PageRenderTime 26ms CodeModel.GetById 13ms RepoModel.GetById 1ms app.codeStats 0ms

/extensions/AjaxLogin/ApiAjaxLogin.php

https://github.com/ChuguluGames/mediawiki-svn
PHP | 171 lines | 151 code | 11 blank | 9 comment | 10 complexity | 22d22f013b2991b8865d3cbb462be5da MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * API module for AjaxLogin extension
    4. 

  4.  *
    5. 

  5.  * @file
    6. 

  6.  * @ingroup API
    7. 

  7.  * @author Inez KorczyƄski <korczynski@gmail.com>
    8. 

  8.  */
    9. 

  9. 

  10. if ( !defined( 'MEDIAWIKI' ) ) {
    11. 

  11. 	die( "This is not a valid entry point.\n" );
    12. 

  12. }
    13. 

  13. 

  14. class ApiAjaxLogin extends ApiBase {
    15. 

  15. 	public function __construct( $main, $action ) {
    16. 

  16. 		parent::__construct( $main, $action, 'wp' );
    17. 

  17. 	}
    18. 

  18. 

  19. 	public function execute() {
    20. 

  20. 		wfSetupSession();
    21. 

  21. 		$Name = $Password = $Remember = $Loginattempt = $Mailmypassword = $Token = null;
    22. 

  22. 		extract( $this->extractRequestParams() );
    23. 

  23. 

  24. 		if ( !empty( $Loginattempt ) ) {
    25. 

  25. 			// Login attempt
    26. 

  26. 			$params = new FauxRequest(
    27. 

  27. 				array(
    28. 

  28. 					'wpName' => $Name,
    29. 

  29. 					'wpPassword' => $Password,
    30. 

  30. 					'wpRemember' => $Remember,
    31. 

  31. 					'wpLoginattempt' => $Loginattempt,
    32. 

  32. 					'wpLoginToken' => $Token,
    33. 

  33. 				)
    34. 

  34. 			);
    35. 

  35. 

  36. 			$result = array();
    37. 

  37. 			$loginForm = new LoginForm( $params );
    38. 

  38. 			switch( $loginForm->authenticateUserData() ) {
    39. 

  39. 				case LoginForm::RESET_PASS:
    40. 

  40. 					$result['result'] = 'Reset';
    41. 

  41. 					break;
    42. 

  42. 				case LoginForm::SUCCESS:
    43. 

  43. 					global $wgUser, $wgCookiePrefix;
    44. 

  44. 

  45. 					$wgUser->setOption( 'rememberpassword', $Remember ? 1 : 0 );
    46. 

  46. 					$wgUser->setCookies();
    47. 

  47. 

  48. 					$result['result'] = 'Success';
    49. 

  49. 					$result['lguserid'] = intval( $wgUser->getId() );
    50. 

  50. 					$result['lgusername'] = $wgUser->getName();
    51. 

  51. 					$result['lgtoken'] = $wgUser->getToken();
    52. 

  52. 					$result['cookieprefix'] = $wgCookiePrefix;
    53. 

  53. 					$result['sessionid'] = session_id();
    54. 

  54. 					break;
    55. 

  55. 				case LoginForm::NEED_TOKEN:
    56. 

  56. 					$result['result'] = 'NeedToken';
    57. 

  57. 					$result['token'] = $loginForm->getLoginToken();
    58. 

  58. 					$result['cookieprefix'] = $wgCookiePrefix;
    59. 

  59. 					$result['sessionid'] = session_id();
    60. 

  60. 					break;
    61. 

  61. 				case LoginForm::WRONG_TOKEN:
    62. 

  62. 					$result['result'] = 'WrongToken';
    63. 

  63. 					break;
    64. 

  64. 				case LoginForm::NO_NAME:
    65. 

  65. 					$result['result'] = 'NoName';
    66. 

  66. 					$result['text'] = wfMsg( 'noname' );
    67. 

  67. 					break;
    68. 

  68. 				case LoginForm::ILLEGAL:
    69. 

  69. 					$result['result'] = 'Illegal';
    70. 

  70. 					$result['text'] = wfMsg( 'noname' );
    71. 

  71. 					break;
    72. 

  72. 				case LoginForm::WRONG_PLUGIN_PASS:
    73. 

  73. 					$result['result'] = 'WrongPluginPass';
    74. 

  74. 					$result['text'] = wfMsg( 'wrongpassword' );
    75. 

  75. 					break;
    76. 

  76. 				case LoginForm::NOT_EXISTS:
    77. 

  77. 					$result['result'] = 'NotExists';
    78. 

  78. 					$result['text'] = wfMsg( 'al-nosuchuser', htmlspecialchars( $Name ) );
    79. 

  79. 					break;
    80. 

  80. 				case LoginForm::RESET_PASS:
    81. 

  81. 				case LoginForm::WRONG_PASS:
    82. 

  82. 					$result['result'] = 'WrongPass';
    83. 

  83. 					$result['text'] = wfMsg( 'wrongpassword' );
    84. 

  84. 					break;
    85. 

  85. 				case LoginForm::EMPTY_PASS:
    86. 

  86. 					$result['result'] = 'EmptyPass';
    87. 

  87. 					$result['text'] = wfMsg( 'wrongpasswordempty' );
    88. 

  88. 					break;
    89. 

  89. 				case LoginForm::CREATE_BLOCKED:
    90. 

  90. 					$result['result'] = 'CreateBlocked';
    91. 

  91. 					$result['text'] = wfMsg( 'al-createblocked' );
    92. 

  92. 					break;
    93. 

  93. 				case LoginForm::THROTTLED:
    94. 

  94. 					global $wgPasswordAttemptThrottle, $wgLang;
    95. 

  95. 					$result['result'] = 'Throttled';
    96. 

  96. 					$result['text'] = wfMsgExt( 'al-throttled', 'parsemag', $wgLang->formatNum( intval( $wgPasswordAttemptThrottle['seconds'] ) ) );
    97. 

  97. 					break;
    98. 

  98. 				case LoginForm::USER_BLOCKED:
    99. 

  99. 					$result['result'] = 'Blocked';
    100. 

  100. 					break;
    101. 

  101. 				default:
    102. 

  102. 					ApiBase::dieDebug( __METHOD__, 'Unhandled case value' );
    103. 

  103. 			}
    104. 

  104. 			$dbw = wfGetDB( DB_MASTER );
    105. 

  105. 			$dbw->commit();
    106. 

  106. 

  107. 			$this->getResult()->addValue( null, 'ajaxlogin', $result );
    108. 

  108. 		} elseif ( !empty( $Mailmypassword ) ) {
    109. 

  109. 			// Remind password attempt
    110. 

  110. 			$params = new FauxRequest(
    111. 

  111. 				array(
    112. 

  112. 					'wpName' => $Name
    113. 

  113. 				)
    114. 

  114. 			);
    115. 

  115. 			$result = array();
    116. 

  116. 			$loginForm = new LoginForm( $params );
    117. 

  117. 			global $wgUser, $wgAuth;
    118. 

  118. 			if ( !$wgAuth->allowPasswordChange() ) {
    119. 

  119. 				$result['result'] = 'resetpass_forbidden';
    120. 

  120. 				$result['text'] = wfMsg( 'resetpass_forbidden' );
    121. 

  121. 			} elseif ( $wgUser->isBlocked() ) {
    122. 

  122. 				$result['result'] = 'blocked-mailpassword';
    123. 

  123. 				$result['text'] = wfMsg( 'blocked-mailpassword' );
    124. 

  124. 			} elseif ( '' == $loginForm->mName ) {
    125. 

  125. 				$result['result'] = 'noname';
    126. 

  126. 				$result['text'] = wfMsg( 'noname' );
    127. 

  127. 			} else {
    128. 

  128. 				$u = User::newFromName( $loginForm->mName );
    129. 

  129. 				if ( is_null( $u ) ) {
    130. 

  130. 					$result['result'] = 'noname';
    131. 

  131. 					$result['text'] = wfMsg( 'noname' );
    132. 

  132. 				} elseif ( 0 == $u->getID() ) {
    133. 

  133. 					$result['result'] = 'nosuchuser';
    134. 

  134. 					$result['text'] = wfMsg( 'al-nosuchuser', $u->getName() );
    135. 

  135. 				} elseif ( $u->isPasswordReminderThrottled() ) {
    136. 

  136. 					global $wgPasswordReminderResendTime;
    137. 

  137. 					$result['result'] = 'throttled-mailpassword';
    138. 

  138. 					$result['text'] = wfMsg( 'throttled-mailpassword', round( $wgPasswordReminderResendTime, 3 ) );
    139. 

  139. 				} else {
    140. 

  140. 					$res = $loginForm->mailPasswordInternal( $u, true );
    141. 

  141. 					if ( WikiError::isError( $res ) ) {
    142. 

  142. 						$result['result'] = 'mailerror';
    143. 

  143. 						$result['text'] = wfMsg( 'mailerror', $res->getMessage() );
    144. 

  144. 					} else {
    145. 

  145. 						$result['result'] = 'OK';
    146. 

  146. 						$result['text'] = wfMsg( 'passwordsent', $u->getName() );
    147. 

  147. 					}
    148. 

  148. 				}
    149. 

  149. 			}
    150. 

  150. 			$dbw = wfGetDB( DB_MASTER );
    151. 

  151. 			$dbw->commit();
    152. 

  152. 

  153. 			$this->getResult()->addValue( null, 'ajaxlogin', $result );
    154. 

  154. 		}
    155. 

  155. 	}
    156. 

  156. 

  157. 	public function getAllowedParams() {
    158. 

  158. 		return array(
    159. 

  159. 			'Name' => null,
    160. 

  160. 			'Password' => null,
    161. 

  161. 			'Remember' => null,
    162. 

  162. 			'Loginattempt' => null,
    163. 

  163. 			'Mailmypassword' => null,
    164. 

  164. 			'Token' => null
    165. 

  165. 		);
    166. 

  166. 	}
    167. 

  167. 

  168. 	public function getVersion() {
    169. 

  169. 		return __CLASS__ . ': $Id$';
    170. 

  170. 	}
    171. 

  171. }
    172. 

  172.