HomePhabricator
Diffusion MediaWiki (master) Code

mediawiki/includes/SpecialUserlogin.php
d82c14fb4fbamaster

Last Change
Raw File

SpecialUserlogin.php
View Options

<?
function wfSpecialUserlogin()
{
global $wpCreateaccount, $wpLoginattempt, $wpMailmypassword;
global $action;
$fields = array( "wpName", "wpPassword", "wpName",
"wpPassword", "wpRetype", "wpEmail" );
wfCleanFormFields( $fields );
if ( isset( $wpCreateaccount ) ) {
addNewAccount();
} else if ( isset( $wpMailmypassword ) ) {
mailPassword();
} else if ( "submit" == $action || isset( $wpLoginattempt ) ) {
processLogin();
} else {
mainLoginForm( "" );
}
}
/* private */ function addNewAccount()
{
global $wgUser, $wgOut, $wpPassword, $wpRetype, $wpName, $wpRemember;
global $wpEmail, $wgDeferredUpdateList;
if ( 0 != strcmp( $wpPassword, $wpRetype ) ) {
mainLoginForm( wfMsg( "badretype" ) );
return;
}
$wpName = trim( $wpName );
if ( ( "" == $wpName ) ||
preg_match( "/^\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}\\.\\d{1,3}$/", $wpName ) ) {
mainLoginForm( wfMsg( "noname" ) );
return;
}
if ( wfReadOnly() ) {
$wgOut->readOnlyPage();
return;
}
$u = User::newFromName( $wpName );
if ( 0 != $u->idForName() ) {
mainLoginForm( wfMsg( "userexists" ) );
return;
}
$u->addToDatabase();
$u->setPassword( $wpPassword );
$u->setEmail( $wpEmail );
if ( 1 == $wpRemember ) { $r = 1; }
else { $r = 0; }
$u->setOption( "rememberpassword", $r );
$wgUser = $u;
$m = str_replace( "$1", $wgUser->getName(), wfMsg( "welcomecreation" ) );
successfulLogin( $m );
}
/* private */ function processLogin()
{
global $wgUser, $wpName, $wpPassword, $wpRemember;
global $returnto;
if ( "" == $wpName ) {
mainLoginForm( wfMsg( "noname" ) );
return;
}
$u = User::newFromName( $wpName );
$id = $u->idForName();
if ( 0 == $id ) {
$m = str_replace( "$1", $u->getName(), wfMsg( "nosuchuser" ) );
mainLoginForm( $m );
return;
}
$u->setId( $id );
$u->loadFromDatabase();
$ep = User::encryptPassword( $wpPassword );
if ( 0 != strcmp( $ep, $u->getPassword() ) ) {
if ( 0 != strcmp( $ep, $u->getNewpassword() ) ) {
mainLoginForm( wfMsg( "wrongpassword" ) );
return;
}
}
# We've verified now, update the real record
#
if ( 1 == $wpRemember ) { $r = 1; }
else { $r = 0; }
$u->setOption( "rememberpassword", $r );
$wgUser = $u;
$m = str_replace( "$1", $wgUser->getName(), wfMsg( "loginsuccess" ) );
successfulLogin( $m );
}
/* private */ function mailPassword()
{
global $wgUser, $wpName, $wgDeferredUpdateList, $wgOutputEncoding;
if ( "" == $wpName ) {
mainLoginForm( wfMsg( "noname" ) );
return;
}
$u = User::newFromName( $wpName );
$id = $u->idForName();
if ( 0 == $id ) {
$m = str_replace( "$1", $u->getName(), wfMsg( "nosuchuser" ) );
mainLoginForm( $m );
return;
}
$u->setId( $id );
$u->loadFromDatabase();
if ( "" == $u->getEmail() ) {
$m = str_replace( "$1", $u->getName(), wfMsg( "noemail" ) );
mainLoginForm( $m );
return;
}
$np = User::randomPassword();
$u->setNewpassword( $np );
setcookie( "wcUserPassword", "", time() - 3600 );
$u->saveSettings();
$ip = getenv( "REMOTE_ADDR" );
if ( "" == $ip ) { $ip = "(Unknown)"; }
$m = str_replace( "$1", $ip, wfMsg( "passwordremindertext" ) );
$m = str_replace( "$2", $u->getName(), $m );
$m = str_replace( "$3", $np, $m );
#FIXME: Generilize the email addresses for 3rd party sites...
mail( $u->getEmail(), wfMsg( "passwordremindertitle" ), $m,
"MIME-Version: 1.0\r\n" .
"Content-type: text/plain; charset={$wgOutputEncoding}\r\n" .
"Content-transfer-encoding: 8bit\r\n" .
"From: Wikipedia Mail <[email protected]>\r\n" .
"Reply-To: [email protected]" );
$m = str_replace( "$1", $u->getName(), wfMsg( "passwordsent" ) );
mainLoginForm( $m );
}
/* private */ function successfulLogin( $msg )
{
global $wgUser, $wgOut, $returnto;
global $wgDeferredUpdateList;
$wgUser->setCookies();
$up = new UserUpdate();
array_push( $wgDeferredUpdateList, $up );
$wgOut->setPageTitle( wfMsg( "loginsuccesstitle" ) );
$wgOut->setRobotpolicy( "noindex,nofollow" );
$wgOut->setArticleFlag( false );
$wgOut->addHTML( $msg . "\n<p>" );
$wgOut->returnToMain();
}
/* private */ function mainLoginForm( $err )
{
global $wgUser, $wgOut, $wgLang, $returnto;
global $wpName, $wpPassword, $wpRetype, $wpRemember;
global $wpEmail, $HTTP_COOKIE_VARS;
$le = wfMsg( "loginerror" );
$yn = wfMsg( "yourname" );
$yp = wfMsg( "yourpassword" );
$ypa = wfMsg( "yourpasswordagain" );
$rmp = wfMsg( "remembermypassword" );
$ayn = wfMsg( "areyounew" );
$nuo = wfMsg( "newusersonly" );
$li = wfMsg( "login" );
$ca = wfMsg( "createaccount" );
$ye = wfMsg( "youremail" );
$efl = wfMsg( "emailforlost" );
$mmp = wfMsg( "mailmypassword" );
$name = $wpName;
if ( "" == $name ) {
if ( 0 != $wgUser->getID() ) {
$name = $wgUser->getName();
} else {
$name = $HTTP_COOKIE_VARS["wcUserName"];
}
}
$pwd = $wpPassword;
$wgOut->setPageTitle( wfMsg( "userlogin" ) );
$wgOut->setRobotpolicy( "noindex,nofollow" );
$wgOut->setArticleFlag( false );
if ( "" == $err ) {
$wgOut->addHTML( "<h2>$li:</h2>\n" );
} else {
$wgOut->addHTML( "<h2>$le:</h2>\n<font size='+1' color='red'>$err</font>\n" );
}
if ( 1 == $wgUser->getOption( "rememberpassword" ) ) {
$checked = " checked";
} else {
$checked = "";
}
$q = "action=submit";
if ( "" != $returnto ) { $q .= "&returnto=" . wfUrlencode($returnto); }
$action = wfLocalUrlE( $wgLang->specialPage( "Userlogin" ), $q );
$wpName = wfEscapeHTML( $wpName );
$wpPassword = wfEscapeHTML( $wpPassword );
$wpRetype = wfEscapeHTML( $wpRetype );
$wpEmail = wfEscapeHTML( $wpEmail );
$wgOut->addHTML( "
<form id=\"userlogin\" method=\"post\" action=\"{$action}\">
<table border=0><tr>
<td align=right>$yn:</td>
<td colspan=2 align=left>
<input tabindex=1 type=text name=\"wpName\" value=\"{$name}\" size=20>
</td></tr><tr>
<td align=right>$yp:</td>
<td align=left>
<input tabindex=2 type=password name=\"wpPassword\" value=\"{$pwd}\" size=20>
</td>
<td align=left>
<input tabindex=3 type=submit name=\"wpLoginattempt\" value=\"{$li}\">
</td></tr>
<tr><td colspan=3>&nbsp;</td></tr><tr>
<td align=right>$ypa:</td>
<td align=left>
<input tabindex=4 type=password name=\"wpRetype\" value=\"{$wpRetype}\" size=20>
</td><td>$nuo</td></tr>
<tr>
<td align=right>$ye:</td>
<td align=left>
<input tabindex=5 type=text name=\"wpEmail\" value=\"{$wpEmail}\" size=20>
</td><td align=left>
<input tabindex=6 type=submit name=\"wpCreateaccount\" value=\"{$ca}\">
</td></tr>
<tr>
<td colspan=3 align=left>
<input tabindex=7 type=checkbox name=\"wpRemember\" value=\"1\"$checked>$rmp
</td></tr>
<tr><td colspan=3>&nbsp;</td></tr><tr>
<td colspan=3 align=left>
<p>$efl<br>
<input tabindex=8 type=submit name=\"wpMailmypassword\" value=\"{$mmp}\">
</td></tr></table>
</form>\n" );
}
?>
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits