Whitelist the <wbr> element.
[mediawiki.git] / includes / api / ApiUpload.php
blobb903a628112ebbf952c13d624d97f68624af2feb
1 <?php
2 /**
5 * Created on Aug 21, 2008
7 * Copyright © 2008 - 2010 Bryan Tong Minh <Bryan.TongMinh@Gmail.com>
9 * This program is free software; you can redistribute it and/or modify
10 * it under the terms of the GNU General Public License as published by
11 * the Free Software Foundation; either version 2 of the License, or
12 * (at your option) any later version.
14 * This program is distributed in the hope that it will be useful,
15 * but WITHOUT ANY WARRANTY; without even the implied warranty of
16 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
17 * GNU General Public License for more details.
19 * You should have received a copy of the GNU General Public License along
20 * with this program; if not, write to the Free Software Foundation, Inc.,
21 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
22 * http://www.gnu.org/copyleft/gpl.html
24 * @file
27 /**
28 * @ingroup API
30 class ApiUpload extends ApiBase {
32 /**
33 * @var UploadBase
35 protected $mUpload = null;
37 protected $mParams;
39 public function execute() {
40 global $wgEnableAsyncUploads;
42 // Check whether upload is enabled
43 if ( !UploadBase::isEnabled() ) {
44 $this->dieUsageMsg( 'uploaddisabled' );
47 $user = $this->getUser();
49 // Parameter handling
50 $this->mParams = $this->extractRequestParams();
51 $request = $this->getMain()->getRequest();
52 // Check if async mode is actually supported (jobs done in cli mode)
53 $this->mParams['async'] = ( $this->mParams['async'] && $wgEnableAsyncUploads );
54 // Add the uploaded file to the params array
55 $this->mParams['file'] = $request->getFileName( 'file' );
56 $this->mParams['chunk'] = $request->getFileName( 'chunk' );
58 // Copy the session key to the file key, for backward compatibility.
59 if ( !$this->mParams['filekey'] && $this->mParams['sessionkey'] ) {
60 $this->mParams['filekey'] = $this->mParams['sessionkey'];
63 // Select an upload module
64 try {
65 if ( !$this->selectUploadModule() ) {
66 return; // not a true upload, but a status request or similar
67 } elseif ( !isset( $this->mUpload ) ) {
68 $this->dieUsage( 'No upload module set', 'nomodule' );
70 } catch ( UploadStashException $e ) { // XXX: don't spam exception log
71 $this->dieUsage( get_class( $e ) . ": " . $e->getMessage(), 'stasherror' );
74 // First check permission to upload
75 $this->checkPermissions( $user );
77 // Fetch the file (usually a no-op)
78 /** @var $status Status */
79 $status = $this->mUpload->fetchFile();
80 if ( !$status->isGood() ) {
81 $errors = $status->getErrorsArray();
82 $error = array_shift( $errors[0] );
83 $this->dieUsage( 'Error fetching file from remote source', $error, 0, $errors[0] );
86 // Check if the uploaded file is sane
87 if ( $this->mParams['chunk'] ) {
88 $maxSize = $this->mUpload->getMaxUploadSize();
89 if ( $this->mParams['filesize'] > $maxSize ) {
90 $this->dieUsage( 'The file you submitted was too large', 'file-too-large' );
92 if ( !$this->mUpload->getTitle() ) {
93 $this->dieUsage( 'Invalid file title supplied', 'internal-error' );
95 } elseif ( $this->mParams['async'] && $this->mParams['filekey'] ) {
96 // defer verification to background process
97 } else {
98 wfDebug( __METHOD__ . 'about to verify' );
99 $this->verifyUpload();
102 // Check if the user has the rights to modify or overwrite the requested title
103 // (This check is irrelevant if stashing is already requested, since the errors
104 // can always be fixed by changing the title)
105 if ( !$this->mParams['stash'] ) {
106 $permErrors = $this->mUpload->verifyTitlePermissions( $user );
107 if ( $permErrors !== true ) {
108 $this->dieRecoverableError( $permErrors[0], 'filename' );
112 // Get the result based on the current upload context:
113 try {
114 $result = $this->getContextResult();
115 if ( $result['result'] === 'Success' ) {
116 $result['imageinfo'] = $this->mUpload->getImageInfo( $this->getResult() );
118 } catch ( UploadStashException $e ) { // XXX: don't spam exception log
119 $this->dieUsage( get_class( $e ) . ": " . $e->getMessage(), 'stasherror' );
122 $this->getResult()->addValue( null, $this->getModuleName(), $result );
124 // Cleanup any temporary mess
125 $this->mUpload->cleanupTempFile();
129 * Get an upload result based on upload context
130 * @return array
132 private function getContextResult() {
133 $warnings = $this->getApiWarnings();
134 if ( $warnings && !$this->mParams['ignorewarnings'] ) {
135 // Get warnings formatted in result array format
136 return $this->getWarningsResult( $warnings );
137 } elseif ( $this->mParams['chunk'] ) {
138 // Add chunk, and get result
139 return $this->getChunkResult( $warnings );
140 } elseif ( $this->mParams['stash'] ) {
141 // Stash the file and get stash result
142 return $this->getStashResult( $warnings );
144 // This is the most common case -- a normal upload with no warnings
145 // performUpload will return a formatted properly for the API with status
146 return $this->performUpload( $warnings );
150 * Get Stash Result, throws an exception if the file could not be stashed.
151 * @param array $warnings Array of Api upload warnings
152 * @return array
154 private function getStashResult( $warnings ) {
155 $result = array();
156 // Some uploads can request they be stashed, so as not to publish them immediately.
157 // In this case, a failure to stash ought to be fatal
158 try {
159 $result['result'] = 'Success';
160 $result['filekey'] = $this->performStash();
161 $result['sessionkey'] = $result['filekey']; // backwards compatibility
162 if ( $warnings && count( $warnings ) > 0 ) {
163 $result['warnings'] = $warnings;
165 } catch ( MWException $e ) {
166 $this->dieUsage( $e->getMessage(), 'stashfailed' );
168 return $result;
172 * Get Warnings Result
173 * @param array $warnings Array of Api upload warnings
174 * @return array
176 private function getWarningsResult( $warnings ) {
177 $result = array();
178 $result['result'] = 'Warning';
179 $result['warnings'] = $warnings;
180 // in case the warnings can be fixed with some further user action, let's stash this upload
181 // and return a key they can use to restart it
182 try {
183 $result['filekey'] = $this->performStash();
184 $result['sessionkey'] = $result['filekey']; // backwards compatibility
185 } catch ( MWException $e ) {
186 $result['warnings']['stashfailed'] = $e->getMessage();
188 return $result;
192 * Get the result of a chunk upload.
193 * @param array $warnings Array of Api upload warnings
194 * @return array
196 private function getChunkResult( $warnings ) {
197 $result = array();
199 $result['result'] = 'Continue';
200 if ( $warnings && count( $warnings ) > 0 ) {
201 $result['warnings'] = $warnings;
203 $request = $this->getMain()->getRequest();
204 $chunkPath = $request->getFileTempname( 'chunk' );
205 $chunkSize = $request->getUpload( 'chunk' )->getSize();
206 if ( $this->mParams['offset'] == 0 ) {
207 try {
208 $filekey = $this->performStash();
209 } catch ( MWException $e ) {
210 // FIXME: Error handling here is wrong/different from rest of this
211 $this->dieUsage( $e->getMessage(), 'stashfailed' );
213 } else {
214 $filekey = $this->mParams['filekey'];
215 /** @var $status Status */
216 $status = $this->mUpload->addChunk(
217 $chunkPath, $chunkSize, $this->mParams['offset'] );
218 if ( !$status->isGood() ) {
219 $this->dieUsage( $status->getWikiText(), 'stashfailed' );
220 return array();
224 // Check we added the last chunk:
225 if ( $this->mParams['offset'] + $chunkSize == $this->mParams['filesize'] ) {
226 if ( $this->mParams['async'] ) {
227 $progress = UploadBase::getSessionStatus( $filekey );
228 if ( $progress && $progress['result'] === 'Poll' ) {
229 $this->dieUsage( "Chunk assembly already in progress.", 'stashfailed' );
231 UploadBase::setSessionStatus(
232 $filekey,
233 array( 'result' => 'Poll',
234 'stage' => 'queued', 'status' => Status::newGood() )
236 $ok = JobQueueGroup::singleton()->push( new AssembleUploadChunksJob(
237 Title::makeTitle( NS_FILE, $filekey ),
238 array(
239 'filename' => $this->mParams['filename'],
240 'filekey' => $filekey,
241 'session' => $this->getContext()->exportSession()
243 ) );
244 if ( $ok ) {
245 $result['result'] = 'Poll';
246 } else {
247 UploadBase::setSessionStatus( $filekey, false );
248 $this->dieUsage(
249 "Failed to start AssembleUploadChunks.php", 'stashfailed' );
251 } else {
252 $status = $this->mUpload->concatenateChunks();
253 if ( !$status->isGood() ) {
254 $this->dieUsage( $status->getWikiText(), 'stashfailed' );
255 return array();
258 // The fully concatenated file has a new filekey. So remove
259 // the old filekey and fetch the new one.
260 $this->mUpload->stash->removeFile( $filekey );
261 $filekey = $this->mUpload->getLocalFile()->getFileKey();
263 $result['result'] = 'Success';
266 $result['filekey'] = $filekey;
267 $result['offset'] = $this->mParams['offset'] + $chunkSize;
268 return $result;
272 * Stash the file and return the file key
273 * Also re-raises exceptions with slightly more informative message strings (useful for API)
274 * @throws MWException
275 * @return String file key
277 private function performStash() {
278 try {
279 $stashFile = $this->mUpload->stashFile();
281 if ( !$stashFile ) {
282 throw new MWException( 'Invalid stashed file' );
284 $fileKey = $stashFile->getFileKey();
285 } catch ( MWException $e ) {
286 $message = 'Stashing temporary file failed: ' . get_class( $e ) . ' ' . $e->getMessage();
287 wfDebug( __METHOD__ . ' ' . $message . "\n" );
288 throw new MWException( $message );
290 return $fileKey;
294 * Throw an error that the user can recover from by providing a better
295 * value for $parameter
297 * @param array $error Error array suitable for passing to dieUsageMsg()
298 * @param string $parameter Parameter that needs revising
299 * @param array $data Optional extra data to pass to the user
300 * @throws UsageException
302 private function dieRecoverableError( $error, $parameter, $data = array() ) {
303 try {
304 $data['filekey'] = $this->performStash();
305 $data['sessionkey'] = $data['filekey'];
306 } catch ( MWException $e ) {
307 $data['stashfailed'] = $e->getMessage();
309 $data['invalidparameter'] = $parameter;
311 $parsed = $this->parseMsg( $error );
312 $this->dieUsage( $parsed['info'], $parsed['code'], 0, $data );
316 * Select an upload module and set it to mUpload. Dies on failure. If the
317 * request was a status request and not a true upload, returns false;
318 * otherwise true
320 * @return bool
322 protected function selectUploadModule() {
323 $request = $this->getMain()->getRequest();
325 // chunk or one and only one of the following parameters is needed
326 if ( !$this->mParams['chunk'] ) {
327 $this->requireOnlyOneParameter( $this->mParams,
328 'filekey', 'file', 'url', 'statuskey' );
331 // Status report for "upload to stash"/"upload from stash"
332 if ( $this->mParams['filekey'] && $this->mParams['checkstatus'] ) {
333 $progress = UploadBase::getSessionStatus( $this->mParams['filekey'] );
334 if ( !$progress ) {
335 $this->dieUsage( 'No result in status data', 'missingresult' );
336 } elseif ( !$progress['status']->isGood() ) {
337 $this->dieUsage( $progress['status']->getWikiText(), 'stashfailed' );
339 if ( isset( $progress['status']->value['verification'] ) ) {
340 $this->checkVerification( $progress['status']->value['verification'] );
342 unset( $progress['status'] ); // remove Status object
343 $this->getResult()->addValue( null, $this->getModuleName(), $progress );
344 return false;
347 if ( $this->mParams['statuskey'] ) {
348 $this->checkAsyncDownloadEnabled();
350 // Status request for an async upload
351 $sessionData = UploadFromUrlJob::getSessionData( $this->mParams['statuskey'] );
352 if ( !isset( $sessionData['result'] ) ) {
353 $this->dieUsage( 'No result in session data', 'missingresult' );
355 if ( $sessionData['result'] == 'Warning' ) {
356 $sessionData['warnings'] = $this->transformWarnings( $sessionData['warnings'] );
357 $sessionData['sessionkey'] = $this->mParams['statuskey'];
359 $this->getResult()->addValue( null, $this->getModuleName(), $sessionData );
360 return false;
363 // The following modules all require the filename parameter to be set
364 if ( is_null( $this->mParams['filename'] ) ) {
365 $this->dieUsageMsg( array( 'missingparam', 'filename' ) );
368 if ( $this->mParams['chunk'] ) {
369 // Chunk upload
370 $this->mUpload = new UploadFromChunks();
371 if ( isset( $this->mParams['filekey'] ) ) {
372 // handle new chunk
373 $this->mUpload->continueChunks(
374 $this->mParams['filename'],
375 $this->mParams['filekey'],
376 $request->getUpload( 'chunk' )
378 } else {
379 // handle first chunk
380 $this->mUpload->initialize(
381 $this->mParams['filename'],
382 $request->getUpload( 'chunk' )
385 } elseif ( isset( $this->mParams['filekey'] ) ) {
386 // Upload stashed in a previous request
387 if ( !UploadFromStash::isValidKey( $this->mParams['filekey'] ) ) {
388 $this->dieUsageMsg( 'invalid-file-key' );
391 $this->mUpload = new UploadFromStash( $this->getUser() );
392 // This will not download the temp file in initialize() in async mode.
393 // We still have enough information to call checkWarnings() and such.
394 $this->mUpload->initialize(
395 $this->mParams['filekey'], $this->mParams['filename'], !$this->mParams['async']
397 } elseif ( isset( $this->mParams['file'] ) ) {
398 $this->mUpload = new UploadFromFile();
399 $this->mUpload->initialize(
400 $this->mParams['filename'],
401 $request->getUpload( 'file' )
403 } elseif ( isset( $this->mParams['url'] ) ) {
404 // Make sure upload by URL is enabled:
405 if ( !UploadFromUrl::isEnabled() ) {
406 $this->dieUsageMsg( 'copyuploaddisabled' );
409 if ( !UploadFromUrl::isAllowedHost( $this->mParams['url'] ) ) {
410 $this->dieUsageMsg( 'copyuploadbaddomain' );
413 if ( !UploadFromUrl::isAllowedUrl( $this->mParams['url'] ) ) {
414 $this->dieUsageMsg( 'copyuploadbadurl' );
417 $async = false;
418 if ( $this->mParams['asyncdownload'] ) {
419 $this->checkAsyncDownloadEnabled();
421 if ( $this->mParams['leavemessage'] && !$this->mParams['ignorewarnings'] ) {
422 $this->dieUsage( 'Using leavemessage without ignorewarnings is not supported',
423 'missing-ignorewarnings' );
426 if ( $this->mParams['leavemessage'] ) {
427 $async = 'async-leavemessage';
428 } else {
429 $async = 'async';
432 $this->mUpload = new UploadFromUrl;
433 $this->mUpload->initialize( $this->mParams['filename'],
434 $this->mParams['url'], $async );
437 return true;
441 * Checks that the user has permissions to perform this upload.
442 * Dies with usage message on inadequate permissions.
443 * @param $user User The user to check.
445 protected function checkPermissions( $user ) {
446 // Check whether the user has the appropriate permissions to upload anyway
447 $permission = $this->mUpload->isAllowed( $user );
449 if ( $permission !== true ) {
450 if ( !$user->isLoggedIn() ) {
451 $this->dieUsageMsg( array( 'mustbeloggedin', 'upload' ) );
452 } else {
453 $this->dieUsageMsg( 'badaccess-groups' );
459 * Performs file verification, dies on error.
461 protected function verifyUpload() {
462 $verification = $this->mUpload->verifyUpload();
463 if ( $verification['status'] === UploadBase::OK ) {
464 return;
467 $this->checkVerification( $verification );
471 * Performs file verification, dies on error.
473 protected function checkVerification( array $verification ) {
474 global $wgFileExtensions;
476 // @todo Move them to ApiBase's message map
477 switch ( $verification['status'] ) {
478 // Recoverable errors
479 case UploadBase::MIN_LENGTH_PARTNAME:
480 $this->dieRecoverableError( 'filename-tooshort', 'filename' );
481 break;
482 case UploadBase::ILLEGAL_FILENAME:
483 $this->dieRecoverableError( 'illegal-filename', 'filename',
484 array( 'filename' => $verification['filtered'] ) );
485 break;
486 case UploadBase::FILENAME_TOO_LONG:
487 $this->dieRecoverableError( 'filename-toolong', 'filename' );
488 break;
489 case UploadBase::FILETYPE_MISSING:
490 $this->dieRecoverableError( 'filetype-missing', 'filename' );
491 break;
492 case UploadBase::WINDOWS_NONASCII_FILENAME:
493 $this->dieRecoverableError( 'windows-nonascii-filename', 'filename' );
494 break;
496 // Unrecoverable errors
497 case UploadBase::EMPTY_FILE:
498 $this->dieUsage( 'The file you submitted was empty', 'empty-file' );
499 break;
500 case UploadBase::FILE_TOO_LARGE:
501 $this->dieUsage( 'The file you submitted was too large', 'file-too-large' );
502 break;
504 case UploadBase::FILETYPE_BADTYPE:
505 $extradata = array(
506 'filetype' => $verification['finalExt'],
507 'allowed' => $wgFileExtensions
509 $this->getResult()->setIndexedTagName( $extradata['allowed'], 'ext' );
511 $msg = "Filetype not permitted: ";
512 if ( isset( $verification['blacklistedExt'] ) ) {
513 $msg .= join( ', ', $verification['blacklistedExt'] );
514 $extradata['blacklisted'] = array_values( $verification['blacklistedExt'] );
515 $this->getResult()->setIndexedTagName( $extradata['blacklisted'], 'ext' );
516 } else {
517 $msg .= $verification['finalExt'];
519 $this->dieUsage( $msg, 'filetype-banned', 0, $extradata );
520 break;
521 case UploadBase::VERIFICATION_ERROR:
522 $this->getResult()->setIndexedTagName( $verification['details'], 'detail' );
523 $this->dieUsage( 'This file did not pass file verification', 'verification-error',
524 0, array( 'details' => $verification['details'] ) );
525 break;
526 case UploadBase::HOOK_ABORTED:
527 $this->dieUsage( "The modification you tried to make was aborted by an extension hook",
528 'hookaborted', 0, array( 'error' => $verification['error'] ) );
529 break;
530 default:
531 $this->dieUsage( 'An unknown error occurred', 'unknown-error',
532 0, array( 'code' => $verification['status'] ) );
533 break;
538 * Check warnings.
539 * Returns a suitable array for inclusion into API results if there were warnings
540 * Returns the empty array if there were no warnings
542 * @return array
544 protected function getApiWarnings() {
545 $warnings = $this->mUpload->checkWarnings();
547 return $this->transformWarnings( $warnings );
550 protected function transformWarnings( $warnings ) {
551 if ( $warnings ) {
552 // Add indices
553 $result = $this->getResult();
554 $result->setIndexedTagName( $warnings, 'warning' );
556 if ( isset( $warnings['duplicate'] ) ) {
557 $dupes = array();
558 foreach ( $warnings['duplicate'] as $dupe ) {
559 $dupes[] = $dupe->getName();
561 $result->setIndexedTagName( $dupes, 'duplicate' );
562 $warnings['duplicate'] = $dupes;
565 if ( isset( $warnings['exists'] ) ) {
566 $warning = $warnings['exists'];
567 unset( $warnings['exists'] );
568 $warnings[$warning['warning']] = $warning['file']->getName();
571 return $warnings;
575 * Perform the actual upload. Returns a suitable result array on success;
576 * dies on failure.
578 * @param array $warnings Array of Api upload warnings
579 * @return array
581 protected function performUpload( $warnings ) {
582 // Use comment as initial page text by default
583 if ( is_null( $this->mParams['text'] ) ) {
584 $this->mParams['text'] = $this->mParams['comment'];
587 /** @var $file File */
588 $file = $this->mUpload->getLocalFile();
589 $watch = $this->getWatchlistValue( $this->mParams['watchlist'], $file->getTitle() );
591 // Deprecated parameters
592 if ( $this->mParams['watch'] ) {
593 $watch = true;
596 // No errors, no warnings: do the upload
597 if ( $this->mParams['async'] ) {
598 $progress = UploadBase::getSessionStatus( $this->mParams['filekey'] );
599 if ( $progress && $progress['result'] === 'Poll' ) {
600 $this->dieUsage( "Upload from stash already in progress.", 'publishfailed' );
602 UploadBase::setSessionStatus(
603 $this->mParams['filekey'],
604 array( 'result' => 'Poll', 'stage' => 'queued', 'status' => Status::newGood() )
606 $ok = JobQueueGroup::singleton()->push( new PublishStashedFileJob(
607 Title::makeTitle( NS_FILE, $this->mParams['filename'] ),
608 array(
609 'filename' => $this->mParams['filename'],
610 'filekey' => $this->mParams['filekey'],
611 'comment' => $this->mParams['comment'],
612 'text' => $this->mParams['text'],
613 'watch' => $watch,
614 'session' => $this->getContext()->exportSession()
616 ) );
617 if ( $ok ) {
618 $result['result'] = 'Poll';
619 } else {
620 UploadBase::setSessionStatus( $this->mParams['filekey'], false );
621 $this->dieUsage(
622 "Failed to start PublishStashedFile.php", 'publishfailed' );
624 } else {
625 /** @var $status Status */
626 $status = $this->mUpload->performUpload( $this->mParams['comment'],
627 $this->mParams['text'], $watch, $this->getUser() );
629 if ( !$status->isGood() ) {
630 $error = $status->getErrorsArray();
632 if ( count( $error ) == 1 && $error[0][0] == 'async' ) {
633 // The upload can not be performed right now, because the user
634 // requested so
635 return array(
636 'result' => 'Queued',
637 'statuskey' => $error[0][1],
639 } else {
640 $this->getResult()->setIndexedTagName( $error, 'error' );
642 $this->dieUsage( 'An internal error occurred', 'internal-error', 0, $error );
645 $result['result'] = 'Success';
648 $result['filename'] = $file->getName();
649 if ( $warnings && count( $warnings ) > 0 ) {
650 $result['warnings'] = $warnings;
653 return $result;
657 * Checks if asynchronous copy uploads are enabled and throws an error if they are not.
659 protected function checkAsyncDownloadEnabled() {
660 global $wgAllowAsyncCopyUploads;
661 if ( !$wgAllowAsyncCopyUploads ) {
662 $this->dieUsage( 'Asynchronous copy uploads disabled', 'asynccopyuploaddisabled' );
666 public function mustBePosted() {
667 return true;
670 public function isWriteMode() {
671 return true;
674 public function getAllowedParams() {
675 $params = array(
676 'filename' => array(
677 ApiBase::PARAM_TYPE => 'string',
679 'comment' => array(
680 ApiBase::PARAM_DFLT => ''
682 'text' => null,
683 'token' => array(
684 ApiBase::PARAM_TYPE => 'string',
685 ApiBase::PARAM_REQUIRED => true
687 'watch' => array(
688 ApiBase::PARAM_DFLT => false,
689 ApiBase::PARAM_DEPRECATED => true,
691 'watchlist' => array(
692 ApiBase::PARAM_DFLT => 'preferences',
693 ApiBase::PARAM_TYPE => array(
694 'watch',
695 'preferences',
696 'nochange'
699 'ignorewarnings' => false,
700 'file' => array(
701 ApiBase::PARAM_TYPE => 'upload',
703 'url' => null,
704 'filekey' => null,
705 'sessionkey' => array(
706 ApiBase::PARAM_DFLT => null,
707 ApiBase::PARAM_DEPRECATED => true,
709 'stash' => false,
711 'filesize' => null,
712 'offset' => null,
713 'chunk' => array(
714 ApiBase::PARAM_TYPE => 'upload',
717 'async' => false,
718 'asyncdownload' => false,
719 'leavemessage' => false,
720 'statuskey' => null,
721 'checkstatus' => false,
724 return $params;
727 public function getParamDescription() {
728 $params = array(
729 'filename' => 'Target filename',
730 'token' => 'Edit token. You can get one of these through prop=info',
731 'comment' => 'Upload comment. Also used as the initial page text for new files if "text" is not specified',
732 'text' => 'Initial page text for new files',
733 'watch' => 'Watch the page',
734 'watchlist' => 'Unconditionally add or remove the page from your watchlist, use preferences or do not change watch',
735 'ignorewarnings' => 'Ignore any warnings',
736 'file' => 'File contents',
737 'url' => 'URL to fetch the file from',
738 'filekey' => 'Key that identifies a previous upload that was stashed temporarily.',
739 'sessionkey' => 'Same as filekey, maintained for backward compatibility.',
740 'stash' => 'If set, the server will not add the file to the repository and stash it temporarily.',
742 'chunk' => 'Chunk contents',
743 'offset' => 'Offset of chunk in bytes',
744 'filesize' => 'Filesize of entire upload',
746 'async' => 'Make potentially large file operations asynchronous when possible',
747 'asyncdownload' => 'Make fetching a URL asynchronous',
748 'leavemessage' => 'If asyncdownload is used, leave a message on the user talk page if finished',
749 'statuskey' => 'Fetch the upload status for this file key (upload by URL)',
750 'checkstatus' => 'Only fetch the upload status for the given file key',
753 return $params;
757 public function getResultProperties() {
758 return array(
759 '' => array(
760 'result' => array(
761 ApiBase::PROP_TYPE => array(
762 'Success',
763 'Warning',
764 'Continue',
765 'Queued'
768 'filekey' => array(
769 ApiBase::PROP_TYPE => 'string',
770 ApiBase::PROP_NULLABLE => true
772 'sessionkey' => array(
773 ApiBase::PROP_TYPE => 'string',
774 ApiBase::PROP_NULLABLE => true
776 'offset' => array(
777 ApiBase::PROP_TYPE => 'integer',
778 ApiBase::PROP_NULLABLE => true
780 'statuskey' => array(
781 ApiBase::PROP_TYPE => 'string',
782 ApiBase::PROP_NULLABLE => true
784 'filename' => array(
785 ApiBase::PROP_TYPE => 'string',
786 ApiBase::PROP_NULLABLE => true
792 public function getDescription() {
793 return array(
794 'Upload a file, or get the status of pending uploads. Several methods are available:',
795 ' * Upload file contents directly, using the "file" parameter',
796 ' * Have the MediaWiki server fetch a file from a URL, using the "url" parameter',
797 ' * Complete an earlier upload that failed due to warnings, using the "filekey" parameter',
798 'Note that the HTTP POST must be done as a file upload (i.e. using multipart/form-data) when',
799 'sending the "file". Also you must get and send an edit token before doing any upload stuff'
803 public function getPossibleErrors() {
804 return array_merge( parent::getPossibleErrors(),
805 $this->getRequireOnlyOneParameterErrorMessages( array( 'filekey', 'file', 'url', 'statuskey' ) ),
806 array(
807 array( 'uploaddisabled' ),
808 array( 'invalid-file-key' ),
809 array( 'uploaddisabled' ),
810 array( 'mustbeloggedin', 'upload' ),
811 array( 'badaccess-groups' ),
812 array( 'code' => 'fetchfileerror', 'info' => '' ),
813 array( 'code' => 'nomodule', 'info' => 'No upload module set' ),
814 array( 'code' => 'empty-file', 'info' => 'The file you submitted was empty' ),
815 array( 'code' => 'filetype-missing', 'info' => 'The file is missing an extension' ),
816 array( 'code' => 'filename-tooshort', 'info' => 'The filename is too short' ),
817 array( 'code' => 'overwrite', 'info' => 'Overwriting an existing file is not allowed' ),
818 array( 'code' => 'stashfailed', 'info' => 'Stashing temporary file failed' ),
819 array( 'code' => 'publishfailed', 'info' => 'Publishing of stashed file failed' ),
820 array( 'code' => 'internal-error', 'info' => 'An internal error occurred' ),
821 array( 'code' => 'asynccopyuploaddisabled', 'info' => 'Asynchronous copy uploads disabled' ),
822 array( 'code' => 'stasherror', 'info' => 'An upload stash error occurred' ),
823 array( 'fileexists-forbidden' ),
824 array( 'fileexists-shared-forbidden' ),
829 public function needsToken() {
830 return true;
833 public function getTokenSalt() {
834 return '';
837 public function getExamples() {
838 return array(
839 'api.php?action=upload&filename=Wiki.png&url=http%3A//upload.wikimedia.org/wikipedia/en/b/bc/Wiki.png'
840 => 'Upload from a URL',
841 'api.php?action=upload&filename=Wiki.png&filekey=filekey&ignorewarnings=1'
842 => 'Complete an upload that failed due to warnings',
846 public function getHelpUrls() {
847 return 'https://www.mediawiki.org/wiki/API:Upload';