword', array( &$password, &$salt, &$wgPasswordSalt, &$hash ) ) ) {
3538 }
3543 }
3547 }
3548 }
3550 /**
3551 * Compare a password hash with a plain-text password. Requires the user
3552 * ID if there's a chance that the hash is an old-style hash.
3553 *
3554 * @param $hash String Password hash
3555 * @param $password String Plain-text password to compare
3556 * @param $userId String User ID for old-style password salt
3557 * @return Boolean:
3558 */
3565 }
3568 # Unsalted
3571 # Salted
3575 # Old-style
3577 }
3578 }
3580 /**
3581 * Add a newuser log entry for this user
3582 *
3583 * @param $byEmail Boolean: account made by email?
3584 * @param $reason String: user supplied reason
3585 */
3590 }
3602 }
3603 }
3604 }
3611 );
3613 }
3615 /**
3616 * Add an autocreate newuser log entry for this user
3617 * Used by things like CentralAuth and perhaps other authplugins.
3618 */
3623 }
3627 }
3636 // Maybe load from the object
3641 }
3644 // Load from database
3651 __METHOD__
3652 );
3657 }
3658 }
3663 }
3677 // Allow hooks to abort, for instance to save to a global profile.
3678 // Reset options to default state before saving.
3683 # Don't bother storing default values
3691 );
3692 }
3701 }
3702 }
3703 }
3709 }
3711 /**
3712 * Provide an array of HTML5 attributes to put on an input element
3713 * intended for the user to enter a new password. This may include
3714 * required, title, and/or pattern, depending on $wgMinimalPasswordLength.
3715 *
3716 * Do *not* use this when asking the user to enter his current password!
3717 * Regardless of configuration, users may have invalid passwords for whatever
3718 * reason (e.g., they were set before requirements were tightened up).
3719 * Only use it when asking for a new password, like on account creation or
3720 * ResetPass.
3721 *
3722 * Obviously, you still need to do server-side checking.
3723 *
3724 * NOTE: A combination of bugs in various browsers means that this function
3725 * actually just returns array() unconditionally at the moment. May as
3726 * well keep it around for when the browser bugs get fixed, though.
3727 *
3728 * FIXME : This does not belong here; put it in Html or Linker or somewhere
3729 *
3730 * @return array Array of HTML attributes suitable for feeding to
3731 * Html::element(), directly or indirectly. (Don't feed to Xml::*()!
3732 * That will potentially output invalid XHTML 1.0 Transitional, and will
3733 * get confused by the boolean attribute syntax used.)
3734 */
3740 }
3742 # Note that the pattern requirement will always be satisfied if the
3743 # input is empty, so we need required in all cases.
3744 #
3745 # FIXME (bug 23769): This needs to not claim the password is required
3746 # if e-mail confirmation is being used. Since HTML5 input validation
3747 # is b0rked anyway in some browsers, just return nothing. When it's
3748 # re-enabled, fix this code to not output required for e-mail
3749 # registration.
3750 #$ret = array( 'required' );
3753 # We can't actually do this right now, because Opera 9.6 will print out
3754 # the entered password visibly in its error message! When other
3755 # browsers add support for this attribute, or Opera fixes its support,
3756 # we can add support with a version check to avoid doing this on Opera
3757 # versions where it will be a problem. Reported to Opera as
3758 # DSK-262266, but they don't have a public bug tracker for us to follow.
3759 /*
3760 if ( $wgMinimalPasswordLength > 1 ) {
3761 $ret['pattern'] = '.{' . intval( $wgMinimalPasswordLength ) . ',}';
3762 $ret['title'] = wfMsgExt( 'passwordtooshort', 'parsemag',
3763 $wgMinimalPasswordLength );
3764 }
3765 */
3768 }
3770 /**
3771 * Format the user message using a hook, a template, or, failing these, a static format.
3772 * @param $subject String the subject of the message
3773 * @param $text String the content of the message
3774 * @param $signature String the signature, if provided.
3775 */
3790 }
3791 }
3794 }
3796 /**
3797 * Leave a user a message
3798 * @param $subject String the subject of the message
3799 * @param $text String the message to leave
3800 * @param $signature String Text to leave in the signature
3801 * @param $summary String the summary for this change, defaults to
3802 * "Leave system message."
3803 * @param $editor User The user leaving the message, defaults to
3804 * "{{MediaWiki:usermessage-editor}}"
3805 * @param $flags Int default edit flags
3806 *
3807 * @return boolean true if it was successful
3808 */
3813 }
3819 }
3820 }
3832 }
3841 }
3844 // Set newtalk with the right user ID
3850 // The article was concurrently created
3853 }
3856 }
3857 }