wikimedia/mediawiki-extensions-AbuseFilter
1
0
Fork 0
mirror of https://gerrit.wikimedia.org/r/mediawiki/extensions/AbuseFilter.git synced 2024-11-15 02:03:53 +00:00
Code Issues Packages Projects Releases Wiki Activity
mediawiki-extensions-AbuseF.../includes/Api/CheckMatch.php

178 lines
5.1 KiB
PHP
Raw Normal View History

Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
<?php
Move API modules to separate namespace and rename them Change-Id: I436e8fed4a1cbe4f1b36a16b213ede7976e871ba
2020-12-03 22:05:42 +00:00
namespace MediaWiki\Extension\AbuseFilter\Api;
use ApiBase;
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
use ApiMain;
Move API modules to separate namespace and rename them Change-Id: I436e8fed4a1cbe4f1b36a16b213ede7976e871ba
2020-12-03 22:05:42 +00:00
use ApiResult;
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
use LogEventsList;
Move API modules to separate namespace and rename them Change-Id: I436e8fed4a1cbe4f1b36a16b213ede7976e871ba
2020-12-03 22:05:42 +00:00
use LogicException;
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
use LogPage;
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
use MediaWiki\Extension\AbuseFilter\AbuseFilterPermissionManager;
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
use MediaWiki\Extension\AbuseFilter\Parser\RuleCheckerFactory;
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
use MediaWiki\Extension\AbuseFilter\Special\SpecialAbuseLog;
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
use MediaWiki\Extension\AbuseFilter\VariableGenerator\VariableGeneratorFactory;
Cleanup variables-related classes Change-Id: I20a7fe1a40255043ed0d125dee61ea6052dda69c
2021-01-02 14:01:00 +00:00
use MediaWiki\Extension\AbuseFilter\Variables\VariableHolder;
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
use MediaWiki\Extension\AbuseFilter\Variables\VariablesBlobStore;
Use namespaced classes Changes to the use statements done automatically via script Addition of missing use statement done manually Change-Id: I48fcc02c61d423c9c5111ae545634fdc5c5cc710
2024-06-12 18:01:35 +00:00
use MediaWiki\Json\FormatJson;
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
use MediaWiki\Revision\RevisionRecord;
Move API modules to separate namespace and rename them Change-Id: I436e8fed4a1cbe4f1b36a16b213ede7976e871ba
2020-12-03 22:05:42 +00:00
use RecentChange;
Fix usage of ApiBase::PARAM_* deprecated constants The ones that are replaced with ParamValidator Bug: T275455 Change-Id: If1fbef4707eecd7a6bfa5947614fe46d70c62dd6
2022-04-03 23:23:52 +00:00
use Wikimedia\ParamValidator\ParamValidator;
Move variable generators to new classes RunVariableGenerator is for generating variables based on the current action; RowVariableGenerator is for RC entries; VariableGenerator is the generic one. This patch only moves the methods to the new classes, to keep the diff easier to read, and facilitate conflict resolution. These classes will then be revamped in I366d598b69ad866496b7cb0059e0835c02e54041. Note that these classes are now namespaced. One method, AbuseFilter::getEditVars, was renamed to AbuseFilterVariableGenerator::generateEditVars, because it would otherwise conflict with an incompatible method in RunVariableGenerator. Change-Id: Iff412e5492873d4fae55402939a51609e64d55a8
2020-01-11 17:05:30 +00:00
Move API modules to separate namespace and rename them Change-Id: I436e8fed4a1cbe4f1b36a16b213ede7976e871ba
2020-12-03 22:05:42 +00:00
class CheckMatch extends ApiBase {
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
/** @var RuleCheckerFactory */
private $ruleCheckerFactory;
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
/** @var AbuseFilterPermissionManager */
private $afPermManager;
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
/** @var VariablesBlobStore */
private $afVariablesBlobStore;
/** @var VariableGeneratorFactory */
private $afVariableGeneratorFactory;
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
/**
* @param ApiMain $main
* @param string $action
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
* @param RuleCheckerFactory $ruleCheckerFactory
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
* @param AbuseFilterPermissionManager $afPermManager
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
* @param VariablesBlobStore $afVariablesBlobStore
* @param VariableGeneratorFactory $afVariableGeneratorFactory
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
*/
public function __construct(
ApiMain $main,
$action,
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
RuleCheckerFactory $ruleCheckerFactory,
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
AbuseFilterPermissionManager $afPermManager,
VariablesBlobStore $afVariablesBlobStore,
VariableGeneratorFactory $afVariableGeneratorFactory
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
) {
parent::__construct( $main, $action );
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
$this->ruleCheckerFactory = $ruleCheckerFactory;
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
$this->afPermManager = $afPermManager;
Api: inject more abuse filter services Bug: T259960 Change-Id: I50565bdc8669f233ac68589a203104bf1632d637
2021-04-04 18:57:49 +00:00
$this->afVariablesBlobStore = $afVariablesBlobStore;
$this->afVariableGeneratorFactory = $afVariableGeneratorFactory;
Api: inject AbuseFilterPermissionManager where needed Some of these api modules still retrieve other services statically, this patch is focused just on injecting the permission manager and setting up DI Bug: T259960 Change-Id: Ic5196f230d68604fdf321f705377a1e6e1e2efca
2021-03-25 03:48:03 +00:00
}
Fix coding conventions exclusion rules This should fix every error with excluded rules, leaving only the one for $wgTitle. A double check would be nice in order to avoid regressions due to stupid mistakes. Bug: T178007 Change-Id: I22c179f3a01d652640304b59e43fcb5b5a9abac3
2018-04-04 21:14:25 +00:00
/**
Update a few unspecific PHPDoc comments Change-Id: I363d7f854c550654c5d4345f381e3731de6f2d3c
2020-12-03 08:49:56 +00:00
* @inheritDoc
Fix coding conventions exclusion rules This should fix every error with excluded rules, leaving only the one for $wgTitle. A double check would be nice in order to avoid regressions due to stupid mistakes. Bug: T178007 Change-Id: I22c179f3a01d652640304b59e43fcb5b5a9abac3
2018-04-04 21:14:25 +00:00
*/
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
public function execute() {
Call IContextSource::getAuthority instead of IContextSource::getUser Change to use Authority object where possible to use the interface instead of implementation Change-Id: I90ef126b3d799c3fc27467a4ffe671785c446d3e
2022-07-02 13:35:00 +00:00
$performer = $this->getAuthority();
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
$params = $this->extractRequestParams();
$this->requireOnlyOneParameter( $params, 'vars', 'rcid', 'logid' );
// "Anti-DoS"
Call IContextSource::getAuthority instead of IContextSource::getUser Change to use Authority object where possible to use the interface instead of implementation Change-Id: I90ef126b3d799c3fc27467a4ffe671785c446d3e
2022-07-02 13:35:00 +00:00
if ( !$this->afPermManager->canUseTestTools( $performer ) ) {
Fix some deprecated function usage Change-Id: I544cdfa75c7472f2d98b2561bc6f6f9c2d2ad639
2017-08-07 23:35:21 +00:00
$this->dieWithError( 'apierror-abusefilter-canttest', 'permissiondenied' );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
Ensure variables are defined Change-Id: Iab1d36b0162c1d7a91cdd80ac36bbf338e7df61d
2013-10-15 12:28:39 +00:00
$vars = null;
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
if ( $params['vars'] ) {
Do not ignore the "vars" parameter on action=abusefiltercheckmatch For this, we just need to convert the associative array to an instance of AbuseFilterVariableHolder. Bug: 53501 Change-Id: Ie6925e1ce7df6c6c179e32ff69ff4138a3285545
2014-07-30 00:50:30 +00:00
$pairs = FormatJson::decode( $params['vars'], true );
Cleanup variables-related classes Change-Id: I20a7fe1a40255043ed0d125dee61ea6052dda69c
2021-01-02 14:01:00 +00:00
$vars = VariableHolder::newFromArray( $pairs );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
} elseif ( $params['rcid'] ) {
Do not abuse RCDatabaseLogEntry When using RecentChange::getQueryInfo() it should be used to instance a RecentChange class RCDatabaseLogEntry is only useful in context of LogFormatter This is a breaking change for the hook variable, but "RC entry" refers more to the RecentChange class than to the RCDatabaseLogEntry class Change-Id: I3af1e42594f8235be815ce38e3411c762ae01092
2020-05-28 18:09:17 +00:00
$rc = RecentChange::newFromId( $params['rcid'] );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
Do not abuse RCDatabaseLogEntry When using RecentChange::getQueryInfo() it should be used to instance a RecentChange class RCDatabaseLogEntry is only useful in context of LogFormatter This is a breaking change for the hook variable, but "RC entry" refers more to the RecentChange class than to the RCDatabaseLogEntry class Change-Id: I3af1e42594f8235be815ce38e3411c762ae01092
2020-05-28 18:09:17 +00:00
if ( !$rc ) {
Fix some deprecated function usage Change-Id: I544cdfa75c7472f2d98b2561bc6f6f9c2d2ad639
2017-08-07 23:35:21 +00:00
$this->dieWithError( [ 'apierror-nosuchrcid', $params['rcid'] ] );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
$type = (int)$rc->getAttribute( 'rc_type' );
$deletedValue = $rc->getAttribute( 'rc_deleted' );
if (
(
$type === RC_LOG &&
!LogEventsList::userCanBitfield(
$deletedValue,
LogPage::SUPPRESSED_ACTION | LogPage::SUPPRESSED_USER,
Call IContextSource::getAuthority instead of IContextSource::getUser Change to use Authority object where possible to use the interface instead of implementation Change-Id: I90ef126b3d799c3fc27467a4ffe671785c446d3e
2022-07-02 13:35:00 +00:00
$performer
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
)
) || (
$type !== RC_LOG &&
Call IContextSource::getAuthority instead of IContextSource::getUser Change to use Authority object where possible to use the interface instead of implementation Change-Id: I90ef126b3d799c3fc27467a4ffe671785c446d3e
2022-07-02 13:35:00 +00:00
!RevisionRecord::userCanBitfield( $deletedValue, RevisionRecord::SUPPRESSED_ALL, $performer )
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
)
) {
// T223654 - Same check as in AbuseFilterChangesList
$this->dieWithError( 'apierror-permissiondenied-generic', 'deletedrc' );
}
Call IContextSource::getAuthority instead of IContextSource::getUser Change to use Authority object where possible to use the interface instead of implementation Change-Id: I90ef126b3d799c3fc27467a4ffe671785c446d3e
2022-07-02 13:35:00 +00:00
$varGenerator = $this->afVariableGeneratorFactory->newRCGenerator( $rc, $this->getUser() );
Factor out variables-related methods This is another step needed to reduce the size of the gigantic AbuseFilter and AbuseFilterHooks classes. It also makes many methods non-static, for more testability. Note, this layout is still not final. We should somehow merge the functionality of VariableGenerator and AFComputedVariable, for which I already have plans. Change-Id: I366d598b69ad866496b7cb0059e0835c02e54041
2019-06-25 16:39:57 +00:00
$vars = $varGenerator->getVars();
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
} elseif ( $params['logid'] ) {
Migrate to IReadableDatabase::newSelectQueryBuilder Also use expression builder to avoid raw sql Bug: T312420 Change-Id: I83eb39f1c65a698108ae5bb72f633afda37a9f23
2024-04-30 18:21:20 +00:00
$row = $this->getDB()->newSelectQueryBuilder()
->select( '*' )
->from( 'abuse_filter_log' )
->where( [ 'afl_id' => $params['logid'] ] )
->caller( __METHOD__ )
->fetchRow();
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
if ( !$row ) {
Fix some deprecated function usage Change-Id: I544cdfa75c7472f2d98b2561bc6f6f9c2d2ad639
2017-08-07 23:35:21 +00:00
$this->dieWithError( [ 'apierror-abusefilter-nosuchlogid', $params['logid'] ], 'nosuchlogid' );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
Call IContextSource::getAuthority instead of IContextSource::getUser Change to use Authority object where possible to use the interface instead of implementation Change-Id: I90ef126b3d799c3fc27467a4ffe671785c446d3e
2022-07-02 13:35:00 +00:00
$visibility = SpecialAbuseLog::getEntryVisibilityForUser( $row, $performer, $this->afPermManager );
Add method to properly check visibility of AbuseLog entries This replaces the previous pattern of callers having to use RevisionLookup if the result was 'implicit'. Also, in some cases where we were just hiding things if the visibility was !== true, properly handle the implicit case by using the new method. Make the new method return string constants rather than bool|string. The new method also fixes some potential info leaks which happened when the row was hidden, the user could view suppressed AbuseLog entries, but the associated revision was also deleted and the user couldn't see it (this shouldn't be relevant for WMF wikis since AF deletion is oversight-level). Also add a bunch of tests for the various cases to ensure we don't regress again. Bug: T261532 Change-Id: I929f865acf5d207b739cb3af043f70cb59243ee0
2021-09-15 18:23:36 +00:00
if ( $visibility !== SpecialAbuseLog::VISIBILITY_VISIBLE ) {
SECURITY: Avoid info leaks in ApiAbuseFilterCheckMatch There are various info leaks for both deleted rc rows, and suppressed AbuseLog entries. Bug: T223654 Change-Id: I4900b1be73323599d74e3164447f81eded094d75
2021-02-23 19:49:37 +00:00
// T223654 - Same check as in SpecialAbuseLog. Both the visibility of the AbuseLog entry
// and the corresponding revision are checked.
$this->dieWithError( 'apierror-permissiondenied-generic', 'deletedabuselog' );
}
Add `user_unnamed_ip` variable After temporary accounts are enabled, filters that rely on an ip in the `user_name` will fail (eg. `ip_in_range` and `ip_in_ranges`). To keep these filters working: - Expose the IP through another variable, `user_unnamed_ip`, that can be used instead of `user_name`. - The variable is scoped to only reveal the IPs of temporary accounts and un-logged in users. - Wikis that don't have temporary accounts enabled will be able to see this variable but it won't provide information that `user_name` wasn't already providing - Introduce the concept of transforming variable values before writing to the blob store and after retrieval, as IPs need to be deleted from the logs eventually and can't be stored as-is in the amend-only blob store Bug: T357772 Change-Id: I8c11e06ccb9e78b9a991e033fe43f5dded8f7bb2
2024-03-22 13:40:06 +00:00
$vars = $this->afVariablesBlobStore->loadVarDump( $row );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
Move some misplaced AbuseFilterParser entry points These methods had no reals reason to be static and belong to the AbuseFilter class. Most of them were moved to Parser class as common variations of the existing entry points. One was specific to the EvalExpression API module and was moved there. This change comes at no cost, and will make it possible to inject a parser where needed. Change-Id: Ifd169cfc99df8a5eb4ca94ac330f301ca28a2442
2020-09-19 22:30:14 +00:00
if ( $vars === null ) {
Improve test coverage of API modules Also solve one a TODO. Change-Id: I61a38f3c741274f00ad0ad4789106a943daef222
2021-04-17 16:08:05 +00:00
// @codeCoverageIgnoreStart
Move some misplaced AbuseFilterParser entry points These methods had no reals reason to be static and belong to the AbuseFilter class. Most of them were moved to Parser class as common variations of the existing entry points. One was specific to the EvalExpression API module and was moved there. This change comes at no cost, and will make it possible to inject a parser where needed. Change-Id: Ifd169cfc99df8a5eb4ca94ac330f301ca28a2442
2020-09-19 22:30:14 +00:00
throw new LogicException( 'Impossible.' );
Improve test coverage of API modules Also solve one a TODO. Change-Id: I61a38f3c741274f00ad0ad4789106a943daef222
2021-04-17 16:08:05 +00:00
// @codeCoverageIgnoreEnd
Move some misplaced AbuseFilterParser entry points These methods had no reals reason to be static and belong to the AbuseFilter class. Most of them were moved to Parser class as common variations of the existing entry points. One was specific to the EvalExpression API module and was moved there. This change comes at no cost, and will make it possible to inject a parser where needed. Change-Id: Ifd169cfc99df8a5eb4ca94ac330f301ca28a2442
2020-09-19 22:30:14 +00:00
}
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
$ruleChecker = $this->ruleCheckerFactory->newRuleChecker( $vars );
Refactor ParserStatus ParserStatus is now more lightweight, and doesn't know about "result" and "from cache". Instead, it has an isValid() method which is merely a shorthand for checking whether getException() is null. Introduce a child class, RuleCheckerStatus, which knows about result and cache and can be (un)serialized. This removes the ambiguity of the $result field, and helps the transition to a new RuleChecker class. Change-Id: I0dac7ab4febbfdabe72596631db630411d967ab5
2021-09-06 20:40:36 +00:00
if ( !$ruleChecker->checkSyntax( $params['filter'] )->isValid() ) {
Fix some deprecated function usage Change-Id: I544cdfa75c7472f2d98b2561bc6f6f9c2d2ad639
2017-08-07 23:35:21 +00:00
$this->dieWithError( 'apierror-abusefilter-badsyntax', 'badsyntax' );
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
$result = [
Value for ApiResult::META_BC_BOOLS must be an array Bug: T149279 Change-Id: I140ea6b299d263d3fbb2bdd87d88f2744e9c63cf
2016-10-27 14:10:31 +00:00
ApiResult::META_BC_BOOLS => [ 'result' ],
Rename ParserFactory -> RuleCheckerFactory The old parser now has the correct name "Evaluator", so the ParserFactory name was outdated. Additionally, the plan is to create a new RuleChecker class, acting as a facade for the different parsing-related stages (lexer, parser, evaluator, etc.), which is what most if not all callers should use. The RuleCheckerFactory still returns a FilterEvaluator for now. Also, "Parser" is a specific term defining *how* things happen internally, whereas "RuleChecker" describes *what* callers should expect from the new class. Change-Id: I25b47a162d933c1e385175aae715ca38872b1442
2021-09-01 11:53:38 +00:00
'result' => $ruleChecker->checkConditions( $params['filter'] )->getResult(),
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
];
ApiResult::META_BC_BOOLS in ApiAbuseFilterCheckMatch Coded to maintain BC with older versions of MediaWiki core. If that's not needed anymore, a followup should remove all the instances of the check. Bug: T99240 Change-Id: I5dc112598676915416fbacd4c30f218ac84d324d
2015-05-18 14:30:02 +00:00
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
$this->getResult()->addValue(
null,
$this->getModuleName(),
ApiResult::META_BC_BOOLS in ApiAbuseFilterCheckMatch Coded to maintain BC with older versions of MediaWiki core. If that's not needed anymore, a followup should remove all the instances of the check. Bug: T99240 Change-Id: I5dc112598676915416fbacd4c30f218ac84d324d
2015-05-18 14:30:02 +00:00
$result
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
);
}
Fix coding conventions exclusion rules This should fix every error with excluded rules, leaving only the one for $wgTitle. A double check would be nice in order to avoid regressions due to stupid mistakes. Bug: T178007 Change-Id: I22c179f3a01d652640304b59e43fcb5b5a9abac3
2018-04-04 21:14:25 +00:00
/**
Increase coverage for more classes Change-Id: Iae6a24291f821fda77a45d8c1584de010af6a834
2021-01-17 11:54:43 +00:00
* @codeCoverageIgnore Merely declarative
* @inheritDoc
Fix coding conventions exclusion rules This should fix every error with excluded rules, leaving only the one for $wgTitle. A double check would be nice in order to avoid regressions due to stupid mistakes. Bug: T178007 Change-Id: I22c179f3a01d652640304b59e43fcb5b5a9abac3
2018-04-04 21:14:25 +00:00
*/
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
public function getAllowedParams() {
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
return [
'filter' => [
Fix usage of ApiBase::PARAM_* deprecated constants The ones that are replaced with ParamValidator Bug: T275455 Change-Id: If1fbef4707eecd7a6bfa5947614fe46d70c62dd6
2022-04-03 23:23:52 +00:00
ParamValidator::PARAM_REQUIRED => true,
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
],
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
'vars' => null,
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
'rcid' => [
Fix usage of ApiBase::PARAM_* deprecated constants The ones that are replaced with ParamValidator Bug: T275455 Change-Id: If1fbef4707eecd7a6bfa5947614fe46d70c62dd6
2022-04-03 23:23:52 +00:00
ParamValidator::PARAM_TYPE => 'integer'
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
],
'logid' => [
Fix usage of ApiBase::PARAM_* deprecated constants The ones that are replaced with ParamValidator Bug: T275455 Change-Id: If1fbef4707eecd7a6bfa5947614fe46d70c62dd6
2022-04-03 23:23:52 +00:00
ParamValidator::PARAM_TYPE => 'integer'
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
],
];
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
Add i18n for API module help MediaWiki core change I04b1a384 added support for i18n of API module help. This takes advantage of that while still maintaining backwards compatibility with earlier versions of MediaWiki. Once support for MediaWiki before 1.25 is dropped, the methods marked deprecated in this patch may be removed. Change-Id: I67395aff48185f3e09da31b51a08aa2541fe6a17
2014-10-28 16:25:22 +00:00
/**
Increase coverage for more classes Change-Id: Iae6a24291f821fda77a45d8c1584de010af6a834
2021-01-17 11:54:43 +00:00
* @codeCoverageIgnore Merely declarative
* @inheritDoc
Add i18n for API module help MediaWiki core change I04b1a384 added support for i18n of API module help. This takes advantage of that while still maintaining backwards compatibility with earlier versions of MediaWiki. Once support for MediaWiki before 1.25 is dropped, the methods marked deprecated in this patch may be removed. Change-Id: I67395aff48185f3e09da31b51a08aa2541fe6a17
2014-10-28 16:25:22 +00:00
*/
protected function getExamplesMessages() {
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
return [
Add i18n for API module help MediaWiki core change I04b1a384 added support for i18n of API module help. This takes advantage of that while still maintaining backwards compatibility with earlier versions of MediaWiki. Once support for MediaWiki before 1.25 is dropped, the methods marked deprecated in this patch may be removed. Change-Id: I67395aff48185f3e09da31b51a08aa2541fe6a17
2014-10-28 16:25:22 +00:00
'action=abusefiltercheckmatch&filter=!("autoconfirmed"%20in%20user_groups)&rcid=15'
=> 'apihelp-abusefiltercheckmatch-example-1',
Use short array syntax - Views / api Done by phpcbf over composer fix Change-Id: I83ab556c8400354ecd09f33e1eb28caa17aa803d
2017-06-15 14:23:16 +00:00
];
Adds ResourceLoader support to AbuseFilter Rewrote javascript to use jQuery Added API modules to replace sajax_* calls Solves bug 29714
2011-08-26 20:12:34 +00:00
}
}
Reference in a new issue Copy permalink