diff options
Diffstat (limited to 'includes/ProtectionForm.php')
| -rw-r--r-- | includes/ProtectionForm.php | 156 |
1 files changed, 82 insertions, 74 deletions
diff --git a/includes/ProtectionForm.php b/includes/ProtectionForm.php index ce0e36b0..f10317a9 100644 --- a/includes/ProtectionForm.php +++ b/includes/ProtectionForm.php @@ -63,7 +63,7 @@ class ProtectionForm { $this->mArticle = $article; $this->mTitle = $article->getTitle(); $this->mApplicableTypes = $this->mTitle->getRestrictionTypes(); - + // Check if the form should be disabled. // If it is, the form will be available in read-only to show levels. $this->mPermErrors = $this->mTitle->getUserPermissionsErrors( 'protect', $wgUser ); @@ -91,7 +91,7 @@ class ProtectionForm { $this->mReasonSelection = $wgRequest->getText( 'wpProtectReasonSelection' ); $this->mCascade = $wgRequest->getBool( 'mwProtect-cascade', $this->mCascade ); - foreach( $this->mApplicableTypes as $action ) { + foreach ( $this->mApplicableTypes as $action ) { // @todo FIXME: This form currently requires individual selections, // but the db allows multiples separated by commas. @@ -132,15 +132,20 @@ class ProtectionForm { } $val = $wgRequest->getVal( "mwProtect-level-$action" ); - if( isset( $val ) && in_array( $val, $wgRestrictionLevels ) ) { + if ( isset( $val ) && in_array( $val, $wgRestrictionLevels ) ) { // Prevent users from setting levels that they cannot later unset - if( $val == 'sysop' ) { - // Special case, rewrite sysop to either protect and editprotected - if( !$wgUser->isAllowedAny( 'protect', 'editprotected' ) ) + if ( $val == 'sysop' ) { + // Special case, rewrite sysop to editprotected + if ( !$wgUser->isAllowed( 'editprotected' ) ) { continue; - } else { - if( !$wgUser->isAllowed($val) ) + } + } elseif ( $val == 'autoconfirmed' ) { + // Special case, rewrite autoconfirmed to editsemiprotected + if ( !$wgUser->isAllowed( 'editsemiprotected' ) ) { continue; + } + } elseif ( !$wgUser->isAllowed( $val ) ) { + continue; } $this->mRestrictions[$action] = $val; } @@ -188,10 +193,10 @@ class ProtectionForm { throw new ErrorPageError( 'protect-badnamespace-title', 'protect-badnamespace-text' ); } - if( $wgRequest->wasPosted() ) { - if( $this->save() ) { + if ( $wgRequest->wasPosted() ) { + if ( $this->save() ) { $q = $this->mArticle->isRedirect() ? 'redirect=no' : ''; - $wgOut->redirect( $this->mTitle->getFullUrl( $q ) ); + $wgOut->redirect( $this->mTitle->getFullURL( $q ) ); } } else { $this->show(); @@ -201,12 +206,13 @@ class ProtectionForm { /** * Show the input form with optional error message * - * @param $err String: error message or null if there's no error + * @param string $err error message or null if there's no error */ function show( $err = null ) { global $wgOut; $wgOut->setRobotPolicy( 'noindex,nofollow' ); + $wgOut->addBacklinkSubtitle( $this->mTitle ); if ( is_array( $err ) ) { $wgOut->wrapWikiMsg( "<p class='error'>\n$1\n</p>\n", $err ); @@ -214,15 +220,27 @@ class ProtectionForm { $wgOut->addHTML( "<p class='error'>{$err}</p>\n" ); } + if ( $this->mTitle->getRestrictionTypes() === array() ) { + // No restriction types available for the current title + // this might happen if an extension alters the available types + $wgOut->setPageTitle( wfMessage( 'protect-norestrictiontypes-title', $this->mTitle->getPrefixedText() ) ); + $wgOut->addWikiText( wfMessage( 'protect-norestrictiontypes-text' )->text() ); + + // Show the log in case protection was possible once + $this->showLogExtract( $wgOut ); + // return as there isn't anything else we can do + return; + } + list( $cascadeSources, /* $restrictions */ ) = $this->mTitle->getCascadeProtectionSources(); - if ( $cascadeSources && count($cascadeSources) > 0 ) { + if ( $cascadeSources && count( $cascadeSources ) > 0 ) { $titles = ''; foreach ( $cascadeSources as $title ) { $titles .= '* [[:' . $title->getPrefixedText() . "]]\n"; } - $wgOut->wrapWikiMsg( "<div id=\"mw-protect-cascadeon\">\n$1\n" . $titles . "</div>", array( 'protect-cascadeon', count($cascadeSources) ) ); + $wgOut->wrapWikiMsg( "<div id=\"mw-protect-cascadeon\">\n$1\n" . $titles . "</div>", array( 'protect-cascadeon', count( $cascadeSources ) ) ); } # Show an appropriate message if the user isn't allowed or able to change @@ -236,7 +254,6 @@ class ProtectionForm { wfEscapeWikiText( $this->mTitle->getPrefixedText() ) ); } - $wgOut->addBacklinkSubtitle( $this->mTitle ); $wgOut->addHTML( $this->buildForm() ); $this->showLogExtract( $wgOut ); } @@ -270,10 +287,11 @@ class ProtectionForm { $reasonstr = $this->mReason; } $expiry = array(); - foreach( $this->mApplicableTypes as $action ) { + foreach ( $this->mApplicableTypes as $action ) { $expiry[$action] = $this->getExpiry( $action ); - if( empty($this->mRestrictions[$action]) ) + if ( empty( $this->mRestrictions[$action] ) ) { continue; // unprotected + } if ( !$expiry[$action] ) { $this->show( array( 'protect_expiry_invalid' ) ); return false; @@ -284,15 +302,7 @@ class ProtectionForm { } } - # They shouldn't be able to do this anyway, but just to make sure, ensure that cascading restrictions aren't being applied - # to a semi-protected page. - global $wgGroupPermissions; - - $edit_restriction = isset( $this->mRestrictions['edit'] ) ? $this->mRestrictions['edit'] : ''; $this->mCascade = $wgRequest->getBool( 'mwProtect-cascade' ); - if ($this->mCascade && ($edit_restriction != 'protect') && - !(isset($wgGroupPermissions[$edit_restriction]['protect']) && $wgGroupPermissions[$edit_restriction]['protect'] ) ) - $this->mCascade = false; $status = $this->mArticle->doUpdateRestrictions( $this->mRestrictions, $expiry, $this->mCascade, $reasonstr, $wgUser ); @@ -308,23 +318,18 @@ class ProtectionForm { * you can also return an array of message name and its parameters */ $errorMsg = ''; - if( !wfRunHooks( 'ProtectionForm::save', array( $this->mArticle, &$errorMsg ) ) ) { + if ( !wfRunHooks( 'ProtectionForm::save', array( $this->mArticle, &$errorMsg, $reasonstr ) ) ) { if ( $errorMsg == '' ) { $errorMsg = array( 'hookaborted' ); } } - if( $errorMsg != '' ) { + if ( $errorMsg != '' ) { $this->show( $errorMsg ); return false; } - if ( $wgUser->isLoggedIn() && $wgRequest->getCheck( 'mwProtectWatch' ) != $wgUser->isWatched( $this->mTitle ) ) { - if ( $wgRequest->getCheck( 'mwProtectWatch' ) ) { - WatchAction::doWatch( $this->mTitle, $wgUser ); - } else { - WatchAction::doUnwatch( $this->mTitle, $wgUser ); - } - } + WatchAction::doWatchOrUnwatch( $wgRequest->getCheck( 'mwProtectWatch' ), $this->mTitle, $wgUser ); + return true; } @@ -346,10 +351,10 @@ class ProtectionForm { ); $out = ''; - if( !$this->disabled ) { + if ( !$this->disabled ) { $wgOut->addModules( 'mediawiki.legacy.protect' ); $out .= Xml::openElement( 'form', array( 'method' => 'post', - 'action' => $this->mTitle->getLocalUrl( 'action=protect' ), + 'action' => $this->mTitle->getLocalURL( 'action=protect' ), 'id' => 'mw-Protect-Form', 'onsubmit' => 'ProtectionForm.enableUnchainedInputs(true)' ) ); } @@ -358,10 +363,12 @@ class ProtectionForm { Xml::openElement( 'table', array( 'id' => 'mwProtectSet' ) ) . Xml::openElement( 'tbody' ); - foreach( $this->mRestrictions as $action => $selected ) { - /* Not all languages have V_x <-> N_x relation */ + // Not all languages have V_x <-> N_x relation + foreach ( $this->mRestrictions as $action => $selected ) { + // Messages: + // restriction-edit, restriction-move, restriction-create, restriction-upload $msg = wfMessage( 'restriction-' . $action ); - $out .= "<tr><td>". + $out .= "<tr><td>" . Xml::openElement( 'fieldset' ) . Xml::element( 'legend', null, $msg->exists() ? $msg->text() : $action ) . Xml::openElement( 'table', array( 'id' => "mw-protect-table-$action" ) ) . @@ -374,7 +381,7 @@ class ProtectionForm { 'mwProtect-reason', 4 ); $scExpiryOptions = wfMessage( 'protect-expiry-options' )->inContentLanguage()->text(); - $showProtectOptions = ($scExpiryOptions !== '-' && !$this->disabled); + $showProtectOptions = $scExpiryOptions !== '-' && !$this->disabled; $mProtectexpiry = Xml::label( wfMessage( 'protectexpiry' )->text(), @@ -402,18 +409,18 @@ class ProtectionForm { wfMessage( 'protect-othertime-op' )->text(), "othertime" ) . "\n"; - foreach( explode(',', $scExpiryOptions) as $option ) { - if ( strpos($option, ":") === false ) { + foreach ( explode( ',', $scExpiryOptions ) as $option ) { + if ( strpos( $option, ":" ) === false ) { $show = $value = $option; } else { - list($show, $value) = explode(":", $option); + list( $show, $value ) = explode( ":", $option ); } - $show = htmlspecialchars($show); - $value = htmlspecialchars($value); + $show = htmlspecialchars( $show ); + $value = htmlspecialchars( $value ); $expiryFormOptions .= Xml::option( $show, $value, $this->mExpirySelection[$action] === $value ) . "\n"; } # Add expiry dropdown - if( $showProtectOptions && !$this->disabled ) { + if ( $showProtectOptions && !$this->disabled ) { $out .= " <table><tr> <td class='mw-label'> @@ -448,12 +455,12 @@ class ProtectionForm { "</td></tr>"; } # Give extensions a chance to add items to the form - wfRunHooks( 'ProtectionForm::buildForm', array($this->mArticle,&$out) ); + wfRunHooks( 'ProtectionForm::buildForm', array( $this->mArticle, &$out ) ); $out .= Xml::closeElement( 'tbody' ) . Xml::closeElement( 'table' ); // JavaScript will add another row with a value-chaining checkbox - if( $this->mTitle->exists() ) { + if ( $this->mTitle->exists() ) { $out .= Xml::openElement( 'table', array( 'id' => 'mw-protect-table2' ) ) . Xml::openElement( 'tbody' ); $out .= '<tr> @@ -471,8 +478,8 @@ class ProtectionForm { } # Add manual and custom reason field/selects as well as submit - if( !$this->disabled ) { - $out .= Xml::openElement( 'table', array( 'id' => 'mw-protect-table3' ) ) . + if ( !$this->disabled ) { + $out .= Xml::openElement( 'table', array( 'id' => 'mw-protect-table3' ) ) . Xml::openElement( 'tbody' ); $out .= " <tr> @@ -496,14 +503,14 @@ class ProtectionForm { "</td> </tr>"; # Disallow watching is user is not logged in - if( $wgUser->isLoggedIn() ) { + if ( $wgUser->isLoggedIn() ) { $out .= " <tr> <td></td> <td class='mw-input'>" . Xml::checkLabel( wfMessage( 'watchthis' )->text(), 'mwProtectWatch', 'mwProtectWatch', - $this->mTitle->userIsWatching() || $wgUser->getOption( 'watchdefault' ) ) . + $wgUser->isWatched( $this->mTitle ) || $wgUser->getOption( 'watchdefault' ) ) . "</td> </tr>"; } @@ -544,23 +551,30 @@ class ProtectionForm { /** * Build protection level selector * - * @param $action String: action to protect - * @param $selected String: current protection level + * @param string $action action to protect + * @param string $selected current protection level * @return String: HTML fragment */ function buildSelector( $action, $selected ) { global $wgRestrictionLevels, $wgUser; $levels = array(); - foreach( $wgRestrictionLevels as $key ) { + foreach ( $wgRestrictionLevels as $key ) { //don't let them choose levels above their own (aka so they can still unprotect and edit the page). but only when the form isn't disabled - if( $key == 'sysop' ) { - //special case, rewrite sysop to protect and editprotected - if( !$wgUser->isAllowedAny( 'protect', 'editprotected' ) && !$this->disabled ) + if ( $key == 'sysop' ) { + //special case, rewrite sysop to editprotected + if ( !$wgUser->isAllowed( 'editprotected' ) && !$this->disabled ) { + continue; + } + } elseif ( $key == 'autoconfirmed' ) { + //special case, rewrite autoconfirmed to editsemiprotected + if ( !$wgUser->isAllowed( 'editsemiprotected' ) && !$this->disabled ) { continue; + } } else { - if( !$wgUser->isAllowed($key) && !$this->disabled ) + if ( !$wgUser->isAllowed( $key ) && !$this->disabled ) { continue; + } } $levels[] = $key; } @@ -574,7 +588,7 @@ class ProtectionForm { ) + $this->disabledAttrib; $out = Xml::openElement( 'select', $attribs ); - foreach( $levels as $key ) { + foreach ( $levels as $key ) { $out .= Xml::option( $this->getOptionLabel( $key ), $key, $key == $selected ); } $out .= Xml::closeElement( 'select' ); @@ -584,15 +598,16 @@ class ProtectionForm { /** * Prepare the label for a protection selector option * - * @param $permission String: permission required + * @param string $permission permission required * @return String */ private function getOptionLabel( $permission ) { - if( $permission == '' ) { + if ( $permission == '' ) { return wfMessage( 'protect-default' )->text(); } else { + // Messages: protect-level-autoconfirmed, protect-level-sysop $msg = wfMessage( "protect-level-{$permission}" ); - if( $msg->exists() ) { + if ( $msg->exists() ) { return $msg->text(); } return wfMessage( 'protect-fallback', $permission )->text(); @@ -600,16 +615,9 @@ class ProtectionForm { } function buildCleanupScript() { - global $wgRestrictionLevels, $wgGroupPermissions, $wgOut; - - $cascadeableLevels = array(); - foreach( $wgRestrictionLevels as $key ) { - if ( ( isset( $wgGroupPermissions[$key]['protect'] ) && $wgGroupPermissions[$key]['protect'] ) - || $key == 'protect' - ) { - $cascadeableLevels[] = $key; - } - } + global $wgCascadingRestrictionLevels, $wgOut; + + $cascadeableLevels = $wgCascadingRestrictionLevels; $options = array( 'tableId' => 'mwProtectSet', 'labelText' => wfMessage( 'protect-unchain-permissions' )->plain(), @@ -634,6 +642,6 @@ class ProtectionForm { $out->addHTML( Xml::element( 'h2', null, $protectLogPage->getName()->text() ) ); LogEventsList::showLogExtract( $out, 'protect', $this->mTitle ); # Let extensions add other relevant log extracts - wfRunHooks( 'ProtectionForm::showLogExtract', array($this->mArticle,$out) ); + wfRunHooks( 'ProtectionForm::showLogExtract', array( $this->mArticle, $out ) ); } } |