mirror of
https://gerrit.wikimedia.org/r/mediawiki/extensions/AbuseFilter.git
synced 2024-12-18 00:20:37 +00:00
5377ebe819
composer: * mediawiki/mediawiki-codesniffer: 36.0.0 → 37.0.0 npm: * postcss: 7.0.35 → 7.0.36 * https://npmjs.com/advisories/1693 (CVE-2021-23368) Change-Id: I2b382f3bb236fb44eb24c6a257b13b8fd886541c
373 lines
11 KiB
PHP
373 lines
11 KiB
PHP
<?php
|
|
|
|
namespace MediaWiki\Extension\AbuseFilter\View;
|
|
|
|
use ChangesList;
|
|
use HTMLForm;
|
|
use IContextSource;
|
|
use MediaWiki\Extension\AbuseFilter\AbuseFilter;
|
|
use MediaWiki\Extension\AbuseFilter\AbuseFilterChangesList;
|
|
use MediaWiki\Extension\AbuseFilter\AbuseFilterPermissionManager;
|
|
use MediaWiki\Extension\AbuseFilter\CentralDBNotAvailableException;
|
|
use MediaWiki\Extension\AbuseFilter\EditBox\EditBoxBuilderFactory;
|
|
use MediaWiki\Extension\AbuseFilter\FilterLookup;
|
|
use MediaWiki\Extension\AbuseFilter\GlobalNameUtils;
|
|
use MediaWiki\Extension\AbuseFilter\Pager\AbuseFilterExaminePager;
|
|
use MediaWiki\Extension\AbuseFilter\Special\SpecialAbuseLog;
|
|
use MediaWiki\Extension\AbuseFilter\VariableGenerator\VariableGeneratorFactory;
|
|
use MediaWiki\Extension\AbuseFilter\Variables\VariableHolder;
|
|
use MediaWiki\Extension\AbuseFilter\Variables\VariablesBlobStore;
|
|
use MediaWiki\Extension\AbuseFilter\Variables\VariablesFormatter;
|
|
use MediaWiki\Extension\AbuseFilter\Variables\VariablesManager;
|
|
use MediaWiki\Linker\LinkRenderer;
|
|
use MediaWiki\Revision\RevisionLookup;
|
|
use MediaWiki\Revision\RevisionRecord;
|
|
use OOUI;
|
|
use RecentChange;
|
|
use Title;
|
|
use Xml;
|
|
|
|
class AbuseFilterViewExamine extends AbuseFilterView {
|
|
/**
|
|
* @var string The user whose entries we're examinating
|
|
*/
|
|
public $mSearchUser;
|
|
/**
|
|
* @var string The start time of the search period
|
|
*/
|
|
public $mSearchPeriodStart;
|
|
/**
|
|
* @var string The end time of the search period
|
|
*/
|
|
public $mSearchPeriodEnd;
|
|
/**
|
|
* @var string The ID of the filter we're examinating
|
|
*/
|
|
public $mTestFilter;
|
|
/**
|
|
* @var RevisionLookup
|
|
*/
|
|
private $revisionLookup;
|
|
/**
|
|
* @var FilterLookup
|
|
*/
|
|
private $filterLookup;
|
|
/**
|
|
* @var EditBoxBuilderFactory
|
|
*/
|
|
private $boxBuilderFactory;
|
|
/**
|
|
* @var VariablesBlobStore
|
|
*/
|
|
private $varBlobStore;
|
|
/**
|
|
* @var VariablesFormatter
|
|
*/
|
|
private $variablesFormatter;
|
|
/**
|
|
* @var VariablesManager
|
|
*/
|
|
private $varManager;
|
|
/**
|
|
* @var VariableGeneratorFactory
|
|
*/
|
|
private $varGeneratorFactory;
|
|
|
|
/**
|
|
* @param RevisionLookup $revisionLookup
|
|
* @param AbuseFilterPermissionManager $afPermManager
|
|
* @param FilterLookup $filterLookup
|
|
* @param EditBoxBuilderFactory $boxBuilderFactory
|
|
* @param VariablesBlobStore $varBlobStore
|
|
* @param VariablesFormatter $variablesFormatter
|
|
* @param VariablesManager $varManager
|
|
* @param VariableGeneratorFactory $varGeneratorFactory
|
|
* @param IContextSource $context
|
|
* @param LinkRenderer $linkRenderer
|
|
* @param string $basePageName
|
|
* @param array $params
|
|
*/
|
|
public function __construct(
|
|
RevisionLookup $revisionLookup,
|
|
AbuseFilterPermissionManager $afPermManager,
|
|
FilterLookup $filterLookup,
|
|
EditBoxBuilderFactory $boxBuilderFactory,
|
|
VariablesBlobStore $varBlobStore,
|
|
VariablesFormatter $variablesFormatter,
|
|
VariablesManager $varManager,
|
|
VariableGeneratorFactory $varGeneratorFactory,
|
|
IContextSource $context,
|
|
LinkRenderer $linkRenderer,
|
|
string $basePageName,
|
|
array $params
|
|
) {
|
|
parent::__construct( $afPermManager, $context, $linkRenderer, $basePageName, $params );
|
|
$this->revisionLookup = $revisionLookup;
|
|
$this->filterLookup = $filterLookup;
|
|
$this->boxBuilderFactory = $boxBuilderFactory;
|
|
$this->varBlobStore = $varBlobStore;
|
|
$this->variablesFormatter = $variablesFormatter;
|
|
$this->variablesFormatter->setMessageLocalizer( $context );
|
|
$this->varManager = $varManager;
|
|
$this->varGeneratorFactory = $varGeneratorFactory;
|
|
}
|
|
|
|
/**
|
|
* Shows the page
|
|
*/
|
|
public function show() {
|
|
$out = $this->getOutput();
|
|
$out->setPageTitle( $this->msg( 'abusefilter-examine' ) );
|
|
$out->addHelpLink( 'Extension:AbuseFilter/Rules format' );
|
|
if ( $this->afPermManager->canUseTestTools( $this->getUser() ) ) {
|
|
$out->addWikiMsg( 'abusefilter-examine-intro' );
|
|
} else {
|
|
$out->addWikiMsg( 'abusefilter-examine-intro-examine-only' );
|
|
}
|
|
|
|
$this->loadParameters();
|
|
|
|
// Check if we've got a subpage
|
|
if ( count( $this->mParams ) > 1 && is_numeric( $this->mParams[1] ) ) {
|
|
$this->showExaminerForRC( $this->mParams[1] );
|
|
} elseif ( count( $this->mParams ) > 2
|
|
&& $this->mParams[1] === 'log'
|
|
&& is_numeric( $this->mParams[2] )
|
|
) {
|
|
$this->showExaminerForLogEntry( $this->mParams[2] );
|
|
} else {
|
|
$this->showSearch();
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Shows the search form
|
|
*/
|
|
public function showSearch() {
|
|
$RCMaxAge = $this->getConfig()->get( 'RCMaxAge' );
|
|
$min = wfTimestamp( TS_ISO_8601, time() - $RCMaxAge );
|
|
$max = wfTimestampNow();
|
|
$formDescriptor = [
|
|
'SearchUser' => [
|
|
'label-message' => 'abusefilter-test-user',
|
|
'type' => 'user',
|
|
'ipallowed' => true,
|
|
'default' => $this->mSearchUser,
|
|
],
|
|
'SearchPeriodStart' => [
|
|
'label-message' => 'abusefilter-test-period-start',
|
|
'type' => 'datetime',
|
|
'default' => $this->mSearchPeriodStart,
|
|
'min' => $min,
|
|
'max' => $max,
|
|
],
|
|
'SearchPeriodEnd' => [
|
|
'label-message' => 'abusefilter-test-period-end',
|
|
'type' => 'datetime',
|
|
'default' => $this->mSearchPeriodEnd,
|
|
'min' => $min,
|
|
'max' => $max,
|
|
],
|
|
];
|
|
$htmlForm = HTMLForm::factory( 'ooui', $formDescriptor, $this->getContext() );
|
|
$htmlForm->setWrapperLegendMsg( 'abusefilter-examine-legend' )
|
|
->setSubmitTextMsg( 'abusefilter-examine-submit' )
|
|
->setFormIdentifier( 'examine-select-date' )
|
|
->setSubmitCallback( [ $this, 'showResults' ] )
|
|
->showAlways();
|
|
}
|
|
|
|
/**
|
|
* Show search results, called as submit callback by HTMLForm
|
|
* @param array $formData
|
|
* @param HTMLForm $form
|
|
* @return bool
|
|
*/
|
|
public function showResults( array $formData, HTMLForm $form ): bool {
|
|
$changesList = new AbuseFilterChangesList( $this->getSkin(), $this->mTestFilter );
|
|
$pager = new AbuseFilterExaminePager( $this, $changesList );
|
|
|
|
$output = $changesList->beginRecentChangesList()
|
|
. $pager->getNavigationBar()
|
|
. $pager->getBody()
|
|
. $pager->getNavigationBar()
|
|
. $changesList->endRecentChangesList();
|
|
|
|
$form->addPostText( $output );
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* @param int $rcid
|
|
*/
|
|
public function showExaminerForRC( $rcid ) {
|
|
// Get data
|
|
$rc = RecentChange::newFromId( $rcid );
|
|
$out = $this->getOutput();
|
|
if ( !$rc ) {
|
|
$out->addWikiMsg( 'abusefilter-examine-notfound' );
|
|
return;
|
|
}
|
|
|
|
if ( !ChangesList::userCan( $rc, RevisionRecord::SUPPRESSED_ALL ) ) {
|
|
$out->addWikiMsg( 'abusefilter-log-details-hidden-implicit' );
|
|
return;
|
|
}
|
|
|
|
$varGenerator = $this->varGeneratorFactory->newRCGenerator( $rc, $this->getUser() );
|
|
$vars = $varGenerator->getVars() ?: new VariableHolder();
|
|
$out->addJsConfigVars( [
|
|
'wgAbuseFilterVariables' => $this->varManager->dumpAllVars( $vars, true ),
|
|
'abuseFilterExamine' => [ 'type' => 'rc', 'id' => $rcid ]
|
|
] );
|
|
|
|
$this->showExaminer( $vars );
|
|
}
|
|
|
|
/**
|
|
* @param int $logid
|
|
*/
|
|
public function showExaminerForLogEntry( $logid ) {
|
|
$aflFilterMigrationStage = $this->getConfig()->get( 'AbuseFilterAflFilterMigrationStage' );
|
|
// Get data
|
|
$dbr = wfGetDB( DB_REPLICA );
|
|
$user = $this->getUser();
|
|
$out = $this->getOutput();
|
|
|
|
$fields = [
|
|
'afl_deleted',
|
|
'afl_var_dump',
|
|
'afl_rev_id'
|
|
];
|
|
|
|
if ( $aflFilterMigrationStage & SCHEMA_COMPAT_READ_NEW ) {
|
|
$fields[] = 'afl_filter_id';
|
|
$fields[] = 'afl_global';
|
|
} else {
|
|
// SCHEMA_COMPAT_READ_OLD
|
|
$fields[] = 'afl_filter';
|
|
}
|
|
|
|
$row = $dbr->selectRow(
|
|
'abuse_filter_log',
|
|
$fields,
|
|
[ 'afl_id' => $logid ],
|
|
__METHOD__
|
|
);
|
|
|
|
if ( !$row ) {
|
|
$out->addWikiMsg( 'abusefilter-examine-notfound' );
|
|
return;
|
|
}
|
|
|
|
if ( $aflFilterMigrationStage & SCHEMA_COMPAT_READ_NEW ) {
|
|
$filterID = $row->afl_filter_id;
|
|
$isGlobal = $row->afl_global;
|
|
} else {
|
|
// SCHEMA_COMPAT_READ_OLD
|
|
[ $filterID, $isGlobal ] = GlobalNameUtils::splitGlobalName( $row->afl_filter );
|
|
}
|
|
try {
|
|
$isHidden = $this->filterLookup->getFilter( $filterID, $isGlobal )->isHidden();
|
|
} catch ( CentralDBNotAvailableException $_ ) {
|
|
// Conservatively assume that it's hidden, like in SpecialAbuseLog
|
|
$isHidden = true;
|
|
}
|
|
if ( !$this->afPermManager->canSeeLogDetailsForFilter( $user, $isHidden ) ) {
|
|
$out->addWikiMsg( 'abusefilter-log-cannot-see-details' );
|
|
return;
|
|
}
|
|
|
|
if ( $row->afl_deleted && !$this->afPermManager->canSeeHiddenLogEntries( $user ) ) {
|
|
$out->addWikiMsg( 'abusefilter-log-details-hidden' );
|
|
return;
|
|
}
|
|
|
|
if ( SpecialAbuseLog::isHidden( $row ) === 'implicit' ) {
|
|
$revRec = $this->revisionLookup->getRevisionById( (int)$row->afl_rev_id );
|
|
if ( !AbuseFilter::userCanViewRev( $revRec, $user ) ) {
|
|
$out->addWikiMsg( 'abusefilter-log-details-hidden-implicit' );
|
|
return;
|
|
}
|
|
}
|
|
$vars = $this->varBlobStore->loadVarDump( $row->afl_var_dump );
|
|
$out->addJsConfigVars( [
|
|
'wgAbuseFilterVariables' => $this->varManager->dumpAllVars( $vars, true ),
|
|
'abuseFilterExamine' => [ 'type' => 'log', 'id' => $logid ]
|
|
] );
|
|
$this->showExaminer( $vars );
|
|
}
|
|
|
|
/**
|
|
* @param VariableHolder|null $vars
|
|
*/
|
|
public function showExaminer( ?VariableHolder $vars ) {
|
|
$output = $this->getOutput();
|
|
$output->enableOOUI();
|
|
|
|
if ( !$vars ) {
|
|
$output->addWikiMsg( 'abusefilter-examine-incompatible' );
|
|
return;
|
|
}
|
|
|
|
$html = '';
|
|
|
|
$output->addModules( 'ext.abuseFilter.examine' );
|
|
|
|
// Add test bit
|
|
if ( $this->afPermManager->canUseTestTools( $this->getUser() ) ) {
|
|
$boxBuilder = $this->boxBuilderFactory->newEditBoxBuilder(
|
|
$this,
|
|
$this->getUser(),
|
|
$output
|
|
);
|
|
|
|
$tester = Xml::tags( 'h2', null, $this->msg( 'abusefilter-examine-test' )->parse() );
|
|
$tester .= $boxBuilder->buildEditBox( $this->mTestFilter, false, false, false );
|
|
$tester .= $this->buildFilterLoader();
|
|
$html .= Xml::tags( 'div', [ 'id' => 'mw-abusefilter-examine-editor' ], $tester );
|
|
$html .= Xml::tags( 'p',
|
|
null,
|
|
new OOUI\ButtonInputWidget(
|
|
[
|
|
'label' => $this->msg( 'abusefilter-examine-test-button' )->text(),
|
|
'id' => 'mw-abusefilter-examine-test',
|
|
'flags' => [ 'primary', 'progressive' ]
|
|
]
|
|
) .
|
|
Xml::element( 'div',
|
|
[
|
|
'id' => 'mw-abusefilter-syntaxresult',
|
|
'style' => 'display: none;'
|
|
], ' '
|
|
)
|
|
);
|
|
}
|
|
|
|
// Variable dump
|
|
$html .= Xml::tags(
|
|
'h2',
|
|
null,
|
|
$this->msg( 'abusefilter-examine-vars' )->parse()
|
|
);
|
|
$html .= $this->variablesFormatter->buildVarDumpTable( $vars );
|
|
|
|
$output->addHTML( $html );
|
|
}
|
|
|
|
/**
|
|
* Loads parameters from request
|
|
*/
|
|
public function loadParameters() {
|
|
$request = $this->getRequest();
|
|
$this->mSearchPeriodStart = $request->getText( 'wpSearchPeriodStart' );
|
|
$this->mSearchPeriodEnd = $request->getText( 'wpSearchPeriodEnd' );
|
|
$this->mTestFilter = $request->getText( 'testfilter' );
|
|
|
|
// Normalise username
|
|
$searchUsername = $request->getText( 'wpSearchUser' );
|
|
$userTitle = Title::newFromText( $searchUsername, NS_USER );
|
|
$this->mSearchUser = $userTitle ? $userTitle->getText() : '';
|
|
}
|
|
}
|