2016-05-15 15:35:33 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
use MediaWiki\Auth\AbstractPreAuthenticationProvider;
|
2019-02-24 05:29:09 +00:00
|
|
|
use MediaWiki\Auth\AuthenticationRequest;
|
2016-05-15 15:35:33 +00:00
|
|
|
|
|
|
|
class AbuseFilterPreAuthenticationProvider extends AbstractPreAuthenticationProvider {
|
2018-04-04 21:14:25 +00:00
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
* @param User $creator
|
|
|
|
* @param AuthenticationRequest[] $reqs
|
|
|
|
* @return StatusValue
|
|
|
|
*/
|
2016-05-15 15:35:33 +00:00
|
|
|
public function testForAccountCreation( $user, $creator, array $reqs ) {
|
|
|
|
return $this->testUser( $user, $creator, false );
|
|
|
|
}
|
|
|
|
|
2018-04-04 21:14:25 +00:00
|
|
|
/**
|
|
|
|
* @param User $user
|
|
|
|
* @param bool|string $autocreate
|
|
|
|
* @param array $options
|
|
|
|
* @return StatusValue
|
|
|
|
*/
|
2016-06-16 21:33:42 +00:00
|
|
|
public function testUserForCreation( $user, $autocreate, array $options = [] ) {
|
2016-05-15 15:35:33 +00:00
|
|
|
// if this is not an autocreation, testForAccountCreation already handled it
|
|
|
|
if ( $autocreate ) {
|
|
|
|
return $this->testUser( $user, $user, true );
|
|
|
|
}
|
|
|
|
return StatusValue::newGood();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param User $user The user being created or autocreated
|
|
|
|
* @param User $creator The user who caused $user to be created (or $user itself on autocreation)
|
|
|
|
* @param bool $autocreate Is this an autocreation?
|
|
|
|
* @return StatusValue
|
|
|
|
*/
|
|
|
|
protected function testUser( $user, $creator, $autocreate ) {
|
2018-08-26 08:34:42 +00:00
|
|
|
if ( $user->getName() === wfMessage( 'abusefilter-blocker' )->inContentLanguage()->text() ) {
|
2016-05-15 15:35:33 +00:00
|
|
|
return StatusValue::newFatal( 'abusefilter-accountreserved' );
|
|
|
|
}
|
|
|
|
|
|
|
|
$vars = new AbuseFilterVariableHolder;
|
|
|
|
|
|
|
|
// generateUserVars records $creator->getName() which would be the IP for unregistered users
|
|
|
|
if ( $creator->isLoggedIn() ) {
|
|
|
|
$vars->addHolders( AbuseFilter::generateUserVars( $creator ) );
|
|
|
|
}
|
|
|
|
|
2019-01-02 10:30:38 +00:00
|
|
|
$vars->setVar( 'action', $autocreate ? 'autocreateaccount' : 'createaccount' );
|
|
|
|
$vars->setVar( 'accountname', $user->getName() );
|
2016-05-15 15:35:33 +00:00
|
|
|
|
|
|
|
// pass creator in explicitly to prevent recording the current user on autocreation - T135360
|
Add a new class for methods related to running filters
Currently we strongly abuse (pardon the pun) the AbuseFilter class: its
purpose should be to hold static functions intended as generic utility
functions (e.g. to format messages, determine whether a filter is global
etc.), but we actually use it for all methods related to running filters.
This patch creates a new class, AbuseFilterRunner, containing all such
methods, which have been made non-static. This leads to several
improvements (also for related methods and the parser), and opens the
way to further improve the code.
Aside from making the code prettier, less global and easier to test,
this patch could also produce a performance improvement, although I
don't have tools to measure that.
Also note that many public methods have been removed, and almost any of
them has been made protected; a couple of them (the ones used from outside)
are left for back-compat, and will be removed in the future.
Change-Id: I2eab2e50356eeb5224446ee2d0df9c787ae95b80
2018-12-07 17:46:02 +00:00
|
|
|
$runner = new AbuseFilterRunner(
|
|
|
|
$creator,
|
|
|
|
SpecialPage::getTitleFor( 'Userlogin' ),
|
|
|
|
$vars,
|
|
|
|
'default'
|
|
|
|
);
|
|
|
|
$status = $runner->run();
|
2016-05-15 15:35:33 +00:00
|
|
|
|
|
|
|
return $status->getStatusValue();
|
|
|
|
}
|
|
|
|
}
|