Inspection of "Fix two XSS vulns" - enwikipedia-acc/waca - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — newinternal ( 65a0f5...5b021c )

by Simon

created 2020-04-26 13:09 UTC

Status

Indentation +113 added lines, -113 removed lines patch added patch discarded remove patch

@@ -14,117 +14,117 @@
 block discarded – undo
 
 class RequestSearchHelper extends SearchHelperBase
 {
-    /**
-     * RequestSearchHelper constructor.
-     *
-     * @param PdoDatabase $database
-     */
-    protected function __construct(PdoDatabase $database)
-    {
-        parent::__construct($database, 'request', Request::class);
-    }
-
-    /**
-     * Initiates a search for requests
-     *
-     * @param PdoDatabase $database
-     *
-     * @return RequestSearchHelper
-     */
-    public static function get(PdoDatabase $database)
-    {
-        $helper = new RequestSearchHelper($database);
-
-        return $helper;
-    }
-
-    /**
-     * Filters the results by IP address
-     *
-     * @param string $ipAddress
-     *
-     * @return $this
-     */
-    public function byIp($ipAddress)
-    {
-        $this->whereClause .= ' AND (ip LIKE ? OR forwardedip LIKE ?)';
-        $this->parameterList[] = $ipAddress;
-        $this->parameterList[] = '%' . trim($ipAddress, '%') . '%';
-
-        return $this;
-    }
-
-    /**
-     * Filters the results by email address
-     *
-     * @param string $emailAddress
-     *
-     * @return $this
-     */
-    public function byEmailAddress($emailAddress)
-    {
-        $this->whereClause .= ' AND email LIKE ?';
-        $this->parameterList[] = $emailAddress;
-
-        return $this;
-    }
-
-    /**
-     * Filters the results by name
-     *
-     * @param string $name
-     *
-     * @return $this
-     */
-    public function byName($name)
-    {
-        $this->whereClause .= ' AND name LIKE ?';
-        $this->parameterList[] = $name;
-
-        return $this;
-    }
-
-    /**
-     * Excludes a request from the results
-     *
-     * @param int $requestId
-     *
-     * @return $this
-     */
-    public function excludingRequest($requestId)
-    {
-        $this->whereClause .= ' AND id <> ?';
-        $this->parameterList[] = $requestId;
-
-        return $this;
-    }
-
-    /**
-     * Filters the results to only those with a confirmed email address
-     *
-     * @return $this
-     */
-    public function withConfirmedEmail()
-    {
-        $this->whereClause .= ' AND emailconfirm = ?';
-        $this->parameterList[] = 'Confirmed';
-
-        return $this;
-    }
-
-    /**
-     * Filters the results to exclude purged data
-     *
-     * @param SiteConfiguration $configuration
-     *
-     * @return $this
-     */
-    public function excludingPurgedData(SiteConfiguration $configuration)
-    {
-        $this->whereClause .= ' AND ip <> ? AND email <> ?';
-        $this->parameterList[] = $configuration->getDataClearIp();
-        $this->parameterList[] = $configuration->getDataClearEmail();
-
-        return $this;
-    }
+	/**
+	 * RequestSearchHelper constructor.
+	 *
+	 * @param PdoDatabase $database
+	 */
+	protected function __construct(PdoDatabase $database)
+	{
+		parent::__construct($database, 'request', Request::class);
+	}
+
+	/**
+	 * Initiates a search for requests
+	 *
+	 * @param PdoDatabase $database
+	 *
+	 * @return RequestSearchHelper
+	 */
+	public static function get(PdoDatabase $database)
+	{
+		$helper = new RequestSearchHelper($database);
+
+		return $helper;
+	}
+
+	/**
+	 * Filters the results by IP address
+	 *
+	 * @param string $ipAddress
+	 *
+	 * @return $this
+	 */
+	public function byIp($ipAddress)
+	{
+		$this->whereClause .= ' AND (ip LIKE ? OR forwardedip LIKE ?)';
+		$this->parameterList[] = $ipAddress;
+		$this->parameterList[] = '%' . trim($ipAddress, '%') . '%';
+
+		return $this;
+	}
+
+	/**
+	 * Filters the results by email address
+	 *
+	 * @param string $emailAddress
+	 *
+	 * @return $this
+	 */
+	public function byEmailAddress($emailAddress)
+	{
+		$this->whereClause .= ' AND email LIKE ?';
+		$this->parameterList[] = $emailAddress;
+
+		return $this;
+	}
+
+	/**
+	 * Filters the results by name
+	 *
+	 * @param string $name
+	 *
+	 * @return $this
+	 */
+	public function byName($name)
+	{
+		$this->whereClause .= ' AND name LIKE ?';
+		$this->parameterList[] = $name;
+
+		return $this;
+	}
+
+	/**
+	 * Excludes a request from the results
+	 *
+	 * @param int $requestId
+	 *
+	 * @return $this
+	 */
+	public function excludingRequest($requestId)
+	{
+		$this->whereClause .= ' AND id <> ?';
+		$this->parameterList[] = $requestId;
+
+		return $this;
+	}
+
+	/**
+	 * Filters the results to only those with a confirmed email address
+	 *
+	 * @return $this
+	 */
+	public function withConfirmedEmail()
+	{
+		$this->whereClause .= ' AND emailconfirm = ?';
+		$this->parameterList[] = 'Confirmed';
+
+		return $this;
+	}
+
+	/**
+	 * Filters the results to exclude purged data
+	 *
+	 * @param SiteConfiguration $configuration
+	 *
+	 * @return $this
+	 */
+	public function excludingPurgedData(SiteConfiguration $configuration)
+	{
+		$this->whereClause .= ' AND ip <> ? AND email <> ?';
+		$this->parameterList[] = $configuration->getDataClearIp();
+		$this->parameterList[] = $configuration->getDataClearEmail();
+
+		return $this;
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Helpers/SearchHelpers/LogSearchHelper.php 1 patch

Indentation +73 added lines, -73 removed lines patch added patch discarded remove patch

@@ -13,87 +13,87 @@
 block discarded – undo
 
 class LogSearchHelper extends SearchHelperBase
 {
-    /**
-     * LogSearchHelper constructor.
-     *
-     * @param PdoDatabase $database
-     */
-    protected function __construct(PdoDatabase $database)
-    {
-        parent::__construct($database, 'log', Log::class, 'timestamp DESC');
-    }
+	/**
+	 * LogSearchHelper constructor.
+	 *
+	 * @param PdoDatabase $database
+	 */
+	protected function __construct(PdoDatabase $database)
+	{
+		parent::__construct($database, 'log', Log::class, 'timestamp DESC');
+	}
 
-    /**
-     * Initiates a search for requests
-     *
-     * @param PdoDatabase $database
-     *
-     * @return LogSearchHelper
-     */
-    public static function get(PdoDatabase $database)
-    {
-        $helper = new LogSearchHelper($database);
+	/**
+	 * Initiates a search for requests
+	 *
+	 * @param PdoDatabase $database
+	 *
+	 * @return LogSearchHelper
+	 */
+	public static function get(PdoDatabase $database)
+	{
+		$helper = new LogSearchHelper($database);
 
-        return $helper;
-    }
+		return $helper;
+	}
 
-    /**
-     * Filters the results by user
-     *
-     * @param int $userId
-     *
-     * @return $this
-     */
-    public function byUser($userId)
-    {
-        $this->whereClause .= ' AND user = ?';
-        $this->parameterList[] = $userId;
+	/**
+	 * Filters the results by user
+	 *
+	 * @param int $userId
+	 *
+	 * @return $this
+	 */
+	public function byUser($userId)
+	{
+		$this->whereClause .= ' AND user = ?';
+		$this->parameterList[] = $userId;
 
-        return $this;
-    }
+		return $this;
+	}
 
-    /**
-     * Filters the results by log action
-     *
-     * @param string $action
-     *
-     * @return $this
-     */
-    public function byAction($action)
-    {
-        $this->whereClause .= ' AND action = ?';
-        $this->parameterList[] = $action;
+	/**
+	 * Filters the results by log action
+	 *
+	 * @param string $action
+	 *
+	 * @return $this
+	 */
+	public function byAction($action)
+	{
+		$this->whereClause .= ' AND action = ?';
+		$this->parameterList[] = $action;
 
-        return $this;
-    }
+		return $this;
+	}
 
-    /**
-     * Filters the results by object type
-     *
-     * @param string $objectType
-     *
-     * @return $this
-     */
-    public function byObjectType($objectType)
-    {
-        $this->whereClause .= ' AND objecttype = ?';
-        $this->parameterList[] = $objectType;
+	/**
+	 * Filters the results by object type
+	 *
+	 * @param string $objectType
+	 *
+	 * @return $this
+	 */
+	public function byObjectType($objectType)
+	{
+		$this->whereClause .= ' AND objecttype = ?';
+		$this->parameterList[] = $objectType;
 
-        return $this;
-    }
+		return $this;
+	}
 
-    /**
-     * Filters the results by object type
-     *
-     * @param integer $objectId
-     *
-     * @return $this
-     */
-    public function byObjectId($objectId)
-    {
-        $this->whereClause .= ' AND objectid = ?';
-        $this->parameterList[] = $objectId;
+	/**
+	 * Filters the results by object type
+	 *
+	 * @param integer $objectId
+	 *
+	 * @return $this
+	 */
+	public function byObjectId($objectId)
+	{
+		$this->whereClause .= ' AND objectid = ?';
+		$this->parameterList[] = $objectId;
 
-        return $this;
-    }
+		return $this;
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Tasks/PageBase.php 1 patch

Indentation +337 added lines, -337 removed lines patch added patch discarded remove patch

@@ -20,341 +20,341 @@
 block discarded – undo
 
 abstract class PageBase extends TaskBase implements IRoutedTask
 {
-    use TemplateOutput;
-    /** @var string Smarty template to display */
-    protected $template = "base.tpl";
-    /** @var string HTML title. Currently unused. */
-    protected $htmlTitle;
-    /** @var bool Determines if the page is a redirect or not */
-    protected $isRedirecting = false;
-    /** @var array Queue of headers to be sent on successful completion */
-    protected $headerQueue = array();
-    /** @var string The name of the route to use, as determined by the request router. */
-    private $routeName = null;
-    /** @var TokenManager */
-    protected $tokenManager;
-    /** @var string[] Extra CSS files to include */
-    private $extraCss = array();
-    /** @var string[] Extra JS files to include */
-    private $extraJs = array();
-
-    /**
-     * Sets the route the request will take. Only should be called from the request router or barrier test.
-     *
-     * @param string $routeName        The name of the route
-     * @param bool   $skipCallableTest Don't use this unless you know what you're doing, and what the implications are.
-     *
-     * @throws Exception
-     * @category Security-Critical
-     */
-    final public function setRoute($routeName, $skipCallableTest = false)
-    {
-        // Test the new route is callable before adopting it.
-        if (!$skipCallableTest && !is_callable(array($this, $routeName))) {
-            throw new Exception("Proposed route '$routeName' is not callable.");
-        }
-
-        // Adopt the new route
-        $this->routeName = $routeName;
-    }
-
-    /**
-     * Gets the name of the route that has been passed from the request router.
-     * @return string
-     */
-    final public function getRouteName()
-    {
-        return $this->routeName;
-    }
-
-    /**
-     * Performs generic page setup actions
-     */
-    final protected function setupPage()
-    {
-        $this->setUpSmarty();
-
-        $siteNoticeText = SiteNotice::get($this->getDatabase());
-
-        $this->assign('siteNoticeText', $siteNoticeText);
-
-        $currentUser = User::getCurrent($this->getDatabase());
-        $this->assign('currentUser', $currentUser);
-        $this->assign('loggedIn', (!$currentUser->isCommunityUser()));
-    }
-
-    /**
-     * Runs the page logic as routed by the RequestRouter
-     *
-     * Only should be called after a security barrier! That means only from execute().
-     */
-    final protected function runPage()
-    {
-        $database = $this->getDatabase();
-
-        // initialise a database transaction
-        if (!$database->beginTransaction()) {
-            throw new Exception('Failed to start transaction on primary database.');
-        }
-
-        try {
-            // run the page code
-            $this->{$this->getRouteName()}();
-
-            $database->commit();
-        }
-        catch (ApplicationLogicException $ex) {
-            // it's an application logic exception, so nothing went seriously wrong with the site. We can use the
-            // standard templating system for this.
-
-            // Firstly, let's undo anything that happened to the database.
-            $database->rollBack();
-
-            // Reset smarty
-            $this->setUpSmarty();
-
-            // Set the template
-            $this->setTemplate('exception/application-logic.tpl');
-            $this->assign('message', $ex->getMessage());
-
-            // Force this back to false
-            $this->isRedirecting = false;
-            $this->headerQueue = array();
-        }
-        catch (OptimisticLockFailedException $ex) {
-            // it's an optimistic lock failure exception, so nothing went seriously wrong with the site. We can use the
-            // standard templating system for this.
-
-            // Firstly, let's undo anything that happened to the database.
-            $database->rollBack();
-
-            // Reset smarty
-            $this->setUpSmarty();
-
-            // Set the template
-            $this->setTemplate('exception/optimistic-lock-failure.tpl');
-            $this->assign('message', $ex->getMessage());
-
-            // Force this back to false
-            $this->isRedirecting = false;
-            $this->headerQueue = array();
-        }
-        finally {
-            // Catch any hanging on transactions
-            if ($database->hasActiveTransaction()) {
-                $database->rollBack();
-            }
-        }
-
-        // run any finalisation code needed before we send the output to the browser.
-        $this->finalisePage();
-
-        // Send the headers
-        $this->sendResponseHeaders();
-
-        // Check we have a template to use!
-        if ($this->template !== null) {
-            $content = $this->fetchTemplate($this->template);
-            ob_clean();
-            print($content);
-            ob_flush();
-
-            return;
-        }
-    }
-
-    /**
-     * Performs final tasks needed before rendering the page.
-     */
-    protected function finalisePage()
-    {
-        if ($this->isRedirecting) {
-            $this->template = null;
-
-            return;
-        }
-
-        $this->assign('extraCss', $this->extraCss);
-        $this->assign('extraJs', $this->extraJs);
-
-        // If we're actually displaying content, we want to add the session alerts here!
-        $this->assign('alerts', SessionAlert::getAlerts());
-        SessionAlert::clearAlerts();
-
-        $this->assign('htmlTitle', $this->htmlTitle);
-    }
-
-    /**
-     * @return TokenManager
-     */
-    public function getTokenManager()
-    {
-        return $this->tokenManager;
-    }
-
-    /**
-     * @param TokenManager $tokenManager
-     */
-    public function setTokenManager($tokenManager)
-    {
-        $this->tokenManager = $tokenManager;
-    }
-
-    /**
-     * Sends the redirect headers to perform a GET at the destination page.
-     *
-     * Also nullifies the set template so Smarty does not render it.
-     *
-     * @param string      $page   The page to redirect requests to (as used in the UR)
-     * @param null|string $action The action to use on the page.
-     * @param null|array  $parameters
-     * @param null|string $script The script (relative to index.php) to redirect to
-     */
-    final protected function redirect($page = '', $action = null, $parameters = null, $script = null)
-    {
-        $currentScriptName = WebRequest::scriptName();
-
-        // Are we changing script?
-        if ($script === null || substr($currentScriptName, -1 * count($script)) === $script) {
-            $targetScriptName = $currentScriptName;
-        }
-        else {
-            $targetScriptName = $this->getSiteConfiguration()->getBaseUrl() . '/' . $script;
-        }
-
-        $pathInfo = array($targetScriptName);
-
-        $pathInfo[1] = $page;
-
-        if ($action !== null) {
-            $pathInfo[2] = $action;
-        }
-
-        $url = implode('/', $pathInfo);
-
-        if (is_array($parameters) && count($parameters) > 0) {
-            $url .= '?' . http_build_query($parameters);
-        }
-
-        $this->redirectUrl($url);
-    }
-
-    /**
-     * Sends the redirect headers to perform a GET at the new address.
-     *
-     * Also nullifies the set template so Smarty does not render it.
-     *
-     * @param string $path URL to redirect to
-     */
-    final protected function redirectUrl($path)
-    {
-        // 303 See Other = re-request at new address with a GET.
-        $this->headerQueue[] = 'HTTP/1.1 303 See Other';
-        $this->headerQueue[] = "Location: $path";
-
-        $this->setTemplate(null);
-        $this->isRedirecting = true;
-    }
-
-    /**
-     * Sets the name of the template this page should display.
-     *
-     * @param string $name
-     *
-     * @throws Exception
-     */
-    final protected function setTemplate($name)
-    {
-        if ($this->isRedirecting) {
-            throw new Exception('This page has been set as a redirect, no template can be displayed!');
-        }
-
-        $this->template = $name;
-    }
-
-    /**
-     * Adds an extra CSS file to to the page
-     *
-     * @param string $path The path (relative to the application root) of the file
-     */
-    final protected function addCss($path) {
-        if(in_array($path, $this->extraCss)){
-            // nothing to do
-            return;
-        }
-
-        $this->extraCss[] = $path;
-    }
-
-    /**
-     * Adds an extra JS file to to the page
-     *
-     * @param string $path The path (relative to the application root) of the file
-     */
-    final protected function addJs($path){
-        if(in_array($path, $this->extraJs)){
-            // nothing to do
-            return;
-        }
-
-        $this->extraJs[] = $path;
-    }
-
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @return void
-     */
-    abstract protected function main();
-
-    /**
-     * @param string $title
-     */
-    final protected function setHtmlTitle($title)
-    {
-        $this->htmlTitle = $title;
-    }
-
-    public function execute()
-    {
-        if ($this->getRouteName() === null) {
-            throw new Exception('Request is unrouted.');
-        }
-
-        if ($this->getSiteConfiguration() === null) {
-            throw new Exception('Page has no configuration!');
-        }
-
-        $this->setupPage();
-
-        $this->runPage();
-    }
-
-    public function assignCSRFToken()
-    {
-        $token = $this->tokenManager->getNewToken();
-        $this->assign('csrfTokenData', $token->getTokenData());
-    }
-
-    public function validateCSRFToken()
-    {
-        if (!$this->tokenManager->validateToken(WebRequest::postString('csrfTokenData'))) {
-            throw new ApplicationLogicException('Form token is not valid, please reload and try again');
-        }
-    }
-
-    protected function sendResponseHeaders()
-    {
-        if (headers_sent()) {
-            throw new ApplicationLogicException          ('Headers have already been sent! This is likely a bug in the application.');
-        }
-
-        foreach ($this->headerQueue as $item) {
-            if (mb_strpos($item, "\r") !== false || mb_strpos($item, "\n") !== false) {
-                // Oops. We're not allowed to do this.
-                throw new Exception('Unable to split header');
-            }
-
-            header($item);
-        }
-    }
+	use TemplateOutput;
+	/** @var string Smarty template to display */
+	protected $template = "base.tpl";
+	/** @var string HTML title. Currently unused. */
+	protected $htmlTitle;
+	/** @var bool Determines if the page is a redirect or not */
+	protected $isRedirecting = false;
+	/** @var array Queue of headers to be sent on successful completion */
+	protected $headerQueue = array();
+	/** @var string The name of the route to use, as determined by the request router. */
+	private $routeName = null;
+	/** @var TokenManager */
+	protected $tokenManager;
+	/** @var string[] Extra CSS files to include */
+	private $extraCss = array();
+	/** @var string[] Extra JS files to include */
+	private $extraJs = array();
+
+	/**
+	 * Sets the route the request will take. Only should be called from the request router or barrier test.
+	 *
+	 * @param string $routeName        The name of the route
+	 * @param bool   $skipCallableTest Don't use this unless you know what you're doing, and what the implications are.
+	 *
+	 * @throws Exception
+	 * @category Security-Critical
+	 */
+	final public function setRoute($routeName, $skipCallableTest = false)
+	{
+		// Test the new route is callable before adopting it.
+		if (!$skipCallableTest && !is_callable(array($this, $routeName))) {
+			throw new Exception("Proposed route '$routeName' is not callable.");
+		}
+
+		// Adopt the new route
+		$this->routeName = $routeName;
+	}
+
+	/**
+	 * Gets the name of the route that has been passed from the request router.
+	 * @return string
+	 */
+	final public function getRouteName()
+	{
+		return $this->routeName;
+	}
+
+	/**
+	 * Performs generic page setup actions
+	 */
+	final protected function setupPage()
+	{
+		$this->setUpSmarty();
+
+		$siteNoticeText = SiteNotice::get($this->getDatabase());
+
+		$this->assign('siteNoticeText', $siteNoticeText);
+
+		$currentUser = User::getCurrent($this->getDatabase());
+		$this->assign('currentUser', $currentUser);
+		$this->assign('loggedIn', (!$currentUser->isCommunityUser()));
+	}
+
+	/**
+	 * Runs the page logic as routed by the RequestRouter
+	 *
+	 * Only should be called after a security barrier! That means only from execute().
+	 */
+	final protected function runPage()
+	{
+		$database = $this->getDatabase();
+
+		// initialise a database transaction
+		if (!$database->beginTransaction()) {
+			throw new Exception('Failed to start transaction on primary database.');
+		}
+
+		try {
+			// run the page code
+			$this->{$this->getRouteName()}();
+
+			$database->commit();
+		}
+		catch (ApplicationLogicException $ex) {
+			// it's an application logic exception, so nothing went seriously wrong with the site. We can use the
+			// standard templating system for this.
+
+			// Firstly, let's undo anything that happened to the database.
+			$database->rollBack();
+
+			// Reset smarty
+			$this->setUpSmarty();
+
+			// Set the template
+			$this->setTemplate('exception/application-logic.tpl');
+			$this->assign('message', $ex->getMessage());
+
+			// Force this back to false
+			$this->isRedirecting = false;
+			$this->headerQueue = array();
+		}
+		catch (OptimisticLockFailedException $ex) {
+			// it's an optimistic lock failure exception, so nothing went seriously wrong with the site. We can use the
+			// standard templating system for this.
+
+			// Firstly, let's undo anything that happened to the database.
+			$database->rollBack();
+
+			// Reset smarty
+			$this->setUpSmarty();
+
+			// Set the template
+			$this->setTemplate('exception/optimistic-lock-failure.tpl');
+			$this->assign('message', $ex->getMessage());
+
+			// Force this back to false
+			$this->isRedirecting = false;
+			$this->headerQueue = array();
+		}
+		finally {
+			// Catch any hanging on transactions
+			if ($database->hasActiveTransaction()) {
+				$database->rollBack();
+			}
+		}
+
+		// run any finalisation code needed before we send the output to the browser.
+		$this->finalisePage();
+
+		// Send the headers
+		$this->sendResponseHeaders();
+
+		// Check we have a template to use!
+		if ($this->template !== null) {
+			$content = $this->fetchTemplate($this->template);
+			ob_clean();
+			print($content);
+			ob_flush();
+
+			return;
+		}
+	}
+
+	/**
+	 * Performs final tasks needed before rendering the page.
+	 */
+	protected function finalisePage()
+	{
+		if ($this->isRedirecting) {
+			$this->template = null;
+
+			return;
+		}
+
+		$this->assign('extraCss', $this->extraCss);
+		$this->assign('extraJs', $this->extraJs);
+
+		// If we're actually displaying content, we want to add the session alerts here!
+		$this->assign('alerts', SessionAlert::getAlerts());
+		SessionAlert::clearAlerts();
+
+		$this->assign('htmlTitle', $this->htmlTitle);
+	}
+
+	/**
+	 * @return TokenManager
+	 */
+	public function getTokenManager()
+	{
+		return $this->tokenManager;
+	}
+
+	/**
+	 * @param TokenManager $tokenManager
+	 */
+	public function setTokenManager($tokenManager)
+	{
+		$this->tokenManager = $tokenManager;
+	}
+
+	/**
+	 * Sends the redirect headers to perform a GET at the destination page.
+	 *
+	 * Also nullifies the set template so Smarty does not render it.
+	 *
+	 * @param string      $page   The page to redirect requests to (as used in the UR)
+	 * @param null|string $action The action to use on the page.
+	 * @param null|array  $parameters
+	 * @param null|string $script The script (relative to index.php) to redirect to
+	 */
+	final protected function redirect($page = '', $action = null, $parameters = null, $script = null)
+	{
+		$currentScriptName = WebRequest::scriptName();
+
+		// Are we changing script?
+		if ($script === null || substr($currentScriptName, -1 * count($script)) === $script) {
+			$targetScriptName = $currentScriptName;
+		}
+		else {
+			$targetScriptName = $this->getSiteConfiguration()->getBaseUrl() . '/' . $script;
+		}
+
+		$pathInfo = array($targetScriptName);
+
+		$pathInfo[1] = $page;
+
+		if ($action !== null) {
+			$pathInfo[2] = $action;
+		}
+
+		$url = implode('/', $pathInfo);
+
+		if (is_array($parameters) && count($parameters) > 0) {
+			$url .= '?' . http_build_query($parameters);
+		}
+
+		$this->redirectUrl($url);
+	}
+
+	/**
+	 * Sends the redirect headers to perform a GET at the new address.
+	 *
+	 * Also nullifies the set template so Smarty does not render it.
+	 *
+	 * @param string $path URL to redirect to
+	 */
+	final protected function redirectUrl($path)
+	{
+		// 303 See Other = re-request at new address with a GET.
+		$this->headerQueue[] = 'HTTP/1.1 303 See Other';
+		$this->headerQueue[] = "Location: $path";
+
+		$this->setTemplate(null);
+		$this->isRedirecting = true;
+	}
+
+	/**
+	 * Sets the name of the template this page should display.
+	 *
+	 * @param string $name
+	 *
+	 * @throws Exception
+	 */
+	final protected function setTemplate($name)
+	{
+		if ($this->isRedirecting) {
+			throw new Exception('This page has been set as a redirect, no template can be displayed!');
+		}
+
+		$this->template = $name;
+	}
+
+	/**
+	 * Adds an extra CSS file to to the page
+	 *
+	 * @param string $path The path (relative to the application root) of the file
+	 */
+	final protected function addCss($path) {
+		if(in_array($path, $this->extraCss)){
+			// nothing to do
+			return;
+		}
+
+		$this->extraCss[] = $path;
+	}
+
+	/**
+	 * Adds an extra JS file to to the page
+	 *
+	 * @param string $path The path (relative to the application root) of the file
+	 */
+	final protected function addJs($path){
+		if(in_array($path, $this->extraJs)){
+			// nothing to do
+			return;
+		}
+
+		$this->extraJs[] = $path;
+	}
+
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @return void
+	 */
+	abstract protected function main();
+
+	/**
+	 * @param string $title
+	 */
+	final protected function setHtmlTitle($title)
+	{
+		$this->htmlTitle = $title;
+	}
+
+	public function execute()
+	{
+		if ($this->getRouteName() === null) {
+			throw new Exception('Request is unrouted.');
+		}
+
+		if ($this->getSiteConfiguration() === null) {
+			throw new Exception('Page has no configuration!');
+		}
+
+		$this->setupPage();
+
+		$this->runPage();
+	}
+
+	public function assignCSRFToken()
+	{
+		$token = $this->tokenManager->getNewToken();
+		$this->assign('csrfTokenData', $token->getTokenData());
+	}
+
+	public function validateCSRFToken()
+	{
+		if (!$this->tokenManager->validateToken(WebRequest::postString('csrfTokenData'))) {
+			throw new ApplicationLogicException('Form token is not valid, please reload and try again');
+		}
+	}
+
+	protected function sendResponseHeaders()
+	{
+		if (headers_sent()) {
+			throw new ApplicationLogicException          ('Headers have already been sent! This is likely a bug in the application.');
+		}
+
+		foreach ($this->headerQueue as $item) {
+			if (mb_strpos($item, "\r") !== false || mb_strpos($item, "\n") !== false) {
+				// Oops. We're not allowed to do this.
+				throw new Exception('Unable to split header');
+			}
+
+			header($item);
+		}
+	}
 }

Please login to merge, or discard this patch.

includes/IdentificationVerifier.php 1 patch

Indentation +157 added lines, -157 removed lines patch added patch discarded remove patch

@@ -26,131 +26,131 @@  discard block
 block discarded – undo
  */
 class IdentificationVerifier
 {
-    /**
-     * This field is an array of parameters, in key => value format, that should be appended to the Meta Wikimedia
-     * Web Service Endpoint URL to query if a user is listed on the Identification Noticeboard.  Note that URL encoding
-     * of these values is *not* necessary; this is done automatically.
-     *
-     * @var string[]
-     * @category Security-Critical
-     */
-    private static $apiQueryParameters = array(
-        'action'   => 'query',
-        'format'   => 'json',
-        'prop'     => 'links',
-        'titles'   => 'Access to nonpublic information policy/Noticeboard',
-        // Username of the user to be checked, with User: prefix, goes here!  Set in isIdentifiedOnWiki()
-        'pltitles' => '',
-    );
-    /** @var HttpHelper */
-    private $httpHelper;
-    /** @var SiteConfiguration */
-    private $siteConfiguration;
-    /** @var PdoDatabase */
-    private $dbObject;
-
-    /**
-     * IdentificationVerifier constructor.
-     *
-     * @param HttpHelper        $httpHelper
-     * @param SiteConfiguration $siteConfiguration
-     * @param PdoDatabase       $dbObject
-     */
-    public function __construct(HttpHelper $httpHelper, SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
-    {
-        $this->httpHelper = $httpHelper;
-        $this->siteConfiguration = $siteConfiguration;
-        $this->dbObject = $dbObject;
-    }
-
-    /**
-     * Checks if the given user is identified to the Wikimedia Foundation.
-     *
-     * @param string $onWikiName The Wikipedia username of the user
-     *
-     * @return bool
-     * @category Security-Critical
-     */
-    public function isUserIdentified($onWikiName)
-    {
-        if ($this->checkIdentificationCache($onWikiName)) {
-            return true;
-        }
-        else {
-            if ($this->isIdentifiedOnWiki($onWikiName)) {
-                $this->cacheIdentificationStatus($onWikiName);
-
-                return true;
-            }
-            else {
-                return false;
-            }
-        }
-    }
-
-    /**
-     * Checks if the given user has a valid entry in the idcache table.
-     *
-     * @param string $onWikiName The Wikipedia username of the user
-     *
-     * @return bool
-     * @category Security-Critical
-     */
-    private function checkIdentificationCache($onWikiName)
-    {
-        $interval = $this->siteConfiguration->getIdentificationCacheExpiry();
-
-        $query = <<<SQL
+	/**
+	 * This field is an array of parameters, in key => value format, that should be appended to the Meta Wikimedia
+	 * Web Service Endpoint URL to query if a user is listed on the Identification Noticeboard.  Note that URL encoding
+	 * of these values is *not* necessary; this is done automatically.
+	 *
+	 * @var string[]
+	 * @category Security-Critical
+	 */
+	private static $apiQueryParameters = array(
+		'action'   => 'query',
+		'format'   => 'json',
+		'prop'     => 'links',
+		'titles'   => 'Access to nonpublic information policy/Noticeboard',
+		// Username of the user to be checked, with User: prefix, goes here!  Set in isIdentifiedOnWiki()
+		'pltitles' => '',
+	);
+	/** @var HttpHelper */
+	private $httpHelper;
+	/** @var SiteConfiguration */
+	private $siteConfiguration;
+	/** @var PdoDatabase */
+	private $dbObject;
+
+	/**
+	 * IdentificationVerifier constructor.
+	 *
+	 * @param HttpHelper        $httpHelper
+	 * @param SiteConfiguration $siteConfiguration
+	 * @param PdoDatabase       $dbObject
+	 */
+	public function __construct(HttpHelper $httpHelper, SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
+	{
+		$this->httpHelper = $httpHelper;
+		$this->siteConfiguration = $siteConfiguration;
+		$this->dbObject = $dbObject;
+	}
+
+	/**
+	 * Checks if the given user is identified to the Wikimedia Foundation.
+	 *
+	 * @param string $onWikiName The Wikipedia username of the user
+	 *
+	 * @return bool
+	 * @category Security-Critical
+	 */
+	public function isUserIdentified($onWikiName)
+	{
+		if ($this->checkIdentificationCache($onWikiName)) {
+			return true;
+		}
+		else {
+			if ($this->isIdentifiedOnWiki($onWikiName)) {
+				$this->cacheIdentificationStatus($onWikiName);
+
+				return true;
+			}
+			else {
+				return false;
+			}
+		}
+	}
+
+	/**
+	 * Checks if the given user has a valid entry in the idcache table.
+	 *
+	 * @param string $onWikiName The Wikipedia username of the user
+	 *
+	 * @return bool
+	 * @category Security-Critical
+	 */
+	private function checkIdentificationCache($onWikiName)
+	{
+		$interval = $this->siteConfiguration->getIdentificationCacheExpiry();
+
+		$query = <<<SQL
 			SELECT COUNT(`id`)
 			FROM `idcache`
 			WHERE `onwikiusername` = :onwikiname
 				AND DATE_ADD(`checktime`, INTERVAL {$interval}) >= NOW();
 SQL;
-        $stmt = $this->dbObject->prepare($query);
-        $stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
-        $stmt->execute();
-
-        // Guaranteed by the query to only return a single row with a single column
-        $results = $stmt->fetch(PDO::FETCH_NUM);
-
-        // I don't expect this to ever be a value other than 0 or 1 since the `onwikiusername` column is declared as a
-        // unique key - but meh.
-        return $results[0] != 0;
-    }
-
-    /**
-     * Does pretty much exactly what it says on the label - this method will clear all expired idcache entries from the
-     * idcache table.  Meant to be called periodically by a maintenance script.
-     *
-     * @param SiteConfiguration $siteConfiguration
-     * @param PdoDatabase       $dbObject
-     *
-     * @return void
-     */
-    public static function clearExpiredCacheEntries(SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
-    {
-        $interval = $siteConfiguration->getIdentificationCacheExpiry();
-
-        $query = <<<SQL
+		$stmt = $this->dbObject->prepare($query);
+		$stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
+		$stmt->execute();
+
+		// Guaranteed by the query to only return a single row with a single column
+		$results = $stmt->fetch(PDO::FETCH_NUM);
+
+		// I don't expect this to ever be a value other than 0 or 1 since the `onwikiusername` column is declared as a
+		// unique key - but meh.
+		return $results[0] != 0;
+	}
+
+	/**
+	 * Does pretty much exactly what it says on the label - this method will clear all expired idcache entries from the
+	 * idcache table.  Meant to be called periodically by a maintenance script.
+	 *
+	 * @param SiteConfiguration $siteConfiguration
+	 * @param PdoDatabase       $dbObject
+	 *
+	 * @return void
+	 */
+	public static function clearExpiredCacheEntries(SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
+	{
+		$interval = $siteConfiguration->getIdentificationCacheExpiry();
+
+		$query = <<<SQL
 			DELETE FROM `idcache`
 			WHERE DATE_ADD(`checktime`, INTERVAL {$interval}) < NOW();
 SQL;
-        $dbObject->prepare($query)->execute();
-    }
-
-    /**
-     * This method will add an entry to the idcache that the given Wikipedia user has been verified as identified.  This
-     * is so we don't have to hit the API every single time we check.  The cache entry is valid for as long as specified
-     * in the ACC configuration (validity enforced by checkIdentificationCache() and clearExpiredCacheEntries()).
-     *
-     * @param string $onWikiName The Wikipedia username of the user
-     *
-     * @return void
-     * @category Security-Critical
-     */
-    private function cacheIdentificationStatus($onWikiName)
-    {
-        $query = <<<SQL
+		$dbObject->prepare($query)->execute();
+	}
+
+	/**
+	 * This method will add an entry to the idcache that the given Wikipedia user has been verified as identified.  This
+	 * is so we don't have to hit the API every single time we check.  The cache entry is valid for as long as specified
+	 * in the ACC configuration (validity enforced by checkIdentificationCache() and clearExpiredCacheEntries()).
+	 *
+	 * @param string $onWikiName The Wikipedia username of the user
+	 *
+	 * @return void
+	 * @category Security-Critical
+	 */
+	private function cacheIdentificationStatus($onWikiName)
+	{
+		$query = <<<SQL
 			INSERT INTO `idcache`
 				(`onwikiusername`)
 			VALUES
@@ -159,44 +159,44 @@  discard block
 block discarded – undo
 				`onwikiusername` = VALUES(`onwikiusername`),
 				`checktime` = CURRENT_TIMESTAMP;
 SQL;
-        $stmt = $this->dbObject->prepare($query);
-        $stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
-        $stmt->execute();
-    }
-
-    /**
-     * Queries the Wikimedia API to determine if the specified user is listed on the identification noticeboard.
-     *
-     * @param string $onWikiName The Wikipedia username of the user
-     *
-     * @return bool
-     * @throws EnvironmentException
-     * @category Security-Critical
-     */
-    private function isIdentifiedOnWiki($onWikiName)
-    {
-        $strings = new StringFunctions();
-
-        // First character of Wikipedia usernames is always capitalized.
-        $onWikiName = $strings->ucfirst($onWikiName);
-
-        $parameters = self::$apiQueryParameters;
-        $parameters['pltitles'] = "User:" . $onWikiName;
-
-        try {
-            $endpoint = $this->siteConfiguration->getMetaWikimediaWebServiceEndpoint();
-            $response = $this->httpHelper->get($endpoint, $parameters);
-            $response = json_decode($response, true);
-        } catch (CurlException $ex) {
-            // failed getting identification status, so throw a nicer error.
-            $m = 'Could not contact metawiki API to determine user\' identification status. '
-                . 'This is probably a transient error, so please try again.';
-
-            throw new EnvironmentException($m, 0, $ex);
-        }
-
-        $page = @array_pop($response['query']['pages']);
-
-        return @$page['links'][0]['title'] === "User:" . $onWikiName;
-    }
+		$stmt = $this->dbObject->prepare($query);
+		$stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
+		$stmt->execute();
+	}
+
+	/**
+	 * Queries the Wikimedia API to determine if the specified user is listed on the identification noticeboard.
+	 *
+	 * @param string $onWikiName The Wikipedia username of the user
+	 *
+	 * @return bool
+	 * @throws EnvironmentException
+	 * @category Security-Critical
+	 */
+	private function isIdentifiedOnWiki($onWikiName)
+	{
+		$strings = new StringFunctions();
+
+		// First character of Wikipedia usernames is always capitalized.
+		$onWikiName = $strings->ucfirst($onWikiName);
+
+		$parameters = self::$apiQueryParameters;
+		$parameters['pltitles'] = "User:" . $onWikiName;
+
+		try {
+			$endpoint = $this->siteConfiguration->getMetaWikimediaWebServiceEndpoint();
+			$response = $this->httpHelper->get($endpoint, $parameters);
+			$response = json_decode($response, true);
+		} catch (CurlException $ex) {
+			// failed getting identification status, so throw a nicer error.
+			$m = 'Could not contact metawiki API to determine user\' identification status. '
+				. 'This is probably a transient error, so please try again.';
+
+			throw new EnvironmentException($m, 0, $ex);
+		}
+
+		$page = @array_pop($response['query']['pages']);
+
+		return @$page['links'][0]['title'] === "User:" . $onWikiName;
+	}
 }

Please login to merge, or discard this patch.

includes/Security/SecurityManager.php 1 patch

Indentation +196 added lines, -196 removed lines patch added patch discarded remove patch

@@ -14,200 +14,200 @@
 block discarded – undo
 
 final class SecurityManager
 {
-    const ALLOWED = 1;
-    const ERROR_NOT_IDENTIFIED = 2;
-    const ERROR_DENIED = 3;
-    /** @var IdentificationVerifier */
-    private $identificationVerifier;
-    /**
-     * @var RoleConfiguration
-     */
-    private $roleConfiguration;
-
-    /**
-     * SecurityManager constructor.
-     *
-     * @param IdentificationVerifier $identificationVerifier
-     * @param RoleConfiguration      $roleConfiguration
-     */
-    public function __construct(
-        IdentificationVerifier $identificationVerifier,
-        RoleConfiguration $roleConfiguration
-    ) {
-        $this->identificationVerifier = $identificationVerifier;
-        $this->roleConfiguration = $roleConfiguration;
-    }
-
-    /**
-     * Tests if a user is allowed to perform an action.
-     *
-     * This method should form a hard, deterministic security barrier, and only return true if it is absolutely sure
-     * that a user should have access to something.
-     *
-     * @param string $page
-     * @param string $route
-     * @param User   $user
-     *
-     * @return int
-     *
-     * @category Security-Critical
-     */
-    public function allows($page, $route, User $user)
-    {
-        $this->getActiveRoles($user, $activeRoles, $inactiveRoles);
-
-        $availableRights = $this->flattenRoles($activeRoles);
-        $testResult = $this->findResult($availableRights, $page, $route);
-
-        if ($testResult !== null) {
-            // We got a firm result here, so just return it.
-            return $testResult;
-        }
-
-        // No firm result yet, so continue testing the inactive roles so we can give a better error.
-        $inactiveRights = $this->flattenRoles($inactiveRoles);
-        $testResult = $this->findResult($inactiveRights, $page, $route);
-
-        if ($testResult === self::ALLOWED) {
-            // The user is allowed to access this, but their role is inactive.
-            return self::ERROR_NOT_IDENTIFIED;
-        }
-
-        // Other options from the secondary test are denied and inconclusive, which at this point defaults to denied.
-        return self::ERROR_DENIED;
-    }
-
-    /**
-     * @param array  $pseudoRole The role (flattened) to check
-     * @param string $page       The page class to check
-     * @param string $route      The page route to check
-     *
-     * @return int|null
-     */
-    private function findResult($pseudoRole, $page, $route)
-    {
-        if (isset($pseudoRole[$page])) {
-            // check for deny on catch-all route
-            if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
-                if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_DENY) {
-                    return self::ERROR_DENIED;
-                }
-            }
-
-            // check normal route
-            if (isset($pseudoRole[$page][$route])) {
-                if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_DENY) {
-                    return self::ERROR_DENIED;
-                }
-
-                if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_ALLOW) {
-                    return self::ALLOWED;
-                }
-            }
-
-            // check for allowed on catch-all route
-            if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
-                if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_ALLOW) {
-                    return self::ALLOWED;
-                }
-            }
-        }
-
-        // return indeterminate result
-        return null;
-    }
-
-    /**
-     * Takes an array of roles and flattens the values to a single set.
-     *
-     * @param array $activeRoles
-     *
-     * @return array
-     */
-    private function flattenRoles($activeRoles)
-    {
-        $result = array();
-
-        $roleConfig = $this->roleConfiguration->getApplicableRoles($activeRoles);
-
-        // Iterate over every page in every role
-        foreach ($roleConfig as $role) {
-            foreach ($role as $page => $pageRights) {
-                // Create holder in result for this page
-                if (!isset($result[$page])) {
-                    $result[$page] = array();
-                }
-
-                foreach ($pageRights as $action => $permission) {
-                    // Deny takes precedence, so if it's set, don't change it.
-                    if (isset($result[$page][$action])) {
-                        if ($result[$page][$action] === RoleConfiguration::ACCESS_DENY) {
-                            continue;
-                        }
-                    }
-
-                    if ($permission === RoleConfiguration::ACCESS_DEFAULT) {
-                        // Configured to do precisely nothing.
-                        continue;
-                    }
-
-                    $result[$page][$action] = $permission;
-                }
-            }
-        }
-
-        return $result;
-    }
-
-    /**
-     * @param User  $user
-     * @param array $activeRoles
-     * @param array $inactiveRoles
-     */
-    public function getActiveRoles(User $user, &$activeRoles, &$inactiveRoles)
-    {
-        // Default to the community user here, because the main user is logged out
-        $identified = false;
-        $userRoles = array('public');
-
-        // if we're not the community user, get our real rights.
-        if (!$user->isCommunityUser()) {
-            // Check the user's status - only active users are allowed the effects of roles
-
-            $userRoles[] = 'loggedIn';
-
-            if ($user->isActive()) {
-                $ur = UserRole::getForUser($user->getId(), $user->getDatabase());
-
-                // NOTE: public is still in this array.
-                foreach ($ur as $r) {
-                    $userRoles[] = $r->getRole();
-                }
-
-                $identified = $user->isIdentified($this->identificationVerifier);
-            }
-        }
-
-        $activeRoles = array();
-        $inactiveRoles = array();
-
-        /** @var string $v */
-        foreach ($userRoles as $v) {
-            if ($this->roleConfiguration->roleNeedsIdentification($v)) {
-                if ($identified) {
-                    $activeRoles[] = $v;
-                }
-                else {
-                    $inactiveRoles[] = $v;
-                }
-            }
-            else {
-                $activeRoles[] = $v;
-            }
-        }
-    }
-
-    public function getRoleConfiguration(){
-        return $this->roleConfiguration;
-    }
+	const ALLOWED = 1;
+	const ERROR_NOT_IDENTIFIED = 2;
+	const ERROR_DENIED = 3;
+	/** @var IdentificationVerifier */
+	private $identificationVerifier;
+	/**
+	 * @var RoleConfiguration
+	 */
+	private $roleConfiguration;
+
+	/**
+	 * SecurityManager constructor.
+	 *
+	 * @param IdentificationVerifier $identificationVerifier
+	 * @param RoleConfiguration      $roleConfiguration
+	 */
+	public function __construct(
+		IdentificationVerifier $identificationVerifier,
+		RoleConfiguration $roleConfiguration
+	) {
+		$this->identificationVerifier = $identificationVerifier;
+		$this->roleConfiguration = $roleConfiguration;
+	}
+
+	/**
+	 * Tests if a user is allowed to perform an action.
+	 *
+	 * This method should form a hard, deterministic security barrier, and only return true if it is absolutely sure
+	 * that a user should have access to something.
+	 *
+	 * @param string $page
+	 * @param string $route
+	 * @param User   $user
+	 *
+	 * @return int
+	 *
+	 * @category Security-Critical
+	 */
+	public function allows($page, $route, User $user)
+	{
+		$this->getActiveRoles($user, $activeRoles, $inactiveRoles);
+
+		$availableRights = $this->flattenRoles($activeRoles);
+		$testResult = $this->findResult($availableRights, $page, $route);
+
+		if ($testResult !== null) {
+			// We got a firm result here, so just return it.
+			return $testResult;
+		}
+
+		// No firm result yet, so continue testing the inactive roles so we can give a better error.
+		$inactiveRights = $this->flattenRoles($inactiveRoles);
+		$testResult = $this->findResult($inactiveRights, $page, $route);
+
+		if ($testResult === self::ALLOWED) {
+			// The user is allowed to access this, but their role is inactive.
+			return self::ERROR_NOT_IDENTIFIED;
+		}
+
+		// Other options from the secondary test are denied and inconclusive, which at this point defaults to denied.
+		return self::ERROR_DENIED;
+	}
+
+	/**
+	 * @param array  $pseudoRole The role (flattened) to check
+	 * @param string $page       The page class to check
+	 * @param string $route      The page route to check
+	 *
+	 * @return int|null
+	 */
+	private function findResult($pseudoRole, $page, $route)
+	{
+		if (isset($pseudoRole[$page])) {
+			// check for deny on catch-all route
+			if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
+				if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_DENY) {
+					return self::ERROR_DENIED;
+				}
+			}
+
+			// check normal route
+			if (isset($pseudoRole[$page][$route])) {
+				if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_DENY) {
+					return self::ERROR_DENIED;
+				}
+
+				if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_ALLOW) {
+					return self::ALLOWED;
+				}
+			}
+
+			// check for allowed on catch-all route
+			if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
+				if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_ALLOW) {
+					return self::ALLOWED;
+				}
+			}
+		}
+
+		// return indeterminate result
+		return null;
+	}
+
+	/**
+	 * Takes an array of roles and flattens the values to a single set.
+	 *
+	 * @param array $activeRoles
+	 *
+	 * @return array
+	 */
+	private function flattenRoles($activeRoles)
+	{
+		$result = array();
+
+		$roleConfig = $this->roleConfiguration->getApplicableRoles($activeRoles);
+
+		// Iterate over every page in every role
+		foreach ($roleConfig as $role) {
+			foreach ($role as $page => $pageRights) {
+				// Create holder in result for this page
+				if (!isset($result[$page])) {
+					$result[$page] = array();
+				}
+
+				foreach ($pageRights as $action => $permission) {
+					// Deny takes precedence, so if it's set, don't change it.
+					if (isset($result[$page][$action])) {
+						if ($result[$page][$action] === RoleConfiguration::ACCESS_DENY) {
+							continue;
+						}
+					}
+
+					if ($permission === RoleConfiguration::ACCESS_DEFAULT) {
+						// Configured to do precisely nothing.
+						continue;
+					}
+
+					$result[$page][$action] = $permission;
+				}
+			}
+		}
+
+		return $result;
+	}
+
+	/**
+	 * @param User  $user
+	 * @param array $activeRoles
+	 * @param array $inactiveRoles
+	 */
+	public function getActiveRoles(User $user, &$activeRoles, &$inactiveRoles)
+	{
+		// Default to the community user here, because the main user is logged out
+		$identified = false;
+		$userRoles = array('public');
+
+		// if we're not the community user, get our real rights.
+		if (!$user->isCommunityUser()) {
+			// Check the user's status - only active users are allowed the effects of roles
+
+			$userRoles[] = 'loggedIn';
+
+			if ($user->isActive()) {
+				$ur = UserRole::getForUser($user->getId(), $user->getDatabase());
+
+				// NOTE: public is still in this array.
+				foreach ($ur as $r) {
+					$userRoles[] = $r->getRole();
+				}
+
+				$identified = $user->isIdentified($this->identificationVerifier);
+			}
+		}
+
+		$activeRoles = array();
+		$inactiveRoles = array();
+
+		/** @var string $v */
+		foreach ($userRoles as $v) {
+			if ($this->roleConfiguration->roleNeedsIdentification($v)) {
+				if ($identified) {
+					$activeRoles[] = $v;
+				}
+				else {
+					$inactiveRoles[] = $v;
+				}
+			}
+			else {
+				$activeRoles[] = $v;
+			}
+		}
+	}
+
+	public function getRoleConfiguration(){
+		return $this->roleConfiguration;
+	}
 }

Please login to merge, or discard this patch.

includes/Security/RoleConfiguration.php 1 patch

Indentation +307 added lines, -307 removed lines patch added patch discarded remove patch

@@ -41,338 +41,338 @@
 block discarded – undo
 
 class RoleConfiguration
 {
-    const ACCESS_ALLOW = 1;
-    const ACCESS_DENY = -1;
-    const ACCESS_DEFAULT = 0;
-    const MAIN = 'main';
-    const ALL = '*';
-    /**
-     * A map of roles to rights
-     *
-     * For example:
-     *
-     * array(
-     *   'myrole' => array(
-     *       PageMyPage::class => array(
-     *           'edit' => self::ACCESS_ALLOW,
-     *           'create' => self::ACCESS_DENY,
-     *       )
-     *   )
-     * )
-     *
-     * Note that DENY takes precedence over everything else when roles are combined, followed by ALLOW, followed by
-     * DEFAULT. Thus, if you have the following ([A]llow, [D]eny, [-] (default)) grants in different roles, this should
-     * be the expected result:
-     *
-     * - (-,-,-) = - (default because nothing to explicitly say allowed or denied equates to a denial)
-     * - (A,-,-) = A
-     * - (D,-,-) = D
-     * - (A,D,-) = D (deny takes precedence over allow)
-     * - (A,A,A) = A (repetition has no effect)
-     *
-     * The public role is special, and is applied to all users automatically. Avoid using deny on this role.
-     *
-     * @var array
-     */
-    private $roleConfig = array(
-        'public'            => array(
-            /*
+	const ACCESS_ALLOW = 1;
+	const ACCESS_DENY = -1;
+	const ACCESS_DEFAULT = 0;
+	const MAIN = 'main';
+	const ALL = '*';
+	/**
+	 * A map of roles to rights
+	 *
+	 * For example:
+	 *
+	 * array(
+	 *   'myrole' => array(
+	 *       PageMyPage::class => array(
+	 *           'edit' => self::ACCESS_ALLOW,
+	 *           'create' => self::ACCESS_DENY,
+	 *       )
+	 *   )
+	 * )
+	 *
+	 * Note that DENY takes precedence over everything else when roles are combined, followed by ALLOW, followed by
+	 * DEFAULT. Thus, if you have the following ([A]llow, [D]eny, [-] (default)) grants in different roles, this should
+	 * be the expected result:
+	 *
+	 * - (-,-,-) = - (default because nothing to explicitly say allowed or denied equates to a denial)
+	 * - (A,-,-) = A
+	 * - (D,-,-) = D
+	 * - (A,D,-) = D (deny takes precedence over allow)
+	 * - (A,A,A) = A (repetition has no effect)
+	 *
+	 * The public role is special, and is applied to all users automatically. Avoid using deny on this role.
+	 *
+	 * @var array
+	 */
+	private $roleConfig = array(
+		'public'            => array(
+			/*
              * THIS ROLE IS GRANTED TO ALL LOGGED *OUT* USERS IMPLICITLY.
              *
              * USERS IN THIS ROLE DO NOT HAVE TO BE IDENTIFIED TO GET THE RIGHTS CONFERRED HERE.
              * DO NOT ADD ANY SECURITY-SENSITIVE RIGHTS HERE.
              */
-            '_childRoles'    => array(
-                'publicStats',
-            ),
-            PageOAuth::class => array(
-                'callback' => self::ACCESS_ALLOW,
-            ),
-            PageTeam::class  => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-        ),
-        'loggedIn'            => array(
-            /*
+			'_childRoles'    => array(
+				'publicStats',
+			),
+			PageOAuth::class => array(
+				'callback' => self::ACCESS_ALLOW,
+			),
+			PageTeam::class  => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+		),
+		'loggedIn'            => array(
+			/*
              * THIS ROLE IS GRANTED TO ALL LOGGED IN USERS IMPLICITLY.
              *
              * USERS IN THIS ROLE DO NOT HAVE TO BE IDENTIFIED TO GET THE RIGHTS CONFERRED HERE.
              * DO NOT ADD ANY SECURITY-SENSITIVE RIGHTS HERE.
              */
-            '_childRoles'    => array(
-                'public',
-            ),
-            PagePreferences::class               => array(
-                self::MAIN       => self::ACCESS_ALLOW,
-                'changePassword' => self::ACCESS_ALLOW,
-            ),
-            PageOAuth::class                     => array(
-                'attach' => self::ACCESS_ALLOW,
-                'detach' => self::ACCESS_ALLOW,
-            ),
-        ),
-        'user'              => array(
-            '_description' => 'A standard tool user.',
-            '_editableBy' => array('admin', 'toolRoot'),
-            '_childRoles'                        => array(
-                'internalStats',
-            ),
-            PageMain::class                      => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageBan::class                       => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageEditComment::class               => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageEmailManagement::class           => array(
-                self::MAIN => self::ACCESS_ALLOW,
-                'view'     => self::ACCESS_ALLOW,
-            ),
-            PageExpandedRequestList::class       => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageLog::class                       => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageSearch::class                    => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageWelcomeTemplateManagement::class => array(
-                self::MAIN => self::ACCESS_ALLOW,
-                'select'   => self::ACCESS_ALLOW,
-                'view'     => self::ACCESS_ALLOW,
-            ),
-            PageViewRequest::class               => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            'RequestData'                        => array(
-                'seePrivateDataWhenReserved' => self::ACCESS_ALLOW,
-                'seePrivateDataWithHash'     => self::ACCESS_ALLOW,
-            ),
-            PageCustomClose::class               => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageComment::class                   => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageCloseRequest::class              => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageDeferRequest::class              => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageDropRequest::class               => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageReservation::class               => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageSendToUser::class                => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageBreakReservation::class          => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
+			'_childRoles'    => array(
+				'public',
+			),
+			PagePreferences::class               => array(
+				self::MAIN       => self::ACCESS_ALLOW,
+				'changePassword' => self::ACCESS_ALLOW,
+			),
+			PageOAuth::class                     => array(
+				'attach' => self::ACCESS_ALLOW,
+				'detach' => self::ACCESS_ALLOW,
+			),
+		),
+		'user'              => array(
+			'_description' => 'A standard tool user.',
+			'_editableBy' => array('admin', 'toolRoot'),
+			'_childRoles'                        => array(
+				'internalStats',
+			),
+			PageMain::class                      => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageBan::class                       => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageEditComment::class               => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageEmailManagement::class           => array(
+				self::MAIN => self::ACCESS_ALLOW,
+				'view'     => self::ACCESS_ALLOW,
+			),
+			PageExpandedRequestList::class       => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageLog::class                       => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageSearch::class                    => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageWelcomeTemplateManagement::class => array(
+				self::MAIN => self::ACCESS_ALLOW,
+				'select'   => self::ACCESS_ALLOW,
+				'view'     => self::ACCESS_ALLOW,
+			),
+			PageViewRequest::class               => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			'RequestData'                        => array(
+				'seePrivateDataWhenReserved' => self::ACCESS_ALLOW,
+				'seePrivateDataWithHash'     => self::ACCESS_ALLOW,
+			),
+			PageCustomClose::class               => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageComment::class                   => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageCloseRequest::class              => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageDeferRequest::class              => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageDropRequest::class               => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageReservation::class               => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageSendToUser::class                => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageBreakReservation::class          => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
 
-        ),
-        'admin'             => array(
-            '_description' => 'A tool administrator.',
-            '_editableBy' => array('admin', 'toolRoot'),
-            '_childRoles'                        => array(
-                'user', 'requestAdminTools',
-            ),
-            PageEmailManagement::class           => array(
-                'edit'   => self::ACCESS_ALLOW,
-                'create' => self::ACCESS_ALLOW,
-            ),
-            PageSiteNotice::class                => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            PageUserManagement::class            => array(
-                self::MAIN  => self::ACCESS_ALLOW,
-                'approve'   => self::ACCESS_ALLOW,
-                'decline'   => self::ACCESS_ALLOW,
-                'rename'    => self::ACCESS_ALLOW,
-                'editUser'  => self::ACCESS_ALLOW,
-                'suspend'   => self::ACCESS_ALLOW,
-                'editRoles' => self::ACCESS_ALLOW,
-            ),
-            PageWelcomeTemplateManagement::class => array(
-                'edit'   => self::ACCESS_ALLOW,
-                'delete' => self::ACCESS_ALLOW,
-                'add'    => self::ACCESS_ALLOW,
-            ),
-        ),
-        'checkuser'         => array(
-            '_description' => 'A user with CheckUser access',
-            '_editableBy' => array('checkuser', 'toolRoot'),
-            '_childRoles'             => array(
-                'user', 'requestAdminTools',
-            ),
-            PageUserManagement::class => array(
-                self::MAIN  => self::ACCESS_ALLOW,
-                'suspend'   => self::ACCESS_ALLOW,
-                'editRoles' => self::ACCESS_ALLOW,
-            ),
-            'RequestData'             => array(
-                'seeUserAgentData' => self::ACCESS_ALLOW,
-            ),
-        ),
-        'toolRoot'         => array(
-            '_description' => 'A user with shell access to the servers running the tool',
-            '_editableBy' => array('toolRoot'),
-            '_childRoles'             => array(
-                'admin', 'checkuser',
-            ),
-        ),
+		),
+		'admin'             => array(
+			'_description' => 'A tool administrator.',
+			'_editableBy' => array('admin', 'toolRoot'),
+			'_childRoles'                        => array(
+				'user', 'requestAdminTools',
+			),
+			PageEmailManagement::class           => array(
+				'edit'   => self::ACCESS_ALLOW,
+				'create' => self::ACCESS_ALLOW,
+			),
+			PageSiteNotice::class                => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			PageUserManagement::class            => array(
+				self::MAIN  => self::ACCESS_ALLOW,
+				'approve'   => self::ACCESS_ALLOW,
+				'decline'   => self::ACCESS_ALLOW,
+				'rename'    => self::ACCESS_ALLOW,
+				'editUser'  => self::ACCESS_ALLOW,
+				'suspend'   => self::ACCESS_ALLOW,
+				'editRoles' => self::ACCESS_ALLOW,
+			),
+			PageWelcomeTemplateManagement::class => array(
+				'edit'   => self::ACCESS_ALLOW,
+				'delete' => self::ACCESS_ALLOW,
+				'add'    => self::ACCESS_ALLOW,
+			),
+		),
+		'checkuser'         => array(
+			'_description' => 'A user with CheckUser access',
+			'_editableBy' => array('checkuser', 'toolRoot'),
+			'_childRoles'             => array(
+				'user', 'requestAdminTools',
+			),
+			PageUserManagement::class => array(
+				self::MAIN  => self::ACCESS_ALLOW,
+				'suspend'   => self::ACCESS_ALLOW,
+				'editRoles' => self::ACCESS_ALLOW,
+			),
+			'RequestData'             => array(
+				'seeUserAgentData' => self::ACCESS_ALLOW,
+			),
+		),
+		'toolRoot'         => array(
+			'_description' => 'A user with shell access to the servers running the tool',
+			'_editableBy' => array('toolRoot'),
+			'_childRoles'             => array(
+				'admin', 'checkuser',
+			),
+		),
 
-        // Child roles go below this point
-        'publicStats'       => array(
-            '_hidden'               => true,
-            StatsUsers::class       => array(
-                self::MAIN => self::ACCESS_ALLOW,
-                'detail'   => self::ACCESS_ALLOW,
-            ),
-            StatsTopCreators::class => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-        ),
-        'internalStats'     => array(
-            '_hidden'                    => true,
-            StatsMain::class             => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            StatsFastCloses::class       => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            StatsInactiveUsers::class    => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            StatsMonthlyStats::class     => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            StatsReservedRequests::class => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-            StatsTemplateStats::class    => array(
-                self::MAIN => self::ACCESS_ALLOW,
-            ),
-        ),
-        'requestAdminTools' => array(
-            '_hidden'                   => true,
-            PageBan::class              => array(
-                self::MAIN => self::ACCESS_ALLOW,
-                'set'      => self::ACCESS_ALLOW,
-                'remove'   => self::ACCESS_ALLOW,
-            ),
-            PageEditComment::class      => array(
-                'editOthers' => self::ACCESS_ALLOW,
-            ),
-            PageBreakReservation::class => array(
-                'force' => self::ACCESS_ALLOW,
-            ),
-            PageCustomClose::class      => array(
-                'skipCcMailingList' => self::ACCESS_ALLOW,
-            ),
-            'RequestData'               => array(
-                'reopenOldRequest'      => self::ACCESS_ALLOW,
-                'alwaysSeePrivateData'  => self::ACCESS_ALLOW,
-                'alwaysSeeHash'         => self::ACCESS_ALLOW,
-                'seeRestrictedComments' => self::ACCESS_ALLOW,
-            ),
-        ),
-    );
-    /** @var array
-     * List of roles which are *exempt* from the identification requirements
-     *
-     * Think twice about adding roles to this list.
-     *
-     * @category Security-Critical
-     */
-    private $identificationExempt = array('public', 'loggedIn');
+		// Child roles go below this point
+		'publicStats'       => array(
+			'_hidden'               => true,
+			StatsUsers::class       => array(
+				self::MAIN => self::ACCESS_ALLOW,
+				'detail'   => self::ACCESS_ALLOW,
+			),
+			StatsTopCreators::class => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+		),
+		'internalStats'     => array(
+			'_hidden'                    => true,
+			StatsMain::class             => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			StatsFastCloses::class       => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			StatsInactiveUsers::class    => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			StatsMonthlyStats::class     => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			StatsReservedRequests::class => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+			StatsTemplateStats::class    => array(
+				self::MAIN => self::ACCESS_ALLOW,
+			),
+		),
+		'requestAdminTools' => array(
+			'_hidden'                   => true,
+			PageBan::class              => array(
+				self::MAIN => self::ACCESS_ALLOW,
+				'set'      => self::ACCESS_ALLOW,
+				'remove'   => self::ACCESS_ALLOW,
+			),
+			PageEditComment::class      => array(
+				'editOthers' => self::ACCESS_ALLOW,
+			),
+			PageBreakReservation::class => array(
+				'force' => self::ACCESS_ALLOW,
+			),
+			PageCustomClose::class      => array(
+				'skipCcMailingList' => self::ACCESS_ALLOW,
+			),
+			'RequestData'               => array(
+				'reopenOldRequest'      => self::ACCESS_ALLOW,
+				'alwaysSeePrivateData'  => self::ACCESS_ALLOW,
+				'alwaysSeeHash'         => self::ACCESS_ALLOW,
+				'seeRestrictedComments' => self::ACCESS_ALLOW,
+			),
+		),
+	);
+	/** @var array
+	 * List of roles which are *exempt* from the identification requirements
+	 *
+	 * Think twice about adding roles to this list.
+	 *
+	 * @category Security-Critical
+	 */
+	private $identificationExempt = array('public', 'loggedIn');
 
-    /**
-     * RoleConfiguration constructor.
-     *
-     * @param array $roleConfig           Set to non-null to override the default configuration.
-     * @param array $identificationExempt Set to non-null to override the default configuration.
-     */
-    public function __construct(array $roleConfig = null, array $identificationExempt = null)
-    {
-        if ($roleConfig !== null) {
-            $this->roleConfig = $roleConfig;
-        }
+	/**
+	 * RoleConfiguration constructor.
+	 *
+	 * @param array $roleConfig           Set to non-null to override the default configuration.
+	 * @param array $identificationExempt Set to non-null to override the default configuration.
+	 */
+	public function __construct(array $roleConfig = null, array $identificationExempt = null)
+	{
+		if ($roleConfig !== null) {
+			$this->roleConfig = $roleConfig;
+		}
 
-        if ($identificationExempt !== null) {
-            $this->identificationExempt = $identificationExempt;
-        }
-    }
+		if ($identificationExempt !== null) {
+			$this->identificationExempt = $identificationExempt;
+		}
+	}
 
-    /**
-     * @param array $roles The roles to check
-     *
-     * @return array
-     */
-    public function getApplicableRoles(array $roles)
-    {
-        $available = array();
+	/**
+	 * @param array $roles The roles to check
+	 *
+	 * @return array
+	 */
+	public function getApplicableRoles(array $roles)
+	{
+		$available = array();
 
-        foreach ($roles as $role) {
-            if (!isset($this->roleConfig[$role])) {
-                // wat
-                continue;
-            }
+		foreach ($roles as $role) {
+			if (!isset($this->roleConfig[$role])) {
+				// wat
+				continue;
+			}
 
-            $available[$role] = $this->roleConfig[$role];
+			$available[$role] = $this->roleConfig[$role];
 
-            if (isset($available[$role]['_childRoles'])) {
-                $childRoles = self::getApplicableRoles($available[$role]['_childRoles']);
-                $available = array_merge($available, $childRoles);
+			if (isset($available[$role]['_childRoles'])) {
+				$childRoles = self::getApplicableRoles($available[$role]['_childRoles']);
+				$available = array_merge($available, $childRoles);
 
-                unset($available[$role]['_childRoles']);
-            }
+				unset($available[$role]['_childRoles']);
+			}
 
-            foreach (array('_hidden', '_editableBy', '_description') as $item) {
-                if (isset($available[$role][$item])) {
-                    unset($available[$role][$item]);
-                }
-            }
-        }
+			foreach (array('_hidden', '_editableBy', '_description') as $item) {
+				if (isset($available[$role][$item])) {
+					unset($available[$role][$item]);
+				}
+			}
+		}
 
-        return $available;
-    }
+		return $available;
+	}
 
-    public function getAvailableRoles()
-    {
-        $possible = array_diff(array_keys($this->roleConfig), array('public', 'loggedIn'));
+	public function getAvailableRoles()
+	{
+		$possible = array_diff(array_keys($this->roleConfig), array('public', 'loggedIn'));
 
-        $actual = array();
+		$actual = array();
 
-        foreach ($possible as $role) {
-            if (!isset($this->roleConfig[$role]['_hidden'])) {
-                $actual[$role] = array(
-                    'description' => $this->roleConfig[$role]['_description'],
-                    'editableBy'  => $this->roleConfig[$role]['_editableBy'],
-                );
-            }
-        }
+		foreach ($possible as $role) {
+			if (!isset($this->roleConfig[$role]['_hidden'])) {
+				$actual[$role] = array(
+					'description' => $this->roleConfig[$role]['_description'],
+					'editableBy'  => $this->roleConfig[$role]['_editableBy'],
+				);
+			}
+		}
 
-        return $actual;
-    }
+		return $actual;
+	}
 
-    /**
-     * @param string $role
-     *
-     * @return bool
-     */
-    public function roleNeedsIdentification($role)
-    {
-        if (in_array($role, $this->identificationExempt)) {
-            return false;
-        }
+	/**
+	 * @param string $role
+	 *
+	 * @return bool
+	 */
+	public function roleNeedsIdentification($role)
+	{
+		if (in_array($role, $this->identificationExempt)) {
+			return false;
+		}
 
-        return true;
-    }
+		return true;
+	}
 }

Please login to merge, or discard this patch.

includes/Tasks/InternalPageBase.php 1 patch

Indentation +221 added lines, -221 removed lines patch added patch discarded remove patch

@@ -22,225 +22,225 @@
 block discarded – undo
 
 abstract class InternalPageBase extends PageBase
 {
-    use NavigationMenuAccessControl;
-
-    /** @var IdentificationVerifier */
-    private $identificationVerifier;
-    /** @var ITypeAheadHelper */
-    private $typeAheadHelper;
-    /** @var SecurityManager */
-    private $securityManager;
-    /** @var IBlacklistHelper */
-    private $blacklistHelper;
-
-    /**
-     * @return ITypeAheadHelper
-     */
-    public function getTypeAheadHelper()
-    {
-        return $this->typeAheadHelper;
-    }
-
-    /**
-     * Sets up the internal IdentificationVerifier instance.  Intended to be called from WebStart::setupHelpers().
-     *
-     * @param IdentificationVerifier $identificationVerifier
-     *
-     * @return void
-     */
-    public function setIdentificationVerifier(IdentificationVerifier $identificationVerifier)
-    {
-        $this->identificationVerifier = $identificationVerifier;
-    }
-
-    /**
-     * @param ITypeAheadHelper $typeAheadHelper
-     */
-    public function setTypeAheadHelper(ITypeAheadHelper $typeAheadHelper)
-    {
-        $this->typeAheadHelper = $typeAheadHelper;
-    }
-
-    /**
-     * Runs the page code
-     *
-     * @throws Exception
-     * @category Security-Critical
-     */
-    final public function execute()
-    {
-        if ($this->getRouteName() === null) {
-            throw new Exception("Request is unrouted.");
-        }
-
-        if ($this->getSiteConfiguration() === null) {
-            throw new Exception("Page has no configuration!");
-        }
-
-        $this->setupPage();
-
-        $this->touchUserLastActive();
-
-        $currentUser = User::getCurrent($this->getDatabase());
-
-        // Hey, this is also a security barrier, in addition to the below. Separated out for readability.
-        if (!$this->isProtectedPage()) {
-            // This page is /not/ a protected page, as such we can just run it.
-            $this->runPage();
-
-            return;
-        }
-
-        // Security barrier.
-        //
-        // This code essentially doesn't care if the user is logged in or not, as the security manager hides all that
-        // away for us
-        $securityResult = $this->getSecurityManager()->allows(get_called_class(), $this->getRouteName(), $currentUser);
-        if ($securityResult === SecurityManager::ALLOWED) {
-            // We're allowed to run the page, so let's run it.
-            $this->runPage();
-        }
-        else {
-            $this->handleAccessDenied($securityResult);
-
-            // Send the headers
-            $this->sendResponseHeaders();
-        }
-    }
-
-    /**
-     * Performs final tasks needed before rendering the page.
-     */
-    final public function finalisePage()
-    {
-        parent::finalisePage();
-
-        $this->assign('typeAheadBlock', $this->getTypeAheadHelper()->getTypeAheadScriptBlock());
-
-        $database = $this->getDatabase();
-
-        $currentUser = User::getCurrent($database);
-        if (!$currentUser->isCommunityUser()) {
-            $sql = 'SELECT * FROM user WHERE lastactive > DATE_SUB(CURRENT_TIMESTAMP(), INTERVAL 5 MINUTE);';
-            $statement = $database->query($sql);
-            $activeUsers = $statement->fetchAll(PDO::FETCH_CLASS, User::class);
-            $this->assign('onlineusers', $activeUsers);
-        }
-
-        $this->setupNavMenuAccess($currentUser);
-    }
-
-    /**
-     * Configures whether the page respects roles or not. You probably want this to return true.
-     *
-     * Set to false for public pages. You probably want this to return true.
-     *
-     * This defaults to true unless you explicitly set it to false. Setting it to false means anybody can do anything
-     * on this page, so you probably want this to return true.
-     *
-     * @return bool
-     * @category Security-Critical
-     */
-    protected function isProtectedPage()
-    {
-        return true;
-    }
-
-    protected function handleAccessDenied($denyReason)
-    {
-        $currentUser = User::getCurrent($this->getDatabase());
-
-        // Not allowed to access this resource.
-        // Firstly, let's check if we're even logged in.
-        if ($currentUser->isCommunityUser()) {
-            // Not logged in, redirect to login page
-            WebRequest::setPostLoginRedirect();
-            $this->redirect("login");
-
-            return;
-        }
-        else {
-            // Decide whether this was a rights failure, or an identification failure.
-
-            if ($denyReason === SecurityManager::ERROR_NOT_IDENTIFIED) {
-                // Not identified
-                throw new NotIdentifiedException($this->getSecurityManager());
-            }
-            elseif ($denyReason === SecurityManager::ERROR_DENIED) {
-                // Nope, plain old access denied
-                throw new AccessDeniedException($this->getSecurityManager());
-            }
-            else {
-                throw new Exception('Unknown response from security manager.');
-            }
-        }
-    }
-
-    /**
-     * Tests the security barrier for a specified action.
-     *
-     * Don't use within templates
-     *
-     * @param string      $action
-     *
-     * @param User        $user
-     * @param null|string $pageName
-     *
-     * @return bool
-     * @category Security-Critical
-     */
-    final public function barrierTest($action, User $user, $pageName = null)
-    {
-        $page = get_called_class();
-        if ($pageName !== null) {
-            $page = $pageName;
-        }
-
-        $securityResult = $this->getSecurityManager()->allows($page, $action, $user);
-
-        return $securityResult === SecurityManager::ALLOWED;
-    }
-
-    /**
-     * Updates the lastactive timestamp
-     */
-    private function touchUserLastActive()
-    {
-        if (WebRequest::getSessionUserId() !== null) {
-            $query = 'UPDATE user SET lastactive = CURRENT_TIMESTAMP() WHERE id = :id;';
-            $this->getDatabase()->prepare($query)->execute(array(":id" => WebRequest::getSessionUserId()));
-        }
-    }
-
-    /**
-     * @return SecurityManager
-     */
-    public function getSecurityManager()
-    {
-        return $this->securityManager;
-    }
-
-    /**
-     * @param SecurityManager $securityManager
-     */
-    public function setSecurityManager(SecurityManager $securityManager)
-    {
-        $this->securityManager = $securityManager;
-    }
-
-    /**
-     * @return IBlacklistHelper
-     */
-    public function getBlacklistHelper()
-    {
-        return $this->blacklistHelper;
-    }
-
-    /**
-     * @param IBlacklistHelper $blacklistHelper
-     */
-    public function setBlacklistHelper(IBlacklistHelper $blacklistHelper)
-    {
-        $this->blacklistHelper = $blacklistHelper;
-    }
+	use NavigationMenuAccessControl;
+
+	/** @var IdentificationVerifier */
+	private $identificationVerifier;
+	/** @var ITypeAheadHelper */
+	private $typeAheadHelper;
+	/** @var SecurityManager */
+	private $securityManager;
+	/** @var IBlacklistHelper */
+	private $blacklistHelper;
+
+	/**
+	 * @return ITypeAheadHelper
+	 */
+	public function getTypeAheadHelper()
+	{
+		return $this->typeAheadHelper;
+	}
+
+	/**
+	 * Sets up the internal IdentificationVerifier instance.  Intended to be called from WebStart::setupHelpers().
+	 *
+	 * @param IdentificationVerifier $identificationVerifier
+	 *
+	 * @return void
+	 */
+	public function setIdentificationVerifier(IdentificationVerifier $identificationVerifier)
+	{
+		$this->identificationVerifier = $identificationVerifier;
+	}
+
+	/**
+	 * @param ITypeAheadHelper $typeAheadHelper
+	 */
+	public function setTypeAheadHelper(ITypeAheadHelper $typeAheadHelper)
+	{
+		$this->typeAheadHelper = $typeAheadHelper;
+	}
+
+	/**
+	 * Runs the page code
+	 *
+	 * @throws Exception
+	 * @category Security-Critical
+	 */
+	final public function execute()
+	{
+		if ($this->getRouteName() === null) {
+			throw new Exception("Request is unrouted.");
+		}
+
+		if ($this->getSiteConfiguration() === null) {
+			throw new Exception("Page has no configuration!");
+		}
+
+		$this->setupPage();
+
+		$this->touchUserLastActive();
+
+		$currentUser = User::getCurrent($this->getDatabase());
+
+		// Hey, this is also a security barrier, in addition to the below. Separated out for readability.
+		if (!$this->isProtectedPage()) {
+			// This page is /not/ a protected page, as such we can just run it.
+			$this->runPage();
+
+			return;
+		}
+
+		// Security barrier.
+		//
+		// This code essentially doesn't care if the user is logged in or not, as the security manager hides all that
+		// away for us
+		$securityResult = $this->getSecurityManager()->allows(get_called_class(), $this->getRouteName(), $currentUser);
+		if ($securityResult === SecurityManager::ALLOWED) {
+			// We're allowed to run the page, so let's run it.
+			$this->runPage();
+		}
+		else {
+			$this->handleAccessDenied($securityResult);
+
+			// Send the headers
+			$this->sendResponseHeaders();
+		}
+	}
+
+	/**
+	 * Performs final tasks needed before rendering the page.
+	 */
+	final public function finalisePage()
+	{
+		parent::finalisePage();
+
+		$this->assign('typeAheadBlock', $this->getTypeAheadHelper()->getTypeAheadScriptBlock());
+
+		$database = $this->getDatabase();
+
+		$currentUser = User::getCurrent($database);
+		if (!$currentUser->isCommunityUser()) {
+			$sql = 'SELECT * FROM user WHERE lastactive > DATE_SUB(CURRENT_TIMESTAMP(), INTERVAL 5 MINUTE);';
+			$statement = $database->query($sql);
+			$activeUsers = $statement->fetchAll(PDO::FETCH_CLASS, User::class);
+			$this->assign('onlineusers', $activeUsers);
+		}
+
+		$this->setupNavMenuAccess($currentUser);
+	}
+
+	/**
+	 * Configures whether the page respects roles or not. You probably want this to return true.
+	 *
+	 * Set to false for public pages. You probably want this to return true.
+	 *
+	 * This defaults to true unless you explicitly set it to false. Setting it to false means anybody can do anything
+	 * on this page, so you probably want this to return true.
+	 *
+	 * @return bool
+	 * @category Security-Critical
+	 */
+	protected function isProtectedPage()
+	{
+		return true;
+	}
+
+	protected function handleAccessDenied($denyReason)
+	{
+		$currentUser = User::getCurrent($this->getDatabase());
+
+		// Not allowed to access this resource.
+		// Firstly, let's check if we're even logged in.
+		if ($currentUser->isCommunityUser()) {
+			// Not logged in, redirect to login page
+			WebRequest::setPostLoginRedirect();
+			$this->redirect("login");
+
+			return;
+		}
+		else {
+			// Decide whether this was a rights failure, or an identification failure.
+
+			if ($denyReason === SecurityManager::ERROR_NOT_IDENTIFIED) {
+				// Not identified
+				throw new NotIdentifiedException($this->getSecurityManager());
+			}
+			elseif ($denyReason === SecurityManager::ERROR_DENIED) {
+				// Nope, plain old access denied
+				throw new AccessDeniedException($this->getSecurityManager());
+			}
+			else {
+				throw new Exception('Unknown response from security manager.');
+			}
+		}
+	}
+
+	/**
+	 * Tests the security barrier for a specified action.
+	 *
+	 * Don't use within templates
+	 *
+	 * @param string      $action
+	 *
+	 * @param User        $user
+	 * @param null|string $pageName
+	 *
+	 * @return bool
+	 * @category Security-Critical
+	 */
+	final public function barrierTest($action, User $user, $pageName = null)
+	{
+		$page = get_called_class();
+		if ($pageName !== null) {
+			$page = $pageName;
+		}
+
+		$securityResult = $this->getSecurityManager()->allows($page, $action, $user);
+
+		return $securityResult === SecurityManager::ALLOWED;
+	}
+
+	/**
+	 * Updates the lastactive timestamp
+	 */
+	private function touchUserLastActive()
+	{
+		if (WebRequest::getSessionUserId() !== null) {
+			$query = 'UPDATE user SET lastactive = CURRENT_TIMESTAMP() WHERE id = :id;';
+			$this->getDatabase()->prepare($query)->execute(array(":id" => WebRequest::getSessionUserId()));
+		}
+	}
+
+	/**
+	 * @return SecurityManager
+	 */
+	public function getSecurityManager()
+	{
+		return $this->securityManager;
+	}
+
+	/**
+	 * @param SecurityManager $securityManager
+	 */
+	public function setSecurityManager(SecurityManager $securityManager)
+	{
+		$this->securityManager = $securityManager;
+	}
+
+	/**
+	 * @return IBlacklistHelper
+	 */
+	public function getBlacklistHelper()
+	{
+		return $this->blacklistHelper;
+	}
+
+	/**
+	 * @param IBlacklistHelper $blacklistHelper
+	 */
+	public function setBlacklistHelper(IBlacklistHelper $blacklistHelper)
+	{
+		$this->blacklistHelper = $blacklistHelper;
+	}
 }

Please login to merge, or discard this patch.

includes/Router/RequestRouter.php 1 patch

Indentation +391 added lines, -391 removed lines patch added patch discarded remove patch

@@ -55,395 +55,395 @@
 block discarded – undo
  */
 class RequestRouter implements IRequestRouter
 {
-    /**
-     * This is the core routing table for the application. The basic idea is:
-     *
-     *      array(
-     *          "foo" =>
-     *              array(
-     *                  "class"   => PageFoo::class,
-     *                  "actions" => array("bar", "other")
-     *              ),
-     * );
-     *
-     * Things to note:
-     *     - If no page is requested, we go to PageMain. PageMain can't have actions defined.
-     *
-     *     - If a page is defined and requested, but no action is requested, go to that page's main() method
-     *     - If a page is defined and requested, and an action is defined and requested, go to that action's method.
-     *     - If a page is defined and requested, and an action NOT defined and requested, go to Page404 and it's main()
-     *       method.
-     *     - If a page is NOT defined and requested, go to Page404 and it's main() method.
-     *
-     *     - Query parameters are ignored.
-     *
-     * The key point here is request routing with validation that this is allowed, before we start hitting the
-     * filesystem through the AutoLoader, and opening random files. Also, so that we validate the action requested
-     * before we start calling random methods through the web UI.
-     *
-     * Examples:
-     * /internal.php                => returns instance of PageMain, routed to main()
-     * /internal.php?query          => returns instance of PageMain, routed to main()
-     * /internal.php/foo            => returns instance of PageFoo, routed to main()
-     * /internal.php/foo?query      => returns instance of PageFoo, routed to main()
-     * /internal.php/foo/bar        => returns instance of PageFoo, routed to bar()
-     * /internal.php/foo/bar?query  => returns instance of PageFoo, routed to bar()
-     * /internal.php/foo/baz        => returns instance of Page404, routed to main()
-     * /internal.php/foo/baz?query  => returns instance of Page404, routed to main()
-     * /internal.php/bar            => returns instance of Page404, routed to main()
-     * /internal.php/bar?query      => returns instance of Page404, routed to main()
-     * /internal.php/bar/baz        => returns instance of Page404, routed to main()
-     * /internal.php/bar/baz?query  => returns instance of Page404, routed to main()
-     *
-     * Take care when changing this - a lot of places rely on the array key for redirects and other links. If you need
-     * to change the key, then you'll likely have to update a lot of files.
-     *
-     * @var array
-     */
-    private $routeMap = array(
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Login and registration
-        'logout'                      =>
-            array(
-                'class'   => PageLogout::class,
-                'actions' => array(),
-            ),
-        'login'                       =>
-            array(
-                'class'   => PageLogin::class,
-                'actions' => array(),
-            ),
-        'forgotPassword'              =>
-            array(
-                'class'   => PageForgotPassword::class,
-                'actions' => array('reset'),
-            ),
-        'register'                    =>
-            array(
-                'class'   => PageRegisterOption::class,
-                'actions' => array(),
-            ),
-        'register/standard'           =>
-            array(
-                'class'   => PageRegisterStandard::class,
-                'actions' => array('done'),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Discovery
-        'search'                      =>
-            array(
-                'class'   => PageSearch::class,
-                'actions' => array(),
-            ),
-        'logs'                        =>
-            array(
-                'class'   => PageLog::class,
-                'actions' => array(),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Administration
-        'bans'                        =>
-            array(
-                'class'   => PageBan::class,
-                'actions' => array('set', 'remove'),
-            ),
-        'userManagement'              =>
-            array(
-                'class'   => PageUserManagement::class,
-                'actions' => array(
-                    'approve',
-                    'decline',
-                    'rename',
-                    'editUser',
-                    'suspend',
-                    'editRoles',
-                ),
-            ),
-        'siteNotice'                  =>
-            array(
-                'class'   => PageSiteNotice::class,
-                'actions' => array(),
-            ),
-        'emailManagement'             =>
-            array(
-                'class'   => PageEmailManagement::class,
-                'actions' => array('create', 'edit', 'view'),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Personal preferences
-        'preferences'                 =>
-            array(
-                'class'   => PagePreferences::class,
-                'actions' => array('changePassword'),
-            ),
-        'oauth'                       =>
-            array(
-                'class'   => PageOAuth::class,
-                'actions' => array('detach', 'attach'),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Welcomer configuration
-        'welcomeTemplates'            =>
-            array(
-                'class'   => PageWelcomeTemplateManagement::class,
-                'actions' => array('select', 'edit', 'delete', 'add', 'view'),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Statistics
-        'statistics'                  =>
-            array(
-                'class'   => StatsMain::class,
-                'actions' => array(),
-            ),
-        'statistics/fastCloses'       =>
-            array(
-                'class'   => StatsFastCloses::class,
-                'actions' => array(),
-            ),
-        'statistics/inactiveUsers'    =>
-            array(
-                'class'   => StatsInactiveUsers::class,
-                'actions' => array(),
-            ),
-        'statistics/monthlyStats'     =>
-            array(
-                'class'   => StatsMonthlyStats::class,
-                'actions' => array(),
-            ),
-        'statistics/reservedRequests' =>
-            array(
-                'class'   => StatsReservedRequests::class,
-                'actions' => array(),
-            ),
-        'statistics/templateStats'    =>
-            array(
-                'class'   => StatsTemplateStats::class,
-                'actions' => array(),
-            ),
-        'statistics/topCreators'      =>
-            array(
-                'class'   => StatsTopCreators::class,
-                'actions' => array(),
-            ),
-        'statistics/users'            =>
-            array(
-                'class'   => StatsUsers::class,
-                'actions' => array('detail'),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Zoom page
-        'viewRequest'                 =>
-            array(
-                'class'   => PageViewRequest::class,
-                'actions' => array(),
-            ),
-        'viewRequest/reserve'         =>
-            array(
-                'class'   => PageReservation::class,
-                'actions' => array(),
-            ),
-        'viewRequest/breakReserve'    =>
-            array(
-                'class'   => PageBreakReservation::class,
-                'actions' => array(),
-            ),
-        'viewRequest/defer'           =>
-            array(
-                'class'   => PageDeferRequest::class,
-                'actions' => array(),
-            ),
-        'viewRequest/comment'         =>
-            array(
-                'class'   => PageComment::class,
-                'actions' => array(),
-            ),
-        'viewRequest/sendToUser'      =>
-            array(
-                'class'   => PageSendToUser::class,
-                'actions' => array(),
-            ),
-        'viewRequest/close'           =>
-            array(
-                'class'   => PageCloseRequest::class,
-                'actions' => array(),
-            ),
-        'viewRequest/drop'            =>
-            array(
-                'class'   => PageDropRequest::class,
-                'actions' => array(),
-            ),
-        'viewRequest/custom'          =>
-            array(
-                'class'   => PageCustomClose::class,
-                'actions' => array(),
-            ),
-        'editComment'                 =>
-            array(
-                'class'   => PageEditComment::class,
-                'actions' => array(),
-            ),
-
-        //////////////////////////////////////////////////////////////////////////////////////////////////
-        // Misc stuff
-        'team'                        =>
-            array(
-                'class'   => PageTeam::class,
-                'actions' => array(),
-            ),
-        'requestList'                 =>
-            array(
-                'class'   => PageExpandedRequestList::class,
-                'actions' => array(),
-            ),
-    );
-
-    /**
-     * @return IRoutedTask
-     * @throws Exception
-     */
-    final public function route()
-    {
-        $pathInfo = WebRequest::pathInfo();
-
-        list($pageClass, $action) = $this->getRouteFromPath($pathInfo);
-
-        /** @var IRoutedTask $page */
-        $page = new $pageClass();
-
-        // Dynamic creation, so we've got to be careful here. We can't use built-in language type protection, so
-        // let's use our own.
-        if (!($page instanceof IRoutedTask)) {
-            throw new Exception('Expected a page, but this is not a page.');
-        }
-
-        // OK, I'm happy at this point that we know we're running a page, and we know it's probably what we want if it
-        // inherits PageBase and has been created from the routing map.
-        $page->setRoute($action);
-
-        return $page;
-    }
-
-    /**
-     * @param $pathInfo
-     *
-     * @return array
-     */
-    protected function getRouteFromPath($pathInfo)
-    {
-        if (count($pathInfo) === 0) {
-            // No pathInfo, so no page to load. Load the main page.
-            return $this->getDefaultRoute();
-        }
-        elseif (count($pathInfo) === 1) {
-            // Exactly one path info segment, it's got to be a page.
-            $classSegment = $pathInfo[0];
-
-            return $this->routeSinglePathSegment($classSegment);
-        }
-
-        // OK, we have two or more segments now.
-        if (count($pathInfo) > 2) {
-            // Let's handle more than two, and collapse it down into two.
-            $requestedAction = array_pop($pathInfo);
-            $classSegment = implode('/', $pathInfo);
-        }
-        else {
-            // Two path info segments.
-            $classSegment = $pathInfo[0];
-            $requestedAction = $pathInfo[1];
-        }
-
-        $routeMap = $this->routePathSegments($classSegment, $requestedAction);
-
-        if ($routeMap[0] === Page404::class) {
-            $routeMap = $this->routeSinglePathSegment($classSegment . '/' . $requestedAction);
-        }
-
-        return $routeMap;
-    }
-
-    /**
-     * @param $classSegment
-     *
-     * @return array
-     */
-    final protected function routeSinglePathSegment($classSegment)
-    {
-        $routeMap = $this->getRouteMap();
-        if (array_key_exists($classSegment, $routeMap)) {
-            // Route exists, but we don't have an action in path info, so default to main.
-            $pageClass = $routeMap[$classSegment]['class'];
-            $action = 'main';
-
-            return array($pageClass, $action);
-        }
-        else {
-            // Doesn't exist in map. Fall back to 404
-            $pageClass = Page404::class;
-            $action = "main";
-
-            return array($pageClass, $action);
-        }
-    }
-
-    /**
-     * @param $classSegment
-     * @param $requestedAction
-     *
-     * @return array
-     */
-    final protected function routePathSegments($classSegment, $requestedAction)
-    {
-        $routeMap = $this->getRouteMap();
-        if (array_key_exists($classSegment, $routeMap)) {
-            // Route exists, but we don't have an action in path info, so default to main.
-
-            if (isset($routeMap[$classSegment]['actions'])
-                && array_search($requestedAction, $routeMap[$classSegment]['actions']) !== false
-            ) {
-                // Action exists in allowed action list. Allow both the page and the action
-                $pageClass = $routeMap[$classSegment]['class'];
-                $action = $requestedAction;
-
-                return array($pageClass, $action);
-            }
-            else {
-                // Valid page, invalid action. 404 our way out.
-                $pageClass = Page404::class;
-                $action = 'main';
-
-                return array($pageClass, $action);
-            }
-        }
-        else {
-            // Class doesn't exist in map. Fall back to 404
-            $pageClass = Page404::class;
-            $action = 'main';
-
-            return array($pageClass, $action);
-        }
-    }
-
-    /**
-     * @return array
-     */
-    protected function getRouteMap()
-    {
-        return $this->routeMap;
-    }
-
-    /**
-     * @return callable
-     */
-    protected function getDefaultRoute()
-    {
-        return array(PageMain::class, "main");
-    }
+	/**
+	 * This is the core routing table for the application. The basic idea is:
+	 *
+	 *      array(
+	 *          "foo" =>
+	 *              array(
+	 *                  "class"   => PageFoo::class,
+	 *                  "actions" => array("bar", "other")
+	 *              ),
+	 * );
+	 *
+	 * Things to note:
+	 *     - If no page is requested, we go to PageMain. PageMain can't have actions defined.
+	 *
+	 *     - If a page is defined and requested, but no action is requested, go to that page's main() method
+	 *     - If a page is defined and requested, and an action is defined and requested, go to that action's method.
+	 *     - If a page is defined and requested, and an action NOT defined and requested, go to Page404 and it's main()
+	 *       method.
+	 *     - If a page is NOT defined and requested, go to Page404 and it's main() method.
+	 *
+	 *     - Query parameters are ignored.
+	 *
+	 * The key point here is request routing with validation that this is allowed, before we start hitting the
+	 * filesystem through the AutoLoader, and opening random files. Also, so that we validate the action requested
+	 * before we start calling random methods through the web UI.
+	 *
+	 * Examples:
+	 * /internal.php                => returns instance of PageMain, routed to main()
+	 * /internal.php?query          => returns instance of PageMain, routed to main()
+	 * /internal.php/foo            => returns instance of PageFoo, routed to main()
+	 * /internal.php/foo?query      => returns instance of PageFoo, routed to main()
+	 * /internal.php/foo/bar        => returns instance of PageFoo, routed to bar()
+	 * /internal.php/foo/bar?query  => returns instance of PageFoo, routed to bar()
+	 * /internal.php/foo/baz        => returns instance of Page404, routed to main()
+	 * /internal.php/foo/baz?query  => returns instance of Page404, routed to main()
+	 * /internal.php/bar            => returns instance of Page404, routed to main()
+	 * /internal.php/bar?query      => returns instance of Page404, routed to main()
+	 * /internal.php/bar/baz        => returns instance of Page404, routed to main()
+	 * /internal.php/bar/baz?query  => returns instance of Page404, routed to main()
+	 *
+	 * Take care when changing this - a lot of places rely on the array key for redirects and other links. If you need
+	 * to change the key, then you'll likely have to update a lot of files.
+	 *
+	 * @var array
+	 */
+	private $routeMap = array(
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Login and registration
+		'logout'                      =>
+			array(
+				'class'   => PageLogout::class,
+				'actions' => array(),
+			),
+		'login'                       =>
+			array(
+				'class'   => PageLogin::class,
+				'actions' => array(),
+			),
+		'forgotPassword'              =>
+			array(
+				'class'   => PageForgotPassword::class,
+				'actions' => array('reset'),
+			),
+		'register'                    =>
+			array(
+				'class'   => PageRegisterOption::class,
+				'actions' => array(),
+			),
+		'register/standard'           =>
+			array(
+				'class'   => PageRegisterStandard::class,
+				'actions' => array('done'),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Discovery
+		'search'                      =>
+			array(
+				'class'   => PageSearch::class,
+				'actions' => array(),
+			),
+		'logs'                        =>
+			array(
+				'class'   => PageLog::class,
+				'actions' => array(),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Administration
+		'bans'                        =>
+			array(
+				'class'   => PageBan::class,
+				'actions' => array('set', 'remove'),
+			),
+		'userManagement'              =>
+			array(
+				'class'   => PageUserManagement::class,
+				'actions' => array(
+					'approve',
+					'decline',
+					'rename',
+					'editUser',
+					'suspend',
+					'editRoles',
+				),
+			),
+		'siteNotice'                  =>
+			array(
+				'class'   => PageSiteNotice::class,
+				'actions' => array(),
+			),
+		'emailManagement'             =>
+			array(
+				'class'   => PageEmailManagement::class,
+				'actions' => array('create', 'edit', 'view'),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Personal preferences
+		'preferences'                 =>
+			array(
+				'class'   => PagePreferences::class,
+				'actions' => array('changePassword'),
+			),
+		'oauth'                       =>
+			array(
+				'class'   => PageOAuth::class,
+				'actions' => array('detach', 'attach'),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Welcomer configuration
+		'welcomeTemplates'            =>
+			array(
+				'class'   => PageWelcomeTemplateManagement::class,
+				'actions' => array('select', 'edit', 'delete', 'add', 'view'),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Statistics
+		'statistics'                  =>
+			array(
+				'class'   => StatsMain::class,
+				'actions' => array(),
+			),
+		'statistics/fastCloses'       =>
+			array(
+				'class'   => StatsFastCloses::class,
+				'actions' => array(),
+			),
+		'statistics/inactiveUsers'    =>
+			array(
+				'class'   => StatsInactiveUsers::class,
+				'actions' => array(),
+			),
+		'statistics/monthlyStats'     =>
+			array(
+				'class'   => StatsMonthlyStats::class,
+				'actions' => array(),
+			),
+		'statistics/reservedRequests' =>
+			array(
+				'class'   => StatsReservedRequests::class,
+				'actions' => array(),
+			),
+		'statistics/templateStats'    =>
+			array(
+				'class'   => StatsTemplateStats::class,
+				'actions' => array(),
+			),
+		'statistics/topCreators'      =>
+			array(
+				'class'   => StatsTopCreators::class,
+				'actions' => array(),
+			),
+		'statistics/users'            =>
+			array(
+				'class'   => StatsUsers::class,
+				'actions' => array('detail'),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Zoom page
+		'viewRequest'                 =>
+			array(
+				'class'   => PageViewRequest::class,
+				'actions' => array(),
+			),
+		'viewRequest/reserve'         =>
+			array(
+				'class'   => PageReservation::class,
+				'actions' => array(),
+			),
+		'viewRequest/breakReserve'    =>
+			array(
+				'class'   => PageBreakReservation::class,
+				'actions' => array(),
+			),
+		'viewRequest/defer'           =>
+			array(
+				'class'   => PageDeferRequest::class,
+				'actions' => array(),
+			),
+		'viewRequest/comment'         =>
+			array(
+				'class'   => PageComment::class,
+				'actions' => array(),
+			),
+		'viewRequest/sendToUser'      =>
+			array(
+				'class'   => PageSendToUser::class,
+				'actions' => array(),
+			),
+		'viewRequest/close'           =>
+			array(
+				'class'   => PageCloseRequest::class,
+				'actions' => array(),
+			),
+		'viewRequest/drop'            =>
+			array(
+				'class'   => PageDropRequest::class,
+				'actions' => array(),
+			),
+		'viewRequest/custom'          =>
+			array(
+				'class'   => PageCustomClose::class,
+				'actions' => array(),
+			),
+		'editComment'                 =>
+			array(
+				'class'   => PageEditComment::class,
+				'actions' => array(),
+			),
+
+		//////////////////////////////////////////////////////////////////////////////////////////////////
+		// Misc stuff
+		'team'                        =>
+			array(
+				'class'   => PageTeam::class,
+				'actions' => array(),
+			),
+		'requestList'                 =>
+			array(
+				'class'   => PageExpandedRequestList::class,
+				'actions' => array(),
+			),
+	);
+
+	/**
+	 * @return IRoutedTask
+	 * @throws Exception
+	 */
+	final public function route()
+	{
+		$pathInfo = WebRequest::pathInfo();
+
+		list($pageClass, $action) = $this->getRouteFromPath($pathInfo);
+
+		/** @var IRoutedTask $page */
+		$page = new $pageClass();
+
+		// Dynamic creation, so we've got to be careful here. We can't use built-in language type protection, so
+		// let's use our own.
+		if (!($page instanceof IRoutedTask)) {
+			throw new Exception('Expected a page, but this is not a page.');
+		}
+
+		// OK, I'm happy at this point that we know we're running a page, and we know it's probably what we want if it
+		// inherits PageBase and has been created from the routing map.
+		$page->setRoute($action);
+
+		return $page;
+	}
+
+	/**
+	 * @param $pathInfo
+	 *
+	 * @return array
+	 */
+	protected function getRouteFromPath($pathInfo)
+	{
+		if (count($pathInfo) === 0) {
+			// No pathInfo, so no page to load. Load the main page.
+			return $this->getDefaultRoute();
+		}
+		elseif (count($pathInfo) === 1) {
+			// Exactly one path info segment, it's got to be a page.
+			$classSegment = $pathInfo[0];
+
+			return $this->routeSinglePathSegment($classSegment);
+		}
+
+		// OK, we have two or more segments now.
+		if (count($pathInfo) > 2) {
+			// Let's handle more than two, and collapse it down into two.
+			$requestedAction = array_pop($pathInfo);
+			$classSegment = implode('/', $pathInfo);
+		}
+		else {
+			// Two path info segments.
+			$classSegment = $pathInfo[0];
+			$requestedAction = $pathInfo[1];
+		}
+
+		$routeMap = $this->routePathSegments($classSegment, $requestedAction);
+
+		if ($routeMap[0] === Page404::class) {
+			$routeMap = $this->routeSinglePathSegment($classSegment . '/' . $requestedAction);
+		}
+
+		return $routeMap;
+	}
+
+	/**
+	 * @param $classSegment
+	 *
+	 * @return array
+	 */
+	final protected function routeSinglePathSegment($classSegment)
+	{
+		$routeMap = $this->getRouteMap();
+		if (array_key_exists($classSegment, $routeMap)) {
+			// Route exists, but we don't have an action in path info, so default to main.
+			$pageClass = $routeMap[$classSegment]['class'];
+			$action = 'main';
+
+			return array($pageClass, $action);
+		}
+		else {
+			// Doesn't exist in map. Fall back to 404
+			$pageClass = Page404::class;
+			$action = "main";
+
+			return array($pageClass, $action);
+		}
+	}
+
+	/**
+	 * @param $classSegment
+	 * @param $requestedAction
+	 *
+	 * @return array
+	 */
+	final protected function routePathSegments($classSegment, $requestedAction)
+	{
+		$routeMap = $this->getRouteMap();
+		if (array_key_exists($classSegment, $routeMap)) {
+			// Route exists, but we don't have an action in path info, so default to main.
+
+			if (isset($routeMap[$classSegment]['actions'])
+				&& array_search($requestedAction, $routeMap[$classSegment]['actions']) !== false
+			) {
+				// Action exists in allowed action list. Allow both the page and the action
+				$pageClass = $routeMap[$classSegment]['class'];
+				$action = $requestedAction;
+
+				return array($pageClass, $action);
+			}
+			else {
+				// Valid page, invalid action. 404 our way out.
+				$pageClass = Page404::class;
+				$action = 'main';
+
+				return array($pageClass, $action);
+			}
+		}
+		else {
+			// Class doesn't exist in map. Fall back to 404
+			$pageClass = Page404::class;
+			$action = 'main';
+
+			return array($pageClass, $action);
+		}
+	}
+
+	/**
+	 * @return array
+	 */
+	protected function getRouteMap()
+	{
+		return $this->routeMap;
+	}
+
+	/**
+	 * @return callable
+	 */
+	protected function getDefaultRoute()
+	{
+		return array(PageMain::class, "main");
+	}
 }

Please login to merge, or discard this patch.

includes/Exceptions/AccessDeniedException.php 1 patch

Indentation +85 added lines, -85 removed lines patch added patch discarded remove patch

@@ -26,89 +26,89 @@
 block discarded – undo
  */
 class AccessDeniedException extends ReadableException
 {
-    use NavigationMenuAccessControl;
-
-    /**
-     * @var SecurityManager
-     */
-    private $securityManager;
-
-    /**
-     * AccessDeniedException constructor.
-     *
-     * @param SecurityManager $securityManager
-     */
-    public function __construct(SecurityManager $securityManager = null)
-    {
-        $this->securityManager = $securityManager;
-    }
-
-    public function getReadableError()
-    {
-        if (!headers_sent()) {
-            header("HTTP/1.1 403 Forbidden");
-        }
-
-        $this->setUpSmarty();
-
-        // uck. We should still be able to access the database in this situation though.
-        $database = PdoDatabase::getDatabaseConnection('acc');
-        $currentUser = User::getCurrent($database);
-        $this->assign('currentUser', $currentUser);
-        $this->assign("loggedIn", (!$currentUser->isCommunityUser()));
-
-        if($this->securityManager !== null) {
-            $this->setupNavMenuAccess($currentUser);
-        }
-
-        if ($currentUser->isDeclined()) {
-            $this->assign('htmlTitle', 'Account Declined');
-            $this->assign('declineReason', $this->getLogEntry('Declined', $currentUser, $database));
-
-            return $this->fetchTemplate("exception/account-declined.tpl");
-        }
-
-        if ($currentUser->isSuspended()) {
-            $this->assign('htmlTitle', 'Account Suspended');
-            $this->assign('suspendReason', $this->getLogEntry('Suspended', $currentUser, $database));
-
-            return $this->fetchTemplate("exception/account-suspended.tpl");
-        }
-
-        if ($currentUser->isNewUser()) {
-            $this->assign('htmlTitle', 'Account Pending');
-
-            return $this->fetchTemplate("exception/account-new.tpl");
-        }
-
-        return $this->fetchTemplate("exception/access-denied.tpl");
-    }
-
-    /**
-     * @param string      $action
-     * @param User        $user
-     * @param PdoDatabase $database
-     *
-     * @return null|string
-     */
-    private function getLogEntry($action, User $user, PdoDatabase $database)
-    {
-        /** @var Log[] $logs */
-        $logs = LogSearchHelper::get($database)
-            ->byAction($action)
-            ->byObjectType('User')
-            ->byObjectId($user->getId())
-            ->limit(1)
-            ->fetch();
-
-        return $logs[0]->getComment();
-    }
-
-    /**
-     * @return SecurityManager
-     */
-    protected function getSecurityManager()
-    {
-        return $this->securityManager;
-    }
+	use NavigationMenuAccessControl;
+
+	/**
+	 * @var SecurityManager
+	 */
+	private $securityManager;
+
+	/**
+	 * AccessDeniedException constructor.
+	 *
+	 * @param SecurityManager $securityManager
+	 */
+	public function __construct(SecurityManager $securityManager = null)
+	{
+		$this->securityManager = $securityManager;
+	}
+
+	public function getReadableError()
+	{
+		if (!headers_sent()) {
+			header("HTTP/1.1 403 Forbidden");
+		}
+
+		$this->setUpSmarty();
+
+		// uck. We should still be able to access the database in this situation though.
+		$database = PdoDatabase::getDatabaseConnection('acc');
+		$currentUser = User::getCurrent($database);
+		$this->assign('currentUser', $currentUser);
+		$this->assign("loggedIn", (!$currentUser->isCommunityUser()));
+
+		if($this->securityManager !== null) {
+			$this->setupNavMenuAccess($currentUser);
+		}
+
+		if ($currentUser->isDeclined()) {
+			$this->assign('htmlTitle', 'Account Declined');
+			$this->assign('declineReason', $this->getLogEntry('Declined', $currentUser, $database));
+
+			return $this->fetchTemplate("exception/account-declined.tpl");
+		}
+
+		if ($currentUser->isSuspended()) {
+			$this->assign('htmlTitle', 'Account Suspended');
+			$this->assign('suspendReason', $this->getLogEntry('Suspended', $currentUser, $database));
+
+			return $this->fetchTemplate("exception/account-suspended.tpl");
+		}
+
+		if ($currentUser->isNewUser()) {
+			$this->assign('htmlTitle', 'Account Pending');
+
+			return $this->fetchTemplate("exception/account-new.tpl");
+		}
+
+		return $this->fetchTemplate("exception/access-denied.tpl");
+	}
+
+	/**
+	 * @param string      $action
+	 * @param User        $user
+	 * @param PdoDatabase $database
+	 *
+	 * @return null|string
+	 */
+	private function getLogEntry($action, User $user, PdoDatabase $database)
+	{
+		/** @var Log[] $logs */
+		$logs = LogSearchHelper::get($database)
+			->byAction($action)
+			->byObjectType('User')
+			->byObjectId($user->getId())
+			->limit(1)
+			->fetch();
+
+		return $logs[0]->getComment();
+	}
+
+	/**
+	 * @return SecurityManager
+	 */
+	protected function getSecurityManager()
+	{
+		return $this->securityManager;
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

		@@ -14,117 +14,117 @@
		block discarded – undo
14	14
15	15	class RequestSearchHelper extends SearchHelperBase
16	16	{
17		- /**
18		- * RequestSearchHelper constructor.
19		- *
20		- * @param PdoDatabase $database
21		- */
22		- protected function __construct(PdoDatabase $database)
23		- {
24		- parent::__construct($database, 'request', Request::class);
25		- }
26		-
27		- /**
28		- * Initiates a search for requests
29		- *
30		- * @param PdoDatabase $database
31		- *
32		- * @return RequestSearchHelper
33		- */
34		- public static function get(PdoDatabase $database)
35		- {
36		- $helper = new RequestSearchHelper($database);
37		-
38		- return $helper;
39		- }
40		-
41		- /**
42		- * Filters the results by IP address
43		- *
44		- * @param string $ipAddress
45		- *
46		- * @return $this
47		- */
48		- public function byIp($ipAddress)
49		- {
50		- $this->whereClause .= ' AND (ip LIKE ? OR forwardedip LIKE ?)';
51		- $this->parameterList[] = $ipAddress;
52		- $this->parameterList[] = '%' . trim($ipAddress, '%') . '%';
53		-
54		- return $this;
55		- }
56		-
57		- /**
58		- * Filters the results by email address
59		- *
60		- * @param string $emailAddress
61		- *
62		- * @return $this
63		- */
64		- public function byEmailAddress($emailAddress)
65		- {
66		- $this->whereClause .= ' AND email LIKE ?';
67		- $this->parameterList[] = $emailAddress;
68		-
69		- return $this;
70		- }
71		-
72		- /**
73		- * Filters the results by name
74		- *
75		- * @param string $name
76		- *
77		- * @return $this
78		- */
79		- public function byName($name)
80		- {
81		- $this->whereClause .= ' AND name LIKE ?';
82		- $this->parameterList[] = $name;
83		-
84		- return $this;
85		- }
86		-
87		- /**
88		- * Excludes a request from the results
89		- *
90		- * @param int $requestId
91		- *
92		- * @return $this
93		- */
94		- public function excludingRequest($requestId)
95		- {
96		- $this->whereClause .= ' AND id <> ?';
97		- $this->parameterList[] = $requestId;
98		-
99		- return $this;
100		- }
101		-
102		- /**
103		- * Filters the results to only those with a confirmed email address
104		- *
105		- * @return $this
106		- */
107		- public function withConfirmedEmail()
108		- {
109		- $this->whereClause .= ' AND emailconfirm = ?';
110		- $this->parameterList[] = 'Confirmed';
111		-
112		- return $this;
113		- }
114		-
115		- /**
116		- * Filters the results to exclude purged data
117		- *
118		- * @param SiteConfiguration $configuration
119		- *
120		- * @return $this
121		- */
122		- public function excludingPurgedData(SiteConfiguration $configuration)
123		- {
124		- $this->whereClause .= ' AND ip <> ? AND email <> ?';
125		- $this->parameterList[] = $configuration->getDataClearIp();
126		- $this->parameterList[] = $configuration->getDataClearEmail();
127		-
128		- return $this;
129		- }
	17	+ /**
	18	+ * RequestSearchHelper constructor.
	19	+ *
	20	+ * @param PdoDatabase $database
	21	+ */
	22	+ protected function __construct(PdoDatabase $database)
	23	+ {
	24	+ parent::__construct($database, 'request', Request::class);
	25	+ }
	26	+
	27	+ /**
	28	+ * Initiates a search for requests
	29	+ *
	30	+ * @param PdoDatabase $database
	31	+ *
	32	+ * @return RequestSearchHelper
	33	+ */
	34	+ public static function get(PdoDatabase $database)
	35	+ {
	36	+ $helper = new RequestSearchHelper($database);
	37	+
	38	+ return $helper;
	39	+ }
	40	+
	41	+ /**
	42	+ * Filters the results by IP address
	43	+ *
	44	+ * @param string $ipAddress
	45	+ *
	46	+ * @return $this
	47	+ */
	48	+ public function byIp($ipAddress)
	49	+ {
	50	+ $this->whereClause .= ' AND (ip LIKE ? OR forwardedip LIKE ?)';
	51	+ $this->parameterList[] = $ipAddress;
	52	+ $this->parameterList[] = '%' . trim($ipAddress, '%') . '%';
	53	+
	54	+ return $this;
	55	+ }
	56	+
	57	+ /**
	58	+ * Filters the results by email address
	59	+ *
	60	+ * @param string $emailAddress
	61	+ *
	62	+ * @return $this
	63	+ */
	64	+ public function byEmailAddress($emailAddress)
	65	+ {
	66	+ $this->whereClause .= ' AND email LIKE ?';
	67	+ $this->parameterList[] = $emailAddress;
	68	+
	69	+ return $this;
	70	+ }
	71	+
	72	+ /**
	73	+ * Filters the results by name
	74	+ *
	75	+ * @param string $name
	76	+ *
	77	+ * @return $this
	78	+ */
	79	+ public function byName($name)
	80	+ {
	81	+ $this->whereClause .= ' AND name LIKE ?';
	82	+ $this->parameterList[] = $name;
	83	+
	84	+ return $this;
	85	+ }
	86	+
	87	+ /**
	88	+ * Excludes a request from the results
	89	+ *
	90	+ * @param int $requestId
	91	+ *
	92	+ * @return $this
	93	+ */
	94	+ public function excludingRequest($requestId)
	95	+ {
	96	+ $this->whereClause .= ' AND id <> ?';
	97	+ $this->parameterList[] = $requestId;
	98	+
	99	+ return $this;
	100	+ }
	101	+
	102	+ /**
	103	+ * Filters the results to only those with a confirmed email address
	104	+ *
	105	+ * @return $this
	106	+ */
	107	+ public function withConfirmedEmail()
	108	+ {
	109	+ $this->whereClause .= ' AND emailconfirm = ?';
	110	+ $this->parameterList[] = 'Confirmed';
	111	+
	112	+ return $this;
	113	+ }
	114	+
	115	+ /**
	116	+ * Filters the results to exclude purged data
	117	+ *
	118	+ * @param SiteConfiguration $configuration
	119	+ *
	120	+ * @return $this
	121	+ */
	122	+ public function excludingPurgedData(SiteConfiguration $configuration)
	123	+ {
	124	+ $this->whereClause .= ' AND ip <> ? AND email <> ?';
	125	+ $this->parameterList[] = $configuration->getDataClearIp();
	126	+ $this->parameterList[] = $configuration->getDataClearEmail();
	127	+
	128	+ return $this;
	129	+ }
130	130	}
131	131	\ No newline at end of file

		@@ -13,87 +13,87 @@
		block discarded – undo
13	13
14	14	class LogSearchHelper extends SearchHelperBase
15	15	{
16		- /**
17		- * LogSearchHelper constructor.
18		- *
19		- * @param PdoDatabase $database
20		- */
21		- protected function __construct(PdoDatabase $database)
22		- {
23		- parent::__construct($database, 'log', Log::class, 'timestamp DESC');
24		- }
	16	+ /**
	17	+ * LogSearchHelper constructor.
	18	+ *
	19	+ * @param PdoDatabase $database
	20	+ */
	21	+ protected function __construct(PdoDatabase $database)
	22	+ {
	23	+ parent::__construct($database, 'log', Log::class, 'timestamp DESC');
	24	+ }
25	25
26		- /**
27		- * Initiates a search for requests
28		- *
29		- * @param PdoDatabase $database
30		- *
31		- * @return LogSearchHelper
32		- */
33		- public static function get(PdoDatabase $database)
34		- {
35		- $helper = new LogSearchHelper($database);
	26	+ /**
	27	+ * Initiates a search for requests
	28	+ *
	29	+ * @param PdoDatabase $database
	30	+ *
	31	+ * @return LogSearchHelper
	32	+ */
	33	+ public static function get(PdoDatabase $database)
	34	+ {
	35	+ $helper = new LogSearchHelper($database);
36	36
37		- return $helper;
38		- }
	37	+ return $helper;
	38	+ }
39	39
40		- /**
41		- * Filters the results by user
42		- *
43		- * @param int $userId
44		- *
45		- * @return $this
46		- */
47		- public function byUser($userId)
48		- {
49		- $this->whereClause .= ' AND user = ?';
50		- $this->parameterList[] = $userId;
	40	+ /**
	41	+ * Filters the results by user
	42	+ *
	43	+ * @param int $userId
	44	+ *
	45	+ * @return $this
	46	+ */
	47	+ public function byUser($userId)
	48	+ {
	49	+ $this->whereClause .= ' AND user = ?';
	50	+ $this->parameterList[] = $userId;
51	51
52		- return $this;
53		- }
	52	+ return $this;
	53	+ }
54	54
55		- /**
56		- * Filters the results by log action
57		- *
58		- * @param string $action
59		- *
60		- * @return $this
61		- */
62		- public function byAction($action)
63		- {
64		- $this->whereClause .= ' AND action = ?';
65		- $this->parameterList[] = $action;
	55	+ /**
	56	+ * Filters the results by log action
	57	+ *
	58	+ * @param string $action
	59	+ *
	60	+ * @return $this
	61	+ */
	62	+ public function byAction($action)
	63	+ {
	64	+ $this->whereClause .= ' AND action = ?';
	65	+ $this->parameterList[] = $action;
66	66
67		- return $this;
68		- }
	67	+ return $this;
	68	+ }
69	69
70		- /**
71		- * Filters the results by object type
72		- *
73		- * @param string $objectType
74		- *
75		- * @return $this
76		- */
77		- public function byObjectType($objectType)
78		- {
79		- $this->whereClause .= ' AND objecttype = ?';
80		- $this->parameterList[] = $objectType;
	70	+ /**
	71	+ * Filters the results by object type
	72	+ *
	73	+ * @param string $objectType
	74	+ *
	75	+ * @return $this
	76	+ */
	77	+ public function byObjectType($objectType)
	78	+ {
	79	+ $this->whereClause .= ' AND objecttype = ?';
	80	+ $this->parameterList[] = $objectType;
81	81
82		- return $this;
83		- }
	82	+ return $this;
	83	+ }
84	84
85		- /**
86		- * Filters the results by object type
87		- *
88		- * @param integer $objectId
89		- *
90		- * @return $this
91		- */
92		- public function byObjectId($objectId)
93		- {
94		- $this->whereClause .= ' AND objectid = ?';
95		- $this->parameterList[] = $objectId;
	85	+ /**
	86	+ * Filters the results by object type
	87	+ *
	88	+ * @param integer $objectId
	89	+ *
	90	+ * @return $this
	91	+ */
	92	+ public function byObjectId($objectId)
	93	+ {
	94	+ $this->whereClause .= ' AND objectid = ?';
	95	+ $this->parameterList[] = $objectId;
96	96
97		- return $this;
98		- }
	97	+ return $this;
	98	+ }
99	99	}
100	100	\ No newline at end of file

		@@ -20,341 +20,341 @@
		block discarded – undo
20	20
21	21	abstract class PageBase extends TaskBase implements IRoutedTask
22	22	{
23		- use TemplateOutput;
24		- /** @var string Smarty template to display */
25		- protected $template = "base.tpl";
26		- /** @var string HTML title. Currently unused. */
27		- protected $htmlTitle;
28		- /** @var bool Determines if the page is a redirect or not */
29		- protected $isRedirecting = false;
30		- /** @var array Queue of headers to be sent on successful completion */
31		- protected $headerQueue = array();
32		- /** @var string The name of the route to use, as determined by the request router. */
33		- private $routeName = null;
34		- /** @var TokenManager */
35		- protected $tokenManager;
36		- /** @var string[] Extra CSS files to include */
37		- private $extraCss = array();
38		- /** @var string[] Extra JS files to include */
39		- private $extraJs = array();
40		-
41		- /**
42		- * Sets the route the request will take. Only should be called from the request router or barrier test.
43		- *
44		- * @param string $routeName The name of the route
45		- * @param bool $skipCallableTest Don't use this unless you know what you're doing, and what the implications are.
46		- *
47		- * @throws Exception
48		- * @category Security-Critical
49		- */
50		- final public function setRoute($routeName, $skipCallableTest = false)
51		- {
52		- // Test the new route is callable before adopting it.
53		- if (!$skipCallableTest && !is_callable(array($this, $routeName))) {
54		- throw new Exception("Proposed route '$routeName' is not callable.");
55		- }
56		-
57		- // Adopt the new route
58		- $this->routeName = $routeName;
59		- }
60		-
61		- /**
62		- * Gets the name of the route that has been passed from the request router.
63		- * @return string
64		- */
65		- final public function getRouteName()
66		- {
67		- return $this->routeName;
68		- }
69		-
70		- /**
71		- * Performs generic page setup actions
72		- */
73		- final protected function setupPage()
74		- {
75		- $this->setUpSmarty();
76		-
77		- $siteNoticeText = SiteNotice::get($this->getDatabase());
78		-
79		- $this->assign('siteNoticeText', $siteNoticeText);
80		-
81		- $currentUser = User::getCurrent($this->getDatabase());
82		- $this->assign('currentUser', $currentUser);
83		- $this->assign('loggedIn', (!$currentUser->isCommunityUser()));
84		- }
85		-
86		- /**
87		- * Runs the page logic as routed by the RequestRouter
88		- *
89		- * Only should be called after a security barrier! That means only from execute().
90		- */
91		- final protected function runPage()
92		- {
93		- $database = $this->getDatabase();
94		-
95		- // initialise a database transaction
96		- if (!$database->beginTransaction()) {
97		- throw new Exception('Failed to start transaction on primary database.');
98		- }
99		-
100		- try {
101		- // run the page code
102		- $this->{$this->getRouteName()}();
103		-
104		- $database->commit();
105		- }
106		- catch (ApplicationLogicException $ex) {
107		- // it's an application logic exception, so nothing went seriously wrong with the site. We can use the
108		- // standard templating system for this.
109		-
110		- // Firstly, let's undo anything that happened to the database.
111		- $database->rollBack();
112		-
113		- // Reset smarty
114		- $this->setUpSmarty();
115		-
116		- // Set the template
117		- $this->setTemplate('exception/application-logic.tpl');
118		- $this->assign('message', $ex->getMessage());
119		-
120		- // Force this back to false
121		- $this->isRedirecting = false;
122		- $this->headerQueue = array();
123		- }
124		- catch (OptimisticLockFailedException $ex) {
125		- // it's an optimistic lock failure exception, so nothing went seriously wrong with the site. We can use the
126		- // standard templating system for this.
127		-
128		- // Firstly, let's undo anything that happened to the database.
129		- $database->rollBack();
130		-
131		- // Reset smarty
132		- $this->setUpSmarty();
133		-
134		- // Set the template
135		- $this->setTemplate('exception/optimistic-lock-failure.tpl');
136		- $this->assign('message', $ex->getMessage());
137		-
138		- // Force this back to false
139		- $this->isRedirecting = false;
140		- $this->headerQueue = array();
141		- }
142		- finally {
143		- // Catch any hanging on transactions
144		- if ($database->hasActiveTransaction()) {
145		- $database->rollBack();
146		- }
147		- }
148		-
149		- // run any finalisation code needed before we send the output to the browser.
150		- $this->finalisePage();
151		-
152		- // Send the headers
153		- $this->sendResponseHeaders();
154		-
155		- // Check we have a template to use!
156		- if ($this->template !== null) {
157		- $content = $this->fetchTemplate($this->template);
158		- ob_clean();
159		- print($content);
160		- ob_flush();
161		-
162		- return;
163		- }
164		- }
165		-
166		- /**
167		- * Performs final tasks needed before rendering the page.
168		- */
169		- protected function finalisePage()
170		- {
171		- if ($this->isRedirecting) {
172		- $this->template = null;
173		-
174		- return;
175		- }
176		-
177		- $this->assign('extraCss', $this->extraCss);
178		- $this->assign('extraJs', $this->extraJs);
179		-
180		- // If we're actually displaying content, we want to add the session alerts here!
181		- $this->assign('alerts', SessionAlert::getAlerts());
182		- SessionAlert::clearAlerts();
183		-
184		- $this->assign('htmlTitle', $this->htmlTitle);
185		- }
186		-
187		- /**
188		- * @return TokenManager
189		- */
190		- public function getTokenManager()
191		- {
192		- return $this->tokenManager;
193		- }
194		-
195		- /**
196		- * @param TokenManager $tokenManager
197		- */
198		- public function setTokenManager($tokenManager)
199		- {
200		- $this->tokenManager = $tokenManager;
201		- }
202		-
203		- /**
204		- * Sends the redirect headers to perform a GET at the destination page.
205		- *
206		- * Also nullifies the set template so Smarty does not render it.
207		- *
208		- * @param string $page The page to redirect requests to (as used in the UR)
209		- * @param null\|string $action The action to use on the page.
210		- * @param null\|array $parameters
211		- * @param null\|string $script The script (relative to index.php) to redirect to
212		- */
213		- final protected function redirect($page = '', $action = null, $parameters = null, $script = null)
214		- {
215		- $currentScriptName = WebRequest::scriptName();
216		-
217		- // Are we changing script?
218		- if ($script === null \|\| substr($currentScriptName, -1 * count($script)) === $script) {
219		- $targetScriptName = $currentScriptName;
220		- }
221		- else {
222		- $targetScriptName = $this->getSiteConfiguration()->getBaseUrl() . '/' . $script;
223		- }
224		-
225		- $pathInfo = array($targetScriptName);
226		-
227		- $pathInfo[1] = $page;
228		-
229		- if ($action !== null) {
230		- $pathInfo[2] = $action;
231		- }
232		-
233		- $url = implode('/', $pathInfo);
234		-
235		- if (is_array($parameters) && count($parameters) > 0) {
236		- $url .= '?' . http_build_query($parameters);
237		- }
238		-
239		- $this->redirectUrl($url);
240		- }
241		-
242		- /**
243		- * Sends the redirect headers to perform a GET at the new address.
244		- *
245		- * Also nullifies the set template so Smarty does not render it.
246		- *
247		- * @param string $path URL to redirect to
248		- */
249		- final protected function redirectUrl($path)
250		- {
251		- // 303 See Other = re-request at new address with a GET.
252		- $this->headerQueue[] = 'HTTP/1.1 303 See Other';
253		- $this->headerQueue[] = "Location: $path";
254		-
255		- $this->setTemplate(null);
256		- $this->isRedirecting = true;
257		- }
258		-
259		- /**
260		- * Sets the name of the template this page should display.
261		- *
262		- * @param string $name
263		- *
264		- * @throws Exception
265		- */
266		- final protected function setTemplate($name)
267		- {
268		- if ($this->isRedirecting) {
269		- throw new Exception('This page has been set as a redirect, no template can be displayed!');
270		- }
271		-
272		- $this->template = $name;
273		- }
274		-
275		- /**
276		- * Adds an extra CSS file to to the page
277		- *
278		- * @param string $path The path (relative to the application root) of the file
279		- */
280		- final protected function addCss($path) {
281		- if(in_array($path, $this->extraCss)){
282		- // nothing to do
283		- return;
284		- }
285		-
286		- $this->extraCss[] = $path;
287		- }
288		-
289		- /**
290		- * Adds an extra JS file to to the page
291		- *
292		- * @param string $path The path (relative to the application root) of the file
293		- */
294		- final protected function addJs($path){
295		- if(in_array($path, $this->extraJs)){
296		- // nothing to do
297		- return;
298		- }
299		-
300		- $this->extraJs[] = $path;
301		- }
302		-
303		- /**
304		- * Main function for this page, when no specific actions are called.
305		- * @return void
306		- */
307		- abstract protected function main();
308		-
309		- /**
310		- * @param string $title
311		- */
312		- final protected function setHtmlTitle($title)
313		- {
314		- $this->htmlTitle = $title;
315		- }
316		-
317		- public function execute()
318		- {
319		- if ($this->getRouteName() === null) {
320		- throw new Exception('Request is unrouted.');
321		- }
322		-
323		- if ($this->getSiteConfiguration() === null) {
324		- throw new Exception('Page has no configuration!');
325		- }
326		-
327		- $this->setupPage();
328		-
329		- $this->runPage();
330		- }
331		-
332		- public function assignCSRFToken()
333		- {
334		- $token = $this->tokenManager->getNewToken();
335		- $this->assign('csrfTokenData', $token->getTokenData());
336		- }
337		-
338		- public function validateCSRFToken()
339		- {
340		- if (!$this->tokenManager->validateToken(WebRequest::postString('csrfTokenData'))) {
341		- throw new ApplicationLogicException('Form token is not valid, please reload and try again');
342		- }
343		- }
344		-
345		- protected function sendResponseHeaders()
346		- {
347		- if (headers_sent()) {
348		- throw new ApplicationLogicException ('Headers have already been sent! This is likely a bug in the application.');
349		- }
350		-
351		- foreach ($this->headerQueue as $item) {
352		- if (mb_strpos($item, "\r") !== false \|\| mb_strpos($item, "\n") !== false) {
353		- // Oops. We're not allowed to do this.
354		- throw new Exception('Unable to split header');
355		- }
356		-
357		- header($item);
358		- }
359		- }
	23	+ use TemplateOutput;
	24	+ /** @var string Smarty template to display */
	25	+ protected $template = "base.tpl";
	26	+ /** @var string HTML title. Currently unused. */
	27	+ protected $htmlTitle;
	28	+ /** @var bool Determines if the page is a redirect or not */
	29	+ protected $isRedirecting = false;
	30	+ /** @var array Queue of headers to be sent on successful completion */
	31	+ protected $headerQueue = array();
	32	+ /** @var string The name of the route to use, as determined by the request router. */
	33	+ private $routeName = null;
	34	+ /** @var TokenManager */
	35	+ protected $tokenManager;
	36	+ /** @var string[] Extra CSS files to include */
	37	+ private $extraCss = array();
	38	+ /** @var string[] Extra JS files to include */
	39	+ private $extraJs = array();
	40	+
	41	+ /**
	42	+ * Sets the route the request will take. Only should be called from the request router or barrier test.
	43	+ *
	44	+ * @param string $routeName The name of the route
	45	+ * @param bool $skipCallableTest Don't use this unless you know what you're doing, and what the implications are.
	46	+ *
	47	+ * @throws Exception
	48	+ * @category Security-Critical
	49	+ */
	50	+ final public function setRoute($routeName, $skipCallableTest = false)
	51	+ {
	52	+ // Test the new route is callable before adopting it.
	53	+ if (!$skipCallableTest && !is_callable(array($this, $routeName))) {
	54	+ throw new Exception("Proposed route '$routeName' is not callable.");
	55	+ }
	56	+
	57	+ // Adopt the new route
	58	+ $this->routeName = $routeName;
	59	+ }
	60	+
	61	+ /**
	62	+ * Gets the name of the route that has been passed from the request router.
	63	+ * @return string
	64	+ */
	65	+ final public function getRouteName()
	66	+ {
	67	+ return $this->routeName;
	68	+ }
	69	+
	70	+ /**
	71	+ * Performs generic page setup actions
	72	+ */
	73	+ final protected function setupPage()
	74	+ {
	75	+ $this->setUpSmarty();
	76	+
	77	+ $siteNoticeText = SiteNotice::get($this->getDatabase());
	78	+
	79	+ $this->assign('siteNoticeText', $siteNoticeText);
	80	+
	81	+ $currentUser = User::getCurrent($this->getDatabase());
	82	+ $this->assign('currentUser', $currentUser);
	83	+ $this->assign('loggedIn', (!$currentUser->isCommunityUser()));
	84	+ }
	85	+
	86	+ /**
	87	+ * Runs the page logic as routed by the RequestRouter
	88	+ *
	89	+ * Only should be called after a security barrier! That means only from execute().
	90	+ */
	91	+ final protected function runPage()
	92	+ {
	93	+ $database = $this->getDatabase();
	94	+
	95	+ // initialise a database transaction
	96	+ if (!$database->beginTransaction()) {
	97	+ throw new Exception('Failed to start transaction on primary database.');
	98	+ }
	99	+
	100	+ try {
	101	+ // run the page code
	102	+ $this->{$this->getRouteName()}();
	103	+
	104	+ $database->commit();
	105	+ }
	106	+ catch (ApplicationLogicException $ex) {
	107	+ // it's an application logic exception, so nothing went seriously wrong with the site. We can use the
	108	+ // standard templating system for this.
	109	+
	110	+ // Firstly, let's undo anything that happened to the database.
	111	+ $database->rollBack();
	112	+
	113	+ // Reset smarty
	114	+ $this->setUpSmarty();
	115	+
	116	+ // Set the template
	117	+ $this->setTemplate('exception/application-logic.tpl');
	118	+ $this->assign('message', $ex->getMessage());
	119	+
	120	+ // Force this back to false
	121	+ $this->isRedirecting = false;
	122	+ $this->headerQueue = array();
	123	+ }
	124	+ catch (OptimisticLockFailedException $ex) {
	125	+ // it's an optimistic lock failure exception, so nothing went seriously wrong with the site. We can use the
	126	+ // standard templating system for this.
	127	+
	128	+ // Firstly, let's undo anything that happened to the database.
	129	+ $database->rollBack();
	130	+
	131	+ // Reset smarty
	132	+ $this->setUpSmarty();
	133	+
	134	+ // Set the template
	135	+ $this->setTemplate('exception/optimistic-lock-failure.tpl');
	136	+ $this->assign('message', $ex->getMessage());
	137	+
	138	+ // Force this back to false
	139	+ $this->isRedirecting = false;
	140	+ $this->headerQueue = array();
	141	+ }
	142	+ finally {
	143	+ // Catch any hanging on transactions
	144	+ if ($database->hasActiveTransaction()) {
	145	+ $database->rollBack();
	146	+ }
	147	+ }
	148	+
	149	+ // run any finalisation code needed before we send the output to the browser.
	150	+ $this->finalisePage();
	151	+
	152	+ // Send the headers
	153	+ $this->sendResponseHeaders();
	154	+
	155	+ // Check we have a template to use!
	156	+ if ($this->template !== null) {
	157	+ $content = $this->fetchTemplate($this->template);
	158	+ ob_clean();
	159	+ print($content);
	160	+ ob_flush();
	161	+
	162	+ return;
	163	+ }
	164	+ }
	165	+
	166	+ /**
	167	+ * Performs final tasks needed before rendering the page.
	168	+ */
	169	+ protected function finalisePage()
	170	+ {
	171	+ if ($this->isRedirecting) {
	172	+ $this->template = null;
	173	+
	174	+ return;
	175	+ }
	176	+
	177	+ $this->assign('extraCss', $this->extraCss);
	178	+ $this->assign('extraJs', $this->extraJs);
	179	+
	180	+ // If we're actually displaying content, we want to add the session alerts here!
	181	+ $this->assign('alerts', SessionAlert::getAlerts());
	182	+ SessionAlert::clearAlerts();
	183	+
	184	+ $this->assign('htmlTitle', $this->htmlTitle);
	185	+ }
	186	+
	187	+ /**
	188	+ * @return TokenManager
	189	+ */
	190	+ public function getTokenManager()
	191	+ {
	192	+ return $this->tokenManager;
	193	+ }
	194	+
	195	+ /**
	196	+ * @param TokenManager $tokenManager
	197	+ */
	198	+ public function setTokenManager($tokenManager)
	199	+ {
	200	+ $this->tokenManager = $tokenManager;
	201	+ }
	202	+
	203	+ /**
	204	+ * Sends the redirect headers to perform a GET at the destination page.
	205	+ *
	206	+ * Also nullifies the set template so Smarty does not render it.
	207	+ *
	208	+ * @param string $page The page to redirect requests to (as used in the UR)
	209	+ * @param null\|string $action The action to use on the page.
	210	+ * @param null\|array $parameters
	211	+ * @param null\|string $script The script (relative to index.php) to redirect to
	212	+ */
	213	+ final protected function redirect($page = '', $action = null, $parameters = null, $script = null)
	214	+ {
	215	+ $currentScriptName = WebRequest::scriptName();
	216	+
	217	+ // Are we changing script?
	218	+ if ($script === null \|\| substr($currentScriptName, -1 * count($script)) === $script) {
	219	+ $targetScriptName = $currentScriptName;
	220	+ }
	221	+ else {
	222	+ $targetScriptName = $this->getSiteConfiguration()->getBaseUrl() . '/' . $script;
	223	+ }
	224	+
	225	+ $pathInfo = array($targetScriptName);
	226	+
	227	+ $pathInfo[1] = $page;
	228	+
	229	+ if ($action !== null) {
	230	+ $pathInfo[2] = $action;
	231	+ }
	232	+
	233	+ $url = implode('/', $pathInfo);
	234	+
	235	+ if (is_array($parameters) && count($parameters) > 0) {
	236	+ $url .= '?' . http_build_query($parameters);
	237	+ }
	238	+
	239	+ $this->redirectUrl($url);
	240	+ }
	241	+
	242	+ /**
	243	+ * Sends the redirect headers to perform a GET at the new address.
	244	+ *
	245	+ * Also nullifies the set template so Smarty does not render it.
	246	+ *
	247	+ * @param string $path URL to redirect to
	248	+ */
	249	+ final protected function redirectUrl($path)
	250	+ {
	251	+ // 303 See Other = re-request at new address with a GET.
	252	+ $this->headerQueue[] = 'HTTP/1.1 303 See Other';
	253	+ $this->headerQueue[] = "Location: $path";
	254	+
	255	+ $this->setTemplate(null);
	256	+ $this->isRedirecting = true;
	257	+ }
	258	+
	259	+ /**
	260	+ * Sets the name of the template this page should display.
	261	+ *
	262	+ * @param string $name
	263	+ *
	264	+ * @throws Exception
	265	+ */
	266	+ final protected function setTemplate($name)
	267	+ {
	268	+ if ($this->isRedirecting) {
	269	+ throw new Exception('This page has been set as a redirect, no template can be displayed!');
	270	+ }
	271	+
	272	+ $this->template = $name;
	273	+ }
	274	+
	275	+ /**
	276	+ * Adds an extra CSS file to to the page
	277	+ *
	278	+ * @param string $path The path (relative to the application root) of the file
	279	+ */
	280	+ final protected function addCss($path) {
	281	+ if(in_array($path, $this->extraCss)){
	282	+ // nothing to do
	283	+ return;
	284	+ }
	285	+
	286	+ $this->extraCss[] = $path;
	287	+ }
	288	+
	289	+ /**
	290	+ * Adds an extra JS file to to the page
	291	+ *
	292	+ * @param string $path The path (relative to the application root) of the file
	293	+ */
	294	+ final protected function addJs($path){
	295	+ if(in_array($path, $this->extraJs)){
	296	+ // nothing to do
	297	+ return;
	298	+ }
	299	+
	300	+ $this->extraJs[] = $path;
	301	+ }
	302	+
	303	+ /**
	304	+ * Main function for this page, when no specific actions are called.
	305	+ * @return void
	306	+ */
	307	+ abstract protected function main();
	308	+
	309	+ /**
	310	+ * @param string $title
	311	+ */
	312	+ final protected function setHtmlTitle($title)
	313	+ {
	314	+ $this->htmlTitle = $title;
	315	+ }
	316	+
	317	+ public function execute()
	318	+ {
	319	+ if ($this->getRouteName() === null) {
	320	+ throw new Exception('Request is unrouted.');
	321	+ }
	322	+
	323	+ if ($this->getSiteConfiguration() === null) {
	324	+ throw new Exception('Page has no configuration!');
	325	+ }
	326	+
	327	+ $this->setupPage();
	328	+
	329	+ $this->runPage();
	330	+ }
	331	+
	332	+ public function assignCSRFToken()
	333	+ {
	334	+ $token = $this->tokenManager->getNewToken();
	335	+ $this->assign('csrfTokenData', $token->getTokenData());
	336	+ }
	337	+
	338	+ public function validateCSRFToken()
	339	+ {
	340	+ if (!$this->tokenManager->validateToken(WebRequest::postString('csrfTokenData'))) {
	341	+ throw new ApplicationLogicException('Form token is not valid, please reload and try again');
	342	+ }
	343	+ }
	344	+
	345	+ protected function sendResponseHeaders()
	346	+ {
	347	+ if (headers_sent()) {
	348	+ throw new ApplicationLogicException ('Headers have already been sent! This is likely a bug in the application.');
	349	+ }
	350	+
	351	+ foreach ($this->headerQueue as $item) {
	352	+ if (mb_strpos($item, "\r") !== false \|\| mb_strpos($item, "\n") !== false) {
	353	+ // Oops. We're not allowed to do this.
	354	+ throw new Exception('Unable to split header');
	355	+ }
	356	+
	357	+ header($item);
	358	+ }
	359	+ }
360	360	}

		@@ -26,131 +26,131 @@ discard block
		block discarded – undo
26	26	*/
27	27	class IdentificationVerifier
28	28	{
29		- /**
30		- * This field is an array of parameters, in key => value format, that should be appended to the Meta Wikimedia
31		- * Web Service Endpoint URL to query if a user is listed on the Identification Noticeboard. Note that URL encoding
32		- * of these values is not necessary; this is done automatically.
33		- *
34		- * @var string[]
35		- * @category Security-Critical
36		- */
37		- private static $apiQueryParameters = array(
38		- 'action' => 'query',
39		- 'format' => 'json',
40		- 'prop' => 'links',
41		- 'titles' => 'Access to nonpublic information policy/Noticeboard',
42		- // Username of the user to be checked, with User: prefix, goes here! Set in isIdentifiedOnWiki()
43		- 'pltitles' => '',
44		- );
45		- /** @var HttpHelper */
46		- private $httpHelper;
47		- /** @var SiteConfiguration */
48		- private $siteConfiguration;
49		- /** @var PdoDatabase */
50		- private $dbObject;
51		-
52		- /**
53		- * IdentificationVerifier constructor.
54		- *
55		- * @param HttpHelper $httpHelper
56		- * @param SiteConfiguration $siteConfiguration
57		- * @param PdoDatabase $dbObject
58		- */
59		- public function __construct(HttpHelper $httpHelper, SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
60		- {
61		- $this->httpHelper = $httpHelper;
62		- $this->siteConfiguration = $siteConfiguration;
63		- $this->dbObject = $dbObject;
64		- }
65		-
66		- /**
67		- * Checks if the given user is identified to the Wikimedia Foundation.
68		- *
69		- * @param string $onWikiName The Wikipedia username of the user
70		- *
71		- * @return bool
72		- * @category Security-Critical
73		- */
74		- public function isUserIdentified($onWikiName)
75		- {
76		- if ($this->checkIdentificationCache($onWikiName)) {
77		- return true;
78		- }
79		- else {
80		- if ($this->isIdentifiedOnWiki($onWikiName)) {
81		- $this->cacheIdentificationStatus($onWikiName);
82		-
83		- return true;
84		- }
85		- else {
86		- return false;
87		- }
88		- }
89		- }
90		-
91		- /**
92		- * Checks if the given user has a valid entry in the idcache table.
93		- *
94		- * @param string $onWikiName The Wikipedia username of the user
95		- *
96		- * @return bool
97		- * @category Security-Critical
98		- */
99		- private function checkIdentificationCache($onWikiName)
100		- {
101		- $interval = $this->siteConfiguration->getIdentificationCacheExpiry();
102		-
103		- $query = <<<SQL
	29	+ /**
	30	+ * This field is an array of parameters, in key => value format, that should be appended to the Meta Wikimedia
	31	+ * Web Service Endpoint URL to query if a user is listed on the Identification Noticeboard. Note that URL encoding
	32	+ * of these values is not necessary; this is done automatically.
	33	+ *
	34	+ * @var string[]
	35	+ * @category Security-Critical
	36	+ */
	37	+ private static $apiQueryParameters = array(
	38	+ 'action' => 'query',
	39	+ 'format' => 'json',
	40	+ 'prop' => 'links',
	41	+ 'titles' => 'Access to nonpublic information policy/Noticeboard',
	42	+ // Username of the user to be checked, with User: prefix, goes here! Set in isIdentifiedOnWiki()
	43	+ 'pltitles' => '',
	44	+ );
	45	+ /** @var HttpHelper */
	46	+ private $httpHelper;
	47	+ /** @var SiteConfiguration */
	48	+ private $siteConfiguration;
	49	+ /** @var PdoDatabase */
	50	+ private $dbObject;
	51	+
	52	+ /**
	53	+ * IdentificationVerifier constructor.
	54	+ *
	55	+ * @param HttpHelper $httpHelper
	56	+ * @param SiteConfiguration $siteConfiguration
	57	+ * @param PdoDatabase $dbObject
	58	+ */
	59	+ public function __construct(HttpHelper $httpHelper, SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
	60	+ {
	61	+ $this->httpHelper = $httpHelper;
	62	+ $this->siteConfiguration = $siteConfiguration;
	63	+ $this->dbObject = $dbObject;
	64	+ }
	65	+
	66	+ /**
	67	+ * Checks if the given user is identified to the Wikimedia Foundation.
	68	+ *
	69	+ * @param string $onWikiName The Wikipedia username of the user
	70	+ *
	71	+ * @return bool
	72	+ * @category Security-Critical
	73	+ */
	74	+ public function isUserIdentified($onWikiName)
	75	+ {
	76	+ if ($this->checkIdentificationCache($onWikiName)) {
	77	+ return true;
	78	+ }
	79	+ else {
	80	+ if ($this->isIdentifiedOnWiki($onWikiName)) {
	81	+ $this->cacheIdentificationStatus($onWikiName);
	82	+
	83	+ return true;
	84	+ }
	85	+ else {
	86	+ return false;
	87	+ }
	88	+ }
	89	+ }
	90	+
	91	+ /**
	92	+ * Checks if the given user has a valid entry in the idcache table.
	93	+ *
	94	+ * @param string $onWikiName The Wikipedia username of the user
	95	+ *
	96	+ * @return bool
	97	+ * @category Security-Critical
	98	+ */
	99	+ private function checkIdentificationCache($onWikiName)
	100	+ {
	101	+ $interval = $this->siteConfiguration->getIdentificationCacheExpiry();
	102	+
	103	+ $query = <<<SQL
104	104	SELECT COUNT(`id`)
105	105	FROM `idcache`
106	106	WHERE `onwikiusername` = :onwikiname
107	107	AND DATE_ADD(`checktime`, INTERVAL {$interval}) >= NOW();
108	108	SQL;
109		- $stmt = $this->dbObject->prepare($query);
110		- $stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
111		- $stmt->execute();
112		-
113		- // Guaranteed by the query to only return a single row with a single column
114		- $results = $stmt->fetch(PDO::FETCH_NUM);
115		-
116		- // I don't expect this to ever be a value other than 0 or 1 since the `onwikiusername` column is declared as a
117		- // unique key - but meh.
118		- return $results[0] != 0;
119		- }
120		-
121		- /**
122		- * Does pretty much exactly what it says on the label - this method will clear all expired idcache entries from the
123		- * idcache table. Meant to be called periodically by a maintenance script.
124		- *
125		- * @param SiteConfiguration $siteConfiguration
126		- * @param PdoDatabase $dbObject
127		- *
128		- * @return void
129		- */
130		- public static function clearExpiredCacheEntries(SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
131		- {
132		- $interval = $siteConfiguration->getIdentificationCacheExpiry();
133		-
134		- $query = <<<SQL
	109	+ $stmt = $this->dbObject->prepare($query);
	110	+ $stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
	111	+ $stmt->execute();
	112	+
	113	+ // Guaranteed by the query to only return a single row with a single column
	114	+ $results = $stmt->fetch(PDO::FETCH_NUM);
	115	+
	116	+ // I don't expect this to ever be a value other than 0 or 1 since the `onwikiusername` column is declared as a
	117	+ // unique key - but meh.
	118	+ return $results[0] != 0;
	119	+ }
	120	+
	121	+ /**
	122	+ * Does pretty much exactly what it says on the label - this method will clear all expired idcache entries from the
	123	+ * idcache table. Meant to be called periodically by a maintenance script.
	124	+ *
	125	+ * @param SiteConfiguration $siteConfiguration
	126	+ * @param PdoDatabase $dbObject
	127	+ *
	128	+ * @return void
	129	+ */
	130	+ public static function clearExpiredCacheEntries(SiteConfiguration $siteConfiguration, PdoDatabase $dbObject)
	131	+ {
	132	+ $interval = $siteConfiguration->getIdentificationCacheExpiry();
	133	+
	134	+ $query = <<<SQL
135	135	DELETE FROM `idcache`
136	136	WHERE DATE_ADD(`checktime`, INTERVAL {$interval}) < NOW();
137	137	SQL;
138		- $dbObject->prepare($query)->execute();
139		- }
140		-
141		- /**
142		- * This method will add an entry to the idcache that the given Wikipedia user has been verified as identified. This
143		- * is so we don't have to hit the API every single time we check. The cache entry is valid for as long as specified
144		- * in the ACC configuration (validity enforced by checkIdentificationCache() and clearExpiredCacheEntries()).
145		- *
146		- * @param string $onWikiName The Wikipedia username of the user
147		- *
148		- * @return void
149		- * @category Security-Critical
150		- */
151		- private function cacheIdentificationStatus($onWikiName)
152		- {
153		- $query = <<<SQL
	138	+ $dbObject->prepare($query)->execute();
	139	+ }
	140	+
	141	+ /**
	142	+ * This method will add an entry to the idcache that the given Wikipedia user has been verified as identified. This
	143	+ * is so we don't have to hit the API every single time we check. The cache entry is valid for as long as specified
	144	+ * in the ACC configuration (validity enforced by checkIdentificationCache() and clearExpiredCacheEntries()).
	145	+ *
	146	+ * @param string $onWikiName The Wikipedia username of the user
	147	+ *
	148	+ * @return void
	149	+ * @category Security-Critical
	150	+ */
	151	+ private function cacheIdentificationStatus($onWikiName)
	152	+ {
	153	+ $query = <<<SQL
154	154	INSERT INTO `idcache`
155	155	(`onwikiusername`)
156	156	VALUES
		@@ -159,44 +159,44 @@ discard block
		block discarded – undo
159	159	`onwikiusername` = VALUES(`onwikiusername`),
160	160	`checktime` = CURRENT_TIMESTAMP;
161	161	SQL;
162		- $stmt = $this->dbObject->prepare($query);
163		- $stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
164		- $stmt->execute();
165		- }
166		-
167		- /**
168		- * Queries the Wikimedia API to determine if the specified user is listed on the identification noticeboard.
169		- *
170		- * @param string $onWikiName The Wikipedia username of the user
171		- *
172		- * @return bool
173		- * @throws EnvironmentException
174		- * @category Security-Critical
175		- */
176		- private function isIdentifiedOnWiki($onWikiName)
177		- {
178		- $strings = new StringFunctions();
179		-
180		- // First character of Wikipedia usernames is always capitalized.
181		- $onWikiName = $strings->ucfirst($onWikiName);
182		-
183		- $parameters = self::$apiQueryParameters;
184		- $parameters['pltitles'] = "User:" . $onWikiName;
185		-
186		- try {
187		- $endpoint = $this->siteConfiguration->getMetaWikimediaWebServiceEndpoint();
188		- $response = $this->httpHelper->get($endpoint, $parameters);
189		- $response = json_decode($response, true);
190		- } catch (CurlException $ex) {
191		- // failed getting identification status, so throw a nicer error.
192		- $m = 'Could not contact metawiki API to determine user\' identification status. '
193		- . 'This is probably a transient error, so please try again.';
194		-
195		- throw new EnvironmentException($m, 0, $ex);
196		- }
197		-
198		- $page = @array_pop($response['query']['pages']);
199		-
200		- return @$page['links'][0]['title'] === "User:" . $onWikiName;
201		- }
	162	+ $stmt = $this->dbObject->prepare($query);
	163	+ $stmt->bindValue(':onwikiname', $onWikiName, PDO::PARAM_STR);
	164	+ $stmt->execute();
	165	+ }
	166	+
	167	+ /**
	168	+ * Queries the Wikimedia API to determine if the specified user is listed on the identification noticeboard.
	169	+ *
	170	+ * @param string $onWikiName The Wikipedia username of the user
	171	+ *
	172	+ * @return bool
	173	+ * @throws EnvironmentException
	174	+ * @category Security-Critical
	175	+ */
	176	+ private function isIdentifiedOnWiki($onWikiName)
	177	+ {
	178	+ $strings = new StringFunctions();
	179	+
	180	+ // First character of Wikipedia usernames is always capitalized.
	181	+ $onWikiName = $strings->ucfirst($onWikiName);
	182	+
	183	+ $parameters = self::$apiQueryParameters;
	184	+ $parameters['pltitles'] = "User:" . $onWikiName;
	185	+
	186	+ try {
	187	+ $endpoint = $this->siteConfiguration->getMetaWikimediaWebServiceEndpoint();
	188	+ $response = $this->httpHelper->get($endpoint, $parameters);
	189	+ $response = json_decode($response, true);
	190	+ } catch (CurlException $ex) {
	191	+ // failed getting identification status, so throw a nicer error.
	192	+ $m = 'Could not contact metawiki API to determine user\' identification status. '
	193	+ . 'This is probably a transient error, so please try again.';
	194	+
	195	+ throw new EnvironmentException($m, 0, $ex);
	196	+ }
	197	+
	198	+ $page = @array_pop($response['query']['pages']);
	199	+
	200	+ return @$page['links'][0]['title'] === "User:" . $onWikiName;
	201	+ }
202	202	}

		@@ -14,200 +14,200 @@
		block discarded – undo
14	14
15	15	final class SecurityManager
16	16	{
17		- const ALLOWED = 1;
18		- const ERROR_NOT_IDENTIFIED = 2;
19		- const ERROR_DENIED = 3;
20		- /** @var IdentificationVerifier */
21		- private $identificationVerifier;
22		- /**
23		- * @var RoleConfiguration
24		- */
25		- private $roleConfiguration;
26		-
27		- /**
28		- * SecurityManager constructor.
29		- *
30		- * @param IdentificationVerifier $identificationVerifier
31		- * @param RoleConfiguration $roleConfiguration
32		- */
33		- public function __construct(
34		- IdentificationVerifier $identificationVerifier,
35		- RoleConfiguration $roleConfiguration
36		- ) {
37		- $this->identificationVerifier = $identificationVerifier;
38		- $this->roleConfiguration = $roleConfiguration;
39		- }
40		-
41		- /**
42		- * Tests if a user is allowed to perform an action.
43		- *
44		- * This method should form a hard, deterministic security barrier, and only return true if it is absolutely sure
45		- * that a user should have access to something.
46		- *
47		- * @param string $page
48		- * @param string $route
49		- * @param User $user
50		- *
51		- * @return int
52		- *
53		- * @category Security-Critical
54		- */
55		- public function allows($page, $route, User $user)
56		- {
57		- $this->getActiveRoles($user, $activeRoles, $inactiveRoles);
58		-
59		- $availableRights = $this->flattenRoles($activeRoles);
60		- $testResult = $this->findResult($availableRights, $page, $route);
61		-
62		- if ($testResult !== null) {
63		- // We got a firm result here, so just return it.
64		- return $testResult;
65		- }
66		-
67		- // No firm result yet, so continue testing the inactive roles so we can give a better error.
68		- $inactiveRights = $this->flattenRoles($inactiveRoles);
69		- $testResult = $this->findResult($inactiveRights, $page, $route);
70		-
71		- if ($testResult === self::ALLOWED) {
72		- // The user is allowed to access this, but their role is inactive.
73		- return self::ERROR_NOT_IDENTIFIED;
74		- }
75		-
76		- // Other options from the secondary test are denied and inconclusive, which at this point defaults to denied.
77		- return self::ERROR_DENIED;
78		- }
79		-
80		- /**
81		- * @param array $pseudoRole The role (flattened) to check
82		- * @param string $page The page class to check
83		- * @param string $route The page route to check
84		- *
85		- * @return int\|null
86		- */
87		- private function findResult($pseudoRole, $page, $route)
88		- {
89		- if (isset($pseudoRole[$page])) {
90		- // check for deny on catch-all route
91		- if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
92		- if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_DENY) {
93		- return self::ERROR_DENIED;
94		- }
95		- }
96		-
97		- // check normal route
98		- if (isset($pseudoRole[$page][$route])) {
99		- if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_DENY) {
100		- return self::ERROR_DENIED;
101		- }
102		-
103		- if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_ALLOW) {
104		- return self::ALLOWED;
105		- }
106		- }
107		-
108		- // check for allowed on catch-all route
109		- if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
110		- if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_ALLOW) {
111		- return self::ALLOWED;
112		- }
113		- }
114		- }
115		-
116		- // return indeterminate result
117		- return null;
118		- }
119		-
120		- /**
121		- * Takes an array of roles and flattens the values to a single set.
122		- *
123		- * @param array $activeRoles
124		- *
125		- * @return array
126		- */
127		- private function flattenRoles($activeRoles)
128		- {
129		- $result = array();
130		-
131		- $roleConfig = $this->roleConfiguration->getApplicableRoles($activeRoles);
132		-
133		- // Iterate over every page in every role
134		- foreach ($roleConfig as $role) {
135		- foreach ($role as $page => $pageRights) {
136		- // Create holder in result for this page
137		- if (!isset($result[$page])) {
138		- $result[$page] = array();
139		- }
140		-
141		- foreach ($pageRights as $action => $permission) {
142		- // Deny takes precedence, so if it's set, don't change it.
143		- if (isset($result[$page][$action])) {
144		- if ($result[$page][$action] === RoleConfiguration::ACCESS_DENY) {
145		- continue;
146		- }
147		- }
148		-
149		- if ($permission === RoleConfiguration::ACCESS_DEFAULT) {
150		- // Configured to do precisely nothing.
151		- continue;
152		- }
153		-
154		- $result[$page][$action] = $permission;
155		- }
156		- }
157		- }
158		-
159		- return $result;
160		- }
161		-
162		- /**
163		- * @param User $user
164		- * @param array $activeRoles
165		- * @param array $inactiveRoles
166		- */
167		- public function getActiveRoles(User $user, &$activeRoles, &$inactiveRoles)
168		- {
169		- // Default to the community user here, because the main user is logged out
170		- $identified = false;
171		- $userRoles = array('public');
172		-
173		- // if we're not the community user, get our real rights.
174		- if (!$user->isCommunityUser()) {
175		- // Check the user's status - only active users are allowed the effects of roles
176		-
177		- $userRoles[] = 'loggedIn';
178		-
179		- if ($user->isActive()) {
180		- $ur = UserRole::getForUser($user->getId(), $user->getDatabase());
181		-
182		- // NOTE: public is still in this array.
183		- foreach ($ur as $r) {
184		- $userRoles[] = $r->getRole();
185		- }
186		-
187		- $identified = $user->isIdentified($this->identificationVerifier);
188		- }
189		- }
190		-
191		- $activeRoles = array();
192		- $inactiveRoles = array();
193		-
194		- /** @var string $v */
195		- foreach ($userRoles as $v) {
196		- if ($this->roleConfiguration->roleNeedsIdentification($v)) {
197		- if ($identified) {
198		- $activeRoles[] = $v;
199		- }
200		- else {
201		- $inactiveRoles[] = $v;
202		- }
203		- }
204		- else {
205		- $activeRoles[] = $v;
206		- }
207		- }
208		- }
209		-
210		- public function getRoleConfiguration(){
211		- return $this->roleConfiguration;
212		- }
	17	+ const ALLOWED = 1;
	18	+ const ERROR_NOT_IDENTIFIED = 2;
	19	+ const ERROR_DENIED = 3;
	20	+ /** @var IdentificationVerifier */
	21	+ private $identificationVerifier;
	22	+ /**
	23	+ * @var RoleConfiguration
	24	+ */
	25	+ private $roleConfiguration;
	26	+
	27	+ /**
	28	+ * SecurityManager constructor.
	29	+ *
	30	+ * @param IdentificationVerifier $identificationVerifier
	31	+ * @param RoleConfiguration $roleConfiguration
	32	+ */
	33	+ public function __construct(
	34	+ IdentificationVerifier $identificationVerifier,
	35	+ RoleConfiguration $roleConfiguration
	36	+ ) {
	37	+ $this->identificationVerifier = $identificationVerifier;
	38	+ $this->roleConfiguration = $roleConfiguration;
	39	+ }
	40	+
	41	+ /**
	42	+ * Tests if a user is allowed to perform an action.
	43	+ *
	44	+ * This method should form a hard, deterministic security barrier, and only return true if it is absolutely sure
	45	+ * that a user should have access to something.
	46	+ *
	47	+ * @param string $page
	48	+ * @param string $route
	49	+ * @param User $user
	50	+ *
	51	+ * @return int
	52	+ *
	53	+ * @category Security-Critical
	54	+ */
	55	+ public function allows($page, $route, User $user)
	56	+ {
	57	+ $this->getActiveRoles($user, $activeRoles, $inactiveRoles);
	58	+
	59	+ $availableRights = $this->flattenRoles($activeRoles);
	60	+ $testResult = $this->findResult($availableRights, $page, $route);
	61	+
	62	+ if ($testResult !== null) {
	63	+ // We got a firm result here, so just return it.
	64	+ return $testResult;
	65	+ }
	66	+
	67	+ // No firm result yet, so continue testing the inactive roles so we can give a better error.
	68	+ $inactiveRights = $this->flattenRoles($inactiveRoles);
	69	+ $testResult = $this->findResult($inactiveRights, $page, $route);
	70	+
	71	+ if ($testResult === self::ALLOWED) {
	72	+ // The user is allowed to access this, but their role is inactive.
	73	+ return self::ERROR_NOT_IDENTIFIED;
	74	+ }
	75	+
	76	+ // Other options from the secondary test are denied and inconclusive, which at this point defaults to denied.
	77	+ return self::ERROR_DENIED;
	78	+ }
	79	+
	80	+ /**
	81	+ * @param array $pseudoRole The role (flattened) to check
	82	+ * @param string $page The page class to check
	83	+ * @param string $route The page route to check
	84	+ *
	85	+ * @return int\|null
	86	+ */
	87	+ private function findResult($pseudoRole, $page, $route)
	88	+ {
	89	+ if (isset($pseudoRole[$page])) {
	90	+ // check for deny on catch-all route
	91	+ if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
	92	+ if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_DENY) {
	93	+ return self::ERROR_DENIED;
	94	+ }
	95	+ }
	96	+
	97	+ // check normal route
	98	+ if (isset($pseudoRole[$page][$route])) {
	99	+ if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_DENY) {
	100	+ return self::ERROR_DENIED;
	101	+ }
	102	+
	103	+ if ($pseudoRole[$page][$route] === RoleConfiguration::ACCESS_ALLOW) {
	104	+ return self::ALLOWED;
	105	+ }
	106	+ }
	107	+
	108	+ // check for allowed on catch-all route
	109	+ if (isset($pseudoRole[$page][RoleConfiguration::ALL])) {
	110	+ if ($pseudoRole[$page][RoleConfiguration::ALL] === RoleConfiguration::ACCESS_ALLOW) {
	111	+ return self::ALLOWED;
	112	+ }
	113	+ }
	114	+ }
	115	+
	116	+ // return indeterminate result
	117	+ return null;
	118	+ }
	119	+
	120	+ /**
	121	+ * Takes an array of roles and flattens the values to a single set.
	122	+ *
	123	+ * @param array $activeRoles
	124	+ *
	125	+ * @return array
	126	+ */
	127	+ private function flattenRoles($activeRoles)
	128	+ {
	129	+ $result = array();
	130	+
	131	+ $roleConfig = $this->roleConfiguration->getApplicableRoles($activeRoles);
	132	+
	133	+ // Iterate over every page in every role
	134	+ foreach ($roleConfig as $role) {
	135	+ foreach ($role as $page => $pageRights) {
	136	+ // Create holder in result for this page
	137	+ if (!isset($result[$page])) {
	138	+ $result[$page] = array();
	139	+ }
	140	+
	141	+ foreach ($pageRights as $action => $permission) {
	142	+ // Deny takes precedence, so if it's set, don't change it.
	143	+ if (isset($result[$page][$action])) {
	144	+ if ($result[$page][$action] === RoleConfiguration::ACCESS_DENY) {
	145	+ continue;
	146	+ }
	147	+ }
	148	+
	149	+ if ($permission === RoleConfiguration::ACCESS_DEFAULT) {
	150	+ // Configured to do precisely nothing.
	151	+ continue;
	152	+ }
	153	+
	154	+ $result[$page][$action] = $permission;
	155	+ }
	156	+ }
	157	+ }
	158	+
	159	+ return $result;
	160	+ }
	161	+
	162	+ /**
	163	+ * @param User $user
	164	+ * @param array $activeRoles
	165	+ * @param array $inactiveRoles
	166	+ */
	167	+ public function getActiveRoles(User $user, &$activeRoles, &$inactiveRoles)
	168	+ {
	169	+ // Default to the community user here, because the main user is logged out
	170	+ $identified = false;
	171	+ $userRoles = array('public');
	172	+
	173	+ // if we're not the community user, get our real rights.
	174	+ if (!$user->isCommunityUser()) {
	175	+ // Check the user's status - only active users are allowed the effects of roles
	176	+
	177	+ $userRoles[] = 'loggedIn';
	178	+
	179	+ if ($user->isActive()) {
	180	+ $ur = UserRole::getForUser($user->getId(), $user->getDatabase());
	181	+
	182	+ // NOTE: public is still in this array.
	183	+ foreach ($ur as $r) {
	184	+ $userRoles[] = $r->getRole();
	185	+ }
	186	+
	187	+ $identified = $user->isIdentified($this->identificationVerifier);
	188	+ }
	189	+ }
	190	+
	191	+ $activeRoles = array();
	192	+ $inactiveRoles = array();
	193	+
	194	+ /** @var string $v */
	195	+ foreach ($userRoles as $v) {
	196	+ if ($this->roleConfiguration->roleNeedsIdentification($v)) {
	197	+ if ($identified) {
	198	+ $activeRoles[] = $v;
	199	+ }
	200	+ else {
	201	+ $inactiveRoles[] = $v;
	202	+ }
	203	+ }
	204	+ else {
	205	+ $activeRoles[] = $v;
	206	+ }
	207	+ }
	208	+ }
	209	+
	210	+ public function getRoleConfiguration(){
	211	+ return $this->roleConfiguration;
	212	+ }
213	213	}

		@@ -41,338 +41,338 @@
		block discarded – undo
41	41
42	42	class RoleConfiguration
43	43	{
44		- const ACCESS_ALLOW = 1;
45		- const ACCESS_DENY = -1;
46		- const ACCESS_DEFAULT = 0;
47		- const MAIN = 'main';
48		- const ALL = '*';
49		- /**
50		- * A map of roles to rights
51		- *
52		- * For example:
53		- *
54		- * array(
55		- * 'myrole' => array(
56		- * PageMyPage::class => array(
57		- * 'edit' => self::ACCESS_ALLOW,
58		- * 'create' => self::ACCESS_DENY,
59		- * )
60		- * )
61		- * )
62		- *
63		- * Note that DENY takes precedence over everything else when roles are combined, followed by ALLOW, followed by
64		- * DEFAULT. Thus, if you have the following ([A]llow, [D]eny, [-] (default)) grants in different roles, this should
65		- * be the expected result:
66		- *
67		- * - (-,-,-) = - (default because nothing to explicitly say allowed or denied equates to a denial)
68		- * - (A,-,-) = A
69		- * - (D,-,-) = D
70		- * - (A,D,-) = D (deny takes precedence over allow)
71		- * - (A,A,A) = A (repetition has no effect)
72		- *
73		- * The public role is special, and is applied to all users automatically. Avoid using deny on this role.
74		- *
75		- * @var array
76		- */
77		- private $roleConfig = array(
78		- 'public' => array(
79		- /*
	44	+ const ACCESS_ALLOW = 1;
	45	+ const ACCESS_DENY = -1;
	46	+ const ACCESS_DEFAULT = 0;
	47	+ const MAIN = 'main';
	48	+ const ALL = '*';
	49	+ /**
	50	+ * A map of roles to rights
	51	+ *
	52	+ * For example:
	53	+ *
	54	+ * array(
	55	+ * 'myrole' => array(
	56	+ * PageMyPage::class => array(
	57	+ * 'edit' => self::ACCESS_ALLOW,
	58	+ * 'create' => self::ACCESS_DENY,
	59	+ * )
	60	+ * )
	61	+ * )
	62	+ *
	63	+ * Note that DENY takes precedence over everything else when roles are combined, followed by ALLOW, followed by
	64	+ * DEFAULT. Thus, if you have the following ([A]llow, [D]eny, [-] (default)) grants in different roles, this should
	65	+ * be the expected result:
	66	+ *
	67	+ * - (-,-,-) = - (default because nothing to explicitly say allowed or denied equates to a denial)
	68	+ * - (A,-,-) = A
	69	+ * - (D,-,-) = D
	70	+ * - (A,D,-) = D (deny takes precedence over allow)
	71	+ * - (A,A,A) = A (repetition has no effect)
	72	+ *
	73	+ * The public role is special, and is applied to all users automatically. Avoid using deny on this role.
	74	+ *
	75	+ * @var array
	76	+ */
	77	+ private $roleConfig = array(
	78	+ 'public' => array(
	79	+ /*
80	80	* THIS ROLE IS GRANTED TO ALL LOGGED OUT USERS IMPLICITLY.
81	81	*
82	82	* USERS IN THIS ROLE DO NOT HAVE TO BE IDENTIFIED TO GET THE RIGHTS CONFERRED HERE.
83	83	* DO NOT ADD ANY SECURITY-SENSITIVE RIGHTS HERE.
84	84	*/
85		- '_childRoles' => array(
86		- 'publicStats',
87		- ),
88		- PageOAuth::class => array(
89		- 'callback' => self::ACCESS_ALLOW,
90		- ),
91		- PageTeam::class => array(
92		- self::MAIN => self::ACCESS_ALLOW,
93		- ),
94		- ),
95		- 'loggedIn' => array(
96		- /*
	85	+ '_childRoles' => array(
	86	+ 'publicStats',
	87	+ ),
	88	+ PageOAuth::class => array(
	89	+ 'callback' => self::ACCESS_ALLOW,
	90	+ ),
	91	+ PageTeam::class => array(
	92	+ self::MAIN => self::ACCESS_ALLOW,
	93	+ ),
	94	+ ),
	95	+ 'loggedIn' => array(
	96	+ /*
97	97	* THIS ROLE IS GRANTED TO ALL LOGGED IN USERS IMPLICITLY.
98	98	*
99	99	* USERS IN THIS ROLE DO NOT HAVE TO BE IDENTIFIED TO GET THE RIGHTS CONFERRED HERE.
100	100	* DO NOT ADD ANY SECURITY-SENSITIVE RIGHTS HERE.
101	101	*/
102		- '_childRoles' => array(
103		- 'public',
104		- ),
105		- PagePreferences::class => array(
106		- self::MAIN => self::ACCESS_ALLOW,
107		- 'changePassword' => self::ACCESS_ALLOW,
108		- ),
109		- PageOAuth::class => array(
110		- 'attach' => self::ACCESS_ALLOW,
111		- 'detach' => self::ACCESS_ALLOW,
112		- ),
113		- ),
114		- 'user' => array(
115		- '_description' => 'A standard tool user.',
116		- '_editableBy' => array('admin', 'toolRoot'),
117		- '_childRoles' => array(
118		- 'internalStats',
119		- ),
120		- PageMain::class => array(
121		- self::MAIN => self::ACCESS_ALLOW,
122		- ),
123		- PageBan::class => array(
124		- self::MAIN => self::ACCESS_ALLOW,
125		- ),
126		- PageEditComment::class => array(
127		- self::MAIN => self::ACCESS_ALLOW,
128		- ),
129		- PageEmailManagement::class => array(
130		- self::MAIN => self::ACCESS_ALLOW,
131		- 'view' => self::ACCESS_ALLOW,
132		- ),
133		- PageExpandedRequestList::class => array(
134		- self::MAIN => self::ACCESS_ALLOW,
135		- ),
136		- PageLog::class => array(
137		- self::MAIN => self::ACCESS_ALLOW,
138		- ),
139		- PageSearch::class => array(
140		- self::MAIN => self::ACCESS_ALLOW,
141		- ),
142		- PageWelcomeTemplateManagement::class => array(
143		- self::MAIN => self::ACCESS_ALLOW,
144		- 'select' => self::ACCESS_ALLOW,
145		- 'view' => self::ACCESS_ALLOW,
146		- ),
147		- PageViewRequest::class => array(
148		- self::MAIN => self::ACCESS_ALLOW,
149		- ),
150		- 'RequestData' => array(
151		- 'seePrivateDataWhenReserved' => self::ACCESS_ALLOW,
152		- 'seePrivateDataWithHash' => self::ACCESS_ALLOW,
153		- ),
154		- PageCustomClose::class => array(
155		- self::MAIN => self::ACCESS_ALLOW,
156		- ),
157		- PageComment::class => array(
158		- self::MAIN => self::ACCESS_ALLOW,
159		- ),
160		- PageCloseRequest::class => array(
161		- self::MAIN => self::ACCESS_ALLOW,
162		- ),
163		- PageDeferRequest::class => array(
164		- self::MAIN => self::ACCESS_ALLOW,
165		- ),
166		- PageDropRequest::class => array(
167		- self::MAIN => self::ACCESS_ALLOW,
168		- ),
169		- PageReservation::class => array(
170		- self::MAIN => self::ACCESS_ALLOW,
171		- ),
172		- PageSendToUser::class => array(
173		- self::MAIN => self::ACCESS_ALLOW,
174		- ),
175		- PageBreakReservation::class => array(
176		- self::MAIN => self::ACCESS_ALLOW,
177		- ),
	102	+ '_childRoles' => array(
	103	+ 'public',
	104	+ ),
	105	+ PagePreferences::class => array(
	106	+ self::MAIN => self::ACCESS_ALLOW,
	107	+ 'changePassword' => self::ACCESS_ALLOW,
	108	+ ),
	109	+ PageOAuth::class => array(
	110	+ 'attach' => self::ACCESS_ALLOW,
	111	+ 'detach' => self::ACCESS_ALLOW,
	112	+ ),
	113	+ ),
	114	+ 'user' => array(
	115	+ '_description' => 'A standard tool user.',
	116	+ '_editableBy' => array('admin', 'toolRoot'),
	117	+ '_childRoles' => array(
	118	+ 'internalStats',
	119	+ ),
	120	+ PageMain::class => array(
	121	+ self::MAIN => self::ACCESS_ALLOW,
	122	+ ),
	123	+ PageBan::class => array(
	124	+ self::MAIN => self::ACCESS_ALLOW,
	125	+ ),
	126	+ PageEditComment::class => array(
	127	+ self::MAIN => self::ACCESS_ALLOW,
	128	+ ),
	129	+ PageEmailManagement::class => array(
	130	+ self::MAIN => self::ACCESS_ALLOW,
	131	+ 'view' => self::ACCESS_ALLOW,
	132	+ ),
	133	+ PageExpandedRequestList::class => array(
	134	+ self::MAIN => self::ACCESS_ALLOW,
	135	+ ),
	136	+ PageLog::class => array(
	137	+ self::MAIN => self::ACCESS_ALLOW,
	138	+ ),
	139	+ PageSearch::class => array(
	140	+ self::MAIN => self::ACCESS_ALLOW,
	141	+ ),
	142	+ PageWelcomeTemplateManagement::class => array(
	143	+ self::MAIN => self::ACCESS_ALLOW,
	144	+ 'select' => self::ACCESS_ALLOW,
	145	+ 'view' => self::ACCESS_ALLOW,
	146	+ ),
	147	+ PageViewRequest::class => array(
	148	+ self::MAIN => self::ACCESS_ALLOW,
	149	+ ),
	150	+ 'RequestData' => array(
	151	+ 'seePrivateDataWhenReserved' => self::ACCESS_ALLOW,
	152	+ 'seePrivateDataWithHash' => self::ACCESS_ALLOW,
	153	+ ),
	154	+ PageCustomClose::class => array(
	155	+ self::MAIN => self::ACCESS_ALLOW,
	156	+ ),
	157	+ PageComment::class => array(
	158	+ self::MAIN => self::ACCESS_ALLOW,
	159	+ ),
	160	+ PageCloseRequest::class => array(
	161	+ self::MAIN => self::ACCESS_ALLOW,
	162	+ ),
	163	+ PageDeferRequest::class => array(
	164	+ self::MAIN => self::ACCESS_ALLOW,
	165	+ ),
	166	+ PageDropRequest::class => array(
	167	+ self::MAIN => self::ACCESS_ALLOW,
	168	+ ),
	169	+ PageReservation::class => array(
	170	+ self::MAIN => self::ACCESS_ALLOW,
	171	+ ),
	172	+ PageSendToUser::class => array(
	173	+ self::MAIN => self::ACCESS_ALLOW,
	174	+ ),
	175	+ PageBreakReservation::class => array(
	176	+ self::MAIN => self::ACCESS_ALLOW,
	177	+ ),
178	178
179		- ),
180		- 'admin' => array(
181		- '_description' => 'A tool administrator.',
182		- '_editableBy' => array('admin', 'toolRoot'),
183		- '_childRoles' => array(
184		- 'user', 'requestAdminTools',
185		- ),
186		- PageEmailManagement::class => array(
187		- 'edit' => self::ACCESS_ALLOW,
188		- 'create' => self::ACCESS_ALLOW,
189		- ),
190		- PageSiteNotice::class => array(
191		- self::MAIN => self::ACCESS_ALLOW,
192		- ),
193		- PageUserManagement::class => array(
194		- self::MAIN => self::ACCESS_ALLOW,
195		- 'approve' => self::ACCESS_ALLOW,
196		- 'decline' => self::ACCESS_ALLOW,
197		- 'rename' => self::ACCESS_ALLOW,
198		- 'editUser' => self::ACCESS_ALLOW,
199		- 'suspend' => self::ACCESS_ALLOW,
200		- 'editRoles' => self::ACCESS_ALLOW,
201		- ),
202		- PageWelcomeTemplateManagement::class => array(
203		- 'edit' => self::ACCESS_ALLOW,
204		- 'delete' => self::ACCESS_ALLOW,
205		- 'add' => self::ACCESS_ALLOW,
206		- ),
207		- ),
208		- 'checkuser' => array(
209		- '_description' => 'A user with CheckUser access',
210		- '_editableBy' => array('checkuser', 'toolRoot'),
211		- '_childRoles' => array(
212		- 'user', 'requestAdminTools',
213		- ),
214		- PageUserManagement::class => array(
215		- self::MAIN => self::ACCESS_ALLOW,
216		- 'suspend' => self::ACCESS_ALLOW,
217		- 'editRoles' => self::ACCESS_ALLOW,
218		- ),
219		- 'RequestData' => array(
220		- 'seeUserAgentData' => self::ACCESS_ALLOW,
221		- ),
222		- ),
223		- 'toolRoot' => array(
224		- '_description' => 'A user with shell access to the servers running the tool',
225		- '_editableBy' => array('toolRoot'),
226		- '_childRoles' => array(
227		- 'admin', 'checkuser',
228		- ),
229		- ),
	179	+ ),
	180	+ 'admin' => array(
	181	+ '_description' => 'A tool administrator.',
	182	+ '_editableBy' => array('admin', 'toolRoot'),
	183	+ '_childRoles' => array(
	184	+ 'user', 'requestAdminTools',
	185	+ ),
	186	+ PageEmailManagement::class => array(
	187	+ 'edit' => self::ACCESS_ALLOW,
	188	+ 'create' => self::ACCESS_ALLOW,
	189	+ ),
	190	+ PageSiteNotice::class => array(
	191	+ self::MAIN => self::ACCESS_ALLOW,
	192	+ ),
	193	+ PageUserManagement::class => array(
	194	+ self::MAIN => self::ACCESS_ALLOW,
	195	+ 'approve' => self::ACCESS_ALLOW,
	196	+ 'decline' => self::ACCESS_ALLOW,
	197	+ 'rename' => self::ACCESS_ALLOW,
	198	+ 'editUser' => self::ACCESS_ALLOW,
	199	+ 'suspend' => self::ACCESS_ALLOW,
	200	+ 'editRoles' => self::ACCESS_ALLOW,
	201	+ ),
	202	+ PageWelcomeTemplateManagement::class => array(
	203	+ 'edit' => self::ACCESS_ALLOW,
	204	+ 'delete' => self::ACCESS_ALLOW,
	205	+ 'add' => self::ACCESS_ALLOW,
	206	+ ),
	207	+ ),
	208	+ 'checkuser' => array(
	209	+ '_description' => 'A user with CheckUser access',
	210	+ '_editableBy' => array('checkuser', 'toolRoot'),
	211	+ '_childRoles' => array(
	212	+ 'user', 'requestAdminTools',
	213	+ ),
	214	+ PageUserManagement::class => array(
	215	+ self::MAIN => self::ACCESS_ALLOW,
	216	+ 'suspend' => self::ACCESS_ALLOW,
	217	+ 'editRoles' => self::ACCESS_ALLOW,
	218	+ ),
	219	+ 'RequestData' => array(
	220	+ 'seeUserAgentData' => self::ACCESS_ALLOW,
	221	+ ),
	222	+ ),
	223	+ 'toolRoot' => array(
	224	+ '_description' => 'A user with shell access to the servers running the tool',
	225	+ '_editableBy' => array('toolRoot'),
	226	+ '_childRoles' => array(
	227	+ 'admin', 'checkuser',
	228	+ ),
	229	+ ),
230	230
231		- // Child roles go below this point
232		- 'publicStats' => array(
233		- '_hidden' => true,
234		- StatsUsers::class => array(
235		- self::MAIN => self::ACCESS_ALLOW,
236		- 'detail' => self::ACCESS_ALLOW,
237		- ),
238		- StatsTopCreators::class => array(
239		- self::MAIN => self::ACCESS_ALLOW,
240		- ),
241		- ),
242		- 'internalStats' => array(
243		- '_hidden' => true,
244		- StatsMain::class => array(
245		- self::MAIN => self::ACCESS_ALLOW,
246		- ),
247		- StatsFastCloses::class => array(
248		- self::MAIN => self::ACCESS_ALLOW,
249		- ),
250		- StatsInactiveUsers::class => array(
251		- self::MAIN => self::ACCESS_ALLOW,
252		- ),
253		- StatsMonthlyStats::class => array(
254		- self::MAIN => self::ACCESS_ALLOW,
255		- ),
256		- StatsReservedRequests::class => array(
257		- self::MAIN => self::ACCESS_ALLOW,
258		- ),
259		- StatsTemplateStats::class => array(
260		- self::MAIN => self::ACCESS_ALLOW,
261		- ),
262		- ),
263		- 'requestAdminTools' => array(
264		- '_hidden' => true,
265		- PageBan::class => array(
266		- self::MAIN => self::ACCESS_ALLOW,
267		- 'set' => self::ACCESS_ALLOW,
268		- 'remove' => self::ACCESS_ALLOW,
269		- ),
270		- PageEditComment::class => array(
271		- 'editOthers' => self::ACCESS_ALLOW,
272		- ),
273		- PageBreakReservation::class => array(
274		- 'force' => self::ACCESS_ALLOW,
275		- ),
276		- PageCustomClose::class => array(
277		- 'skipCcMailingList' => self::ACCESS_ALLOW,
278		- ),
279		- 'RequestData' => array(
280		- 'reopenOldRequest' => self::ACCESS_ALLOW,
281		- 'alwaysSeePrivateData' => self::ACCESS_ALLOW,
282		- 'alwaysSeeHash' => self::ACCESS_ALLOW,
283		- 'seeRestrictedComments' => self::ACCESS_ALLOW,
284		- ),
285		- ),
286		- );
287		- /** @var array
288		- * List of roles which are exempt from the identification requirements
289		- *
290		- * Think twice about adding roles to this list.
291		- *
292		- * @category Security-Critical
293		- */
294		- private $identificationExempt = array('public', 'loggedIn');
	231	+ // Child roles go below this point
	232	+ 'publicStats' => array(
	233	+ '_hidden' => true,
	234	+ StatsUsers::class => array(
	235	+ self::MAIN => self::ACCESS_ALLOW,
	236	+ 'detail' => self::ACCESS_ALLOW,
	237	+ ),
	238	+ StatsTopCreators::class => array(
	239	+ self::MAIN => self::ACCESS_ALLOW,
	240	+ ),
	241	+ ),
	242	+ 'internalStats' => array(
	243	+ '_hidden' => true,
	244	+ StatsMain::class => array(
	245	+ self::MAIN => self::ACCESS_ALLOW,
	246	+ ),
	247	+ StatsFastCloses::class => array(
	248	+ self::MAIN => self::ACCESS_ALLOW,
	249	+ ),
	250	+ StatsInactiveUsers::class => array(
	251	+ self::MAIN => self::ACCESS_ALLOW,
	252	+ ),
	253	+ StatsMonthlyStats::class => array(
	254	+ self::MAIN => self::ACCESS_ALLOW,
	255	+ ),
	256	+ StatsReservedRequests::class => array(
	257	+ self::MAIN => self::ACCESS_ALLOW,
	258	+ ),
	259	+ StatsTemplateStats::class => array(
	260	+ self::MAIN => self::ACCESS_ALLOW,
	261	+ ),
	262	+ ),
	263	+ 'requestAdminTools' => array(
	264	+ '_hidden' => true,
	265	+ PageBan::class => array(
	266	+ self::MAIN => self::ACCESS_ALLOW,
	267	+ 'set' => self::ACCESS_ALLOW,
	268	+ 'remove' => self::ACCESS_ALLOW,
	269	+ ),
	270	+ PageEditComment::class => array(
	271	+ 'editOthers' => self::ACCESS_ALLOW,
	272	+ ),
	273	+ PageBreakReservation::class => array(
	274	+ 'force' => self::ACCESS_ALLOW,
	275	+ ),
	276	+ PageCustomClose::class => array(
	277	+ 'skipCcMailingList' => self::ACCESS_ALLOW,
	278	+ ),
	279	+ 'RequestData' => array(
	280	+ 'reopenOldRequest' => self::ACCESS_ALLOW,
	281	+ 'alwaysSeePrivateData' => self::ACCESS_ALLOW,
	282	+ 'alwaysSeeHash' => self::ACCESS_ALLOW,
	283	+ 'seeRestrictedComments' => self::ACCESS_ALLOW,
	284	+ ),
	285	+ ),
	286	+ );
	287	+ /** @var array
	288	+ * List of roles which are exempt from the identification requirements
	289	+ *
	290	+ * Think twice about adding roles to this list.
	291	+ *
	292	+ * @category Security-Critical
	293	+ */
	294	+ private $identificationExempt = array('public', 'loggedIn');
295	295
296		- /**
297		- * RoleConfiguration constructor.
298		- *
299		- * @param array $roleConfig Set to non-null to override the default configuration.
300		- * @param array $identificationExempt Set to non-null to override the default configuration.
301		- */
302		- public function __construct(array $roleConfig = null, array $identificationExempt = null)
303		- {
304		- if ($roleConfig !== null) {
305		- $this->roleConfig = $roleConfig;
306		- }
	296	+ /**
	297	+ * RoleConfiguration constructor.
	298	+ *
	299	+ * @param array $roleConfig Set to non-null to override the default configuration.
	300	+ * @param array $identificationExempt Set to non-null to override the default configuration.
	301	+ */
	302	+ public function __construct(array $roleConfig = null, array $identificationExempt = null)
	303	+ {
	304	+ if ($roleConfig !== null) {
	305	+ $this->roleConfig = $roleConfig;
	306	+ }
307	307
308		- if ($identificationExempt !== null) {
309		- $this->identificationExempt = $identificationExempt;
310		- }
311		- }
	308	+ if ($identificationExempt !== null) {
	309	+ $this->identificationExempt = $identificationExempt;
	310	+ }
	311	+ }
312	312
313		- /**
314		- * @param array $roles The roles to check
315		- *
316		- * @return array
317		- */
318		- public function getApplicableRoles(array $roles)
319		- {
320		- $available = array();
	313	+ /**
	314	+ * @param array $roles The roles to check
	315	+ *
	316	+ * @return array
	317	+ */
	318	+ public function getApplicableRoles(array $roles)
	319	+ {
	320	+ $available = array();
321	321
322		- foreach ($roles as $role) {
323		- if (!isset($this->roleConfig[$role])) {
324		- // wat
325		- continue;
326		- }
	322	+ foreach ($roles as $role) {
	323	+ if (!isset($this->roleConfig[$role])) {
	324	+ // wat
	325	+ continue;
	326	+ }
327	327
328		- $available[$role] = $this->roleConfig[$role];
	328	+ $available[$role] = $this->roleConfig[$role];
329	329
330		- if (isset($available[$role]['_childRoles'])) {
331		- $childRoles = self::getApplicableRoles($available[$role]['_childRoles']);
332		- $available = array_merge($available, $childRoles);
	330	+ if (isset($available[$role]['_childRoles'])) {
	331	+ $childRoles = self::getApplicableRoles($available[$role]['_childRoles']);
	332	+ $available = array_merge($available, $childRoles);
333	333
334		- unset($available[$role]['_childRoles']);
335		- }
	334	+ unset($available[$role]['_childRoles']);
	335	+ }
336	336
337		- foreach (array('_hidden', '_editableBy', '_description') as $item) {
338		- if (isset($available[$role][$item])) {
339		- unset($available[$role][$item]);
340		- }
341		- }
342		- }
	337	+ foreach (array('_hidden', '_editableBy', '_description') as $item) {
	338	+ if (isset($available[$role][$item])) {
	339	+ unset($available[$role][$item]);
	340	+ }
	341	+ }
	342	+ }
343	343
344		- return $available;
345		- }
	344	+ return $available;
	345	+ }
346	346
347		- public function getAvailableRoles()
348		- {
349		- $possible = array_diff(array_keys($this->roleConfig), array('public', 'loggedIn'));
	347	+ public function getAvailableRoles()
	348	+ {
	349	+ $possible = array_diff(array_keys($this->roleConfig), array('public', 'loggedIn'));
350	350
351		- $actual = array();
	351	+ $actual = array();
352	352
353		- foreach ($possible as $role) {
354		- if (!isset($this->roleConfig[$role]['_hidden'])) {
355		- $actual[$role] = array(
356		- 'description' => $this->roleConfig[$role]['_description'],
357		- 'editableBy' => $this->roleConfig[$role]['_editableBy'],
358		- );
359		- }
360		- }
	353	+ foreach ($possible as $role) {
	354	+ if (!isset($this->roleConfig[$role]['_hidden'])) {
	355	+ $actual[$role] = array(
	356	+ 'description' => $this->roleConfig[$role]['_description'],
	357	+ 'editableBy' => $this->roleConfig[$role]['_editableBy'],
	358	+ );
	359	+ }
	360	+ }
361	361
362		- return $actual;
363		- }
	362	+ return $actual;
	363	+ }
364	364
365		- /**
366		- * @param string $role
367		- *
368		- * @return bool
369		- */
370		- public function roleNeedsIdentification($role)
371		- {
372		- if (in_array($role, $this->identificationExempt)) {
373		- return false;
374		- }
	365	+ /**
	366	+ * @param string $role
	367	+ *
	368	+ * @return bool
	369	+ */
	370	+ public function roleNeedsIdentification($role)
	371	+ {
	372	+ if (in_array($role, $this->identificationExempt)) {
	373	+ return false;
	374	+ }
375	375
376		- return true;
377		- }
	376	+ return true;
	377	+ }
378	378	}

		@@ -22,225 +22,225 @@
		block discarded – undo
22	22
23	23	abstract class InternalPageBase extends PageBase
24	24	{
25		- use NavigationMenuAccessControl;
26		-
27		- /** @var IdentificationVerifier */
28		- private $identificationVerifier;
29		- /** @var ITypeAheadHelper */
30		- private $typeAheadHelper;
31		- /** @var SecurityManager */
32		- private $securityManager;
33		- /** @var IBlacklistHelper */
34		- private $blacklistHelper;
35		-
36		- /**
37		- * @return ITypeAheadHelper
38		- */
39		- public function getTypeAheadHelper()
40		- {
41		- return $this->typeAheadHelper;
42		- }
43		-
44		- /**
45		- * Sets up the internal IdentificationVerifier instance. Intended to be called from WebStart::setupHelpers().
46		- *
47		- * @param IdentificationVerifier $identificationVerifier
48		- *
49		- * @return void
50		- */
51		- public function setIdentificationVerifier(IdentificationVerifier $identificationVerifier)
52		- {
53		- $this->identificationVerifier = $identificationVerifier;
54		- }
55		-
56		- /**
57		- * @param ITypeAheadHelper $typeAheadHelper
58		- */
59		- public function setTypeAheadHelper(ITypeAheadHelper $typeAheadHelper)
60		- {
61		- $this->typeAheadHelper = $typeAheadHelper;
62		- }
63		-
64		- /**
65		- * Runs the page code
66		- *
67		- * @throws Exception
68		- * @category Security-Critical
69		- */
70		- final public function execute()
71		- {
72		- if ($this->getRouteName() === null) {
73		- throw new Exception("Request is unrouted.");
74		- }
75		-
76		- if ($this->getSiteConfiguration() === null) {
77		- throw new Exception("Page has no configuration!");
78		- }
79		-
80		- $this->setupPage();
81		-
82		- $this->touchUserLastActive();
83		-
84		- $currentUser = User::getCurrent($this->getDatabase());
85		-
86		- // Hey, this is also a security barrier, in addition to the below. Separated out for readability.
87		- if (!$this->isProtectedPage()) {
88		- // This page is /not/ a protected page, as such we can just run it.
89		- $this->runPage();
90		-
91		- return;
92		- }
93		-
94		- // Security barrier.
95		- //
96		- // This code essentially doesn't care if the user is logged in or not, as the security manager hides all that
97		- // away for us
98		- $securityResult = $this->getSecurityManager()->allows(get_called_class(), $this->getRouteName(), $currentUser);
99		- if ($securityResult === SecurityManager::ALLOWED) {
100		- // We're allowed to run the page, so let's run it.
101		- $this->runPage();
102		- }
103		- else {
104		- $this->handleAccessDenied($securityResult);
105		-
106		- // Send the headers
107		- $this->sendResponseHeaders();
108		- }
109		- }
110		-
111		- /**
112		- * Performs final tasks needed before rendering the page.
113		- */
114		- final public function finalisePage()
115		- {
116		- parent::finalisePage();
117		-
118		- $this->assign('typeAheadBlock', $this->getTypeAheadHelper()->getTypeAheadScriptBlock());
119		-
120		- $database = $this->getDatabase();
121		-
122		- $currentUser = User::getCurrent($database);
123		- if (!$currentUser->isCommunityUser()) {
124		- $sql = 'SELECT * FROM user WHERE lastactive > DATE_SUB(CURRENT_TIMESTAMP(), INTERVAL 5 MINUTE);';
125		- $statement = $database->query($sql);
126		- $activeUsers = $statement->fetchAll(PDO::FETCH_CLASS, User::class);
127		- $this->assign('onlineusers', $activeUsers);
128		- }
129		-
130		- $this->setupNavMenuAccess($currentUser);
131		- }
132		-
133		- /**
134		- * Configures whether the page respects roles or not. You probably want this to return true.
135		- *
136		- * Set to false for public pages. You probably want this to return true.
137		- *
138		- * This defaults to true unless you explicitly set it to false. Setting it to false means anybody can do anything
139		- * on this page, so you probably want this to return true.
140		- *
141		- * @return bool
142		- * @category Security-Critical
143		- */
144		- protected function isProtectedPage()
145		- {
146		- return true;
147		- }
148		-
149		- protected function handleAccessDenied($denyReason)
150		- {
151		- $currentUser = User::getCurrent($this->getDatabase());
152		-
153		- // Not allowed to access this resource.
154		- // Firstly, let's check if we're even logged in.
155		- if ($currentUser->isCommunityUser()) {
156		- // Not logged in, redirect to login page
157		- WebRequest::setPostLoginRedirect();
158		- $this->redirect("login");
159		-
160		- return;
161		- }
162		- else {
163		- // Decide whether this was a rights failure, or an identification failure.
164		-
165		- if ($denyReason === SecurityManager::ERROR_NOT_IDENTIFIED) {
166		- // Not identified
167		- throw new NotIdentifiedException($this->getSecurityManager());
168		- }
169		- elseif ($denyReason === SecurityManager::ERROR_DENIED) {
170		- // Nope, plain old access denied
171		- throw new AccessDeniedException($this->getSecurityManager());
172		- }
173		- else {
174		- throw new Exception('Unknown response from security manager.');
175		- }
176		- }
177		- }
178		-
179		- /**
180		- * Tests the security barrier for a specified action.
181		- *
182		- * Don't use within templates
183		- *
184		- * @param string $action
185		- *
186		- * @param User $user
187		- * @param null\|string $pageName
188		- *
189		- * @return bool
190		- * @category Security-Critical
191		- */
192		- final public function barrierTest($action, User $user, $pageName = null)
193		- {
194		- $page = get_called_class();
195		- if ($pageName !== null) {
196		- $page = $pageName;
197		- }
198		-
199		- $securityResult = $this->getSecurityManager()->allows($page, $action, $user);
200		-
201		- return $securityResult === SecurityManager::ALLOWED;
202		- }
203		-
204		- /**
205		- * Updates the lastactive timestamp
206		- */
207		- private function touchUserLastActive()
208		- {
209		- if (WebRequest::getSessionUserId() !== null) {
210		- $query = 'UPDATE user SET lastactive = CURRENT_TIMESTAMP() WHERE id = :id;';
211		- $this->getDatabase()->prepare($query)->execute(array(":id" => WebRequest::getSessionUserId()));
212		- }
213		- }
214		-
215		- /**
216		- * @return SecurityManager
217		- */
218		- public function getSecurityManager()
219		- {
220		- return $this->securityManager;
221		- }
222		-
223		- /**
224		- * @param SecurityManager $securityManager
225		- */
226		- public function setSecurityManager(SecurityManager $securityManager)
227		- {
228		- $this->securityManager = $securityManager;
229		- }
230		-
231		- /**
232		- * @return IBlacklistHelper
233		- */
234		- public function getBlacklistHelper()
235		- {
236		- return $this->blacklistHelper;
237		- }
238		-
239		- /**
240		- * @param IBlacklistHelper $blacklistHelper
241		- */
242		- public function setBlacklistHelper(IBlacklistHelper $blacklistHelper)
243		- {
244		- $this->blacklistHelper = $blacklistHelper;
245		- }
	25	+ use NavigationMenuAccessControl;
	26	+
	27	+ /** @var IdentificationVerifier */
	28	+ private $identificationVerifier;
	29	+ /** @var ITypeAheadHelper */
	30	+ private $typeAheadHelper;
	31	+ /** @var SecurityManager */
	32	+ private $securityManager;
	33	+ /** @var IBlacklistHelper */
	34	+ private $blacklistHelper;
	35	+
	36	+ /**
	37	+ * @return ITypeAheadHelper
	38	+ */
	39	+ public function getTypeAheadHelper()
	40	+ {
	41	+ return $this->typeAheadHelper;
	42	+ }
	43	+
	44	+ /**
	45	+ * Sets up the internal IdentificationVerifier instance. Intended to be called from WebStart::setupHelpers().
	46	+ *
	47	+ * @param IdentificationVerifier $identificationVerifier
	48	+ *
	49	+ * @return void
	50	+ */
	51	+ public function setIdentificationVerifier(IdentificationVerifier $identificationVerifier)
	52	+ {
	53	+ $this->identificationVerifier = $identificationVerifier;
	54	+ }
	55	+
	56	+ /**
	57	+ * @param ITypeAheadHelper $typeAheadHelper
	58	+ */
	59	+ public function setTypeAheadHelper(ITypeAheadHelper $typeAheadHelper)
	60	+ {
	61	+ $this->typeAheadHelper = $typeAheadHelper;
	62	+ }
	63	+
	64	+ /**
	65	+ * Runs the page code
	66	+ *
	67	+ * @throws Exception
	68	+ * @category Security-Critical
	69	+ */
	70	+ final public function execute()
	71	+ {
	72	+ if ($this->getRouteName() === null) {
	73	+ throw new Exception("Request is unrouted.");
	74	+ }
	75	+
	76	+ if ($this->getSiteConfiguration() === null) {
	77	+ throw new Exception("Page has no configuration!");
	78	+ }
	79	+
	80	+ $this->setupPage();
	81	+
	82	+ $this->touchUserLastActive();
	83	+
	84	+ $currentUser = User::getCurrent($this->getDatabase());
	85	+
	86	+ // Hey, this is also a security barrier, in addition to the below. Separated out for readability.
	87	+ if (!$this->isProtectedPage()) {
	88	+ // This page is /not/ a protected page, as such we can just run it.
	89	+ $this->runPage();
	90	+
	91	+ return;
	92	+ }
	93	+
	94	+ // Security barrier.
	95	+ //
	96	+ // This code essentially doesn't care if the user is logged in or not, as the security manager hides all that
	97	+ // away for us
	98	+ $securityResult = $this->getSecurityManager()->allows(get_called_class(), $this->getRouteName(), $currentUser);
	99	+ if ($securityResult === SecurityManager::ALLOWED) {
	100	+ // We're allowed to run the page, so let's run it.
	101	+ $this->runPage();
	102	+ }
	103	+ else {
	104	+ $this->handleAccessDenied($securityResult);
	105	+
	106	+ // Send the headers
	107	+ $this->sendResponseHeaders();
	108	+ }
	109	+ }
	110	+
	111	+ /**
	112	+ * Performs final tasks needed before rendering the page.
	113	+ */
	114	+ final public function finalisePage()
	115	+ {
	116	+ parent::finalisePage();
	117	+
	118	+ $this->assign('typeAheadBlock', $this->getTypeAheadHelper()->getTypeAheadScriptBlock());
	119	+
	120	+ $database = $this->getDatabase();
	121	+
	122	+ $currentUser = User::getCurrent($database);
	123	+ if (!$currentUser->isCommunityUser()) {
	124	+ $sql = 'SELECT * FROM user WHERE lastactive > DATE_SUB(CURRENT_TIMESTAMP(), INTERVAL 5 MINUTE);';
	125	+ $statement = $database->query($sql);
	126	+ $activeUsers = $statement->fetchAll(PDO::FETCH_CLASS, User::class);
	127	+ $this->assign('onlineusers', $activeUsers);
	128	+ }
	129	+
	130	+ $this->setupNavMenuAccess($currentUser);
	131	+ }
	132	+
	133	+ /**
	134	+ * Configures whether the page respects roles or not. You probably want this to return true.
	135	+ *
	136	+ * Set to false for public pages. You probably want this to return true.
	137	+ *
	138	+ * This defaults to true unless you explicitly set it to false. Setting it to false means anybody can do anything
	139	+ * on this page, so you probably want this to return true.
	140	+ *
	141	+ * @return bool
	142	+ * @category Security-Critical
	143	+ */
	144	+ protected function isProtectedPage()
	145	+ {
	146	+ return true;
	147	+ }
	148	+
	149	+ protected function handleAccessDenied($denyReason)
	150	+ {
	151	+ $currentUser = User::getCurrent($this->getDatabase());
	152	+
	153	+ // Not allowed to access this resource.
	154	+ // Firstly, let's check if we're even logged in.
	155	+ if ($currentUser->isCommunityUser()) {
	156	+ // Not logged in, redirect to login page
	157	+ WebRequest::setPostLoginRedirect();
	158	+ $this->redirect("login");
	159	+
	160	+ return;
	161	+ }
	162	+ else {
	163	+ // Decide whether this was a rights failure, or an identification failure.
	164	+
	165	+ if ($denyReason === SecurityManager::ERROR_NOT_IDENTIFIED) {
	166	+ // Not identified
	167	+ throw new NotIdentifiedException($this->getSecurityManager());
	168	+ }
	169	+ elseif ($denyReason === SecurityManager::ERROR_DENIED) {
	170	+ // Nope, plain old access denied
	171	+ throw new AccessDeniedException($this->getSecurityManager());
	172	+ }
	173	+ else {
	174	+ throw new Exception('Unknown response from security manager.');
	175	+ }
	176	+ }
	177	+ }
	178	+
	179	+ /**
	180	+ * Tests the security barrier for a specified action.
	181	+ *
	182	+ * Don't use within templates
	183	+ *
	184	+ * @param string $action
	185	+ *
	186	+ * @param User $user
	187	+ * @param null\|string $pageName
	188	+ *
	189	+ * @return bool
	190	+ * @category Security-Critical
	191	+ */
	192	+ final public function barrierTest($action, User $user, $pageName = null)
	193	+ {
	194	+ $page = get_called_class();
	195	+ if ($pageName !== null) {
	196	+ $page = $pageName;
	197	+ }
	198	+
	199	+ $securityResult = $this->getSecurityManager()->allows($page, $action, $user);
	200	+
	201	+ return $securityResult === SecurityManager::ALLOWED;
	202	+ }
	203	+
	204	+ /**
	205	+ * Updates the lastactive timestamp
	206	+ */
	207	+ private function touchUserLastActive()
	208	+ {
	209	+ if (WebRequest::getSessionUserId() !== null) {
	210	+ $query = 'UPDATE user SET lastactive = CURRENT_TIMESTAMP() WHERE id = :id;';
	211	+ $this->getDatabase()->prepare($query)->execute(array(":id" => WebRequest::getSessionUserId()));
	212	+ }
	213	+ }
	214	+
	215	+ /**
	216	+ * @return SecurityManager
	217	+ */
	218	+ public function getSecurityManager()
	219	+ {
	220	+ return $this->securityManager;
	221	+ }
	222	+
	223	+ /**
	224	+ * @param SecurityManager $securityManager
	225	+ */
	226	+ public function setSecurityManager(SecurityManager $securityManager)
	227	+ {
	228	+ $this->securityManager = $securityManager;
	229	+ }
	230	+
	231	+ /**
	232	+ * @return IBlacklistHelper
	233	+ */
	234	+ public function getBlacklistHelper()
	235	+ {
	236	+ return $this->blacklistHelper;
	237	+ }
	238	+
	239	+ /**
	240	+ * @param IBlacklistHelper $blacklistHelper
	241	+ */
	242	+ public function setBlacklistHelper(IBlacklistHelper $blacklistHelper)
	243	+ {
	244	+ $this->blacklistHelper = $blacklistHelper;
	245	+ }
246	246	}

		@@ -26,89 +26,89 @@
		block discarded – undo
26	26	*/
27	27	class AccessDeniedException extends ReadableException
28	28	{
29		- use NavigationMenuAccessControl;
30		-
31		- /**
32		- * @var SecurityManager
33		- */
34		- private $securityManager;
35		-
36		- /**
37		- * AccessDeniedException constructor.
38		- *
39		- * @param SecurityManager $securityManager
40		- */
41		- public function __construct(SecurityManager $securityManager = null)
42		- {
43		- $this->securityManager = $securityManager;
44		- }
45		-
46		- public function getReadableError()
47		- {
48		- if (!headers_sent()) {
49		- header("HTTP/1.1 403 Forbidden");
50		- }
51		-
52		- $this->setUpSmarty();
53		-
54		- // uck. We should still be able to access the database in this situation though.
55		- $database = PdoDatabase::getDatabaseConnection('acc');
56		- $currentUser = User::getCurrent($database);
57		- $this->assign('currentUser', $currentUser);
58		- $this->assign("loggedIn", (!$currentUser->isCommunityUser()));
59		-
60		- if($this->securityManager !== null) {
61		- $this->setupNavMenuAccess($currentUser);
62		- }
63		-
64		- if ($currentUser->isDeclined()) {
65		- $this->assign('htmlTitle', 'Account Declined');
66		- $this->assign('declineReason', $this->getLogEntry('Declined', $currentUser, $database));
67		-
68		- return $this->fetchTemplate("exception/account-declined.tpl");
69		- }
70		-
71		- if ($currentUser->isSuspended()) {
72		- $this->assign('htmlTitle', 'Account Suspended');
73		- $this->assign('suspendReason', $this->getLogEntry('Suspended', $currentUser, $database));
74		-
75		- return $this->fetchTemplate("exception/account-suspended.tpl");
76		- }
77		-
78		- if ($currentUser->isNewUser()) {
79		- $this->assign('htmlTitle', 'Account Pending');
80		-
81		- return $this->fetchTemplate("exception/account-new.tpl");
82		- }
83		-
84		- return $this->fetchTemplate("exception/access-denied.tpl");
85		- }
86		-
87		- /**
88		- * @param string $action
89		- * @param User $user
90		- * @param PdoDatabase $database
91		- *
92		- * @return null\|string
93		- */
94		- private function getLogEntry($action, User $user, PdoDatabase $database)
95		- {
96		- /** @var Log[] $logs */
97		- $logs = LogSearchHelper::get($database)
98		- ->byAction($action)
99		- ->byObjectType('User')
100		- ->byObjectId($user->getId())
101		- ->limit(1)
102		- ->fetch();
103		-
104		- return $logs[0]->getComment();
105		- }
106		-
107		- /**
108		- * @return SecurityManager
109		- */
110		- protected function getSecurityManager()
111		- {
112		- return $this->securityManager;
113		- }
	29	+ use NavigationMenuAccessControl;
	30	+
	31	+ /**
	32	+ * @var SecurityManager
	33	+ */
	34	+ private $securityManager;
	35	+
	36	+ /**
	37	+ * AccessDeniedException constructor.
	38	+ *
	39	+ * @param SecurityManager $securityManager
	40	+ */
	41	+ public function __construct(SecurityManager $securityManager = null)
	42	+ {
	43	+ $this->securityManager = $securityManager;
	44	+ }
	45	+
	46	+ public function getReadableError()
	47	+ {
	48	+ if (!headers_sent()) {
	49	+ header("HTTP/1.1 403 Forbidden");
	50	+ }
	51	+
	52	+ $this->setUpSmarty();
	53	+
	54	+ // uck. We should still be able to access the database in this situation though.
	55	+ $database = PdoDatabase::getDatabaseConnection('acc');
	56	+ $currentUser = User::getCurrent($database);
	57	+ $this->assign('currentUser', $currentUser);
	58	+ $this->assign("loggedIn", (!$currentUser->isCommunityUser()));
	59	+
	60	+ if($this->securityManager !== null) {
	61	+ $this->setupNavMenuAccess($currentUser);
	62	+ }
	63	+
	64	+ if ($currentUser->isDeclined()) {
	65	+ $this->assign('htmlTitle', 'Account Declined');
	66	+ $this->assign('declineReason', $this->getLogEntry('Declined', $currentUser, $database));
	67	+
	68	+ return $this->fetchTemplate("exception/account-declined.tpl");
	69	+ }
	70	+
	71	+ if ($currentUser->isSuspended()) {
	72	+ $this->assign('htmlTitle', 'Account Suspended');
	73	+ $this->assign('suspendReason', $this->getLogEntry('Suspended', $currentUser, $database));
	74	+
	75	+ return $this->fetchTemplate("exception/account-suspended.tpl");
	76	+ }
	77	+
	78	+ if ($currentUser->isNewUser()) {
	79	+ $this->assign('htmlTitle', 'Account Pending');
	80	+
	81	+ return $this->fetchTemplate("exception/account-new.tpl");
	82	+ }
	83	+
	84	+ return $this->fetchTemplate("exception/access-denied.tpl");
	85	+ }
	86	+
	87	+ /**
	88	+ * @param string $action
	89	+ * @param User $user
	90	+ * @param PdoDatabase $database
	91	+ *
	92	+ * @return null\|string
	93	+ */
	94	+ private function getLogEntry($action, User $user, PdoDatabase $database)
	95	+ {
	96	+ /** @var Log[] $logs */
	97	+ $logs = LogSearchHelper::get($database)
	98	+ ->byAction($action)
	99	+ ->byObjectType('User')
	100	+ ->byObjectId($user->getId())
	101	+ ->limit(1)
	102	+ ->fetch();
	103	+
	104	+ return $logs[0]->getComment();
	105	+ }
	106	+
	107	+ /**
	108	+ * @return SecurityManager
	109	+ */
	110	+ protected function getSecurityManager()
	111	+ {
	112	+ return $this->securityManager;
	113	+ }
114	114	}
115	115	\ No newline at end of file

enwikipedia-acc / waca

Push — newinternal ( 65a0f5...5b021c )

Status

Category

Indentation +113 added lines, -113 removed lines patch added patch discarded remove patch

Indentation +73 added lines, -73 removed lines patch added patch discarded remove patch

Indentation +337 added lines, -337 removed lines patch added patch discarded remove patch

Indentation +157 added lines, -157 removed lines patch added patch discarded remove patch

Indentation +196 added lines, -196 removed lines patch added patch discarded remove patch

Indentation +307 added lines, -307 removed lines patch added patch discarded remove patch

Indentation +221 added lines, -221 removed lines patch added patch discarded remove patch

Indentation +391 added lines, -391 removed lines patch added patch discarded remove patch

Indentation +85 added lines, -85 removed lines patch added patch discarded remove patch