Ana Sayfa Keşfet Yardım
Giriş Yap
NeoZones
/
pennyspages
şunun yansıması https://github.com/NeoZones/pennyspages
İzle 2
Yıldızla 0
Çatalla 0
Dosyalar Sorunlar 0 Wiki
Dal: main
Dallar Biçim İmleri
pennyspages
/
includes
/
api
/
ApiRemoveAuthenticationData.php

ApiRemoveAuthenticationData.php 3.3 KB
Kalıcı Bağlantı Geçmiş Ham

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Copyright © 2016 Wikimedia Foundation and contributors
    4. 

  4.  *
    5. 

  5.  * This program is free software; you can redistribute it and/or modify
    6. 

  6.  * it under the terms of the GNU General Public License as published by
    7. 

  7.  * the Free Software Foundation; either version 2 of the License, or
    8. 

  8.  * (at your option) any later version.
    9. 

  9.  *
    10. 

  10.  * This program is distributed in the hope that it will be useful,
    11. 

  11.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    12. 

  12.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
    13. 

  13.  * GNU General Public License for more details.
    14. 

  14.  *
    15. 

  15.  * You should have received a copy of the GNU General Public License along
    16. 

  16.  * with this program; if not, write to the Free Software Foundation, Inc.,
    17. 

  17.  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
    18. 

  18.  * http://www.gnu.org/copyleft/gpl.html
    19. 

  19.  *
    20. 

  20.  * @file
    21. 

  21.  */
    22. 

  22. 

  23. use MediaWiki\Auth\AuthManager;
    24. 

  24. 

  25. /**
    26. 

  26.  * Remove authentication data from AuthManager
    27. 

  27.  *
    28. 

  28.  * @ingroup API
    29. 

  29.  */
    30. 

  30. class ApiRemoveAuthenticationData extends ApiBase {
    31. 

  31. 

  32. 	private $authAction;
    33. 

  33. 	private $operation;
    34. 

  34. 

  35. 	public function __construct( ApiMain $main, $action ) {
    36. 

  36. 		parent::__construct( $main, $action );
    37. 

  37. 

  38. 		$this->authAction = $action === 'unlinkaccount'
    39. 

  39. 			? AuthManager::ACTION_UNLINK
    40. 

  40. 			: AuthManager::ACTION_REMOVE;
    41. 

  41. 		$this->operation = $action === 'unlinkaccount'
    42. 

  42. 			? 'UnlinkAccount'
    43. 

  43. 			: 'RemoveCredentials';
    44. 

  44. 	}
    45. 

  45. 

  46. 	public function execute() {
    47. 

  47. 		if ( !$this->getUser()->isLoggedIn() ) {
    48. 

  48. 			$this->dieWithError( 'apierror-mustbeloggedin-removeauth', 'notloggedin' );
    49. 

  49. 		}
    50. 

  50. 

  51. 		$params = $this->extractRequestParams();
    52. 

  52. 		$manager = AuthManager::singleton();
    53. 

  53. 

  54. 		// Check security-sensitive operation status
    55. 

  55. 		ApiAuthManagerHelper::newForModule( $this )->securitySensitiveOperation( $this->operation );
    56. 

  56. 

  57. 		// Fetch the request. No need to load from the request, so don't use
    58. 

  58. 		// ApiAuthManagerHelper's method.
    59. 

  59. 		$blacklist = $this->authAction === AuthManager::ACTION_REMOVE
    60. 

  60. 			? array_flip( $this->getConfig()->get( 'RemoveCredentialsBlacklist' ) )
    61. 

  61. 			: [];
    62. 

  62. 		$reqs = array_filter(
    63. 

  63. 			$manager->getAuthenticationRequests( $this->authAction, $this->getUser() ),
    64. 

  64. 			function ( $req ) use ( $params, $blacklist ) {
    65. 

  65. 				return $req->getUniqueId() === $params['request'] &&
    66. 

  66. 					!isset( $blacklist[get_class( $req )] );
    67. 

  67. 			}
    68. 

  68. 		);
    69. 

  69. 		if ( count( $reqs ) !== 1 ) {
    70. 

  70. 			$this->dieWithError( 'apierror-changeauth-norequest', 'badrequest' );
    71. 

  71. 		}
    72. 

  72. 		$req = reset( $reqs );
    73. 

  73. 

  74. 		// Perform the removal
    75. 

  75. 		$status = $manager->allowsAuthenticationDataChange( $req, true );
    76. 

  76. 		Hooks::run( 'ChangeAuthenticationDataAudit', [ $req, $status ] );
    77. 

  77. 		if ( !$status->isGood() ) {
    78. 

  78. 			$this->dieStatus( $status );
    79. 

  79. 		}
    80. 

  80. 		$manager->changeAuthenticationData( $req );
    81. 

  81. 

  82. 		$this->getResult()->addValue( null, $this->getModuleName(), [ 'status' => 'success' ] );
    83. 

  83. 	}
    84. 

  84. 

  85. 	public function isWriteMode() {
    86. 

  86. 		return true;
    87. 

  87. 	}
    88. 

  88. 

  89. 	public function needsToken() {
    90. 

  90. 		return 'csrf';
    91. 

  91. 	}
    92. 

  92. 

  93. 	public function getAllowedParams() {
    94. 

  94. 		return ApiAuthManagerHelper::getStandardParams( $this->authAction,
    95. 

  95. 			'request'
    96. 

  96. 		);
    97. 

  97. 	}
    98. 

  98. 

  99. 	protected function getExamplesMessages() {
    100. 

  100. 		$path = $this->getModulePath();
    101. 

  101. 		$action = $this->getModuleName();
    102. 

  102. 		return [
    103. 

  103. 			"action={$action}&request=FooAuthenticationRequest&token=123ABC"
    104. 

  104. 				=> "apihelp-{$path}-example-simple",
    105. 

  105. 		];
    106. 

  106. 	}
    107. 

  107. 

  108. 	public function getHelpUrls() {
    109. 

  109. 		return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Manage_authentication_data';
    110. 

  110. 	}
    111. 

  111. }
    112. 

  112.