Commit graph

28 commits

Author SHA1 Message Date
Happy-melon 32102375f8 Implement captchas for sending emails via Special:EmailUser. 2010-04-10 21:26:03 +00:00
Chad Horohoe b169917ec1 Get rid of the last (I think) php4-style calls to wfGetDB() 2010-02-13 23:03:40 +00:00
Brion Vibber 61d0788893 Revert broken rewrite of login system; totally broken.
* Login doesn't attach to session properly, so can't stay logged in!
* Password field shown in plaintext!

If it just DOESN'T WORK please keep it on a work branch, don't put it in trunk!

Reverted:
r56682
r56683
r56684
r56686
r56688
r56696
r56699
r56702
r56703
r56704
r56782
r56896
2009-09-26 00:49:32 +00:00
Happy-melon 2da3e35b51 Follow-ups to r56684: add a member function for extensions to add header text cleanly, and tweak variable names in api/ApiLogin.php. 2009-09-20 21:24:48 +00:00
Happy-melon d7ec2f9076 Merge in Login rewrite, second time lucky. 2009-09-20 20:28:27 +00:00
Brion Vibber 0f5ffad924 Revert broken rewrite of login forms:
r55990 "* Totally refactor includes/specials/SpecialUserlogin.php:"
r55991 "Followup to r55990 - Remove debugging hack :("
r55994 "Followup to r55990 - rename method to avoid PHP Strict warnings"
r55997 "Follow-up to r55990, per comments:"

Continued reports of breakage with the new version...
Non-vital changes of this magnitude should probably be worked up on a branch to ensure everything's consistent before pushing them to trunk.
2009-09-08 18:40:05 +00:00
Happy-melon 7334011d30 * Totally refactor includes/specials/SpecialUserlogin.php:
** Split backend stuff out into includes/Login.php
** Split account creation and login stuff up, into includes/specials/CreateAccount.php and includes/specials/Userlogin.php.
* Reimplement the special pages as subclasses of SpecialPage
* Use HTMLForm to generate the input forms
** Deprecate and delete includes/templates/Userlogin.php, which is horrible and old :D

This changes the syntax of the UserLoginForm and UserCreateForm hooks, and AuthPlugin::modifyUITemplate; they now receive the SpecialPage subclass rather than the template to work with. Update everything I could find in SVN to accommodate this.
2009-09-07 19:00:49 +00:00
Brion Vibber 84c2f656b7 Cleaning up some old PHP 4 object-reference usage in some edit filtering hooks.
There was a mix of uses of the reference and non-uses of the reference. :)
Reverts r53714 and fixes it from the other end by cleaning up the uses to not expect references.
2009-08-21 21:51:29 +00:00
Niklas Laxström 274a83dc04 Reverted r54215, breaks captcha 2009-08-03 09:34:39 +00:00
Tobias ca88f8c213 fixing bug 10729 2009-08-02 15:32:02 +00:00
Siebrand Mazeland 4a6c4e2bcf * Update messages for QuestyCaptcha
* stylize.php and trailing whitespace removed for ConfirmEdit
* add support for QuestyCaptcha to Translate
* svn execute bits removed
2009-07-19 15:13:01 +00:00
Alex Z. 73cfd41936 The EditPage object is not passed by reference in the EditFilter hooks 2009-07-18 21:47:20 +00:00
Tim Starling f8d04371ec Fix inappropriate use of empty(), it should only be used when you want to suppress warnings. 2009-06-04 10:15:52 +00:00
Bryan Tong Minh e70965603f Verify IP whitelisting on login and account creation as well. 2009-05-09 14:00:13 +00:00
Roan Kattouw 72064bd437 ConfirmEdit changes for r50218 2009-05-05 13:23:10 +00:00
Roan Kattouw 57a4a3972e Update ConfirmEdit for r50132 2009-05-02 14:47:59 +00:00
Aaron Schulz 03180f4904 (bug 16025) 'Call to undefined method SimpleCaptcha::showImage()' 2009-01-21 01:25:56 +00:00
Aaron Schulz acdbf7ae1a Search & replace war on old wf* xml functions 2008-12-20 09:32:47 +00:00
Roan Kattouw 0aba2a2783 ConfirmEdit: Fix use of $wgTitle, should fix bug 15420 2008-09-05 14:57:42 +00:00
Brion Vibber f1e64bbca8 * (bug 12142) CAPTCHA group exceptions only apply to edits
Applies the 'skipcaptcha' permission check also to the user creation form.
Patch by Emufarmers - https://bugzilla.wikimedia.org/attachment.cgi?id=5132
2008-08-07 17:05:10 +00:00
Aryeh Gregor 03da9b6796 * Change $wgCaptchaBadLoginAttempts to be inclusive of the first attempt, so that the old default is 1. 0 now really means that 0 bad logins are tolerated before the captcha is displayed, i.e., it's always displayed even with no bad logins. This seems to make more sense (certainly compared to setting it to -1 to always display the captcha).
* Set the default to 3 instead of 1, to be more forgiving of mistyped passwords.  Unlikely to help bots much; quite likely to help blind people who aren't really really really careful typers.
* Commit some whitespace change I had lying around.
2008-07-02 23:09:26 +00:00
Chad Horohoe 21d725024c (bug 13918), make CAPTCHA less obtrusive. Added a new global $wgCaptchaBadLoginAttempts which can be set to allow 1 (or more) failed attempts before triggering the captcha on login. Default is 0 (current behavior). 2008-07-02 15:00:30 +00:00
Brion Vibber 4f1281fc9c * (bug 14154) Captcha domain whitelist regexes now anchored, fixing spammable hole 2008-05-16 19:14:51 +00:00
Roan Kattouw 2df8abceff Adding MIME type to CAPTCHA API result per discussion on wikitech-l. 2008-02-29 21:44:21 +00:00
Roan Kattouw c112c24f54 Modifying ConfirmEdit extension to make it API-friendly:
* Hooking into the APIEditBeforeSave hook (which will appear in the ApiEdit_Vodafone branch in the next revision)
* Moved general CAPTCHA generation in SimpleCaptcha to getCaptcha()
* Moved general confirmEdit() functionality to doConfirmEdit() to facilitate differtiating between UI and API handling
* Adding SimpleCaptcha::addCaptchaAPI() method that adds CAPTCHA information to an API result array. Other CAPTCHA implementations should override this method with a function that does the same (did this for FancyCaptcha and MathCaptcha)
2008-02-28 17:42:23 +00:00
Roan Kattouw ae8beb8dd5 ConfirmEdit: Cleaning up brain-damaged implementation of keyMatch() which expected $wgRequest as an argument only to call $wgRequest->getVal('wpCaptchaWord') and do nothing else with it 2008-01-24 21:42:21 +00:00
Brion Vibber 1f01a38761 don't list Special:Captcha 2007-11-16 20:27:30 +00:00
Tim Starling 152f5e39e0 * Optimised startup
* Use the new EditFilterMerged hook if available, for faster link finding
2007-11-12 07:42:25 +00:00