for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
<?php
/******************************************************************************
* Wikipedia Account Creation Assistance tool *
* *
* All code in this file is released into the public domain by the ACC *
* Development Team. Please see team.json for a list of contributors. *
******************************************************************************/
namespace Waca\Security;
use Waca\DataObject;
use Waca\DataObjects\Domain;
use Waca\DataObjects\User;
use Waca\Exceptions\AccessDeniedException;
use Waca\WebRequest;
class DomainAccessManager
{
/**
* @param User $user
*
* @return Domain[]
*/
public function getAllowedDomains(User $user): array
if ($user->isCommunityUser()) {
return [];
}
return Domain::getDomainByUser($user->getDatabase(), $user, true);
public function switchDomain(User $user, Domain $newDomain): void
$mapToId = function(DataObject $object) {
return $object->getId();
};
$allowed = in_array($newDomain->getId(), array_map($mapToId, self::getAllowedDomains($user)));
Waca\Security\DomainAcce...er::getAllowedDomains()
If this is a false-positive, you can also ignore this issue in your code via the ignore-call annotation
ignore-call
$allowed = in_array($newDomain->getId(), array_map($mapToId, self::/** @scrutinizer ignore-call */ getAllowedDomains($user)));
if ($allowed) {
WebRequest::setActiveDomain($newDomain);
else {
throw new AccessDeniedException();
enwikipedia-acc /
waca
Loading history...