Inspection of "Bump squizlabs/php_codesniffer from 2.9.2 to 3.5.5" - mdaniels5757/waca - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — dependabot/composer/newinterna... ( 9a3136 )

unknown

created 2020-06-08 21:36 UTC

Status

Indentation +8 added lines, -8 removed lines patch added patch discarded remove patch

@@ -12,12 +12,12 @@
 block discarded – undo
 
 class PageEmailConfirmationRequired extends PublicInterfacePageBase
 {
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @return void
-     */
-    protected function main()
-    {
-        $this->setTemplate('request/email-confirmation.tpl');
-    }
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @return void
+	 */
+	protected function main()
+	{
+		$this->setTemplate('request/email-confirmation.tpl');
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Pages/Request/PageRequestAccount.php 1 patch

Indentation +146 added lines, -146 removed lines patch added patch discarded remove patch

@@ -19,150 +19,150 @@
 block discarded – undo
 
 class PageRequestAccount extends PublicInterfacePageBase
 {
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @return void
-     */
-    protected function main()
-    {
-        // dual mode page
-        if (WebRequest::wasPosted()) {
-            $request = $this->createNewRequest();
-
-            $validationErrors = $this->validateRequest($request);
-
-            if (count($validationErrors) > 0) {
-                foreach ($validationErrors as $validationError) {
-                    SessionAlert::error($validationError->getErrorMessage());
-                }
-
-                // Preserve the data after an error
-                WebRequest::setSessionContext('accountReq',
-                    array(
-                        'username' => WebRequest::postString('name'),
-                        'email'    => WebRequest::postEmail('email'),
-                        'comments' => WebRequest::postString('comments'),
-                    )
-                );
-
-                // Validation error, bomb out early.
-                $this->redirect();
-
-                return;
-            }
-
-            // actually save the request to the database
-            if ($this->getSiteConfiguration()->getEmailConfirmationEnabled()) {
-                $this->saveAsEmailConfirmation($request);
-            }
-            else {
-                $this->saveWithoutEmailConfirmation($request);
-            }
-        }
-        else {
-            // set the form values from the session context
-            $context = WebRequest::getSessionContext('accountReq');
-            if ($context !== null && is_array($context)) {
-                $this->assign('username', $context['username']);
-                $this->assign('email', $context['email']);
-                $this->assign('comments', $context['comments']);
-            }
-
-            // Clear it for a refresh
-            WebRequest::setSessionContext('accountReq', null);
-
-            $this->setTemplate('request/request-form.tpl');
-        }
-    }
-
-    /**
-     * @return Request
-     */
-    protected function createNewRequest()
-    {
-        $request = new Request();
-        $request->setDatabase($this->getDatabase());
-
-        $request->setName(WebRequest::postString('name'));
-        $request->setEmail(WebRequest::postEmail('email'));
-        $request->setComment(WebRequest::postString('comments'));
-
-        $request->setIp(WebRequest::remoteAddress());
-        $request->setForwardedIp(WebRequest::forwardedAddress());
-
-        $request->setUserAgent(WebRequest::userAgent());
-
-        return $request;
-    }
-
-    /**
-     * @param Request $request
-     *
-     * @return ValidationError[]
-     */
-    protected function validateRequest($request)
-    {
-        $validationHelper = new RequestValidationHelper(
-            new BanHelper($this->getDatabase()),
-            $request,
-            WebRequest::postEmail('emailconfirm'),
-            $this->getDatabase(),
-            $this->getAntiSpoofProvider(),
-            $this->getXffTrustProvider(),
-            $this->getHttpHelper(),
-            $this->getSiteConfiguration()->getMediawikiWebServiceEndpoint(),
-            $this->getSiteConfiguration()->getTitleBlacklistEnabled(),
-            $this->getTorExitProvider());
-
-        // These are arrays of ValidationError.
-        $nameValidation = $validationHelper->validateName();
-        $emailValidation = $validationHelper->validateEmail();
-        $otherValidation = $validationHelper->validateOther();
-
-        $validationErrors = array_merge($nameValidation, $emailValidation, $otherValidation);
-
-        return $validationErrors;
-    }
-
-    /**
-     * @param Request $request
-     *
-     * @throws Exception
-     */
-    protected function saveAsEmailConfirmation(Request $request)
-    {
-        $request->generateEmailConfirmationHash();
-        $request->save();
-
-        $trustedIp = $this->getXffTrustProvider()->getTrustedClientIp(
-            $request->getIp(),
-            $request->getForwardedIp());
-
-        $this->assign("ip", $trustedIp);
-        $this->assign("id", $request->getId());
-        $this->assign("hash", $request->getEmailConfirm());
-
-        // Sends the confirmation email to the user.
-        $this->getEmailHelper()->sendMail(
-            $request->getEmail(),
-            "[ACC #{$request->getId()}] English Wikipedia Account Request",
-            $this->fetchTemplate('request/confirmation-mail.tpl'));
-
-        $this->redirect('emailConfirmationRequired');
-    }
-
-    /**
-     * @param Request $request
-     *
-     * @throws Exception
-     */
-    protected function saveWithoutEmailConfirmation(Request $request)
-    {
-        $request->setEmailConfirm(0); // fixme Since it can't be null
-        $request->save();
-
-        $this->getNotificationHelper()->requestReceived($request);
-
-        $this->redirect('requestSubmitted');
-    }
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @return void
+	 */
+	protected function main()
+	{
+		// dual mode page
+		if (WebRequest::wasPosted()) {
+			$request = $this->createNewRequest();
+
+			$validationErrors = $this->validateRequest($request);
+
+			if (count($validationErrors) > 0) {
+				foreach ($validationErrors as $validationError) {
+					SessionAlert::error($validationError->getErrorMessage());
+				}
+
+				// Preserve the data after an error
+				WebRequest::setSessionContext('accountReq',
+					array(
+						'username' => WebRequest::postString('name'),
+						'email'    => WebRequest::postEmail('email'),
+						'comments' => WebRequest::postString('comments'),
+					)
+				);
+
+				// Validation error, bomb out early.
+				$this->redirect();
+
+				return;
+			}
+
+			// actually save the request to the database
+			if ($this->getSiteConfiguration()->getEmailConfirmationEnabled()) {
+				$this->saveAsEmailConfirmation($request);
+			}
+			else {
+				$this->saveWithoutEmailConfirmation($request);
+			}
+		}
+		else {
+			// set the form values from the session context
+			$context = WebRequest::getSessionContext('accountReq');
+			if ($context !== null && is_array($context)) {
+				$this->assign('username', $context['username']);
+				$this->assign('email', $context['email']);
+				$this->assign('comments', $context['comments']);
+			}
+
+			// Clear it for a refresh
+			WebRequest::setSessionContext('accountReq', null);
+
+			$this->setTemplate('request/request-form.tpl');
+		}
+	}
+
+	/**
+	 * @return Request
+	 */
+	protected function createNewRequest()
+	{
+		$request = new Request();
+		$request->setDatabase($this->getDatabase());
+
+		$request->setName(WebRequest::postString('name'));
+		$request->setEmail(WebRequest::postEmail('email'));
+		$request->setComment(WebRequest::postString('comments'));
+
+		$request->setIp(WebRequest::remoteAddress());
+		$request->setForwardedIp(WebRequest::forwardedAddress());
+
+		$request->setUserAgent(WebRequest::userAgent());
+
+		return $request;
+	}
+
+	/**
+	 * @param Request $request
+	 *
+	 * @return ValidationError[]
+	 */
+	protected function validateRequest($request)
+	{
+		$validationHelper = new RequestValidationHelper(
+			new BanHelper($this->getDatabase()),
+			$request,
+			WebRequest::postEmail('emailconfirm'),
+			$this->getDatabase(),
+			$this->getAntiSpoofProvider(),
+			$this->getXffTrustProvider(),
+			$this->getHttpHelper(),
+			$this->getSiteConfiguration()->getMediawikiWebServiceEndpoint(),
+			$this->getSiteConfiguration()->getTitleBlacklistEnabled(),
+			$this->getTorExitProvider());
+
+		// These are arrays of ValidationError.
+		$nameValidation = $validationHelper->validateName();
+		$emailValidation = $validationHelper->validateEmail();
+		$otherValidation = $validationHelper->validateOther();
+
+		$validationErrors = array_merge($nameValidation, $emailValidation, $otherValidation);
+
+		return $validationErrors;
+	}
+
+	/**
+	 * @param Request $request
+	 *
+	 * @throws Exception
+	 */
+	protected function saveAsEmailConfirmation(Request $request)
+	{
+		$request->generateEmailConfirmationHash();
+		$request->save();
+
+		$trustedIp = $this->getXffTrustProvider()->getTrustedClientIp(
+			$request->getIp(),
+			$request->getForwardedIp());
+
+		$this->assign("ip", $trustedIp);
+		$this->assign("id", $request->getId());
+		$this->assign("hash", $request->getEmailConfirm());
+
+		// Sends the confirmation email to the user.
+		$this->getEmailHelper()->sendMail(
+			$request->getEmail(),
+			"[ACC #{$request->getId()}] English Wikipedia Account Request",
+			$this->fetchTemplate('request/confirmation-mail.tpl'));
+
+		$this->redirect('emailConfirmationRequired');
+	}
+
+	/**
+	 * @param Request $request
+	 *
+	 * @throws Exception
+	 */
+	protected function saveWithoutEmailConfirmation(Request $request)
+	{
+		$request->setEmailConfirm(0); // fixme Since it can't be null
+		$request->save();
+
+		$this->getNotificationHelper()->requestReceived($request);
+
+		$this->redirect('requestSubmitted');
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Pages/Request/PageConfirmEmail.php 1 patch

Indentation +63 added lines, -63 removed lines patch added patch discarded remove patch

@@ -18,67 +18,67 @@
 block discarded – undo
 
 class PageConfirmEmail extends PublicInterfacePageBase
 {
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @throws ApplicationLogicException
-     * @throws Exception
-     */
-    protected function main()
-    {
-        $id = WebRequest::getInt('id');
-        $si = WebRequest::getString('si');
-
-        if ($id === null || $si === null) {
-            throw new ApplicationLogicException('Link incomplete - please double check the link you received.');
-        }
-
-        /** @var Request|false $request */
-        $request = Request::getById($id, $this->getDatabase());
-
-        if ($request === false) {
-            throw new ApplicationLogicException('Request not found');
-        }
-
-        if ($request->getEmailConfirm() === 'Confirmed') {
-            // request has already been confirmed. Bomb out silently.
-            $this->redirect('requestSubmitted');
-
-            return;
-        }
-
-        if ($request->getEmailConfirm() === $si) {
-            $request->setEmailConfirm('Confirmed');
-        }
-        else {
-            throw new ApplicationLogicException('The confirmation value does not appear to match the expected value');
-        }
-
-        try {
-            $request->save();
-        }
-        catch (OptimisticLockFailedException $ex) {
-            // Okay. Someone's edited this in the time between us loading this page and doing the checks, and us getting
-            // to saving the page. We *do not* want to show an optimistic lock failure, the most likely problem is they
-            // double-loaded this page (see #255). Let's confirm this, and bomb out with a success message if it's the
-            // case.
-
-            $request = Request::getById($id, $this->getDatabase());
-            if ($request->getEmailConfirm() === 'Confirmed') {
-                // we've already done the sanity checks above
-
-                $this->redirect('requestSubmitted');
-
-                // skip the log and notification
-                return;
-            }
-
-            // something really weird happened. Another race condition?
-            throw $ex;
-        }
-
-        Logger::emailConfirmed($this->getDatabase(), $request);
-        $this->getNotificationHelper()->requestReceived($request);
-
-        $this->redirect('requestSubmitted');
-    }
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @throws ApplicationLogicException
+	 * @throws Exception
+	 */
+	protected function main()
+	{
+		$id = WebRequest::getInt('id');
+		$si = WebRequest::getString('si');
+
+		if ($id === null || $si === null) {
+			throw new ApplicationLogicException('Link incomplete - please double check the link you received.');
+		}
+
+		/** @var Request|false $request */
+		$request = Request::getById($id, $this->getDatabase());
+
+		if ($request === false) {
+			throw new ApplicationLogicException('Request not found');
+		}
+
+		if ($request->getEmailConfirm() === 'Confirmed') {
+			// request has already been confirmed. Bomb out silently.
+			$this->redirect('requestSubmitted');
+
+			return;
+		}
+
+		if ($request->getEmailConfirm() === $si) {
+			$request->setEmailConfirm('Confirmed');
+		}
+		else {
+			throw new ApplicationLogicException('The confirmation value does not appear to match the expected value');
+		}
+
+		try {
+			$request->save();
+		}
+		catch (OptimisticLockFailedException $ex) {
+			// Okay. Someone's edited this in the time between us loading this page and doing the checks, and us getting
+			// to saving the page. We *do not* want to show an optimistic lock failure, the most likely problem is they
+			// double-loaded this page (see #255). Let's confirm this, and bomb out with a success message if it's the
+			// case.
+
+			$request = Request::getById($id, $this->getDatabase());
+			if ($request->getEmailConfirm() === 'Confirmed') {
+				// we've already done the sanity checks above
+
+				$this->redirect('requestSubmitted');
+
+				// skip the log and notification
+				return;
+			}
+
+			// something really weird happened. Another race condition?
+			throw $ex;
+		}
+
+		Logger::emailConfirmed($this->getDatabase(), $request);
+		$this->getNotificationHelper()->requestReceived($request);
+
+		$this->redirect('requestSubmitted');
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Pages/Request/PageRequestSubmitted.php 1 patch

Indentation +8 added lines, -8 removed lines patch added patch discarded remove patch

@@ -12,12 +12,12 @@
 block discarded – undo
 
 class PageRequestSubmitted extends PublicInterfacePageBase
 {
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @return void
-     */
-    protected function main()
-    {
-        $this->setTemplate('request/email-confirmed.tpl');
-    }
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @return void
+	 */
+	protected function main()
+	{
+		$this->setTemplate('request/email-confirmed.tpl');
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Pages/RequestAction/PageSendToUser.php 1 patch

Indentation +39 added lines, -39 removed lines patch added patch discarded remove patch

@@ -17,43 +17,43 @@
 block discarded – undo
 
 class PageSendToUser extends RequestActionBase
 {
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @throws ApplicationLogicException
-     * @throws Exception
-     */
-    protected function main()
-    {
-        $this->checkPosted();
-        $database = $this->getDatabase();
-        $request = $this->getRequest($database);
-
-        if ($request->getReserved() !== User::getCurrent($database)->getId()) {
-            throw new ApplicationLogicException('You don\'t have this request reserved!');
-        }
-
-        $username = WebRequest::postString('user');
-        if ($username === null) {
-            throw new ApplicationLogicException('User must be specified');
-        }
-
-        $user = User::getByUsername($username, $database);
-        if ($user === false) {
-            throw new ApplicationLogicException('User not found');
-        }
-
-        if (!$user->isActive()) {
-            throw new ApplicationLogicException('User is currently not active on the tool');
-        }
-
-        $request->setReserved($user->getId());
-        $request->setUpdateVersion(WebRequest::postInt('updateversion'));
-        $request->save();
-
-        Logger::sendReservation($database, $request, $user);
-        $this->getNotificationHelper()->requestReservationSent($request, $user);
-        SessionAlert::success("Reservation sent successfully");
-
-        $this->redirect('viewRequest', null, array('id' => $request->getId()));
-    }
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @throws ApplicationLogicException
+	 * @throws Exception
+	 */
+	protected function main()
+	{
+		$this->checkPosted();
+		$database = $this->getDatabase();
+		$request = $this->getRequest($database);
+
+		if ($request->getReserved() !== User::getCurrent($database)->getId()) {
+			throw new ApplicationLogicException('You don\'t have this request reserved!');
+		}
+
+		$username = WebRequest::postString('user');
+		if ($username === null) {
+			throw new ApplicationLogicException('User must be specified');
+		}
+
+		$user = User::getByUsername($username, $database);
+		if ($user === false) {
+			throw new ApplicationLogicException('User not found');
+		}
+
+		if (!$user->isActive()) {
+			throw new ApplicationLogicException('User is currently not active on the tool');
+		}
+
+		$request->setReserved($user->getId());
+		$request->setUpdateVersion(WebRequest::postInt('updateversion'));
+		$request->save();
+
+		Logger::sendReservation($database, $request, $user);
+		$this->getNotificationHelper()->requestReservationSent($request, $user);
+		SessionAlert::success("Reservation sent successfully");
+
+		$this->redirect('viewRequest', null, array('id' => $request->getId()));
+	}
 }

Please login to merge, or discard this patch.

includes/Pages/RequestAction/PageReservation.php 1 patch

Indentation +43 added lines, -43 removed lines patch added patch discarded remove patch

@@ -17,58 +17,58 @@
 block discarded – undo
 
 class PageReservation extends RequestActionBase
 {
-    /**
-     * Main function for this page, when no specific actions are called.
-     * @throws ApplicationLogicException
-     */
-    protected function main()
-    {
-        $this->checkPosted();
-        $database = $this->getDatabase();
-        $request = $this->getRequest($database);
+	/**
+	 * Main function for this page, when no specific actions are called.
+	 * @throws ApplicationLogicException
+	 */
+	protected function main()
+	{
+		$this->checkPosted();
+		$database = $this->getDatabase();
+		$request = $this->getRequest($database);
 
-        $closureDate = $request->getClosureDate();
+		$closureDate = $request->getClosureDate();
 
-        $date = new DateTime();
-        $date->modify("-7 days");
-        $oneweek = $date->format("Y-m-d H:i:s");
+		$date = new DateTime();
+		$date->modify("-7 days");
+		$oneweek = $date->format("Y-m-d H:i:s");
 
-        $currentUser = User::getCurrent($database);
-        if ($request->getStatus() == "Closed" && $closureDate < $oneweek) {
-            if (!$this->barrierTest('reopenOldRequest', $currentUser, 'RequestData')) {
-                throw new ApplicationLogicException(
-                    "You are not allowed to reserve a request that has been closed for over a week.");
-            }
-        }
+		$currentUser = User::getCurrent($database);
+		if ($request->getStatus() == "Closed" && $closureDate < $oneweek) {
+			if (!$this->barrierTest('reopenOldRequest', $currentUser, 'RequestData')) {
+				throw new ApplicationLogicException(
+					"You are not allowed to reserve a request that has been closed for over a week.");
+			}
+		}
 
-        if ($request->getReserved() !== null && $request->getReserved() != $currentUser->getId()) {
-            throw new ApplicationLogicException("Request is already reserved!");
-        }
+		if ($request->getReserved() !== null && $request->getReserved() != $currentUser->getId()) {
+			throw new ApplicationLogicException("Request is already reserved!");
+		}
 
-        if ($request->getReserved() === null) {
-            // Check the number of requests a user has reserved already
-            $doubleReserveCountQuery = $database->prepare("SELECT COUNT(*) FROM request WHERE reserved = :userid;");
-            $doubleReserveCountQuery->bindValue(":userid", $currentUser->getId());
-            $doubleReserveCountQuery->execute();
-            $doubleReserveCount = $doubleReserveCountQuery->fetchColumn();
-            $doubleReserveCountQuery->closeCursor();
+		if ($request->getReserved() === null) {
+			// Check the number of requests a user has reserved already
+			$doubleReserveCountQuery = $database->prepare("SELECT COUNT(*) FROM request WHERE reserved = :userid;");
+			$doubleReserveCountQuery->bindValue(":userid", $currentUser->getId());
+			$doubleReserveCountQuery->execute();
+			$doubleReserveCount = $doubleReserveCountQuery->fetchColumn();
+			$doubleReserveCountQuery->closeCursor();
 
-            // User already has at least one reserved.
-            if ($doubleReserveCount != 0) {
-                SessionAlert::warning("You have multiple requests reserved!");
-            }
+			// User already has at least one reserved.
+			if ($doubleReserveCount != 0) {
+				SessionAlert::warning("You have multiple requests reserved!");
+			}
 
-            $request->setReserved($currentUser->getId());
-            $request->setUpdateVersion(WebRequest::postInt('updateversion'));
-            $request->save();
+			$request->setReserved($currentUser->getId());
+			$request->setUpdateVersion(WebRequest::postInt('updateversion'));
+			$request->save();
 
-            Logger::reserve($database, $request);
+			Logger::reserve($database, $request);
 
-            $this->getNotificationHelper()->requestReserved($request);
+			$this->getNotificationHelper()->requestReserved($request);
 
-            SessionAlert::success("Reserved request {$request->getId()}.");
-        }
+			SessionAlert::success("Reserved request {$request->getId()}.");
+		}
 
-        $this->redirect('viewRequest', null, array('id' => $request->getId()));
-    }
+		$this->redirect('viewRequest', null, array('id' => $request->getId()));
+	}
 }

Please login to merge, or discard this patch.

includes/Router/IRequestRouter.php 1 patch

Indentation +5 added lines, -5 removed lines patch added patch discarded remove patch

@@ -18,9 +18,9 @@
 block discarded – undo
  */
 interface IRequestRouter
 {
-    /**
-     * @return IRoutedTask
-     * @throws Exception
-     */
-    public function route();
+	/**
+	 * @return IRoutedTask
+	 * @throws Exception
+	 */
+	public function route();
 }
\ No newline at end of file

Please login to merge, or discard this patch.

includes/Router/PublicRequestRouter.php 1 patch

Indentation +37 added lines, -37 removed lines patch added patch discarded remove patch

@@ -15,42 +15,42 @@
 block discarded – undo
 
 class PublicRequestRouter extends RequestRouter
 {
-    /**
-     * Gets the route map to be used by this request router.
-     *
-     * @return array
-     */
-    protected function getRouteMap()
-    {
-        return array(
-            // Page showing a message stating the request has been submitted to our internal queues
-            'requestSubmitted'          =>
-                array(
-                    'class'   => PageRequestSubmitted::class,
-                    'actions' => array(),
-                ),
-            // Page showing a message stating that email confirmation is required to continue
-            'emailConfirmationRequired' =>
-                array(
-                    'class'   => PageEmailConfirmationRequired::class,
-                    'actions' => array(),
-                ),
-            // Action page which handles email confirmation
-            'confirmEmail'              =>
-                array(
-                    'class'   => PageConfirmEmail::class,
-                    'actions' => array(),
-                ),
-        );
-    }
+	/**
+	 * Gets the route map to be used by this request router.
+	 *
+	 * @return array
+	 */
+	protected function getRouteMap()
+	{
+		return array(
+			// Page showing a message stating the request has been submitted to our internal queues
+			'requestSubmitted'          =>
+				array(
+					'class'   => PageRequestSubmitted::class,
+					'actions' => array(),
+				),
+			// Page showing a message stating that email confirmation is required to continue
+			'emailConfirmationRequired' =>
+				array(
+					'class'   => PageEmailConfirmationRequired::class,
+					'actions' => array(),
+				),
+			// Action page which handles email confirmation
+			'confirmEmail'              =>
+				array(
+					'class'   => PageConfirmEmail::class,
+					'actions' => array(),
+				),
+		);
+	}
 
-    /**
-     * Gets the default route if no explicit route is requested.
-     *
-     * @return callable
-     */
-    protected function getDefaultRoute()
-    {
-        return array(PageRequestAccount::class, 'main');
-    }
+	/**
+	 * Gets the default route if no explicit route is requested.
+	 *
+	 * @return callable
+	 */
+	protected function getDefaultRoute()
+	{
+		return array(PageRequestAccount::class, 'main');
+	}
 }
\ No newline at end of file

Please login to merge, or discard this patch.

redir.php 1 patch

Indentation +28 added lines, -28 removed lines patch added patch discarded remove patch

@@ -7,46 +7,46 @@
 block discarded – undo
  ******************************************************************************/
 
 $toolList = array(
-    'tparis-pcount'      => '//tools.wmflabs.org/supercount/index.php?user=%DATA%&project=en.wikipedia',
-    'guc'                => '//tools.wmflabs.org/guc/?by=date&user=%DATA%',
-    'oq-whois'           => 'https://whois.domaintools.com/%DATA%',
-    'tl-whois'           => 'https://tools.wmflabs.org/whois/gateway.py?lookup=true&ip=%DATA%',
-    'honeypot'           => 'https://www.projecthoneypot.org/ip_%DATA%',
-    'stopforumspam'      => 'https://www.stopforumspam.com/ipcheck/%DATA%',
-    'google'             => 'https://www.google.com/search?q=%DATA%',
-    'domain'             => 'http://%DATA%/',
-    'rangefinder'        => 'https://tools.wmflabs.org/rangeblockfinder/?ip=%DATA%',
+	'tparis-pcount'      => '//tools.wmflabs.org/supercount/index.php?user=%DATA%&project=en.wikipedia',
+	'guc'                => '//tools.wmflabs.org/guc/?by=date&user=%DATA%',
+	'oq-whois'           => 'https://whois.domaintools.com/%DATA%',
+	'tl-whois'           => 'https://tools.wmflabs.org/whois/gateway.py?lookup=true&ip=%DATA%',
+	'honeypot'           => 'https://www.projecthoneypot.org/ip_%DATA%',
+	'stopforumspam'      => 'https://www.stopforumspam.com/ipcheck/%DATA%',
+	'google'             => 'https://www.google.com/search?q=%DATA%',
+	'domain'             => 'http://%DATA%/',
+	'rangefinder'        => 'https://tools.wmflabs.org/rangeblockfinder/?ip=%DATA%',
 	'ipcheck'            => 'https://ipcheck.toolforge.org/index.php?ip=%DATA%',
 	'bgpview'            => 'https://bgpview.io/ip/%DATA%'
 );
 
 if (!isset($_GET['tool'])
-    || !isset($toolList[$_GET['tool']])
-    || !isset($_GET['data'])
+	|| !isset($toolList[$_GET['tool']])
+	|| !isset($_GET['data'])
 ) {
-    header("HTTP/1.1 403 Forbidden");
+	header("HTTP/1.1 403 Forbidden");
 
-    return;
+	return;
 }
 
 if (isset($_GET['round2'])) {
-    $data = $_GET['data'];
-    $tool = $_GET['tool'];
+	$data = $_GET['data'];
+	$tool = $_GET['tool'];
 
-    if ($tool === 'domain') {
-        // quick security check - if you want to exploit something, you better be sure your exploit resolves via dns.
-        // this is not intended to catch everything, just as a quick sanity check.
-        if (gethostbyname($data) == $data) {
-            echo 'Error resolving hostname, it doesn\'t look like this domain exists.';
-            die();
-        }
-    }
-    else {
-        $data = urlencode($data);
-    }
+	if ($tool === 'domain') {
+		// quick security check - if you want to exploit something, you better be sure your exploit resolves via dns.
+		// this is not intended to catch everything, just as a quick sanity check.
+		if (gethostbyname($data) == $data) {
+			echo 'Error resolving hostname, it doesn\'t look like this domain exists.';
+			die();
+		}
+	}
+	else {
+		$data = urlencode($data);
+	}
 
-    echo '<script>window.location.href=' . json_encode(str_replace("%DATA%", $data, $toolList[$tool])) . '</script>';
+	echo '<script>window.location.href=' . json_encode(str_replace("%DATA%", $data, $toolList[$tool])) . '</script>';
 }
 else {
-    header("Location: " . $_SERVER["REQUEST_URI"] . "&round2=true");
+	header("Location: " . $_SERVER["REQUEST_URI"] . "&round2=true");
 }

Please login to merge, or discard this patch.

		@@ -12,12 +12,12 @@
		block discarded – undo
12	12
13	13	class PageEmailConfirmationRequired extends PublicInterfacePageBase
14	14	{
15		- /**
16		- * Main function for this page, when no specific actions are called.
17		- * @return void
18		- */
19		- protected function main()
20		- {
21		- $this->setTemplate('request/email-confirmation.tpl');
22		- }
	15	+ /**
	16	+ * Main function for this page, when no specific actions are called.
	17	+ * @return void
	18	+ */
	19	+ protected function main()
	20	+ {
	21	+ $this->setTemplate('request/email-confirmation.tpl');
	22	+ }
23	23	}
24	24	\ No newline at end of file

		@@ -19,150 +19,150 @@
		block discarded – undo
19	19
20	20	class PageRequestAccount extends PublicInterfacePageBase
21	21	{
22		- /**
23		- * Main function for this page, when no specific actions are called.
24		- * @return void
25		- */
26		- protected function main()
27		- {
28		- // dual mode page
29		- if (WebRequest::wasPosted()) {
30		- $request = $this->createNewRequest();
31		-
32		- $validationErrors = $this->validateRequest($request);
33		-
34		- if (count($validationErrors) > 0) {
35		- foreach ($validationErrors as $validationError) {
36		- SessionAlert::error($validationError->getErrorMessage());
37		- }
38		-
39		- // Preserve the data after an error
40		- WebRequest::setSessionContext('accountReq',
41		- array(
42		- 'username' => WebRequest::postString('name'),
43		- 'email' => WebRequest::postEmail('email'),
44		- 'comments' => WebRequest::postString('comments'),
45		- )
46		- );
47		-
48		- // Validation error, bomb out early.
49		- $this->redirect();
50		-
51		- return;
52		- }
53		-
54		- // actually save the request to the database
55		- if ($this->getSiteConfiguration()->getEmailConfirmationEnabled()) {
56		- $this->saveAsEmailConfirmation($request);
57		- }
58		- else {
59		- $this->saveWithoutEmailConfirmation($request);
60		- }
61		- }
62		- else {
63		- // set the form values from the session context
64		- $context = WebRequest::getSessionContext('accountReq');
65		- if ($context !== null && is_array($context)) {
66		- $this->assign('username', $context['username']);
67		- $this->assign('email', $context['email']);
68		- $this->assign('comments', $context['comments']);
69		- }
70		-
71		- // Clear it for a refresh
72		- WebRequest::setSessionContext('accountReq', null);
73		-
74		- $this->setTemplate('request/request-form.tpl');
75		- }
76		- }
77		-
78		- /**
79		- * @return Request
80		- */
81		- protected function createNewRequest()
82		- {
83		- $request = new Request();
84		- $request->setDatabase($this->getDatabase());
85		-
86		- $request->setName(WebRequest::postString('name'));
87		- $request->setEmail(WebRequest::postEmail('email'));
88		- $request->setComment(WebRequest::postString('comments'));
89		-
90		- $request->setIp(WebRequest::remoteAddress());
91		- $request->setForwardedIp(WebRequest::forwardedAddress());
92		-
93		- $request->setUserAgent(WebRequest::userAgent());
94		-
95		- return $request;
96		- }
97		-
98		- /**
99		- * @param Request $request
100		- *
101		- * @return ValidationError[]
102		- */
103		- protected function validateRequest($request)
104		- {
105		- $validationHelper = new RequestValidationHelper(
106		- new BanHelper($this->getDatabase()),
107		- $request,
108		- WebRequest::postEmail('emailconfirm'),
109		- $this->getDatabase(),
110		- $this->getAntiSpoofProvider(),
111		- $this->getXffTrustProvider(),
112		- $this->getHttpHelper(),
113		- $this->getSiteConfiguration()->getMediawikiWebServiceEndpoint(),
114		- $this->getSiteConfiguration()->getTitleBlacklistEnabled(),
115		- $this->getTorExitProvider());
116		-
117		- // These are arrays of ValidationError.
118		- $nameValidation = $validationHelper->validateName();
119		- $emailValidation = $validationHelper->validateEmail();
120		- $otherValidation = $validationHelper->validateOther();
121		-
122		- $validationErrors = array_merge($nameValidation, $emailValidation, $otherValidation);
123		-
124		- return $validationErrors;
125		- }
126		-
127		- /**
128		- * @param Request $request
129		- *
130		- * @throws Exception
131		- */
132		- protected function saveAsEmailConfirmation(Request $request)
133		- {
134		- $request->generateEmailConfirmationHash();
135		- $request->save();
136		-
137		- $trustedIp = $this->getXffTrustProvider()->getTrustedClientIp(
138		- $request->getIp(),
139		- $request->getForwardedIp());
140		-
141		- $this->assign("ip", $trustedIp);
142		- $this->assign("id", $request->getId());
143		- $this->assign("hash", $request->getEmailConfirm());
144		-
145		- // Sends the confirmation email to the user.
146		- $this->getEmailHelper()->sendMail(
147		- $request->getEmail(),
148		- "[ACC #{$request->getId()}] English Wikipedia Account Request",
149		- $this->fetchTemplate('request/confirmation-mail.tpl'));
150		-
151		- $this->redirect('emailConfirmationRequired');
152		- }
153		-
154		- /**
155		- * @param Request $request
156		- *
157		- * @throws Exception
158		- */
159		- protected function saveWithoutEmailConfirmation(Request $request)
160		- {
161		- $request->setEmailConfirm(0); // fixme Since it can't be null
162		- $request->save();
163		-
164		- $this->getNotificationHelper()->requestReceived($request);
165		-
166		- $this->redirect('requestSubmitted');
167		- }
	22	+ /**
	23	+ * Main function for this page, when no specific actions are called.
	24	+ * @return void
	25	+ */
	26	+ protected function main()
	27	+ {
	28	+ // dual mode page
	29	+ if (WebRequest::wasPosted()) {
	30	+ $request = $this->createNewRequest();
	31	+
	32	+ $validationErrors = $this->validateRequest($request);
	33	+
	34	+ if (count($validationErrors) > 0) {
	35	+ foreach ($validationErrors as $validationError) {
	36	+ SessionAlert::error($validationError->getErrorMessage());
	37	+ }
	38	+
	39	+ // Preserve the data after an error
	40	+ WebRequest::setSessionContext('accountReq',
	41	+ array(
	42	+ 'username' => WebRequest::postString('name'),
	43	+ 'email' => WebRequest::postEmail('email'),
	44	+ 'comments' => WebRequest::postString('comments'),
	45	+ )
	46	+ );
	47	+
	48	+ // Validation error, bomb out early.
	49	+ $this->redirect();
	50	+
	51	+ return;
	52	+ }
	53	+
	54	+ // actually save the request to the database
	55	+ if ($this->getSiteConfiguration()->getEmailConfirmationEnabled()) {
	56	+ $this->saveAsEmailConfirmation($request);
	57	+ }
	58	+ else {
	59	+ $this->saveWithoutEmailConfirmation($request);
	60	+ }
	61	+ }
	62	+ else {
	63	+ // set the form values from the session context
	64	+ $context = WebRequest::getSessionContext('accountReq');
	65	+ if ($context !== null && is_array($context)) {
	66	+ $this->assign('username', $context['username']);
	67	+ $this->assign('email', $context['email']);
	68	+ $this->assign('comments', $context['comments']);
	69	+ }
	70	+
	71	+ // Clear it for a refresh
	72	+ WebRequest::setSessionContext('accountReq', null);
	73	+
	74	+ $this->setTemplate('request/request-form.tpl');
	75	+ }
	76	+ }
	77	+
	78	+ /**
	79	+ * @return Request
	80	+ */
	81	+ protected function createNewRequest()
	82	+ {
	83	+ $request = new Request();
	84	+ $request->setDatabase($this->getDatabase());
	85	+
	86	+ $request->setName(WebRequest::postString('name'));
	87	+ $request->setEmail(WebRequest::postEmail('email'));
	88	+ $request->setComment(WebRequest::postString('comments'));
	89	+
	90	+ $request->setIp(WebRequest::remoteAddress());
	91	+ $request->setForwardedIp(WebRequest::forwardedAddress());
	92	+
	93	+ $request->setUserAgent(WebRequest::userAgent());
	94	+
	95	+ return $request;
	96	+ }
	97	+
	98	+ /**
	99	+ * @param Request $request
	100	+ *
	101	+ * @return ValidationError[]
	102	+ */
	103	+ protected function validateRequest($request)
	104	+ {
	105	+ $validationHelper = new RequestValidationHelper(
	106	+ new BanHelper($this->getDatabase()),
	107	+ $request,
	108	+ WebRequest::postEmail('emailconfirm'),
	109	+ $this->getDatabase(),
	110	+ $this->getAntiSpoofProvider(),
	111	+ $this->getXffTrustProvider(),
	112	+ $this->getHttpHelper(),
	113	+ $this->getSiteConfiguration()->getMediawikiWebServiceEndpoint(),
	114	+ $this->getSiteConfiguration()->getTitleBlacklistEnabled(),
	115	+ $this->getTorExitProvider());
	116	+
	117	+ // These are arrays of ValidationError.
	118	+ $nameValidation = $validationHelper->validateName();
	119	+ $emailValidation = $validationHelper->validateEmail();
	120	+ $otherValidation = $validationHelper->validateOther();
	121	+
	122	+ $validationErrors = array_merge($nameValidation, $emailValidation, $otherValidation);
	123	+
	124	+ return $validationErrors;
	125	+ }
	126	+
	127	+ /**
	128	+ * @param Request $request
	129	+ *
	130	+ * @throws Exception
	131	+ */
	132	+ protected function saveAsEmailConfirmation(Request $request)
	133	+ {
	134	+ $request->generateEmailConfirmationHash();
	135	+ $request->save();
	136	+
	137	+ $trustedIp = $this->getXffTrustProvider()->getTrustedClientIp(
	138	+ $request->getIp(),
	139	+ $request->getForwardedIp());
	140	+
	141	+ $this->assign("ip", $trustedIp);
	142	+ $this->assign("id", $request->getId());
	143	+ $this->assign("hash", $request->getEmailConfirm());
	144	+
	145	+ // Sends the confirmation email to the user.
	146	+ $this->getEmailHelper()->sendMail(
	147	+ $request->getEmail(),
	148	+ "[ACC #{$request->getId()}] English Wikipedia Account Request",
	149	+ $this->fetchTemplate('request/confirmation-mail.tpl'));
	150	+
	151	+ $this->redirect('emailConfirmationRequired');
	152	+ }
	153	+
	154	+ /**
	155	+ * @param Request $request
	156	+ *
	157	+ * @throws Exception
	158	+ */
	159	+ protected function saveWithoutEmailConfirmation(Request $request)
	160	+ {
	161	+ $request->setEmailConfirm(0); // fixme Since it can't be null
	162	+ $request->save();
	163	+
	164	+ $this->getNotificationHelper()->requestReceived($request);
	165	+
	166	+ $this->redirect('requestSubmitted');
	167	+ }
168	168	}
169	169	\ No newline at end of file

		@@ -18,67 +18,67 @@
		block discarded – undo
18	18
19	19	class PageConfirmEmail extends PublicInterfacePageBase
20	20	{
21		- /**
22		- * Main function for this page, when no specific actions are called.
23		- * @throws ApplicationLogicException
24		- * @throws Exception
25		- */
26		- protected function main()
27		- {
28		- $id = WebRequest::getInt('id');
29		- $si = WebRequest::getString('si');
30		-
31		- if ($id === null \|\| $si === null) {
32		- throw new ApplicationLogicException('Link incomplete - please double check the link you received.');
33		- }
34		-
35		- /** @var Request\|false $request */
36		- $request = Request::getById($id, $this->getDatabase());
37		-
38		- if ($request === false) {
39		- throw new ApplicationLogicException('Request not found');
40		- }
41		-
42		- if ($request->getEmailConfirm() === 'Confirmed') {
43		- // request has already been confirmed. Bomb out silently.
44		- $this->redirect('requestSubmitted');
45		-
46		- return;
47		- }
48		-
49		- if ($request->getEmailConfirm() === $si) {
50		- $request->setEmailConfirm('Confirmed');
51		- }
52		- else {
53		- throw new ApplicationLogicException('The confirmation value does not appear to match the expected value');
54		- }
55		-
56		- try {
57		- $request->save();
58		- }
59		- catch (OptimisticLockFailedException $ex) {
60		- // Okay. Someone's edited this in the time between us loading this page and doing the checks, and us getting
61		- // to saving the page. We do not want to show an optimistic lock failure, the most likely problem is they
62		- // double-loaded this page (see #255). Let's confirm this, and bomb out with a success message if it's the
63		- // case.
64		-
65		- $request = Request::getById($id, $this->getDatabase());
66		- if ($request->getEmailConfirm() === 'Confirmed') {
67		- // we've already done the sanity checks above
68		-
69		- $this->redirect('requestSubmitted');
70		-
71		- // skip the log and notification
72		- return;
73		- }
74		-
75		- // something really weird happened. Another race condition?
76		- throw $ex;
77		- }
78		-
79		- Logger::emailConfirmed($this->getDatabase(), $request);
80		- $this->getNotificationHelper()->requestReceived($request);
81		-
82		- $this->redirect('requestSubmitted');
83		- }
	21	+ /**
	22	+ * Main function for this page, when no specific actions are called.
	23	+ * @throws ApplicationLogicException
	24	+ * @throws Exception
	25	+ */
	26	+ protected function main()
	27	+ {
	28	+ $id = WebRequest::getInt('id');
	29	+ $si = WebRequest::getString('si');
	30	+
	31	+ if ($id === null \|\| $si === null) {
	32	+ throw new ApplicationLogicException('Link incomplete - please double check the link you received.');
	33	+ }
	34	+
	35	+ /** @var Request\|false $request */
	36	+ $request = Request::getById($id, $this->getDatabase());
	37	+
	38	+ if ($request === false) {
	39	+ throw new ApplicationLogicException('Request not found');
	40	+ }
	41	+
	42	+ if ($request->getEmailConfirm() === 'Confirmed') {
	43	+ // request has already been confirmed. Bomb out silently.
	44	+ $this->redirect('requestSubmitted');
	45	+
	46	+ return;
	47	+ }
	48	+
	49	+ if ($request->getEmailConfirm() === $si) {
	50	+ $request->setEmailConfirm('Confirmed');
	51	+ }
	52	+ else {
	53	+ throw new ApplicationLogicException('The confirmation value does not appear to match the expected value');
	54	+ }
	55	+
	56	+ try {
	57	+ $request->save();
	58	+ }
	59	+ catch (OptimisticLockFailedException $ex) {
	60	+ // Okay. Someone's edited this in the time between us loading this page and doing the checks, and us getting
	61	+ // to saving the page. We do not want to show an optimistic lock failure, the most likely problem is they
	62	+ // double-loaded this page (see #255). Let's confirm this, and bomb out with a success message if it's the
	63	+ // case.
	64	+
	65	+ $request = Request::getById($id, $this->getDatabase());
	66	+ if ($request->getEmailConfirm() === 'Confirmed') {
	67	+ // we've already done the sanity checks above
	68	+
	69	+ $this->redirect('requestSubmitted');
	70	+
	71	+ // skip the log and notification
	72	+ return;
	73	+ }
	74	+
	75	+ // something really weird happened. Another race condition?
	76	+ throw $ex;
	77	+ }
	78	+
	79	+ Logger::emailConfirmed($this->getDatabase(), $request);
	80	+ $this->getNotificationHelper()->requestReceived($request);
	81	+
	82	+ $this->redirect('requestSubmitted');
	83	+ }
84	84	}
85	85	\ No newline at end of file

		@@ -12,12 +12,12 @@
		block discarded – undo
12	12
13	13	class PageRequestSubmitted extends PublicInterfacePageBase
14	14	{
15		- /**
16		- * Main function for this page, when no specific actions are called.
17		- * @return void
18		- */
19		- protected function main()
20		- {
21		- $this->setTemplate('request/email-confirmed.tpl');
22		- }
	15	+ /**
	16	+ * Main function for this page, when no specific actions are called.
	17	+ * @return void
	18	+ */
	19	+ protected function main()
	20	+ {
	21	+ $this->setTemplate('request/email-confirmed.tpl');
	22	+ }
23	23	}
24	24	\ No newline at end of file

		@@ -17,43 +17,43 @@
		block discarded – undo
17	17
18	18	class PageSendToUser extends RequestActionBase
19	19	{
20		- /**
21		- * Main function for this page, when no specific actions are called.
22		- * @throws ApplicationLogicException
23		- * @throws Exception
24		- */
25		- protected function main()
26		- {
27		- $this->checkPosted();
28		- $database = $this->getDatabase();
29		- $request = $this->getRequest($database);
30		-
31		- if ($request->getReserved() !== User::getCurrent($database)->getId()) {
32		- throw new ApplicationLogicException('You don\'t have this request reserved!');
33		- }
34		-
35		- $username = WebRequest::postString('user');
36		- if ($username === null) {
37		- throw new ApplicationLogicException('User must be specified');
38		- }
39		-
40		- $user = User::getByUsername($username, $database);
41		- if ($user === false) {
42		- throw new ApplicationLogicException('User not found');
43		- }
44		-
45		- if (!$user->isActive()) {
46		- throw new ApplicationLogicException('User is currently not active on the tool');
47		- }
48		-
49		- $request->setReserved($user->getId());
50		- $request->setUpdateVersion(WebRequest::postInt('updateversion'));
51		- $request->save();
52		-
53		- Logger::sendReservation($database, $request, $user);
54		- $this->getNotificationHelper()->requestReservationSent($request, $user);
55		- SessionAlert::success("Reservation sent successfully");
56		-
57		- $this->redirect('viewRequest', null, array('id' => $request->getId()));
58		- }
	20	+ /**
	21	+ * Main function for this page, when no specific actions are called.
	22	+ * @throws ApplicationLogicException
	23	+ * @throws Exception
	24	+ */
	25	+ protected function main()
	26	+ {
	27	+ $this->checkPosted();
	28	+ $database = $this->getDatabase();
	29	+ $request = $this->getRequest($database);
	30	+
	31	+ if ($request->getReserved() !== User::getCurrent($database)->getId()) {
	32	+ throw new ApplicationLogicException('You don\'t have this request reserved!');
	33	+ }
	34	+
	35	+ $username = WebRequest::postString('user');
	36	+ if ($username === null) {
	37	+ throw new ApplicationLogicException('User must be specified');
	38	+ }
	39	+
	40	+ $user = User::getByUsername($username, $database);
	41	+ if ($user === false) {
	42	+ throw new ApplicationLogicException('User not found');
	43	+ }
	44	+
	45	+ if (!$user->isActive()) {
	46	+ throw new ApplicationLogicException('User is currently not active on the tool');
	47	+ }
	48	+
	49	+ $request->setReserved($user->getId());
	50	+ $request->setUpdateVersion(WebRequest::postInt('updateversion'));
	51	+ $request->save();
	52	+
	53	+ Logger::sendReservation($database, $request, $user);
	54	+ $this->getNotificationHelper()->requestReservationSent($request, $user);
	55	+ SessionAlert::success("Reservation sent successfully");
	56	+
	57	+ $this->redirect('viewRequest', null, array('id' => $request->getId()));
	58	+ }
59	59	}

		@@ -17,58 +17,58 @@
		block discarded – undo
17	17
18	18	class PageReservation extends RequestActionBase
19	19	{
20		- /**
21		- * Main function for this page, when no specific actions are called.
22		- * @throws ApplicationLogicException
23		- */
24		- protected function main()
25		- {
26		- $this->checkPosted();
27		- $database = $this->getDatabase();
28		- $request = $this->getRequest($database);
	20	+ /**
	21	+ * Main function for this page, when no specific actions are called.
	22	+ * @throws ApplicationLogicException
	23	+ */
	24	+ protected function main()
	25	+ {
	26	+ $this->checkPosted();
	27	+ $database = $this->getDatabase();
	28	+ $request = $this->getRequest($database);
29	29
30		- $closureDate = $request->getClosureDate();
	30	+ $closureDate = $request->getClosureDate();
31	31
32		- $date = new DateTime();
33		- $date->modify("-7 days");
34		- $oneweek = $date->format("Y-m-d H:i:s");
	32	+ $date = new DateTime();
	33	+ $date->modify("-7 days");
	34	+ $oneweek = $date->format("Y-m-d H:i:s");
35	35
36		- $currentUser = User::getCurrent($database);
37		- if ($request->getStatus() == "Closed" && $closureDate < $oneweek) {
38		- if (!$this->barrierTest('reopenOldRequest', $currentUser, 'RequestData')) {
39		- throw new ApplicationLogicException(
40		- "You are not allowed to reserve a request that has been closed for over a week.");
41		- }
42		- }
	36	+ $currentUser = User::getCurrent($database);
	37	+ if ($request->getStatus() == "Closed" && $closureDate < $oneweek) {
	38	+ if (!$this->barrierTest('reopenOldRequest', $currentUser, 'RequestData')) {
	39	+ throw new ApplicationLogicException(
	40	+ "You are not allowed to reserve a request that has been closed for over a week.");
	41	+ }
	42	+ }
43	43
44		- if ($request->getReserved() !== null && $request->getReserved() != $currentUser->getId()) {
45		- throw new ApplicationLogicException("Request is already reserved!");
46		- }
	44	+ if ($request->getReserved() !== null && $request->getReserved() != $currentUser->getId()) {
	45	+ throw new ApplicationLogicException("Request is already reserved!");
	46	+ }
47	47
48		- if ($request->getReserved() === null) {
49		- // Check the number of requests a user has reserved already
50		- $doubleReserveCountQuery = $database->prepare("SELECT COUNT(*) FROM request WHERE reserved = :userid;");
51		- $doubleReserveCountQuery->bindValue(":userid", $currentUser->getId());
52		- $doubleReserveCountQuery->execute();
53		- $doubleReserveCount = $doubleReserveCountQuery->fetchColumn();
54		- $doubleReserveCountQuery->closeCursor();
	48	+ if ($request->getReserved() === null) {
	49	+ // Check the number of requests a user has reserved already
	50	+ $doubleReserveCountQuery = $database->prepare("SELECT COUNT(*) FROM request WHERE reserved = :userid;");
	51	+ $doubleReserveCountQuery->bindValue(":userid", $currentUser->getId());
	52	+ $doubleReserveCountQuery->execute();
	53	+ $doubleReserveCount = $doubleReserveCountQuery->fetchColumn();
	54	+ $doubleReserveCountQuery->closeCursor();
55	55
56		- // User already has at least one reserved.
57		- if ($doubleReserveCount != 0) {
58		- SessionAlert::warning("You have multiple requests reserved!");
59		- }
	56	+ // User already has at least one reserved.
	57	+ if ($doubleReserveCount != 0) {
	58	+ SessionAlert::warning("You have multiple requests reserved!");
	59	+ }
60	60
61		- $request->setReserved($currentUser->getId());
62		- $request->setUpdateVersion(WebRequest::postInt('updateversion'));
63		- $request->save();
	61	+ $request->setReserved($currentUser->getId());
	62	+ $request->setUpdateVersion(WebRequest::postInt('updateversion'));
	63	+ $request->save();
64	64
65		- Logger::reserve($database, $request);
	65	+ Logger::reserve($database, $request);
66	66
67		- $this->getNotificationHelper()->requestReserved($request);
	67	+ $this->getNotificationHelper()->requestReserved($request);
68	68
69		- SessionAlert::success("Reserved request {$request->getId()}.");
70		- }
	69	+ SessionAlert::success("Reserved request {$request->getId()}.");
	70	+ }
71	71
72		- $this->redirect('viewRequest', null, array('id' => $request->getId()));
73		- }
	72	+ $this->redirect('viewRequest', null, array('id' => $request->getId()));
	73	+ }
74	74	}

		@@ -18,9 +18,9 @@
		block discarded – undo
18	18	*/
19	19	interface IRequestRouter
20	20	{
21		- /**
22		- * @return IRoutedTask
23		- * @throws Exception
24		- */
25		- public function route();
	21	+ /**
	22	+ * @return IRoutedTask
	23	+ * @throws Exception
	24	+ */
	25	+ public function route();
26	26	}
27	27	\ No newline at end of file

		@@ -15,42 +15,42 @@
		block discarded – undo
15	15
16	16	class PublicRequestRouter extends RequestRouter
17	17	{
18		- /**
19		- * Gets the route map to be used by this request router.
20		- *
21		- * @return array
22		- */
23		- protected function getRouteMap()
24		- {
25		- return array(
26		- // Page showing a message stating the request has been submitted to our internal queues
27		- 'requestSubmitted' =>
28		- array(
29		- 'class' => PageRequestSubmitted::class,
30		- 'actions' => array(),
31		- ),
32		- // Page showing a message stating that email confirmation is required to continue
33		- 'emailConfirmationRequired' =>
34		- array(
35		- 'class' => PageEmailConfirmationRequired::class,
36		- 'actions' => array(),
37		- ),
38		- // Action page which handles email confirmation
39		- 'confirmEmail' =>
40		- array(
41		- 'class' => PageConfirmEmail::class,
42		- 'actions' => array(),
43		- ),
44		- );
45		- }
	18	+ /**
	19	+ * Gets the route map to be used by this request router.
	20	+ *
	21	+ * @return array
	22	+ */
	23	+ protected function getRouteMap()
	24	+ {
	25	+ return array(
	26	+ // Page showing a message stating the request has been submitted to our internal queues
	27	+ 'requestSubmitted' =>
	28	+ array(
	29	+ 'class' => PageRequestSubmitted::class,
	30	+ 'actions' => array(),
	31	+ ),
	32	+ // Page showing a message stating that email confirmation is required to continue
	33	+ 'emailConfirmationRequired' =>
	34	+ array(
	35	+ 'class' => PageEmailConfirmationRequired::class,
	36	+ 'actions' => array(),
	37	+ ),
	38	+ // Action page which handles email confirmation
	39	+ 'confirmEmail' =>
	40	+ array(
	41	+ 'class' => PageConfirmEmail::class,
	42	+ 'actions' => array(),
	43	+ ),
	44	+ );
	45	+ }
46	46
47		- /**
48		- * Gets the default route if no explicit route is requested.
49		- *
50		- * @return callable
51		- */
52		- protected function getDefaultRoute()
53		- {
54		- return array(PageRequestAccount::class, 'main');
55		- }
	47	+ /**
	48	+ * Gets the default route if no explicit route is requested.
	49	+ *
	50	+ * @return callable
	51	+ */
	52	+ protected function getDefaultRoute()
	53	+ {
	54	+ return array(PageRequestAccount::class, 'main');
	55	+ }
56	56	}
57	57	\ No newline at end of file

		@@ -7,46 +7,46 @@
		block discarded – undo
7	7	******************************************************************************/
8	8
9	9	$toolList = array(
10		- 'tparis-pcount' => '//tools.wmflabs.org/supercount/index.php?user=%DATA%&project=en.wikipedia',
11		- 'guc' => '//tools.wmflabs.org/guc/?by=date&user=%DATA%',
12		- 'oq-whois' => 'https://whois.domaintools.com/%DATA%',
13		- 'tl-whois' => 'https://tools.wmflabs.org/whois/gateway.py?lookup=true&ip=%DATA%',
14		- 'honeypot' => 'https://www.projecthoneypot.org/ip_%DATA%',
15		- 'stopforumspam' => 'https://www.stopforumspam.com/ipcheck/%DATA%',
16		- 'google' => 'https://www.google.com/search?q=%DATA%',
17		- 'domain' => 'http://%DATA%/',
18		- 'rangefinder' => 'https://tools.wmflabs.org/rangeblockfinder/?ip=%DATA%',
	10	+ 'tparis-pcount' => '//tools.wmflabs.org/supercount/index.php?user=%DATA%&project=en.wikipedia',
	11	+ 'guc' => '//tools.wmflabs.org/guc/?by=date&user=%DATA%',
	12	+ 'oq-whois' => 'https://whois.domaintools.com/%DATA%',
	13	+ 'tl-whois' => 'https://tools.wmflabs.org/whois/gateway.py?lookup=true&ip=%DATA%',
	14	+ 'honeypot' => 'https://www.projecthoneypot.org/ip_%DATA%',
	15	+ 'stopforumspam' => 'https://www.stopforumspam.com/ipcheck/%DATA%',
	16	+ 'google' => 'https://www.google.com/search?q=%DATA%',
	17	+ 'domain' => 'http://%DATA%/',
	18	+ 'rangefinder' => 'https://tools.wmflabs.org/rangeblockfinder/?ip=%DATA%',
19	19	'ipcheck' => 'https://ipcheck.toolforge.org/index.php?ip=%DATA%',
20	20	'bgpview' => 'https://bgpview.io/ip/%DATA%'
21	21	);
22	22
23	23	if (!isset($_GET['tool'])
24		- \|\| !isset($toolList[$_GET['tool']])
25		- \|\| !isset($_GET['data'])
	24	+ \|\| !isset($toolList[$_GET['tool']])
	25	+ \|\| !isset($_GET['data'])
26	26	) {
27		- header("HTTP/1.1 403 Forbidden");
	27	+ header("HTTP/1.1 403 Forbidden");
28	28
29		- return;
	29	+ return;
30	30	}
31	31
32	32	if (isset($_GET['round2'])) {
33		- $data = $_GET['data'];
34		- $tool = $_GET['tool'];
	33	+ $data = $_GET['data'];
	34	+ $tool = $_GET['tool'];
35	35
36		- if ($tool === 'domain') {
37		- // quick security check - if you want to exploit something, you better be sure your exploit resolves via dns.
38		- // this is not intended to catch everything, just as a quick sanity check.
39		- if (gethostbyname($data) == $data) {
40		- echo 'Error resolving hostname, it doesn\'t look like this domain exists.';
41		- die();
42		- }
43		- }
44		- else {
45		- $data = urlencode($data);
46		- }
	36	+ if ($tool === 'domain') {
	37	+ // quick security check - if you want to exploit something, you better be sure your exploit resolves via dns.
	38	+ // this is not intended to catch everything, just as a quick sanity check.
	39	+ if (gethostbyname($data) == $data) {
	40	+ echo 'Error resolving hostname, it doesn\'t look like this domain exists.';
	41	+ die();
	42	+ }
	43	+ }
	44	+ else {
	45	+ $data = urlencode($data);
	46	+ }
47	47
48		- echo '<script>window.location.href=' . json_encode(str_replace("%DATA%", $data, $toolList[$tool])) . '</script>';
	48	+ echo '<script>window.location.href=' . json_encode(str_replace("%DATA%", $data, $toolList[$tool])) . '</script>';
49	49	}
50	50	else {
51		- header("Location: " . $_SERVER["REQUEST_URI"] . "&round2=true");
	51	+ header("Location: " . $_SERVER["REQUEST_URI"] . "&round2=true");
52	52	}

mdaniels5757 / waca

Push — dependabot/composer/newinterna... ( 9a3136 )

Status

Category

Indentation +8 added lines, -8 removed lines patch added patch discarded remove patch

Indentation +146 added lines, -146 removed lines patch added patch discarded remove patch

Indentation +63 added lines, -63 removed lines patch added patch discarded remove patch

Indentation +8 added lines, -8 removed lines patch added patch discarded remove patch

Indentation +39 added lines, -39 removed lines patch added patch discarded remove patch

Indentation +43 added lines, -43 removed lines patch added patch discarded remove patch

Indentation +5 added lines, -5 removed lines patch added patch discarded remove patch

Indentation +37 added lines, -37 removed lines patch added patch discarded remove patch

Indentation +28 added lines, -28 removed lines patch added patch discarded remove patch