dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
whoops, fix r96257
[lhc/web/wiklou.git] / includes / EditPage.php
1 <?php
2 /**
3 * Contains the EditPage class
4 * @file
5 */
6
7 /**
8 * The edit page/HTML interface (split from Article)
9 * The actual database and text munging is still in Article,
10 * but it should get easier to call those from alternate
11 * interfaces.
12 *
13 * EditPage cares about two distinct titles:
14 * $this->mContextTitle is the page that forms submit to, links point to,
15 * redirects go to, etc. $this->mTitle (as well as $mArticle) is the
16 * page in the database that is actually being edited. These are
17 * usually the same, but they are now allowed to be different.
18 *
19 * Surgeon General's Warning: prolonged exposure to this class is known to cause
20 * headaches, which may be fatal.
21 */
22 class EditPage {
23 const AS_SUCCESS_UPDATE = 200;
24 const AS_SUCCESS_NEW_ARTICLE = 201;
25 const AS_HOOK_ERROR = 210;
26 const AS_FILTERING = 211;
27 const AS_HOOK_ERROR_EXPECTED = 212;
28 const AS_BLOCKED_PAGE_FOR_USER = 215;
29 const AS_CONTENT_TOO_BIG = 216;
30 const AS_USER_CANNOT_EDIT = 217;
31 const AS_READ_ONLY_PAGE_ANON = 218;
32 const AS_READ_ONLY_PAGE_LOGGED = 219;
33 const AS_READ_ONLY_PAGE = 220;
34 const AS_RATE_LIMITED = 221;
35 const AS_ARTICLE_WAS_DELETED = 222;
36 const AS_NO_CREATE_PERMISSION = 223;
37 const AS_BLANK_ARTICLE = 224;
38 const AS_CONFLICT_DETECTED = 225;
39 const AS_SUMMARY_NEEDED = 226;
40 const AS_TEXTBOX_EMPTY = 228;
41 const AS_MAX_ARTICLE_SIZE_EXCEEDED = 229;
42 const AS_OK = 230;
43 const AS_END = 231;
44 const AS_SPAM_ERROR = 232;
45 const AS_IMAGE_REDIRECT_ANON = 233;
46 const AS_IMAGE_REDIRECT_LOGGED = 234;
47
48 /**
49 * @var Article
50 */
51 var $mArticle;
52
53 /**
54 * @var Title
55 */
56 var $mTitle;
57 private $mContextTitle = null;
58 var $action;
59 var $isConflict = false;
60 var $isCssJsSubpage = false;
61 var $isCssSubpage = false;
62 var $isJsSubpage = false;
63 var $isWrongCaseCssJsPage = false;
64 var $isNew = false; // new page or new section
65 var $deletedSinceEdit;
66 var $formtype;
67 var $firsttime;
68 var $lastDelete;
69 var $mTokenOk = false;
70 var $mTokenOkExceptSuffix = false;
71 var $mTriedSave = false;
72 var $incompleteForm = false;
73 var $tooBig = false;
74 var $kblength = false;
75 var $missingComment = false;
76 var $missingSummary = false;
77 var $allowBlankSummary = false;
78 var $autoSumm = '';
79 var $hookError = '';
80 #var $mPreviewTemplates;
81
82 /**
83 * @var ParserOutput
84 */
85 var $mParserOutput;
86
87 var $mBaseRevision = false;
88 var $mShowSummaryField = true;
89
90 # Form values
91 var $save = false, $preview = false, $diff = false;
92 var $minoredit = false, $watchthis = false, $recreate = false;
93 var $textbox1 = '', $textbox2 = '', $summary = '', $nosummary = false;
94 var $edittime = '', $section = '', $starttime = '';
95 var $oldid = 0, $editintro = '', $scrolltop = null, $bot = true;
96
97 # Placeholders for text injection by hooks (must be HTML)
98 # extensions should take care to _append_ to the present value
99 public $editFormPageTop; // Before even the preview
100 public $editFormTextTop;
101 public $editFormTextBeforeContent;
102 public $editFormTextAfterWarn;
103 public $editFormTextAfterTools;
104 public $editFormTextBottom;
105 public $editFormTextAfterContent;
106 public $previewTextAfterContent;
107 public $mPreloadText;
108
109 /* $didSave should be set to true whenever an article was succesfully altered. */
110 public $didSave = false;
111 public $undidRev = 0;
112
113 public $suppressIntro = false;
114
115 /**
116 * @todo document
117 * @param $article Article
118 */
119 function __construct( $article ) {
120 $this->mArticle =& $article;
121 $this->mTitle = $article->getTitle();
122 $this->action = 'submit';
123
124 # Placeholders for text injection by hooks (empty per default)
125 $this->editFormPageTop =
126 $this->editFormTextTop =
127 $this->editFormTextBeforeContent =
128 $this->editFormTextAfterWarn =
129 $this->editFormTextAfterTools =
130 $this->editFormTextBottom =
131 $this->editFormTextAfterContent =
132 $this->previewTextAfterContent =
133 $this->mPreloadText = "";
134 }
135
136 /**
137 * @return Article
138 */
139 function getArticle() {
140 return $this->mArticle;
141 }
142
143 /**
144 * Set the context Title object
145 *
146 * @param $title Title object or null
147 */
148 public function setContextTitle( $title ) {
149 $this->mContextTitle = $title;
150 }
151
152 /**
153 * Get the context title object.
154 * If not set, $wgTitle will be returned. This behavior might changed in
155 * the future to return $this->mTitle instead.
156 *
157 * @return Title object
158 */
159 public function getContextTitle() {
160 if ( is_null( $this->mContextTitle ) ) {
161 global $wgTitle;
162 return $wgTitle;
163 } else {
164 return $this->mContextTitle;
165 }
166 }
167
168 /**
169 * Fetch initial editing page content.
170 *
171 * @param $def_text string
172 * @returns mixed string on success, $def_text for invalid sections
173 * @private
174 */
175 function getContent( $def_text = '' ) {
176 global $wgOut, $wgRequest, $wgParser;
177
178 wfProfileIn( __METHOD__ );
179 # Get variables from query string :P
180 $section = $wgRequest->getVal( 'section' );
181
182 $preload = $wgRequest->getVal( 'preload',
183 // Custom preload text for new sections
184 $section === 'new' ? 'MediaWiki:addsection-preload' : '' );
185 $undoafter = $wgRequest->getVal( 'undoafter' );
186 $undo = $wgRequest->getVal( 'undo' );
187
188 // For message page not locally set, use the i18n message.
189 // For other non-existent articles, use preload text if any.
190 if ( !$this->mTitle->exists() ) {
191 if ( $this->mTitle->getNamespace() == NS_MEDIAWIKI ) {
192 # If this is a system message, get the default text.
193 $text = $this->mTitle->getDefaultMessageText();
194 if( $text === false ) {
195 $text = $this->getPreloadedText( $preload );
196 }
197 } else {
198 # If requested, preload some text.
199 $text = $this->getPreloadedText( $preload );
200 }
201 // For existing pages, get text based on "undo" or section parameters.
202 } else {
203 $text = $this->mArticle->getContent();
204 if ( $undo > 0 && $undoafter > 0 && $undo < $undoafter ) {
205 # If they got undoafter and undo round the wrong way, switch them
206 list( $undo, $undoafter ) = array( $undoafter, $undo );
207 }
208 if ( $undo > 0 && $undo > $undoafter ) {
209 # Undoing a specific edit overrides section editing; section-editing
210 # doesn't work with undoing.
211 if ( $undoafter ) {
212 $undorev = Revision::newFromId( $undo );
213 $oldrev = Revision::newFromId( $undoafter );
214 } else {
215 $undorev = Revision::newFromId( $undo );
216 $oldrev = $undorev ? $undorev->getPrevious() : null;
217 }
218
219 # Sanity check, make sure it's the right page,
220 # the revisions exist and they were not deleted.
221 # Otherwise, $text will be left as-is.
222 if ( !is_null( $undorev ) && !is_null( $oldrev ) &&
223 $undorev->getPage() == $oldrev->getPage() &&
224 $undorev->getPage() == $this->mArticle->getID() &&
225 !$undorev->isDeleted( Revision::DELETED_TEXT ) &&
226 !$oldrev->isDeleted( Revision::DELETED_TEXT ) ) {
227
228 $undotext = $this->mArticle->getUndoText( $undorev, $oldrev );
229 if ( $undotext === false ) {
230 # Warn the user that something went wrong
231 $this->editFormPageTop .= $wgOut->parse( '<div class="error mw-undo-failure">' .
232 wfMsgNoTrans( 'undo-failure' ) . '</div>', true, /* interface */true );
233 } else {
234 $text = $undotext;
235 # Inform the user of our success and set an automatic edit summary
236 $this->editFormPageTop .= $wgOut->parse( '<div class="mw-undo-success">' .
237 wfMsgNoTrans( 'undo-success' ) . '</div>', true, /* interface */true );
238 $firstrev = $oldrev->getNext();
239 # If we just undid one rev, use an autosummary
240 if ( $firstrev->mId == $undo ) {
241 $this->summary = wfMsgForContent( 'undo-summary', $undo, $undorev->getUserText() );
242 $this->undidRev = $undo;
243 }
244 $this->formtype = 'diff';
245 }
246 } else {
247 // Failed basic sanity checks.
248 // Older revisions may have been removed since the link
249 // was created, or we may simply have got bogus input.
250 $this->editFormPageTop .= $wgOut->parse( '<div class="error mw-undo-norev">' .
251 wfMsgNoTrans( 'undo-norev' ) . '</div>', true, /* interface */true );
252 }
253 } elseif ( $section != '' ) {
254 if ( $section == 'new' ) {
255 $text = $this->getPreloadedText( $preload );
256 } else {
257 // Get section edit text (returns $def_text for invalid sections)
258 $text = $wgParser->getSection( $text, $section, $def_text );
259 }
260 }
261 }
262
263 wfProfileOut( __METHOD__ );
264 return $text;
265 }
266
267 /**
268 * Use this method before edit() to preload some text into the edit box
269 *
270 * @param $text string
271 */
272 public function setPreloadedText( $text ) {
273 $this->mPreloadText = $text;
274 }
275
276 /**
277 * Get the contents to be preloaded into the box, either set by
278 * an earlier setPreloadText() or by loading the given page.
279 *
280 * @param $preload String: representing the title to preload from.
281 * @return String
282 */
283 protected function getPreloadedText( $preload ) {
284 global $wgUser, $wgParser;
285 if ( !empty( $this->mPreloadText ) ) {
286 return $this->mPreloadText;
287 } elseif ( $preload !== '' ) {
288 $title = Title::newFromText( $preload );
289 # Check for existence to avoid getting MediaWiki:Noarticletext
290 if ( isset( $title ) && $title->exists() && $title->userCanRead() ) {
291 $article = new Article( $title );
292
293 if ( $article->isRedirect() ) {
294 $title = Title::newFromRedirectRecurse( $article->getContent() );
295 # Redirects to missing titles are displayed, to hidden pages are followed
296 # Copying observed behaviour from ?action=view
297 if ( $title->exists() ) {
298 if ($title->userCanRead() ) {
299 $article = new Article( $title );
300 } else {
301 return "";
302 }
303 }
304 }
305 $parserOptions = ParserOptions::newFromUser( $wgUser );
306 return $wgParser->getPreloadText( $article->getContent(), $title, $parserOptions );
307 }
308 }
309 return '';
310 }
311
312 /**
313 * Check if a page was deleted while the user was editing it, before submit.
314 * Note that we rely on the logging table, which hasn't been always there,
315 * but that doesn't matter, because this only applies to brand new
316 * deletes.
317 */
318 protected function wasDeletedSinceLastEdit() {
319 if ( $this->deletedSinceEdit !== null ) {
320 return $this->deletedSinceEdit;
321 }
322
323 $this->deletedSinceEdit = false;
324
325 if ( $this->mTitle->isDeletedQuick() ) {
326 $this->lastDelete = $this->getLastDelete();
327 if ( $this->lastDelete ) {
328 $deleteTime = wfTimestamp( TS_MW, $this->lastDelete->log_timestamp );
329 if ( $deleteTime > $this->starttime ) {
330 $this->deletedSinceEdit = true;
331 }
332 }
333 }
334
335 return $this->deletedSinceEdit;
336 }
337
338 /**
339 * Checks whether the user entered a skin name in uppercase,
340 * e.g. "User:Example/Monobook.css" instead of "monobook.css"
341 *
342 * @return bool
343 */
344 protected function isWrongCaseCssJsPage() {
345 if( $this->mTitle->isCssJsSubpage() ) {
346 $name = $this->mTitle->getSkinFromCssJsSubpage();
347 $skins = array_merge(
348 array_keys( Skin::getSkinNames() ),
349 array( 'common' )
350 );
351 return !in_array( $name, $skins )
352 && in_array( strtolower( $name ), $skins );
353 } else {
354 return false;
355 }
356 }
357
358 function submit() {
359 $this->edit();
360 }
361
362 /**
363 * This is the function that gets called for "action=edit". It
364 * sets up various member variables, then passes execution to
365 * another function, usually showEditForm()
366 *
367 * The edit form is self-submitting, so that when things like
368 * preview and edit conflicts occur, we get the same form back
369 * with the extra stuff added. Only when the final submission
370 * is made and all is well do we actually save and redirect to
371 * the newly-edited page.
372 */
373 function edit() {
374 global $wgOut, $wgRequest, $wgUser;
375 // Allow extensions to modify/prevent this form or submission
376 if ( !wfRunHooks( 'AlternateEdit', array( $this ) ) ) {
377 return;
378 }
379
380 wfProfileIn( __METHOD__ );
381 wfDebug( __METHOD__.": enter\n" );
382
383 $this->importFormData( $wgRequest );
384 $this->firsttime = false;
385
386 if ( $this->live ) {
387 $this->livePreview();
388 wfProfileOut( __METHOD__ );
389 return;
390 }
391
392 if ( wfReadOnly() && $this->save ) {
393 // Force preview
394 $this->save = false;
395 $this->preview = true;
396 }
397
398 $wgOut->addModules( array( 'mediawiki.action.edit' ) );
399
400 if ( $wgUser->getOption( 'uselivepreview', false ) ) {
401 $wgOut->addModules( 'mediawiki.legacy.preview' );
402 }
403 // Bug #19334: textarea jumps when editing articles in IE8
404 $wgOut->addStyle( 'common/IE80Fixes.css', 'screen', 'IE 8' );
405
406 $permErrors = $this->getEditPermissionErrors();
407 if ( $permErrors ) {
408 wfDebug( __METHOD__ . ": User can't edit\n" );
409 $content = $this->getContent( null );
410 $content = $content === '' ? null : $content;
411 $this->readOnlyPage( $content, true, $permErrors, 'edit' );
412 wfProfileOut( __METHOD__ );
413 return;
414 } else {
415 if ( $this->save ) {
416 $this->formtype = 'save';
417 } elseif ( $this->preview ) {
418 $this->formtype = 'preview';
419 } elseif ( $this->diff ) {
420 $this->formtype = 'diff';
421 } else { # First time through
422 $this->firsttime = true;
423 if ( $this->previewOnOpen() ) {
424 $this->formtype = 'preview';
425 } else {
426 $this->formtype = 'initial';
427 }
428 }
429 }
430
431 // If they used redlink=1 and the page exists, redirect to the main article
432 if ( $wgRequest->getBool( 'redlink' ) && $this->mTitle->exists() ) {
433 $wgOut->redirect( $this->mTitle->getFullURL() );
434 }
435
436 wfProfileIn( __METHOD__."-business-end" );
437
438 $this->isConflict = false;
439 // css / js subpages of user pages get a special treatment
440 $this->isCssJsSubpage = $this->mTitle->isCssJsSubpage();
441 $this->isCssSubpage = $this->mTitle->isCssSubpage();
442 $this->isJsSubpage = $this->mTitle->isJsSubpage();
443 $this->isWrongCaseCssJsPage = $this->isWrongCaseCssJsPage();
444 $this->isNew = !$this->mTitle->exists() || $this->section == 'new';
445
446 # Show applicable editing introductions
447 if ( $this->formtype == 'initial' || $this->firsttime )
448 $this->showIntro();
449
450 if ( $this->mTitle->isTalkPage() ) {
451 $wgOut->addWikiMsg( 'talkpagetext' );
452 }
453
454 # Optional notices on a per-namespace and per-page basis
455 $editnotice_ns = 'editnotice-'.$this->mTitle->getNamespace();
456 $editnotice_ns_message = wfMessage( $editnotice_ns )->inContentLanguage();
457 if ( $editnotice_ns_message->exists() ) {
458 $wgOut->addWikiText( $editnotice_ns_message->plain() );
459 }
460 if ( MWNamespace::hasSubpages( $this->mTitle->getNamespace() ) ) {
461 $parts = explode( '/', $this->mTitle->getDBkey() );
462 $editnotice_base = $editnotice_ns;
463 while ( count( $parts ) > 0 ) {
464 $editnotice_base .= '-'.array_shift( $parts );
465 $editnotice_base_msg = wfMessage( $editnotice_base )->inContentLanguage();
466 if ( $editnotice_base_msg->exists() ) {
467 $wgOut->addWikiText( $editnotice_base_msg->plain() );
468 }
469 }
470 }
471
472 # Attempt submission here. This will check for edit conflicts,
473 # and redundantly check for locked database, blocked IPs, etc.
474 # that edit() already checked just in case someone tries to sneak
475 # in the back door with a hand-edited submission URL.
476
477 if ( 'save' == $this->formtype ) {
478 if ( !$this->attemptSave() ) {
479 wfProfileOut( __METHOD__."-business-end" );
480 wfProfileOut( __METHOD__ );
481 return;
482 }
483 }
484
485 # First time through: get contents, set time for conflict
486 # checking, etc.
487 if ( 'initial' == $this->formtype || $this->firsttime ) {
488 if ( $this->initialiseForm() === false ) {
489 $this->noSuchSectionPage();
490 wfProfileOut( __METHOD__."-business-end" );
491 wfProfileOut( __METHOD__ );
492 return;
493 }
494 if ( !$this->mTitle->getArticleId() )
495 wfRunHooks( 'EditFormPreloadText', array( &$this->textbox1, &$this->mTitle ) );
496 else
497 wfRunHooks( 'EditFormInitialText', array( $this ) );
498 }
499
500 $this->showEditForm();
501 wfProfileOut( __METHOD__."-business-end" );
502 wfProfileOut( __METHOD__ );
503 }
504
505 /**
506 * @return array
507 */
508 protected function getEditPermissionErrors() {
509 global $wgUser;
510 $permErrors = $this->mTitle->getUserPermissionsErrors( 'edit', $wgUser );
511 # Can this title be created?
512 if ( !$this->mTitle->exists() ) {
513 $permErrors = array_merge( $permErrors,
514 wfArrayDiff2( $this->mTitle->getUserPermissionsErrors( 'create', $wgUser ), $permErrors ) );
515 }
516 # Ignore some permissions errors when a user is just previewing/viewing diffs
517 $remove = array();
518 foreach( $permErrors as $error ) {
519 if ( ( $this->preview || $this->diff ) &&
520 ( $error[0] == 'blockedtext' || $error[0] == 'autoblockedtext' ) )
521 {
522 $remove[] = $error;
523 }
524 }
525 $permErrors = wfArrayDiff2( $permErrors, $remove );
526 return $permErrors;
527 }
528
529 /**
530 * Show a read-only error
531 * Parameters are the same as OutputPage:readOnlyPage()
532 * Redirect to the article page if redlink=1
533 */
534 function readOnlyPage( $source = null, $protected = false, $reasons = array(), $action = null ) {
535 global $wgRequest, $wgOut;
536 if ( $wgRequest->getBool( 'redlink' ) ) {
537 // The edit page was reached via a red link.
538 // Redirect to the article page and let them click the edit tab if
539 // they really want a permission error.
540 $wgOut->redirect( $this->mTitle->getFullUrl() );
541 } else {
542 $wgOut->readOnlyPage( $source, $protected, $reasons, $action );
543 }
544 }
545
546 /**
547 * Should we show a preview when the edit form is first shown?
548 *
549 * @return bool
550 */
551 protected function previewOnOpen() {
552 global $wgRequest, $wgUser, $wgPreviewOnOpenNamespaces;
553 if ( $wgRequest->getVal( 'preview' ) == 'yes' ) {
554 // Explicit override from request
555 return true;
556 } elseif ( $wgRequest->getVal( 'preview' ) == 'no' ) {
557 // Explicit override from request
558 return false;
559 } elseif ( $this->section == 'new' ) {
560 // Nothing *to* preview for new sections
561 return false;
562 } elseif ( ( $wgRequest->getVal( 'preload' ) !== null || $this->mTitle->exists() ) && $wgUser->getOption( 'previewonfirst' ) ) {
563 // Standard preference behaviour
564 return true;
565 } elseif ( !$this->mTitle->exists() &&
566 isset($wgPreviewOnOpenNamespaces[$this->mTitle->getNamespace()]) &&
567 $wgPreviewOnOpenNamespaces[$this->mTitle->getNamespace()] )
568 {
569 // Categories are special
570 return true;
571 } else {
572 return false;
573 }
574 }
575
576 /**
577 * Does this EditPage class support section editing?
578 * This is used by EditPage subclasses to indicate their ui cannot handle section edits
579 *
580 * @return bool
581 */
582 protected function isSectionEditSupported() {
583 return true;
584 }
585
586 /**
587 * Returns the URL to use in the form's action attribute.
588 * This is used by EditPage subclasses when simply customizing the action
589 * variable in the constructor is not enough. This can be used when the
590 * EditPage lives inside of a Special page rather than a custom page action.
591 *
592 * @param $title Title object for which is being edited (where we go to for &action= links)
593 * @return string
594 */
595 protected function getActionURL( Title $title ) {
596 return $title->getLocalURL( array( 'action' => $this->action ) );
597 }
598
599 /**
600 * @todo document
601 * @param $request WebRequest
602 */
603 function importFormData( &$request ) {
604 global $wgLang, $wgUser;
605
606 wfProfileIn( __METHOD__ );
607
608 # Section edit can come from either the form or a link
609 $this->section = $request->getVal( 'wpSection', $request->getVal( 'section' ) );
610
611 if ( $request->wasPosted() ) {
612 # These fields need to be checked for encoding.
613 # Also remove trailing whitespace, but don't remove _initial_
614 # whitespace from the text boxes. This may be significant formatting.
615 $this->textbox1 = $this->safeUnicodeInput( $request, 'wpTextbox1' );
616 if ( !$request->getCheck('wpTextbox2') ) {
617 // Skip this if wpTextbox2 has input, it indicates that we came
618 // from a conflict page with raw page text, not a custom form
619 // modified by subclasses
620 wfProfileIn( get_class($this)."::importContentFormData" );
621 $textbox1 = $this->importContentFormData( $request );
622 if ( isset($textbox1) )
623 $this->textbox1 = $textbox1;
624 wfProfileOut( get_class($this)."::importContentFormData" );
625 }
626
627 # Truncate for whole multibyte characters. +5 bytes for ellipsis
628 $this->summary = $wgLang->truncate( $request->getText( 'wpSummary' ), 250 );
629
630 # Remove extra headings from summaries and new sections.
631 $this->summary = preg_replace('/^\s*=+\s*(.*?)\s*=+\s*$/', '$1', $this->summary);
632
633 $this->edittime = $request->getVal( 'wpEdittime' );
634 $this->starttime = $request->getVal( 'wpStarttime' );
635
636 $this->scrolltop = $request->getIntOrNull( 'wpScrolltop' );
637
638 if ($this->textbox1 === '' && $request->getVal( 'wpTextbox1' ) === null) {
639 // wpTextbox1 field is missing, possibly due to being "too big"
640 // according to some filter rules such as Suhosin's setting for
641 // suhosin.request.max_value_length (d'oh)
642 $this->incompleteForm = true;
643 } else {
644 // edittime should be one of our last fields; if it's missing,
645 // the submission probably broke somewhere in the middle.
646 $this->incompleteForm = is_null( $this->edittime );
647 }
648 if ( $this->incompleteForm ) {
649 # If the form is incomplete, force to preview.
650 wfDebug( __METHOD__ . ": Form data appears to be incomplete\n" );
651 wfDebug( "POST DATA: " . var_export( $_POST, true ) . "\n" );
652 $this->preview = true;
653 } else {
654 /* Fallback for live preview */
655 $this->preview = $request->getCheck( 'wpPreview' ) || $request->getCheck( 'wpLivePreview' );
656 $this->diff = $request->getCheck( 'wpDiff' );
657
658 // Remember whether a save was requested, so we can indicate
659 // if we forced preview due to session failure.
660 $this->mTriedSave = !$this->preview;
661
662 if ( $this->tokenOk( $request ) ) {
663 # Some browsers will not report any submit button
664 # if the user hits enter in the comment box.
665 # The unmarked state will be assumed to be a save,
666 # if the form seems otherwise complete.
667 wfDebug( __METHOD__ . ": Passed token check.\n" );
668 } elseif ( $this->diff ) {
669 # Failed token check, but only requested "Show Changes".
670 wfDebug( __METHOD__ . ": Failed token check; Show Changes requested.\n" );
671 } else {
672 # Page might be a hack attempt posted from
673 # an external site. Preview instead of saving.
674 wfDebug( __METHOD__ . ": Failed token check; forcing preview\n" );
675 $this->preview = true;
676 }
677 }
678 $this->save = !$this->preview && !$this->diff;
679 if ( !preg_match( '/^\d{14}$/', $this->edittime ) ) {
680 $this->edittime = null;
681 }
682
683 if ( !preg_match( '/^\d{14}$/', $this->starttime ) ) {
684 $this->starttime = null;
685 }
686
687 $this->recreate = $request->getCheck( 'wpRecreate' );
688
689 $this->minoredit = $request->getCheck( 'wpMinoredit' );
690 $this->watchthis = $request->getCheck( 'wpWatchthis' );
691
692 # Don't force edit summaries when a user is editing their own user or talk page
693 if ( ( $this->mTitle->mNamespace == NS_USER || $this->mTitle->mNamespace == NS_USER_TALK ) &&
694 $this->mTitle->getText() == $wgUser->getName() )
695 {
696 $this->allowBlankSummary = true;
697 } else {
698 $this->allowBlankSummary = $request->getBool( 'wpIgnoreBlankSummary' ) || !$wgUser->getOption( 'forceeditsummary');
699 }
700
701 $this->autoSumm = $request->getText( 'wpAutoSummary' );
702 } else {
703 # Not a posted form? Start with nothing.
704 wfDebug( __METHOD__ . ": Not a posted form.\n" );
705 $this->textbox1 = '';
706 $this->summary = '';
707 $this->edittime = '';
708 $this->starttime = wfTimestampNow();
709 $this->edit = false;
710 $this->preview = false;
711 $this->save = false;
712 $this->diff = false;
713 $this->minoredit = false;
714 $this->watchthis = $request->getBool( 'watchthis', false ); // Watch may be overriden by request parameters
715 $this->recreate = false;
716
717 if ( $this->section == 'new' && $request->getVal( 'preloadtitle' ) ) {
718 $this->summary = $request->getVal( 'preloadtitle' );
719 }
720 elseif ( $this->section != 'new' && $request->getVal( 'summary' ) ) {
721 $this->summary = $request->getText( 'summary' );
722 }
723
724 if ( $request->getVal( 'minor' ) ) {
725 $this->minoredit = true;
726 }
727 }
728
729 $this->bot = $request->getBool( 'bot', true );
730 $this->nosummary = $request->getBool( 'nosummary' );
731
732 // @todo FIXME: Unused variable?
733 $this->oldid = $request->getInt( 'oldid' );
734
735 $this->live = $request->getCheck( 'live' );
736 $this->editintro = $request->getText( 'editintro',
737 // Custom edit intro for new sections
738 $this->section === 'new' ? 'MediaWiki:addsection-editintro' : '' );
739
740 // Allow extensions to modify form data
741 wfRunHooks( 'EditPage::importFormData', array( $this, $request ) );
742
743 wfProfileOut( __METHOD__ );
744 }
745
746 /**
747 * Subpage overridable method for extracting the page content data from the
748 * posted form to be placed in $this->textbox1, if using customized input
749 * this method should be overrided and return the page text that will be used
750 * for saving, preview parsing and so on...
751 *
752 * @param $request WebRequest
753 */
754 protected function importContentFormData( &$request ) {
755 return; // Don't do anything, EditPage already extracted wpTextbox1
756 }
757
758 /**
759 * Make sure the form isn't faking a user's credentials.
760 *
761 * @param $request WebRequest
762 * @return bool
763 * @private
764 */
765 function tokenOk( &$request ) {
766 global $wgUser;
767 $token = $request->getVal( 'wpEditToken' );
768 $this->mTokenOk = $wgUser->matchEditToken( $token );
769 $this->mTokenOkExceptSuffix = $wgUser->matchEditTokenNoSuffix( $token );
770 return $this->mTokenOk;
771 }
772
773 /**
774 * Show all applicable editing introductions
775 */
776 protected function showIntro() {
777 global $wgOut, $wgUser;
778 if ( $this->suppressIntro ) {
779 return;
780 }
781
782 $namespace = $this->mTitle->getNamespace();
783
784 if ( $namespace == NS_MEDIAWIKI ) {
785 # Show a warning if editing an interface message
786 $wgOut->wrapWikiMsg( "<div class='mw-editinginterface'>\n$1\n</div>", 'editinginterface' );
787 }
788
789 # Show a warning message when someone creates/edits a user (talk) page but the user does not exist
790 # Show log extract when the user is currently blocked
791 if ( $namespace == NS_USER || $namespace == NS_USER_TALK ) {
792 $parts = explode( '/', $this->mTitle->getText(), 2 );
793 $username = $parts[0];
794 $user = User::newFromName( $username, false /* allow IP users*/ );
795 $ip = User::isIP( $username );
796 if ( !$user->isLoggedIn() && !$ip ) { # User does not exist
797 $wgOut->wrapWikiMsg( "<div class=\"mw-userpage-userdoesnotexist error\">\n$1\n</div>",
798 array( 'userpage-userdoesnotexist', wfEscapeWikiText( $username ) ) );
799 } elseif ( $user->isBlocked() ) { # Show log extract if the user is currently blocked
800 LogEventsList::showLogExtract(
801 $wgOut,
802 'block',
803 $user->getUserPage()->getPrefixedText(),
804 '',
805 array(
806 'lim' => 1,
807 'showIfEmpty' => false,
808 'msgKey' => array(
809 'blocked-notice-logextract',
810 $user->getName() # Support GENDER in notice
811 )
812 )
813 );
814 }
815 }
816 # Try to add a custom edit intro, or use the standard one if this is not possible.
817 if ( !$this->showCustomIntro() && !$this->mTitle->exists() ) {
818 if ( $wgUser->isLoggedIn() ) {
819 $wgOut->wrapWikiMsg( "<div class=\"mw-newarticletext\">\n$1\n</div>", 'newarticletext' );
820 } else {
821 $wgOut->wrapWikiMsg( "<div class=\"mw-newarticletextanon\">\n$1\n</div>", 'newarticletextanon' );
822 }
823 }
824 # Give a notice if the user is editing a deleted/moved page...
825 if ( !$this->mTitle->exists() ) {
826 LogEventsList::showLogExtract( $wgOut, array( 'delete', 'move' ), $this->mTitle->getPrefixedText(),
827 '', array( 'lim' => 10,
828 'conds' => array( "log_action != 'revision'" ),
829 'showIfEmpty' => false,
830 'msgKey' => array( 'recreate-moveddeleted-warn') )
831 );
832 }
833 }
834
835 /**
836 * Attempt to show a custom editing introduction, if supplied
837 *
838 * @return bool
839 */
840 protected function showCustomIntro() {
841 if ( $this->editintro ) {
842 $title = Title::newFromText( $this->editintro );
843 if ( $title instanceof Title && $title->exists() && $title->userCanRead() ) {
844 global $wgOut;
845 // Added using template syntax, to take <noinclude>'s into account.
846 $wgOut->addWikiTextTitleTidy( '{{:' . $title->getFullText() . '}}', $this->mTitle );
847 return true;
848 } else {
849 return false;
850 }
851 } else {
852 return false;
853 }
854 }
855
856 /**
857 * Attempt submission (no UI)
858 *
859 * @param $result
860 * @param $bot bool
861 *
862 * @return Status object, possibly with a message, but always with one of the AS_* constants in $status->value,
863 *
864 * FIXME: This interface is TERRIBLE, but hard to get rid of due to various error display idiosyncrasies. There are
865 * also lots of cases where error metadata is set in the object and retrieved later instead of being returned, e.g.
866 * AS_CONTENT_TOO_BIG and AS_BLOCKED_PAGE_FOR_USER. All that stuff needs to be cleaned up some time.
867 */
868 function internalAttemptSave( &$result, $bot = false ) {
869 global $wgFilterCallback, $wgUser, $wgRequest, $wgParser;
870 global $wgMaxArticleSize;
871
872 $status = Status::newGood();
873
874 wfProfileIn( __METHOD__ );
875 wfProfileIn( __METHOD__ . '-checks' );
876
877 if ( !wfRunHooks( 'EditPage::attemptSave', array( $this ) ) ) {
878 wfDebug( "Hook 'EditPage::attemptSave' aborted article saving\n" );
879 $status->fatal( 'hookaborted' );
880 $status->value = self::AS_HOOK_ERROR;
881 wfProfileOut( __METHOD__ . '-checks' );
882 wfProfileOut( __METHOD__ );
883 return $status;
884 }
885
886 # Check image redirect
887 if ( $this->mTitle->getNamespace() == NS_FILE &&
888 Title::newFromRedirect( $this->textbox1 ) instanceof Title &&
889 !$wgUser->isAllowed( 'upload' ) ) {
890 $code = $wgUser->isAnon() ? self::AS_IMAGE_REDIRECT_ANON : self::AS_IMAGE_REDIRECT_LOGGED;
891 $status->setResult( false, $code );
892
893 wfProfileOut( __METHOD__ . '-checks' );
894
895 wfProfileOut( __METHOD__ );
896
897 return $status;
898 }
899
900 # Check for spam
901 $match = self::matchSummarySpamRegex( $this->summary );
902 if ( $match === false ) {
903 $match = self::matchSpamRegex( $this->textbox1 );
904 }
905 if ( $match !== false ) {
906 $result['spam'] = $match;
907 $ip = $wgRequest->getIP();
908 $pdbk = $this->mTitle->getPrefixedDBkey();
909 $match = str_replace( "\n", '', $match );
910 wfDebugLog( 'SpamRegex', "$ip spam regex hit [[$pdbk]]: \"$match\"" );
911 $status->fatal( 'spamprotectionmatch', $match );
912 $status->value = self::AS_SPAM_ERROR;
913 wfProfileOut( __METHOD__ . '-checks' );
914 wfProfileOut( __METHOD__ );
915 return $status;
916 }
917 if ( $wgFilterCallback && $wgFilterCallback( $this->mTitle, $this->textbox1, $this->section, $this->hookError, $this->summary ) ) {
918 # Error messages or other handling should be performed by the filter function
919 $status->setResult( false, self::AS_FILTERING );
920 wfProfileOut( __METHOD__ . '-checks' );
921 wfProfileOut( __METHOD__ );
922 return $status;
923 }
924 if ( !wfRunHooks( 'EditFilter', array( $this, $this->textbox1, $this->section, &$this->hookError, $this->summary ) ) ) {
925 # Error messages etc. could be handled within the hook...
926 $status->fatal( 'hookaborted' );
927 $status->value = self::AS_HOOK_ERROR;
928 wfProfileOut( __METHOD__ . '-checks' );
929 wfProfileOut( __METHOD__ );
930 return $status;
931 } elseif ( $this->hookError != '' ) {
932 # ...or the hook could be expecting us to produce an error
933 $status->fatal( 'hookaborted' );
934 $status->value = self::AS_HOOK_ERROR_EXPECTED;
935 wfProfileOut( __METHOD__ . '-checks' );
936 wfProfileOut( __METHOD__ );
937 return $status;
938 }
939 if ( $wgUser->isBlockedFrom( $this->mTitle, false ) ) {
940 # Check block state against master, thus 'false'.
941 $status->setResult( false, self::AS_BLOCKED_PAGE_FOR_USER );
942 wfProfileOut( __METHOD__ . '-checks' );
943 wfProfileOut( __METHOD__ );
944 return $status;
945 }
946 $this->kblength = (int)( strlen( $this->textbox1 ) / 1024 );
947 if ( $this->kblength > $wgMaxArticleSize ) {
948 // Error will be displayed by showEditForm()
949 $this->tooBig = true;
950 $status->setResult( false, self::AS_CONTENT_TOO_BIG );
951 wfProfileOut( __METHOD__ . '-checks' );
952 wfProfileOut( __METHOD__ );
953 return $status;
954 }
955
956 if ( !$wgUser->isAllowed( 'edit' ) ) {
957 if ( $wgUser->isAnon() ) {
958 $status->setResult( false, self::AS_READ_ONLY_PAGE_ANON );
959 wfProfileOut( __METHOD__ . '-checks' );
960 wfProfileOut( __METHOD__ );
961 return $status;
962 } else {
963 $status->fatal( 'readonlytext' );
964 $status->value = self::AS_READ_ONLY_PAGE_LOGGED;
965 wfProfileOut( __METHOD__ . '-checks' );
966 wfProfileOut( __METHOD__ );
967 return $status;
968 }
969 }
970
971 if ( wfReadOnly() ) {
972 $status->fatal( 'readonlytext' );
973 $status->value = self::AS_READ_ONLY_PAGE;
974 wfProfileOut( __METHOD__ . '-checks' );
975 wfProfileOut( __METHOD__ );
976 return $status;
977 }
978 if ( $wgUser->pingLimiter() ) {
979 $status->fatal( 'actionthrottledtext' );
980 $status->value = self::AS_RATE_LIMITED;
981 wfProfileOut( __METHOD__ . '-checks' );
982 wfProfileOut( __METHOD__ );
983 return $status;
984 }
985
986 # If the article has been deleted while editing, don't save it without
987 # confirmation
988 if ( $this->wasDeletedSinceLastEdit() && !$this->recreate ) {
989 $status->setResult( false, self::AS_ARTICLE_WAS_DELETED );
990 wfProfileOut( __METHOD__ . '-checks' );
991 wfProfileOut( __METHOD__ );
992 return $status;
993 }
994
995 wfProfileOut( __METHOD__ . '-checks' );
996
997 # If article is new, insert it.
998 $aid = $this->mTitle->getArticleID( Title::GAID_FOR_UPDATE );
999 $new = ( $aid == 0 );
1000
1001 if ( $new ) {
1002 // Late check for create permission, just in case *PARANOIA*
1003 if ( !$this->mTitle->userCan( 'create' ) ) {
1004 $status->fatal( 'nocreatetext' );
1005 $status->value = self::AS_NO_CREATE_PERMISSION;
1006 wfDebug( __METHOD__ . ": no create permission\n" );
1007 wfProfileOut( __METHOD__ );
1008 return $status;
1009 }
1010
1011 # Don't save a new article if it's blank.
1012 if ( $this->textbox1 == '' ) {
1013 $status->setResult( false, self::AS_BLANK_ARTICLE );
1014 wfProfileOut( __METHOD__ );
1015 return $status;
1016 }
1017
1018 // Run post-section-merge edit filter
1019 if ( !wfRunHooks( 'EditFilterMerged', array( $this, $this->textbox1, &$this->hookError, $this->summary ) ) ) {
1020 # Error messages etc. could be handled within the hook...
1021 $status->fatal( 'hookaborted' );
1022 $status->value = self::AS_HOOK_ERROR;
1023 wfProfileOut( __METHOD__ );
1024 return $status;
1025 } elseif ( $this->hookError != '' ) {
1026 # ...or the hook could be expecting us to produce an error
1027 $status->fatal( 'hookaborted' );
1028 $status->value = self::AS_HOOK_ERROR_EXPECTED;
1029 wfProfileOut( __METHOD__ );
1030 return $status;
1031 }
1032
1033 # Handle the user preference to force summaries here. Check if it's not a redirect.
1034 if ( !$this->allowBlankSummary && !Title::newFromRedirect( $this->textbox1 ) ) {
1035 if ( md5( $this->summary ) == $this->autoSumm ) {
1036 $this->missingSummary = true;
1037 $status->fatal( 'missingsummary' ); // or 'missingcommentheader' if $section == 'new'. Blegh
1038 $status->value = self::AS_SUMMARY_NEEDED;
1039 wfProfileOut( __METHOD__ );
1040 return $status;
1041 }
1042 }
1043
1044 $text = $this->textbox1;
1045 if ( $this->section == 'new' && $this->summary != '' ) {
1046 $text = wfMsgForContent( 'newsectionheaderdefaultlevel', $this->summary ) . "\n\n" . $text;
1047 }
1048
1049 $status->value = self::AS_SUCCESS_NEW_ARTICLE;
1050
1051 } else {
1052
1053 # Article exists. Check for edit conflict.
1054
1055 $this->mArticle->clear(); # Force reload of dates, etc.
1056
1057 wfDebug( "timestamp: {$this->mArticle->getTimestamp()}, edittime: {$this->edittime}\n" );
1058
1059 if ( $this->mArticle->getTimestamp() != $this->edittime ) {
1060 $this->isConflict = true;
1061 if ( $this->section == 'new' ) {
1062 if ( $this->mArticle->getUserText() == $wgUser->getName() &&
1063 $this->mArticle->getComment() == $this->summary ) {
1064 // Probably a duplicate submission of a new comment.
1065 // This can happen when squid resends a request after
1066 // a timeout but the first one actually went through.
1067 wfDebug( __METHOD__ . ": duplicate new section submission; trigger edit conflict!\n" );
1068 } else {
1069 // New comment; suppress conflict.
1070 $this->isConflict = false;
1071 wfDebug( __METHOD__ .": conflict suppressed; new section\n" );
1072 }
1073 } elseif ( $this->section == '' && $this->userWasLastToEdit( $wgUser->getId(), $this->edittime ) ) {
1074 # Suppress edit conflict with self, except for section edits where merging is required.
1075 wfDebug( __METHOD__ . ": Suppressing edit conflict, same user.\n" );
1076 $this->isConflict = false;
1077 }
1078 }
1079
1080 if ( $this->isConflict ) {
1081 wfDebug( __METHOD__ . ": conflict! getting section '$this->section' for time '$this->edittime' (article time '" .
1082 $this->mArticle->getTimestamp() . "')\n" );
1083 $text = $this->mArticle->replaceSection( $this->section, $this->textbox1, $this->summary, $this->edittime );
1084 } else {
1085 wfDebug( __METHOD__ . ": getting section '$this->section'\n" );
1086 $text = $this->mArticle->replaceSection( $this->section, $this->textbox1, $this->summary );
1087 }
1088 if ( is_null( $text ) ) {
1089 wfDebug( __METHOD__ . ": activating conflict; section replace failed.\n" );
1090 $this->isConflict = true;
1091 $text = $this->textbox1; // do not try to merge here!
1092 } elseif ( $this->isConflict ) {
1093 # Attempt merge
1094 if ( $this->mergeChangesInto( $text ) ) {
1095 // Successful merge! Maybe we should tell the user the good news?
1096 $this->isConflict = false;
1097 wfDebug( __METHOD__ . ": Suppressing edit conflict, successful merge.\n" );
1098 } else {
1099 $this->section = '';
1100 $this->textbox1 = $text;
1101 wfDebug( __METHOD__ . ": Keeping edit conflict, failed merge.\n" );
1102 }
1103 }
1104
1105 if ( $this->isConflict ) {
1106 $status->setResult( false, self::AS_CONFLICT_DETECTED );
1107 wfProfileOut( __METHOD__ );
1108 return $status;
1109 }
1110
1111 // Run post-section-merge edit filter
1112 if ( !wfRunHooks( 'EditFilterMerged', array( $this, $text, &$this->hookError, $this->summary ) ) ) {
1113 # Error messages etc. could be handled within the hook...
1114 $status->fatal( 'hookaborted' );
1115 $status->value = self::AS_HOOK_ERROR;
1116 wfProfileOut( __METHOD__ );
1117 return $status;
1118 } elseif ( $this->hookError != '' ) {
1119 # ...or the hook could be expecting us to produce an error
1120 $status->fatal( 'hookaborted' );
1121 $status->value = self::AS_HOOK_ERROR_EXPECTED;
1122 wfProfileOut( __METHOD__ );
1123 return $status;
1124 }
1125
1126 # Handle the user preference to force summaries here, but not for null edits
1127 if ( $this->section != 'new' && !$this->allowBlankSummary
1128 && 0 != strcmp( $this->mArticle->getContent(), $text )
1129 && !Title::newFromRedirect( $text ) ) # check if it's not a redirect
1130 {
1131 if ( md5( $this->summary ) == $this->autoSumm ) {
1132 $this->missingSummary = true;
1133 wfProfileOut( __METHOD__ );
1134 return self::AS_SUMMARY_NEEDED;
1135 }
1136 }
1137
1138 # And a similar thing for new sections
1139 if ( $this->section == 'new' && !$this->allowBlankSummary ) {
1140 if ( trim( $this->summary ) == '' ) {
1141 $this->missingSummary = true;
1142 $status->fatal( 'missingsummary' ); // or 'missingcommentheader' if $section == 'new'. Blegh
1143 $status->value = self::AS_SUMMARY_NEEDED;
1144 wfProfileOut( __METHOD__ );
1145 return $status;
1146 }
1147 }
1148
1149 # All's well
1150 wfProfileIn( __METHOD__ . '-sectionanchor' );
1151 $sectionanchor = '';
1152 if ( $this->section == 'new' ) {
1153 if ( $this->textbox1 == '' ) {
1154 $this->missingComment = true;
1155 $status->fatal( 'missingcommenttext' );
1156 $status->value = self::AS_TEXTBOX_EMPTY;
1157 wfProfileOut( __METHOD__ . '-sectionanchor' );
1158 wfProfileOut( __METHOD__ );
1159 return $status;
1160 }
1161 if ( $this->summary != '' ) {
1162 $sectionanchor = $wgParser->guessLegacySectionNameFromWikiText( $this->summary );
1163 # This is a new section, so create a link to the new section
1164 # in the revision summary.
1165 $cleanSummary = $wgParser->stripSectionName( $this->summary );
1166 $this->summary = wfMsgForContent( 'newsectionsummary', $cleanSummary );
1167 }
1168 } elseif ( $this->section != '' ) {
1169 # Try to get a section anchor from the section source, redirect to edited section if header found
1170 # XXX: might be better to integrate this into Article::replaceSection
1171 # for duplicate heading checking and maybe parsing
1172 $hasmatch = preg_match( "/^ *([=]{1,6})(.*?)(\\1) *\\n/i", $this->textbox1, $matches );
1173 # we can't deal with anchors, includes, html etc in the header for now,
1174 # headline would need to be parsed to improve this
1175 if ( $hasmatch && strlen( $matches[2] ) > 0 ) {
1176 $sectionanchor = $wgParser->guessLegacySectionNameFromWikiText( $matches[2] );
1177 }
1178 }
1179 $result['sectionanchor'] = $sectionanchor;
1180 wfProfileOut( __METHOD__ . '-sectionanchor' );
1181
1182 // Save errors may fall down to the edit form, but we've now
1183 // merged the section into full text. Clear the section field
1184 // so that later submission of conflict forms won't try to
1185 // replace that into a duplicated mess.
1186 $this->textbox1 = $text;
1187 $this->section = '';
1188
1189 $status->value = self::AS_SUCCESS_UPDATE;
1190 }
1191
1192 // Check for length errors again now that the section is merged in
1193 $this->kblength = (int)( strlen( $text ) / 1024 );
1194 if ( $this->kblength > $wgMaxArticleSize ) {
1195 $this->tooBig = true;
1196 $status->setResult( false, self::AS_MAX_ARTICLE_SIZE_EXCEEDED );
1197 wfProfileOut( __METHOD__ );
1198 return $status;
1199 }
1200
1201 $flags = EDIT_DEFER_UPDATES | EDIT_AUTOSUMMARY |
1202 ( $new ? EDIT_NEW : EDIT_UPDATE ) |
1203 ( ( $this->minoredit && !$this->isNew ) ? EDIT_MINOR : 0 ) |
1204 ( $bot ? EDIT_FORCE_BOT : 0 );
1205
1206 $doEditStatus = $this->mArticle->doEdit( $text, $this->summary, $flags );
1207
1208 if ( $doEditStatus->isOK() ) {
1209 $result['redirect'] = Title::newFromRedirect( $text ) !== null;
1210 $this->commitWatch();
1211 wfProfileOut( __METHOD__ );
1212 return $status;
1213 } else {
1214 $this->isConflict = true;
1215 $doEditStatus->value = self::AS_END; // Destroys data doEdit() put in $status->value but who cares
1216 wfProfileOut( __METHOD__ );
1217 return $doEditStatus;
1218 }
1219 }
1220
1221 /**
1222 * Commit the change of watch status
1223 */
1224 protected function commitWatch() {
1225 global $wgUser;
1226 if ( $this->watchthis xor $this->mTitle->userIsWatching() ) {
1227 $dbw = wfGetDB( DB_MASTER );
1228 $dbw->begin();
1229 if ( $this->watchthis ) {
1230 WatchAction::doWatch( $this->mTitle, $wgUser );
1231 } else {
1232 WatchAction::doUnwatch( $this->mTitle, $wgUser );
1233 }
1234 $dbw->commit();
1235 }
1236 }
1237
1238 /**
1239 * Check if no edits were made by other users since
1240 * the time a user started editing the page. Limit to
1241 * 50 revisions for the sake of performance.
1242 *
1243 * @param $id int
1244 * @param $edittime string
1245 *
1246 * @return bool
1247 */
1248 protected function userWasLastToEdit( $id, $edittime ) {
1249 if( !$id ) return false;
1250 $dbw = wfGetDB( DB_MASTER );
1251 $res = $dbw->select( 'revision',
1252 'rev_user',
1253 array(
1254 'rev_page' => $this->mArticle->getId(),
1255 'rev_timestamp > '.$dbw->addQuotes( $dbw->timestamp($edittime) )
1256 ),
1257 __METHOD__,
1258 array( 'ORDER BY' => 'rev_timestamp ASC', 'LIMIT' => 50 ) );
1259 foreach ( $res as $row ) {
1260 if( $row->rev_user != $id ) {
1261 return false;
1262 }
1263 }
1264 return true;
1265 }
1266
1267 /**
1268 * Check given input text against $wgSpamRegex, and return the text of the first match.
1269 *
1270 * @param $text string
1271 *
1272 * @return string|false matching string or false
1273 */
1274 public static function matchSpamRegex( $text ) {
1275 global $wgSpamRegex;
1276 // For back compatibility, $wgSpamRegex may be a single string or an array of regexes.
1277 $regexes = (array)$wgSpamRegex;
1278 return self::matchSpamRegexInternal( $text, $regexes );
1279 }
1280
1281 /**
1282 * Check given input text against $wgSpamRegex, and return the text of the first match.
1283 *
1284 * @parma $text string
1285 *
1286 * @return string|false matching string or false
1287 */
1288 public static function matchSummarySpamRegex( $text ) {
1289 global $wgSummarySpamRegex;
1290 $regexes = (array)$wgSummarySpamRegex;
1291 return self::matchSpamRegexInternal( $text, $regexes );
1292 }
1293
1294 /**
1295 * @param $text string
1296 * @param $regexes array
1297 * @return bool|string
1298 */
1299 protected static function matchSpamRegexInternal( $text, $regexes ) {
1300 foreach( $regexes as $regex ) {
1301 $matches = array();
1302 if( preg_match( $regex, $text, $matches ) ) {
1303 return $matches[0];
1304 }
1305 }
1306 return false;
1307 }
1308
1309 /**
1310 * Initialise form fields in the object
1311 * Called on the first invocation, e.g. when a user clicks an edit link
1312 * @return bool -- if the requested section is valid
1313 */
1314 function initialiseForm() {
1315 global $wgUser;
1316 $this->edittime = $this->mArticle->getTimestamp();
1317 $this->textbox1 = $this->getContent( false );
1318 // activate checkboxes if user wants them to be always active
1319 # Sort out the "watch" checkbox
1320 if ( $wgUser->getOption( 'watchdefault' ) ) {
1321 # Watch all edits
1322 $this->watchthis = true;
1323 } elseif ( $wgUser->getOption( 'watchcreations' ) && !$this->mTitle->exists() ) {
1324 # Watch creations
1325 $this->watchthis = true;
1326 } elseif ( $this->mTitle->userIsWatching() ) {
1327 # Already watched
1328 $this->watchthis = true;
1329 }
1330 if ( $wgUser->getOption( 'minordefault' ) && !$this->isNew ) {
1331 $this->minoredit = true;
1332 }
1333 if ( $this->textbox1 === false ) {
1334 return false;
1335 }
1336 wfProxyCheck();
1337 return true;
1338 }
1339
1340 function setHeaders() {
1341 global $wgOut;
1342 $wgOut->setRobotPolicy( 'noindex,nofollow' );
1343 if ( $this->formtype == 'preview' ) {
1344 $wgOut->setPageTitleActionText( wfMsg( 'preview' ) );
1345 }
1346 if ( $this->isConflict ) {
1347 $wgOut->setPageTitle( wfMsg( 'editconflict', $this->getContextTitle()->getPrefixedText() ) );
1348 } elseif ( $this->section != '' ) {
1349 $msg = $this->section == 'new' ? 'editingcomment' : 'editingsection';
1350 $wgOut->setPageTitle( wfMsg( $msg, $this->getContextTitle()->getPrefixedText() ) );
1351 } else {
1352 # Use the title defined by DISPLAYTITLE magic word when present
1353 if ( isset( $this->mParserOutput )
1354 && ( $dt = $this->mParserOutput->getDisplayTitle() ) !== false ) {
1355 $title = $dt;
1356 } else {
1357 $title = $this->getContextTitle()->getPrefixedText();
1358 }
1359 $wgOut->setPageTitle( wfMsg( 'editing', $title ) );
1360 }
1361 }
1362
1363 /**
1364 * Send the edit form and related headers to $wgOut
1365 * @param $formCallback Callback that takes an OutputPage parameter; will be called
1366 * during form output near the top, for captchas and the like.
1367 */
1368 function showEditForm( $formCallback = null ) {
1369 global $wgOut, $wgUser, $wgEnableInterwikiTranscluding, $wgEnableInterwikiTemplatesTracking;
1370
1371 wfProfileIn( __METHOD__ );
1372
1373 #need to parse the preview early so that we know which templates are used,
1374 #otherwise users with "show preview after edit box" will get a blank list
1375 #we parse this near the beginning so that setHeaders can do the title
1376 #setting work instead of leaving it in getPreviewText
1377 $previewOutput = '';
1378 if ( $this->formtype == 'preview' ) {
1379 $previewOutput = $this->getPreviewText();
1380 }
1381
1382 wfRunHooks( 'EditPage::showEditForm:initial', array( &$this ) );
1383
1384 $this->setHeaders();
1385
1386 # Enabled article-related sidebar, toplinks, etc.
1387 $wgOut->setArticleRelated( true );
1388
1389 if ( $this->showHeader() === false ) {
1390 wfProfileOut( __METHOD__ );
1391 return;
1392 }
1393
1394 $action = htmlspecialchars( $this->getActionURL( $this->getContextTitle() ) );
1395
1396 if ( $wgUser->getOption( 'showtoolbar' ) and !$this->isCssJsSubpage ) {
1397 # prepare toolbar for edit buttons
1398 $toolbar = EditPage::getEditToolbar();
1399 } else {
1400 $toolbar = '';
1401 }
1402
1403 $wgOut->addHTML( $this->editFormPageTop );
1404
1405 if ( $wgUser->getOption( 'previewontop' ) ) {
1406 $this->displayPreviewArea( $previewOutput, true );
1407 }
1408
1409 $wgOut->addHTML( $this->editFormTextTop );
1410
1411 $templates = $this->getTemplates();
1412 $formattedtemplates = Linker::formatTemplates( $templates, $this->preview, $this->section != '');
1413
1414 $distantTemplates = $this->getDistantTemplates();
1415 $formattedDistantTemplates = Linker::formatDistantTemplates( $distantTemplates, $this->preview, $this->section != '' );
1416
1417 $hiddencats = $this->mArticle->getHiddenCategories();
1418 $formattedhiddencats = Linker::formatHiddenCategories( $hiddencats );
1419
1420 if ( $this->wasDeletedSinceLastEdit() && 'save' != $this->formtype ) {
1421 $wgOut->wrapWikiMsg(
1422 "<div class='error mw-deleted-while-editing'>\n$1\n</div>",
1423 'deletedwhileediting' );
1424 } elseif ( $this->wasDeletedSinceLastEdit() ) {
1425 // Hide the toolbar and edit area, user can click preview to get it back
1426 // Add an confirmation checkbox and explanation.
1427 $toolbar = '';
1428 // @todo move this to a cleaner conditional instead of blanking a variable
1429 }
1430 $wgOut->addHTML( <<<HTML
1431 <form id="editform" name="editform" method="post" action="$action" enctype="multipart/form-data">
1432 HTML
1433 );
1434
1435 if ( is_callable( $formCallback ) ) {
1436 call_user_func_array( $formCallback, array( &$wgOut ) );
1437 }
1438
1439 wfRunHooks( 'EditPage::showEditForm:fields', array( &$this, &$wgOut ) );
1440
1441 // Put these up at the top to ensure they aren't lost on early form submission
1442 $this->showFormBeforeText();
1443
1444 if ( $this->wasDeletedSinceLastEdit() && 'save' == $this->formtype ) {
1445 $username = $this->lastDelete->user_name;
1446 $comment = $this->lastDelete->log_comment;
1447
1448 // It is better to not parse the comment at all than to have templates expanded in the middle
1449 // TODO: can the checkLabel be moved outside of the div so that wrapWikiMsg could be used?
1450 $key = $comment === ''
1451 ? 'confirmrecreate-noreason'
1452 : 'confirmrecreate';
1453 $wgOut->addHTML(
1454 '<div class="mw-confirm-recreate">' .
1455 wfMsgExt( $key, 'parseinline', $username, "<nowiki>$comment</nowiki>" ) .
1456 Xml::checkLabel( wfMsg( 'recreate' ), 'wpRecreate', 'wpRecreate', false,
1457 array( 'title' => Linker::titleAttrib( 'recreate' ), 'tabindex' => 1, 'id' => 'wpRecreate' )
1458 ) .
1459 '</div>'
1460 );
1461 }
1462
1463 # If a blank edit summary was previously provided, and the appropriate
1464 # user preference is active, pass a hidden tag as wpIgnoreBlankSummary. This will stop the
1465 # user being bounced back more than once in the event that a summary
1466 # is not required.
1467 #####
1468 # For a bit more sophisticated detection of blank summaries, hash the
1469 # automatic one and pass that in the hidden field wpAutoSummary.
1470 if ( $this->missingSummary ||
1471 ( $this->section == 'new' && $this->nosummary ) )
1472 $wgOut->addHTML( Html::hidden( 'wpIgnoreBlankSummary', true ) );
1473 $autosumm = $this->autoSumm ? $this->autoSumm : md5( $this->summary );
1474 $wgOut->addHTML( Html::hidden( 'wpAutoSummary', $autosumm ) );
1475
1476 $wgOut->addHTML( Html::hidden( 'oldid', $this->mArticle->getOldID() ) );
1477
1478 if ( $this->section == 'new' ) {
1479 $this->showSummaryInput( true, $this->summary );
1480 $wgOut->addHTML( $this->getSummaryPreview( true, $this->summary ) );
1481 }
1482
1483 $wgOut->addHTML( $this->editFormTextBeforeContent );
1484
1485 $wgOut->addHTML( $toolbar );
1486
1487 if ( $this->isConflict ) {
1488 // In an edit conflict bypass the overrideable content form method
1489 // and fallback to the raw wpTextbox1 since editconflicts can't be
1490 // resolved between page source edits and custom ui edits using the
1491 // custom edit ui.
1492 $this->showTextbox1( null, $this->getContent() );
1493 } else {
1494 $this->showContentForm();
1495 }
1496
1497 $wgOut->addHTML( $this->editFormTextAfterContent );
1498
1499 $wgOut->addWikiText( $this->getCopywarn() );
1500 if ( isset($this->editFormTextAfterWarn) && $this->editFormTextAfterWarn !== '' )
1501 $wgOut->addHTML( $this->editFormTextAfterWarn );
1502
1503 $this->showStandardInputs();
1504
1505 $this->showFormAfterText();
1506
1507 $this->showTosSummary();
1508 $this->showEditTools();
1509
1510 $wgOut->addHTML( <<<HTML
1511 {$this->editFormTextAfterTools}
1512 <div class='templatesUsed'>
1513 {$formattedtemplates}
1514 </div>
1515 HTML
1516 );
1517
1518 if ( $wgEnableInterwikiTranscluding && $wgEnableInterwikiTemplatesTracking ) {
1519 $wgOut->addHTML( <<<HTML
1520 {$this->editFormTextAfterTools}
1521 <div class='distantTemplatesUsed'>
1522 {$formattedDistantTemplates}
1523 </div>
1524 HTML
1525 );
1526 }
1527
1528 $wgOut->addHTML( <<<HTML
1529 {$this->editFormTextAfterTools}
1530 <div class='hiddencats'>
1531 {$formattedhiddencats}
1532 </div>
1533 HTML
1534 );
1535
1536 if ( $this->isConflict )
1537 $this->showConflict();
1538
1539 $wgOut->addHTML( $this->editFormTextBottom );
1540 $wgOut->addHTML( "</form>\n" );
1541 if ( !$wgUser->getOption( 'previewontop' ) ) {
1542 $this->displayPreviewArea( $previewOutput, false );
1543 }
1544
1545 wfProfileOut( __METHOD__ );
1546 }
1547
1548 protected function showHeader() {
1549 global $wgOut, $wgUser, $wgMaxArticleSize, $wgLang;
1550 if ( $this->isConflict ) {
1551 $wgOut->wrapWikiMsg( "<div class='mw-explainconflict'>\n$1\n</div>", 'explainconflict' );
1552 $this->edittime = $this->mArticle->getTimestamp();
1553 } else {
1554 if ( $this->section != '' && !$this->isSectionEditSupported() ) {
1555 // We use $this->section to much before this and getVal('wgSection') directly in other places
1556 // at this point we can't reset $this->section to '' to fallback to non-section editing.
1557 // Someone is welcome to try refactoring though
1558 $wgOut->showErrorPage( 'sectioneditnotsupported-title', 'sectioneditnotsupported-text' );
1559 return false;
1560 }
1561
1562 if ( $this->section != '' && $this->section != 'new' ) {
1563 $matches = array();
1564 if ( !$this->summary && !$this->preview && !$this->diff ) {
1565 preg_match( "/^(=+)(.+)\\1/mi", $this->textbox1, $matches );
1566 if ( !empty( $matches[2] ) ) {
1567 global $wgParser;
1568 $this->summary = "/* " .
1569 $wgParser->stripSectionName(trim($matches[2])) .
1570 " */ ";
1571 }
1572 }
1573 }
1574
1575 if ( $this->missingComment ) {
1576 $wgOut->wrapWikiMsg( "<div id='mw-missingcommenttext'>\n$1\n</div>", 'missingcommenttext' );
1577 }
1578
1579 if ( $this->missingSummary && $this->section != 'new' ) {
1580 $wgOut->wrapWikiMsg( "<div id='mw-missingsummary'>\n$1\n</div>", 'missingsummary' );
1581 }
1582
1583 if ( $this->missingSummary && $this->section == 'new' ) {
1584 $wgOut->wrapWikiMsg( "<div id='mw-missingcommentheader'>\n$1\n</div>", 'missingcommentheader' );
1585 }
1586
1587 if ( $this->hookError !== '' ) {
1588 $wgOut->addWikiText( $this->hookError );
1589 }
1590
1591 if ( !$this->checkUnicodeCompliantBrowser() ) {
1592 $wgOut->addWikiMsg( 'nonunicodebrowser' );
1593 }
1594
1595 if ( isset( $this->mArticle ) && isset( $this->mArticle->mRevision ) ) {
1596 // Let sysop know that this will make private content public if saved
1597
1598 if ( !$this->mArticle->mRevision->userCan( Revision::DELETED_TEXT ) ) {
1599 $wgOut->wrapWikiMsg( "<div class='mw-warning plainlinks'>\n$1\n</div>\n", 'rev-deleted-text-permission' );
1600 } elseif ( $this->mArticle->mRevision->isDeleted( Revision::DELETED_TEXT ) ) {
1601 $wgOut->wrapWikiMsg( "<div class='mw-warning plainlinks'>\n$1\n</div>\n", 'rev-deleted-text-view' );
1602 }
1603
1604 if ( !$this->mArticle->mRevision->isCurrent() ) {
1605 $this->mArticle->setOldSubtitle( $this->mArticle->mRevision->getId() );
1606 $wgOut->addWikiMsg( 'editingold' );
1607 }
1608 }
1609 }
1610
1611 if ( wfReadOnly() ) {
1612 $wgOut->wrapWikiMsg( "<div id=\"mw-read-only-warning\">\n$1\n</div>", array( 'readonlywarning', wfReadOnlyReason() ) );
1613 } elseif ( $wgUser->isAnon() ) {
1614 if ( $this->formtype != 'preview' ) {
1615 $wgOut->wrapWikiMsg( "<div id=\"mw-anon-edit-warning\">\n$1</div>", 'anoneditwarning' );
1616 } else {
1617 $wgOut->wrapWikiMsg( "<div id=\"mw-anon-preview-warning\">\n$1</div>", 'anonpreviewwarning' );
1618 }
1619 } else {
1620 if ( $this->isCssJsSubpage ) {
1621 # Check the skin exists
1622 if ( $this->isWrongCaseCssJsPage ) {
1623 $wgOut->wrapWikiMsg( "<div class='error' id='mw-userinvalidcssjstitle'>\n$1\n</div>", array( 'userinvalidcssjstitle', $this->getContextTitle()->getSkinFromCssJsSubpage() ) );
1624 }
1625 if ( $this->formtype !== 'preview' ) {
1626 if ( $this->isCssSubpage )
1627 $wgOut->wrapWikiMsg( "<div id='mw-usercssyoucanpreview'>\n$1\n</div>", array( 'usercssyoucanpreview' ) );
1628 if ( $this->isJsSubpage )
1629 $wgOut->wrapWikiMsg( "<div id='mw-userjsyoucanpreview'>\n$1\n</div>", array( 'userjsyoucanpreview' ) );
1630 }
1631 }
1632 }
1633
1634 if ( $this->mTitle->getNamespace() != NS_MEDIAWIKI && $this->mTitle->isProtected( 'edit' ) ) {
1635 # Is the title semi-protected?
1636 if ( $this->mTitle->isSemiProtected() ) {
1637 $noticeMsg = 'semiprotectedpagewarning';
1638 } else {
1639 # Then it must be protected based on static groups (regular)
1640 $noticeMsg = 'protectedpagewarning';
1641 }
1642 LogEventsList::showLogExtract( $wgOut, 'protect', $this->mTitle->getPrefixedText(), '',
1643 array( 'lim' => 1, 'msgKey' => array( $noticeMsg ) ) );
1644 }
1645 if ( $this->mTitle->isCascadeProtected() ) {
1646 # Is this page under cascading protection from some source pages?
1647 list($cascadeSources, /* $restrictions */) = $this->mTitle->getCascadeProtectionSources();
1648 $notice = "<div class='mw-cascadeprotectedwarning'>\n$1\n";
1649 $cascadeSourcesCount = count( $cascadeSources );
1650 if ( $cascadeSourcesCount > 0 ) {
1651 # Explain, and list the titles responsible
1652 foreach( $cascadeSources as $page ) {
1653 $notice .= '* [[:' . $page->getPrefixedText() . "]]\n";
1654 }
1655 }
1656 $notice .= '</div>';
1657 $wgOut->wrapWikiMsg( $notice, array( 'cascadeprotectedwarning', $cascadeSourcesCount ) );
1658 }
1659 if ( !$this->mTitle->exists() && $this->mTitle->getRestrictions( 'create' ) ) {
1660 LogEventsList::showLogExtract( $wgOut, 'protect', $this->mTitle->getPrefixedText(), '',
1661 array( 'lim' => 1,
1662 'showIfEmpty' => false,
1663 'msgKey' => array( 'titleprotectedwarning' ),
1664 'wrap' => "<div class=\"mw-titleprotectedwarning\">\n$1</div>" ) );
1665 }
1666
1667 if ( $this->kblength === false ) {
1668 $this->kblength = (int)( strlen( $this->textbox1 ) / 1024 );
1669 }
1670
1671 if ( $this->tooBig || $this->kblength > $wgMaxArticleSize ) {
1672 $wgOut->wrapWikiMsg( "<div class='error' id='mw-edit-longpageerror'>\n$1\n</div>",
1673 array( 'longpageerror', $wgLang->formatNum( $this->kblength ), $wgLang->formatNum( $wgMaxArticleSize ) ) );
1674 } else {
1675 if( !wfMessage('longpage-hint')->isDisabled() ) {
1676 $wgOut->wrapWikiMsg( "<div id='mw-edit-longpage-hint'>\n$1\n</div>",
1677 array( 'longpage-hint', $wgLang->formatSize( strlen( $this->textbox1 ) ), strlen( $this->textbox1 ) )
1678 );
1679 }
1680 }
1681 }
1682
1683 /**
1684 * Standard summary input and label (wgSummary), abstracted so EditPage
1685 * subclasses may reorganize the form.
1686 * Note that you do not need to worry about the label's for=, it will be
1687 * inferred by the id given to the input. You can remove them both by
1688 * passing array( 'id' => false ) to $userInputAttrs.
1689 *
1690 * @param $summary string The value of the summary input
1691 * @param $labelText string The html to place inside the label
1692 * @param $inputAttrs array of attrs to use on the input
1693 * @param $spanLabelAttrs array of attrs to use on the span inside the label
1694 *
1695 * @return array An array in the format array( $label, $input )
1696 */
1697 function getSummaryInput($summary = "", $labelText = null, $inputAttrs = null, $spanLabelAttrs = null) {
1698 //Note: the maxlength is overriden in JS to 250 and to make it use UTF-8 bytes, not characters.
1699 $inputAttrs = ( is_array($inputAttrs) ? $inputAttrs : array() ) + array(
1700 'id' => 'wpSummary',
1701 'maxlength' => '200',
1702 'tabindex' => '1',
1703 'size' => 60,
1704 'spellcheck' => 'true',
1705 ) + Linker::tooltipAndAccesskeyAttribs( 'summary' );
1706
1707 $spanLabelAttrs = ( is_array($spanLabelAttrs) ? $spanLabelAttrs : array() ) + array(
1708 'class' => $this->missingSummary ? 'mw-summarymissed' : 'mw-summary',
1709 'id' => "wpSummaryLabel"
1710 );
1711
1712 $label = null;
1713 if ( $labelText ) {
1714 $label = Xml::tags( 'label', $inputAttrs['id'] ? array( 'for' => $inputAttrs['id'] ) : null, $labelText );
1715 $label = Xml::tags( 'span', $spanLabelAttrs, $label );
1716 }
1717
1718 $input = Html::input( 'wpSummary', $summary, 'text', $inputAttrs );
1719
1720 return array( $label, $input );
1721 }
1722
1723 /**
1724 * @param $isSubjectPreview Boolean: true if this is the section subject/title
1725 * up top, or false if this is the comment summary
1726 * down below the textarea
1727 * @param $summary String: The text of the summary to display
1728 * @return String
1729 */
1730 protected function showSummaryInput( $isSubjectPreview, $summary = "" ) {
1731 global $wgOut, $wgContLang;
1732 # Add a class if 'missingsummary' is triggered to allow styling of the summary line
1733 $summaryClass = $this->missingSummary ? 'mw-summarymissed' : 'mw-summary';
1734 if ( $isSubjectPreview ) {
1735 if ( $this->nosummary ) {
1736 return;
1737 }
1738 } else {
1739 if ( !$this->mShowSummaryField ) {
1740 return;
1741 }
1742 }
1743 $summary = $wgContLang->recodeForEdit( $summary );
1744 $labelText = wfMsgExt( $isSubjectPreview ? 'subject' : 'summary', 'parseinline' );
1745 list($label, $input) = $this->getSummaryInput($summary, $labelText, array( 'class' => $summaryClass ), array());
1746 $wgOut->addHTML("{$label} {$input}");
1747 }
1748
1749 /**
1750 * @param $isSubjectPreview Boolean: true if this is the section subject/title
1751 * up top, or false if this is the comment summary
1752 * down below the textarea
1753 * @param $summary String: the text of the summary to display
1754 * @return String
1755 */
1756 protected function getSummaryPreview( $isSubjectPreview, $summary = "" ) {
1757 if ( !$summary || ( !$this->preview && !$this->diff ) )
1758 return "";
1759
1760 global $wgParser;
1761
1762 if ( $isSubjectPreview )
1763 $summary = wfMsgForContent( 'newsectionsummary', $wgParser->stripSectionName( $summary ) );
1764
1765 $message = $isSubjectPreview ? 'subject-preview' : 'summary-preview';
1766
1767 $summary = wfMsgExt( $message, 'parseinline' ) . Linker::commentBlock( $summary, $this->mTitle, $isSubjectPreview );
1768 return Xml::tags( 'div', array( 'class' => 'mw-summary-preview' ), $summary );
1769 }
1770
1771 protected function showFormBeforeText() {
1772 global $wgOut;
1773 $section = htmlspecialchars( $this->section );
1774 $wgOut->addHTML( <<<HTML
1775 <input type='hidden' value="{$section}" name="wpSection" />
1776 <input type='hidden' value="{$this->starttime}" name="wpStarttime" />
1777 <input type='hidden' value="{$this->edittime}" name="wpEdittime" />
1778 <input type='hidden' value="{$this->scrolltop}" name="wpScrolltop" id="wpScrolltop" />
1779
1780 HTML
1781 );
1782 if ( !$this->checkUnicodeCompliantBrowser() )
1783 $wgOut->addHTML(Html::hidden( 'safemode', '1' ));
1784 }
1785
1786 protected function showFormAfterText() {
1787 global $wgOut, $wgUser;
1788 /**
1789 * To make it harder for someone to slip a user a page
1790 * which submits an edit form to the wiki without their
1791 * knowledge, a random token is associated with the login
1792 * session. If it's not passed back with the submission,
1793 * we won't save the page, or render user JavaScript and
1794 * CSS previews.
1795 *
1796 * For anon editors, who may not have a session, we just
1797 * include the constant suffix to prevent editing from
1798 * broken text-mangling proxies.
1799 */
1800 $wgOut->addHTML( "\n" . Html::hidden( "wpEditToken", $wgUser->editToken() ) . "\n" );
1801 }
1802
1803 /**
1804 * Subpage overridable method for printing the form for page content editing
1805 * By default this simply outputs wpTextbox1
1806 * Subclasses can override this to provide a custom UI for editing;
1807 * be it a form, or simply wpTextbox1 with a modified content that will be
1808 * reverse modified when extracted from the post data.
1809 * Note that this is basically the inverse for importContentFormData
1810 */
1811 protected function showContentForm() {
1812 $this->showTextbox1();
1813 }
1814
1815 /**
1816 * Method to output wpTextbox1
1817 * The $textoverride method can be used by subclasses overriding showContentForm
1818 * to pass back to this method.
1819 *
1820 * @param $customAttribs An array of html attributes to use in the textarea
1821 * @param $textoverride String: optional text to override $this->textarea1 with
1822 */
1823 protected function showTextbox1($customAttribs = null, $textoverride = null) {
1824 $classes = array(); // Textarea CSS
1825 if ( $this->mTitle->getNamespace() != NS_MEDIAWIKI && $this->mTitle->isProtected( 'edit' ) ) {
1826 # Is the title semi-protected?
1827 if ( $this->mTitle->isSemiProtected() ) {
1828 $classes[] = 'mw-textarea-sprotected';
1829 } else {
1830 # Then it must be protected based on static groups (regular)
1831 $classes[] = 'mw-textarea-protected';
1832 }
1833 # Is the title cascade-protected?
1834 if ( $this->mTitle->isCascadeProtected() ) {
1835 $classes[] = 'mw-textarea-cprotected';
1836 }
1837 }
1838 $attribs = array( 'tabindex' => 1 );
1839 if ( is_array($customAttribs) )
1840 $attribs += $customAttribs;
1841
1842 if ( $this->wasDeletedSinceLastEdit() )
1843 $attribs['type'] = 'hidden';
1844 if ( !empty( $classes ) ) {
1845 if ( isset($attribs['class']) )
1846 $classes[] = $attribs['class'];
1847 $attribs['class'] = implode( ' ', $classes );
1848 }
1849
1850 $this->showTextbox( isset($textoverride) ? $textoverride : $this->textbox1, 'wpTextbox1', $attribs );
1851 }
1852
1853 protected function showTextbox2() {
1854 $this->showTextbox( $this->textbox2, 'wpTextbox2', array( 'tabindex' => 6, 'readonly' ) );
1855 }
1856
1857 protected function showTextbox( $content, $name, $customAttribs = array() ) {
1858 global $wgOut, $wgUser;
1859
1860 $wikitext = $this->safeUnicodeOutput( $content );
1861 if ( $wikitext !== '' ) {
1862 // Ensure there's a newline at the end, otherwise adding lines
1863 // is awkward.
1864 // But don't add a newline if the ext is empty, or Firefox in XHTML
1865 // mode will show an extra newline. A bit annoying.
1866 $wikitext .= "\n";
1867 }
1868
1869 $attribs = $customAttribs + array(
1870 'accesskey' => ',',
1871 'id' => $name,
1872 'cols' => $wgUser->getIntOption( 'cols' ),
1873 'rows' => $wgUser->getIntOption( 'rows' ),
1874 'style' => '' // avoid php notices when appending preferences (appending allows customAttribs['style'] to still work
1875 );
1876
1877 $pageLang = $this->mTitle->getPageLanguage();
1878 $attribs['lang'] = $pageLang->getCode();
1879 $attribs['dir'] = $pageLang->getDir();
1880
1881 $wgOut->addHTML( Html::textarea( $name, $wikitext, $attribs ) );
1882 }
1883
1884 protected function displayPreviewArea( $previewOutput, $isOnTop = false ) {
1885 global $wgOut;
1886 $classes = array();
1887 if ( $isOnTop )
1888 $classes[] = 'ontop';
1889
1890 $attribs = array( 'id' => 'wikiPreview', 'class' => implode( ' ', $classes ) );
1891
1892 if ( $this->formtype != 'preview' )
1893 $attribs['style'] = 'display: none;';
1894
1895 $wgOut->addHTML( Xml::openElement( 'div', $attribs ) );
1896
1897 if ( $this->formtype == 'preview' ) {
1898 $this->showPreview( $previewOutput );
1899 }
1900
1901 $wgOut->addHTML( '</div>' );
1902
1903 if ( $this->formtype == 'diff') {
1904 $this->showDiff();
1905 }
1906 }
1907
1908 /**
1909 * Append preview output to $wgOut.
1910 * Includes category rendering if this is a category page.
1911 *
1912 * @param $text String: the HTML to be output for the preview.
1913 */
1914 protected function showPreview( $text ) {
1915 global $wgOut;
1916 if ( $this->mTitle->getNamespace() == NS_CATEGORY) {
1917 $this->mArticle->openShowCategory();
1918 }
1919 # This hook seems slightly odd here, but makes things more
1920 # consistent for extensions.
1921 wfRunHooks( 'OutputPageBeforeHTML',array( &$wgOut, &$text ) );
1922 $wgOut->addHTML( $text );
1923 if ( $this->mTitle->getNamespace() == NS_CATEGORY ) {
1924 $this->mArticle->closeShowCategory();
1925 }
1926 }
1927
1928 /**
1929 * Give a chance for site and per-namespace customizations of
1930 * terms of service summary link that might exist separately
1931 * from the copyright notice.
1932 *
1933 * This will display between the save button and the edit tools,
1934 * so should remain short!
1935 */
1936 protected function showTosSummary() {
1937 $msg = 'editpage-tos-summary';
1938 wfRunHooks( 'EditPageTosSummary', array( $this->mTitle, &$msg ) );
1939 if( !wfMessage( $msg )->isDisabled() ) {
1940 global $wgOut;
1941 $wgOut->addHTML( '<div class="mw-tos-summary">' );
1942 $wgOut->addWikiMsg( $msg );
1943 $wgOut->addHTML( '</div>' );
1944 }
1945 }
1946
1947 protected function showEditTools() {
1948 global $wgOut;
1949 $wgOut->addHTML( '<div class="mw-editTools">' .
1950 wfMessage( 'edittools' )->inContentLanguage()->parse() .
1951 '</div>' );
1952 }
1953
1954 protected function getCopywarn() {
1955 global $wgRightsText;
1956 if ( $wgRightsText ) {
1957 $copywarnMsg = array( 'copyrightwarning',
1958 '[[' . wfMsgForContent( 'copyrightpage' ) . ']]',
1959 $wgRightsText );
1960 } else {
1961 $copywarnMsg = array( 'copyrightwarning2',
1962 '[[' . wfMsgForContent( 'copyrightpage' ) . ']]' );
1963 }
1964 // Allow for site and per-namespace customization of contribution/copyright notice.
1965 wfRunHooks( 'EditPageCopyrightWarning', array( $this->mTitle, &$copywarnMsg ) );
1966
1967 return "<div id=\"editpage-copywarn\">\n" .
1968 call_user_func_array("wfMsgNoTrans", $copywarnMsg) . "\n</div>";
1969 }
1970
1971 protected function showStandardInputs( &$tabindex = 2 ) {
1972 global $wgOut;
1973 $wgOut->addHTML( "<div class='editOptions'>\n" );
1974
1975 if ( $this->section != 'new' ) {
1976 $this->showSummaryInput( false, $this->summary );
1977 $wgOut->addHTML( $this->getSummaryPreview( false, $this->summary ) );
1978 }
1979
1980 $checkboxes = $this->getCheckboxes( $tabindex,
1981 array( 'minor' => $this->minoredit, 'watch' => $this->watchthis ) );
1982 $wgOut->addHTML( "<div class='editCheckboxes'>" . implode( $checkboxes, "\n" ) . "</div>\n" );
1983 $wgOut->addHTML( "<div class='editButtons'>\n" );
1984 $wgOut->addHTML( implode( $this->getEditButtons( $tabindex ), "\n" ) . "\n" );
1985
1986 $cancel = $this->getCancelLink();
1987 if ( $cancel !== '' ) {
1988 $cancel .= wfMsgExt( 'pipe-separator' , 'escapenoentities' );
1989 }
1990 $edithelpurl = Skin::makeInternalOrExternalUrl( wfMsgForContent( 'edithelppage' ) );
1991 $edithelp = '<a target="helpwindow" href="'.$edithelpurl.'">'.
1992 htmlspecialchars( wfMsg( 'edithelp' ) ).'</a> '.
1993 htmlspecialchars( wfMsg( 'newwindow' ) );
1994 $wgOut->addHTML( " <span class='editHelp'>{$cancel}{$edithelp}</span>\n" );
1995 $wgOut->addHTML( "</div><!-- editButtons -->\n</div><!-- editOptions -->\n" );
1996 }
1997
1998 /**
1999 * Show an edit conflict. textbox1 is already shown in showEditForm().
2000 * If you want to use another entry point to this function, be careful.
2001 */
2002 protected function showConflict() {
2003 global $wgOut;
2004 $this->textbox2 = $this->textbox1;
2005 $this->textbox1 = $this->getContent();
2006 if ( wfRunHooks( 'EditPageBeforeConflictDiff', array( &$this, &$wgOut ) ) ) {
2007 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourdiff" );
2008
2009 $de = new DifferenceEngine( $this->mTitle );
2010 $de->setText( $this->textbox2, $this->textbox1 );
2011 $de->showDiff( wfMsg( "yourtext" ), wfMsg( "storedversion" ) );
2012
2013 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourtext" );
2014 $this->showTextbox2();
2015 }
2016 }
2017
2018 protected function getLastDelete() {
2019 $dbr = wfGetDB( DB_SLAVE );
2020 $data = $dbr->selectRow(
2021 array( 'logging', 'user' ),
2022 array( 'log_type',
2023 'log_action',
2024 'log_timestamp',
2025 'log_user',
2026 'log_namespace',
2027 'log_title',
2028 'log_comment',
2029 'log_params',
2030 'log_deleted',
2031 'user_name' ),
2032 array( 'log_namespace' => $this->mTitle->getNamespace(),
2033 'log_title' => $this->mTitle->getDBkey(),
2034 'log_type' => 'delete',
2035 'log_action' => 'delete',
2036 'user_id=log_user' ),
2037 __METHOD__,
2038 array( 'LIMIT' => 1, 'ORDER BY' => 'log_timestamp DESC' )
2039 );
2040 // Quick paranoid permission checks...
2041 if( is_object( $data ) ) {
2042 if( $data->log_deleted & LogPage::DELETED_USER )
2043 $data->user_name = wfMsgHtml( 'rev-deleted-user' );
2044 if( $data->log_deleted & LogPage::DELETED_COMMENT )
2045 $data->log_comment = wfMsgHtml( 'rev-deleted-comment' );
2046 }
2047 return $data;
2048 }
2049
2050 /**
2051 * Get the rendered text for previewing.
2052 * @return string
2053 */
2054 function getPreviewText() {
2055 global $wgOut, $wgUser, $wgParser;
2056
2057 wfProfileIn( __METHOD__ );
2058
2059 if ( $this->mTriedSave && !$this->mTokenOk ) {
2060 if ( $this->mTokenOkExceptSuffix ) {
2061 $note = wfMsg( 'token_suffix_mismatch' );
2062 } else {
2063 $note = wfMsg( 'session_fail_preview' );
2064 }
2065 } elseif ( $this->incompleteForm ) {
2066 $note = wfMsg( 'edit_form_incomplete' );
2067 } else {
2068 $note = wfMsg( 'previewnote' );
2069 }
2070
2071 $parserOptions = ParserOptions::newFromUser( $wgUser );
2072 $parserOptions->setEditSection( false );
2073 $parserOptions->setIsPreview( true );
2074 $parserOptions->setIsSectionPreview( !is_null($this->section) && $this->section !== '' );
2075
2076 global $wgRawHtml;
2077 if ( $wgRawHtml && !$this->mTokenOk ) {
2078 // Could be an offsite preview attempt. This is very unsafe if
2079 // HTML is enabled, as it could be an attack.
2080 $parsedNote = '';
2081 if ( $this->textbox1 !== '' ) {
2082 // Do not put big scary notice, if previewing the empty
2083 // string, which happens when you initially edit
2084 // a category page, due to automatic preview-on-open.
2085 $parsedNote = $wgOut->parse( "<div class='previewnote'>" .
2086 wfMsg( 'session_fail_preview_html' ) . "</div>", true, /* interface */true );
2087 }
2088 wfProfileOut( __METHOD__ );
2089 return $parsedNote;
2090 }
2091
2092 # don't parse non-wikitext pages, show message about preview
2093 # XXX: stupid php bug won't let us use $this->getContextTitle()->isCssJsSubpage() here -- This note has been there since r3530. Sure the bug was fixed time ago?
2094
2095 if ( $this->isCssJsSubpage || !$this->mTitle->isWikitextPage() ) {
2096 if( $this->mTitle->isCssJsSubpage() ) {
2097 $level = 'user';
2098 } elseif( $this->mTitle->isCssOrJsPage() ) {
2099 $level = 'site';
2100 } else {
2101 $level = false;
2102 }
2103
2104 # Used messages to make sure grep find them:
2105 # Messages: usercsspreview, userjspreview, sitecsspreview, sitejspreview
2106 if( $level ) {
2107 if (preg_match( "/\\.css$/", $this->mTitle->getText() ) ) {
2108 $previewtext = "<div id='mw-{$level}csspreview'>\n" . wfMsg( "{$level}csspreview" ) . "\n</div>";
2109 $class = "mw-code mw-css";
2110 } elseif (preg_match( "/\\.js$/", $this->mTitle->getText() ) ) {
2111 $previewtext = "<div id='mw-{$level}jspreview'>\n" . wfMsg( "{$level}jspreview" ) . "\n</div>";
2112 $class = "mw-code mw-js";
2113 } else {
2114 throw new MWException( 'A CSS/JS (sub)page but which is not css nor js!' );
2115 }
2116 }
2117
2118 $parserOptions->setTidy( true );
2119 $parserOutput = $wgParser->parse( $previewtext, $this->mTitle, $parserOptions );
2120 $previewHTML = $parserOutput->mText;
2121 $previewHTML .= "<pre class=\"$class\" dir=\"ltr\">\n" . htmlspecialchars( $this->textbox1 ) . "\n</pre>\n";
2122 } else {
2123 $rt = Title::newFromRedirectArray( $this->textbox1 );
2124 if ( $rt ) {
2125 $previewHTML = $this->mArticle->viewRedirect( $rt, false );
2126 } else {
2127 $toparse = $this->textbox1;
2128
2129 # If we're adding a comment, we need to show the
2130 # summary as the headline
2131 if ( $this->section == "new" && $this->summary != "" ) {
2132 $toparse = "== {$this->summary} ==\n\n" . $toparse;
2133 }
2134
2135 wfRunHooks( 'EditPageGetPreviewText', array( $this, &$toparse ) );
2136
2137 $parserOptions->setTidy( true );
2138 $parserOptions->enableLimitReport();
2139 $parserOutput = $wgParser->parse( $this->mArticle->preSaveTransform( $toparse ),
2140 $this->mTitle, $parserOptions );
2141
2142 $previewHTML = $parserOutput->getText();
2143 $this->mParserOutput = $parserOutput;
2144 $wgOut->addParserOutputNoText( $parserOutput );
2145
2146 if ( count( $parserOutput->getWarnings() ) ) {
2147 $note .= "\n\n" . implode( "\n\n", $parserOutput->getWarnings() );
2148 }
2149 }
2150 }
2151
2152 if( $this->isConflict ) {
2153 $conflict = '<h2 id="mw-previewconflict">' . htmlspecialchars( wfMsg( 'previewconflict' ) ) . "</h2>\n";
2154 } else {
2155 $conflict = '<hr />';
2156 }
2157
2158 $previewhead = "<div class='previewnote'>\n" .
2159 '<h2 id="mw-previewheader">' . htmlspecialchars( wfMsg( 'preview' ) ) . "</h2>" .
2160 $wgOut->parse( $note, true, /* interface */true ) . $conflict . "</div>\n";
2161
2162 $pageLang = $this->mTitle->getPageLanguage();
2163 $attribs = array( 'lang' => $pageLang->getCode(), 'dir' => $pageLang->getDir(),
2164 'class' => 'mw-content-'.$pageLang->getDir() );
2165 $previewHTML = Html::rawElement( 'div', $attribs, $previewHTML );
2166
2167 wfProfileOut( __METHOD__ );
2168 return $previewhead . $previewHTML . $this->previewTextAfterContent;
2169 }
2170
2171 /**
2172 * @return Array
2173 */
2174 function getTemplates() {
2175 if ( $this->preview || $this->section != '' ) {
2176 $templates = array();
2177 if ( !isset( $this->mParserOutput ) ) {
2178 return $templates;
2179 }
2180 foreach( $this->mParserOutput->getTemplates() as $ns => $template) {
2181 foreach( array_keys( $template ) as $dbk ) {
2182 $templates[] = Title::makeTitle($ns, $dbk);
2183 }
2184 }
2185 return $templates;
2186 } else {
2187 return $this->mArticle->getUsedTemplates();
2188 }
2189 }
2190
2191 function getDistantTemplates() {
2192 global $wgEnableInterwikiTemplatesTracking;
2193 if ( !$wgEnableInterwikiTemplatesTracking ) {
2194 return array( );
2195 }
2196 if ( $this->preview || $this->section != '' ) {
2197 $templates = array();
2198 if ( !isset( $this->mParserOutput ) ) return $templates;
2199 $templatesList = $this->mParserOutput->getDistantTemplates();
2200 foreach( $templatesList as $prefix => $templatesbyns ) {
2201 foreach( $templatesbyns as $ns => $template ) {
2202 foreach( array_keys( $template ) as $dbk ) {
2203 $templates[] = Title::makeTitle( $ns, $dbk, null, $prefix );
2204 }
2205 }
2206 }
2207 return $templates;
2208 } else {
2209 return $this->mArticle->getUsedDistantTemplates();
2210 }
2211 }
2212
2213 /**
2214 * Call the stock "user is blocked" page
2215 */
2216 function blockedPage() {
2217 global $wgOut;
2218 $wgOut->blockedPage( false ); # Standard block notice on the top, don't 'return'
2219
2220 # If the user made changes, preserve them when showing the markup
2221 # (This happens when a user is blocked during edit, for instance)
2222 $first = $this->firsttime || ( !$this->save && $this->textbox1 == '' );
2223 if ( $first ) {
2224 $source = $this->mTitle->exists() ? $this->getContent() : false;
2225 } else {
2226 $source = $this->textbox1;
2227 }
2228
2229 # Spit out the source or the user's modified version
2230 if ( $source !== false ) {
2231 $wgOut->addHTML( '<hr />' );
2232 $wgOut->addWikiMsg( $first ? 'blockedoriginalsource' : 'blockededitsource', $this->mTitle->getPrefixedText() );
2233 $this->showTextbox1( array( 'readonly' ), $source );
2234 }
2235 }
2236
2237 /**
2238 * Produce the stock "please login to edit pages" page
2239 */
2240 function userNotLoggedInPage() {
2241 global $wgOut;
2242
2243 $loginTitle = SpecialPage::getTitleFor( 'Userlogin' );
2244 $loginLink = Linker::linkKnown(
2245 $loginTitle,
2246 wfMsgHtml( 'loginreqlink' ),
2247 array(),
2248 array( 'returnto' => $this->getContextTitle()->getPrefixedText() )
2249 );
2250
2251 $wgOut->setPageTitle( wfMsg( 'whitelistedittitle' ) );
2252 $wgOut->setRobotPolicy( 'noindex,nofollow' );
2253 $wgOut->setArticleRelated( false );
2254
2255 $wgOut->addHTML( wfMessage( 'whitelistedittext' )->rawParams( $loginLink )->parse() );
2256 $wgOut->returnToMain( false, $this->getContextTitle() );
2257 }
2258
2259 /**
2260 * Creates a basic error page which informs the user that
2261 * they have attempted to edit a nonexistent section.
2262 */
2263 function noSuchSectionPage() {
2264 global $wgOut;
2265
2266 $wgOut->setPageTitle( wfMsg( 'nosuchsectiontitle' ) );
2267 $wgOut->setRobotPolicy( 'noindex,nofollow' );
2268 $wgOut->setArticleRelated( false );
2269
2270 $res = wfMsgExt( 'nosuchsectiontext', 'parse', $this->section );
2271 wfRunHooks( 'EditPageNoSuchSection', array( &$this, &$res ) );
2272 $wgOut->addHTML( $res );
2273
2274 $wgOut->returnToMain( false, $this->mTitle );
2275 }
2276
2277 /**
2278 * Produce the stock "your edit contains spam" page
2279 *
2280 * @param $match Text which triggered one or more filters
2281 * @deprecated since 1.17 Use method spamPageWithContent() instead
2282 */
2283 static function spamPage( $match = false ) {
2284 global $wgOut, $wgTitle;
2285
2286 $wgOut->setPageTitle( wfMsg( 'spamprotectiontitle' ) );
2287 $wgOut->setRobotPolicy( 'noindex,nofollow' );
2288 $wgOut->setArticleRelated( false );
2289
2290 $wgOut->addHTML( '<div id="spamprotected">' );
2291 $wgOut->addWikiMsg( 'spamprotectiontext' );
2292 if ( $match ) {
2293 $wgOut->addWikiMsg( 'spamprotectionmatch', wfEscapeWikiText( $match ) );
2294 }
2295 $wgOut->addHTML( '</div>' );
2296
2297 $wgOut->returnToMain( false, $wgTitle );
2298 }
2299
2300 /**
2301 * Show "your edit contains spam" page with your diff and text
2302 *
2303 * @param $match Text which triggered one or more filters
2304 */
2305 public function spamPageWithContent( $match = false ) {
2306 global $wgOut;
2307 $this->textbox2 = $this->textbox1;
2308
2309 $wgOut->setPageTitle( wfMsg( 'spamprotectiontitle' ) );
2310 $wgOut->setRobotPolicy( 'noindex,nofollow' );
2311 $wgOut->setArticleRelated( false );
2312
2313 $wgOut->addHTML( '<div id="spamprotected">' );
2314 $wgOut->addWikiMsg( 'spamprotectiontext' );
2315 if ( $match ) {
2316 $wgOut->addWikiMsg( 'spamprotectionmatch', wfEscapeWikiText( $match ) );
2317 }
2318 $wgOut->addHTML( '</div>' );
2319
2320 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourdiff" );
2321 $de = new DifferenceEngine( $this->mTitle );
2322 $de->setText( $this->getContent(), $this->textbox2 );
2323 $de->showDiff( wfMsg( "storedversion" ), wfMsg( "yourtext" ) );
2324
2325 $wgOut->wrapWikiMsg( '<h2>$1</h2>', "yourtext" );
2326 $this->showTextbox2();
2327
2328 $wgOut->addReturnTo( $this->getContextTitle(), array( 'action' => 'edit' ) );
2329 }
2330
2331
2332 /**
2333 * @private
2334 * @todo document
2335 *
2336 * @parma $editText string
2337 *
2338 * @return bool
2339 */
2340 function mergeChangesInto( &$editText ){
2341 wfProfileIn( __METHOD__ );
2342
2343 $db = wfGetDB( DB_MASTER );
2344
2345 // This is the revision the editor started from
2346 $baseRevision = $this->getBaseRevision();
2347 if ( is_null( $baseRevision ) ) {
2348 wfProfileOut( __METHOD__ );
2349 return false;
2350 }
2351 $baseText = $baseRevision->getText();
2352
2353 // The current state, we want to merge updates into it
2354 $currentRevision = Revision::loadFromTitle( $db, $this->mTitle );
2355 if ( is_null( $currentRevision ) ) {
2356 wfProfileOut( __METHOD__ );
2357 return false;
2358 }
2359 $currentText = $currentRevision->getText();
2360
2361 $result = '';
2362 if ( wfMerge( $baseText, $editText, $currentText, $result ) ) {
2363 $editText = $result;
2364 wfProfileOut( __METHOD__ );
2365 return true;
2366 } else {
2367 wfProfileOut( __METHOD__ );
2368 return false;
2369 }
2370 }
2371
2372 /**
2373 * Check if the browser is on a blacklist of user-agents known to
2374 * mangle UTF-8 data on form submission. Returns true if Unicode
2375 * should make it through, false if it's known to be a problem.
2376 * @return bool
2377 * @private
2378 */
2379 function checkUnicodeCompliantBrowser() {
2380 global $wgBrowserBlackList;
2381 if ( empty( $_SERVER["HTTP_USER_AGENT"] ) ) {
2382 // No User-Agent header sent? Trust it by default...
2383 return true;
2384 }
2385 $currentbrowser = $_SERVER["HTTP_USER_AGENT"];
2386 foreach ( $wgBrowserBlackList as $browser ) {
2387 if ( preg_match($browser, $currentbrowser) ) {
2388 return false;
2389 }
2390 }
2391 return true;
2392 }
2393
2394 /**
2395 * Format an anchor fragment as it would appear for a given section name
2396 * @param $text String
2397 * @return String
2398 * @private
2399 */
2400 function sectionAnchor( $text ) {
2401 global $wgParser;
2402 return $wgParser->guessSectionNameFromWikiText( $text );
2403 }
2404
2405 /**
2406 * Shows a bulletin board style toolbar for common editing functions.
2407 * It can be disabled in the user preferences.
2408 * The necessary JavaScript code can be found in skins/common/edit.js.
2409 *
2410 * @return string
2411 */
2412 static function getEditToolbar() {
2413 global $wgStylePath, $wgContLang, $wgLang, $wgOut;
2414 global $wgUseTeX, $wgEnableUploads, $wgForeignFileRepos;
2415
2416 $imagesAvailable = $wgEnableUploads || count( $wgForeignFileRepos );
2417
2418 /**
2419 * $toolarray is an array of arrays each of which includes the
2420 * filename of the button image (without path), the opening
2421 * tag, the closing tag, optionally a sample text that is
2422 * inserted between the two when no selection is highlighted
2423 * and. The tip text is shown when the user moves the mouse
2424 * over the button.
2425 *
2426 * Also here: accesskeys (key), which are not used yet until
2427 * someone can figure out a way to make them work in
2428 * IE. However, we should make sure these keys are not defined
2429 * on the edit page.
2430 */
2431 $toolarray = array(
2432 array(
2433 'image' => $wgLang->getImageFile( 'button-bold' ),
2434 'id' => 'mw-editbutton-bold',
2435 'open' => '\'\'\'',
2436 'close' => '\'\'\'',
2437 'sample' => wfMsg( 'bold_sample' ),
2438 'tip' => wfMsg( 'bold_tip' ),
2439 'key' => 'B'
2440 ),
2441 array(
2442 'image' => $wgLang->getImageFile( 'button-italic' ),
2443 'id' => 'mw-editbutton-italic',
2444 'open' => '\'\'',
2445 'close' => '\'\'',
2446 'sample' => wfMsg( 'italic_sample' ),
2447 'tip' => wfMsg( 'italic_tip' ),
2448 'key' => 'I'
2449 ),
2450 array(
2451 'image' => $wgLang->getImageFile( 'button-link' ),
2452 'id' => 'mw-editbutton-link',
2453 'open' => '[[',
2454 'close' => ']]',
2455 'sample' => wfMsg( 'link_sample' ),
2456 'tip' => wfMsg( 'link_tip' ),
2457 'key' => 'L'
2458 ),
2459 array(
2460 'image' => $wgLang->getImageFile( 'button-extlink' ),
2461 'id' => 'mw-editbutton-extlink',
2462 'open' => '[',
2463 'close' => ']',
2464 'sample' => wfMsg( 'extlink_sample' ),
2465 'tip' => wfMsg( 'extlink_tip' ),
2466 'key' => 'X'
2467 ),
2468 array(
2469 'image' => $wgLang->getImageFile( 'button-headline' ),
2470 'id' => 'mw-editbutton-headline',
2471 'open' => "\n== ",
2472 'close' => " ==\n",
2473 'sample' => wfMsg( 'headline_sample' ),
2474 'tip' => wfMsg( 'headline_tip' ),
2475 'key' => 'H'
2476 ),
2477 $imagesAvailable ? array(
2478 'image' => $wgLang->getImageFile( 'button-image' ),
2479 'id' => 'mw-editbutton-image',
2480 'open' => '[[' . $wgContLang->getNsText( NS_FILE ) . ':',
2481 'close' => ']]',
2482 'sample' => wfMsg( 'image_sample' ),
2483 'tip' => wfMsg( 'image_tip' ),
2484 'key' => 'D',
2485 ) : false,
2486 $imagesAvailable ? array(
2487 'image' => $wgLang->getImageFile( 'button-media' ),
2488 'id' => 'mw-editbutton-media',
2489 'open' => '[[' . $wgContLang->getNsText( NS_MEDIA ) . ':',
2490 'close' => ']]',
2491 'sample' => wfMsg( 'media_sample' ),
2492 'tip' => wfMsg( 'media_tip' ),
2493 'key' => 'M'
2494 ) : false,
2495 $wgUseTeX ? array(
2496 'image' => $wgLang->getImageFile( 'button-math' ),
2497 'id' => 'mw-editbutton-math',
2498 'open' => "<math>",
2499 'close' => "</math>",
2500 'sample' => wfMsg( 'math_sample' ),
2501 'tip' => wfMsg( 'math_tip' ),
2502 'key' => 'C'
2503 ) : false,
2504 array(
2505 'image' => $wgLang->getImageFile( 'button-nowiki' ),
2506 'id' => 'mw-editbutton-nowiki',
2507 'open' => "<nowiki>",
2508 'close' => "</nowiki>",
2509 'sample' => wfMsg( 'nowiki_sample' ),
2510 'tip' => wfMsg( 'nowiki_tip' ),
2511 'key' => 'N'
2512 ),
2513 array(
2514 'image' => $wgLang->getImageFile( 'button-sig' ),
2515 'id' => 'mw-editbutton-signature',
2516 'open' => '--~~~~',
2517 'close' => '',
2518 'sample' => '',
2519 'tip' => wfMsg( 'sig_tip' ),
2520 'key' => 'Y'
2521 ),
2522 array(
2523 'image' => $wgLang->getImageFile( 'button-hr' ),
2524 'id' => 'mw-editbutton-hr',
2525 'open' => "\n----\n",
2526 'close' => '',
2527 'sample' => '',
2528 'tip' => wfMsg( 'hr_tip' ),
2529 'key' => 'R'
2530 )
2531 );
2532 $toolbar = "<div id='toolbar'>\n";
2533
2534 $script = '';
2535 foreach ( $toolarray as $tool ) {
2536 if ( !$tool ) {
2537 continue;
2538 }
2539
2540 $params = array(
2541 $image = $wgStylePath . '/common/images/' . $tool['image'],
2542 // Note that we use the tip both for the ALT tag and the TITLE tag of the image.
2543 // Older browsers show a "speedtip" type message only for ALT.
2544 // Ideally these should be different, realistically they
2545 // probably don't need to be.
2546 $tip = $tool['tip'],
2547 $open = $tool['open'],
2548 $close = $tool['close'],
2549 $sample = $tool['sample'],
2550 $cssId = $tool['id'],
2551 );
2552
2553 $paramList = implode( ',',
2554 array_map( array( 'Xml', 'encodeJsVar' ), $params ) );
2555 $script .= "mw.toolbar.addButton($paramList);\n";
2556 }
2557 $wgOut->addScript( Html::inlineScript(
2558 "if ( window.mediaWiki ) {{$script}}"
2559 ) );
2560
2561 $toolbar .= "\n</div>";
2562
2563 wfRunHooks( 'EditPageBeforeEditToolbar', array( &$toolbar ) );
2564
2565 return $toolbar;
2566 }
2567
2568 /**
2569 * Returns an array of html code of the following checkboxes:
2570 * minor and watch
2571 *
2572 * @param $tabindex Current tabindex
2573 * @param $checked Array of checkbox => bool, where bool indicates the checked
2574 * status of the checkbox
2575 *
2576 * @return array
2577 */
2578 public function getCheckboxes( &$tabindex, $checked ) {
2579 global $wgUser;
2580
2581 $checkboxes = array();
2582
2583 // don't show the minor edit checkbox if it's a new page or section
2584 if ( !$this->isNew ) {
2585 $checkboxes['minor'] = '';
2586 $minorLabel = wfMsgExt( 'minoredit', array( 'parseinline' ) );
2587 if ( $wgUser->isAllowed( 'minoredit' ) ) {
2588 $attribs = array(
2589 'tabindex' => ++$tabindex,
2590 'accesskey' => wfMsg( 'accesskey-minoredit' ),
2591 'id' => 'wpMinoredit',
2592 );
2593 $checkboxes['minor'] =
2594 Xml::check( 'wpMinoredit', $checked['minor'], $attribs ) .
2595 "&#160;<label for='wpMinoredit' id='mw-editpage-minoredit'" .
2596 Xml::expandAttributes( array( 'title' => Linker::titleAttrib( 'minoredit', 'withaccess' ) ) ) .
2597 ">{$minorLabel}</label>";
2598 }
2599 }
2600
2601 $watchLabel = wfMsgExt( 'watchthis', array( 'parseinline' ) );
2602 $checkboxes['watch'] = '';
2603 if ( $wgUser->isLoggedIn() ) {
2604 $attribs = array(
2605 'tabindex' => ++$tabindex,
2606 'accesskey' => wfMsg( 'accesskey-watch' ),
2607 'id' => 'wpWatchthis',
2608 );
2609 $checkboxes['watch'] =
2610 Xml::check( 'wpWatchthis', $checked['watch'], $attribs ) .
2611 "&#160;<label for='wpWatchthis' id='mw-editpage-watch'" .
2612 Xml::expandAttributes( array( 'title' => Linker::titleAttrib( 'watch', 'withaccess' ) ) ) .
2613 ">{$watchLabel}</label>";
2614 }
2615 wfRunHooks( 'EditPageBeforeEditChecks', array( &$this, &$checkboxes, &$tabindex ) );
2616 return $checkboxes;
2617 }
2618
2619 /**
2620 * Returns an array of html code of the following buttons:
2621 * save, diff, preview and live
2622 *
2623 * @param $tabindex Current tabindex
2624 *
2625 * @return array
2626 */
2627 public function getEditButtons( &$tabindex ) {
2628 $buttons = array();
2629
2630 $temp = array(
2631 'id' => 'wpSave',
2632 'name' => 'wpSave',
2633 'type' => 'submit',
2634 'tabindex' => ++$tabindex,
2635 'value' => wfMsg( 'savearticle' ),
2636 'accesskey' => wfMsg( 'accesskey-save' ),
2637 'title' => wfMsg( 'tooltip-save' ).' ['.wfMsg( 'accesskey-save' ).']',
2638 );
2639 $buttons['save'] = Xml::element('input', $temp, '');
2640
2641 ++$tabindex; // use the same for preview and live preview
2642 $temp = array(
2643 'id' => 'wpPreview',
2644 'name' => 'wpPreview',
2645 'type' => 'submit',
2646 'tabindex' => $tabindex,
2647 'value' => wfMsg( 'showpreview' ),
2648 'accesskey' => wfMsg( 'accesskey-preview' ),
2649 'title' => wfMsg( 'tooltip-preview' ) . ' [' . wfMsg( 'accesskey-preview' ) . ']',
2650 );
2651 $buttons['preview'] = Xml::element( 'input', $temp, '' );
2652 $buttons['live'] = '';
2653
2654 $temp = array(
2655 'id' => 'wpDiff',
2656 'name' => 'wpDiff',
2657 'type' => 'submit',
2658 'tabindex' => ++$tabindex,
2659 'value' => wfMsg( 'showdiff' ),
2660 'accesskey' => wfMsg( 'accesskey-diff' ),
2661 'title' => wfMsg( 'tooltip-diff' ) . ' [' . wfMsg( 'accesskey-diff' ) . ']',
2662 );
2663 $buttons['diff'] = Xml::element( 'input', $temp, '' );
2664
2665 wfRunHooks( 'EditPageBeforeEditButtons', array( &$this, &$buttons, &$tabindex ) );
2666 return $buttons;
2667 }
2668
2669 /**
2670 * Output preview text only. This can be sucked into the edit page
2671 * via JavaScript, and saves the server time rendering the skin as
2672 * well as theoretically being more robust on the client (doesn't
2673 * disturb the edit box's undo history, won't eat your text on
2674 * failure, etc).
2675 *
2676 * @todo This doesn't include category or interlanguage links.
2677 * Would need to enhance it a bit, <s>maybe wrap them in XML
2678 * or something...</s> that might also require more skin
2679 * initialization, so check whether that's a problem.
2680 */
2681 function livePreview() {
2682 global $wgOut;
2683 $wgOut->disable();
2684 header( 'Content-type: text/xml; charset=utf-8' );
2685 header( 'Cache-control: no-cache' );
2686
2687 $previewText = $this->getPreviewText();
2688 #$categories = $skin->getCategoryLinks();
2689
2690 $s =
2691 '<?xml version="1.0" encoding="UTF-8" ?>' . "\n" .
2692 Xml::tags( 'livepreview', null,
2693 Xml::element( 'preview', null, $previewText )
2694 #. Xml::element( 'category', null, $categories )
2695 );
2696 echo $s;
2697 }
2698
2699 /**
2700 * @return string
2701 */
2702 public function getCancelLink() {
2703 $cancelParams = array();
2704 if ( !$this->isConflict && $this->mArticle->getOldID() > 0 ) {
2705 $cancelParams['oldid'] = $this->mArticle->getOldID();
2706 }
2707
2708 return Linker::linkKnown(
2709 $this->getContextTitle(),
2710 wfMsgExt( 'cancel', array( 'parseinline' ) ),
2711 array( 'id' => 'mw-editform-cancel' ),
2712 $cancelParams
2713 );
2714 }
2715
2716 /**
2717 * Get a diff between the current contents of the edit box and the
2718 * version of the page we're editing from.
2719 *
2720 * If this is a section edit, we'll replace the section as for final
2721 * save and then make a comparison.
2722 */
2723 function showDiff() {
2724 $oldtext = $this->mArticle->fetchContent();
2725 $newtext = $this->mArticle->replaceSection(
2726 $this->section, $this->textbox1, $this->summary, $this->edittime );
2727
2728 wfRunHooks( 'EditPageGetDiffText', array( $this, &$newtext ) );
2729
2730 $newtext = $this->mArticle->preSaveTransform( $newtext );
2731 $oldtitle = wfMsgExt( 'currentrev', array( 'parseinline' ) );
2732 $newtitle = wfMsgExt( 'yourtext', array( 'parseinline' ) );
2733 if ( $oldtext !== false || $newtext != '' ) {
2734 $de = new DifferenceEngine( $this->mTitle );
2735 $de->setText( $oldtext, $newtext );
2736 $difftext = $de->getDiff( $oldtitle, $newtitle );
2737 $de->showDiffStyle();
2738 } else {
2739 $difftext = '';
2740 }
2741
2742 global $wgOut;
2743 $wgOut->addHTML( '<div id="wikiDiff">' . $difftext . '</div>' );
2744 }
2745
2746 /**
2747 * Filter an input field through a Unicode de-armoring process if it
2748 * came from an old browser with known broken Unicode editing issues.
2749 *
2750 * @param $request WebRequest
2751 * @param $field String
2752 * @return String
2753 * @private
2754 */
2755 function safeUnicodeInput( $request, $field ) {
2756 $text = rtrim( $request->getText( $field ) );
2757 return $request->getBool( 'safemode' )
2758 ? $this->unmakesafe( $text )
2759 : $text;
2760 }
2761
2762 /**
2763 * @param $request WebRequest
2764 * @param $text string
2765 * @return string
2766 */
2767 function safeUnicodeText( $request, $text ) {
2768 $text = rtrim( $text );
2769 return $request->getBool( 'safemode' )
2770 ? $this->unmakesafe( $text )
2771 : $text;
2772 }
2773
2774 /**
2775 * Filter an output field through a Unicode armoring process if it is
2776 * going to an old browser with known broken Unicode editing issues.
2777 *
2778 * @param $text String
2779 * @return String
2780 * @private
2781 */
2782 function safeUnicodeOutput( $text ) {
2783 global $wgContLang;
2784 $codedText = $wgContLang->recodeForEdit( $text );
2785 return $this->checkUnicodeCompliantBrowser()
2786 ? $codedText
2787 : $this->makesafe( $codedText );
2788 }
2789
2790 /**
2791 * A number of web browsers are known to corrupt non-ASCII characters
2792 * in a UTF-8 text editing environment. To protect against this,
2793 * detected browsers will be served an armored version of the text,
2794 * with non-ASCII chars converted to numeric HTML character references.
2795 *
2796 * Preexisting such character references will have a 0 added to them
2797 * to ensure that round-trips do not alter the original data.
2798 *
2799 * @param $invalue String
2800 * @return String
2801 * @private
2802 */
2803 function makesafe( $invalue ) {
2804 // Armor existing references for reversability.
2805 $invalue = strtr( $invalue, array( "&#x" => "&#x0" ) );
2806
2807 $bytesleft = 0;
2808 $result = "";
2809 $working = 0;
2810 for( $i = 0; $i < strlen( $invalue ); $i++ ) {
2811 $bytevalue = ord( $invalue[$i] );
2812 if ( $bytevalue <= 0x7F ) { //0xxx xxxx
2813 $result .= chr( $bytevalue );
2814 $bytesleft = 0;
2815 } elseif ( $bytevalue <= 0xBF ) { //10xx xxxx
2816 $working = $working << 6;
2817 $working += ($bytevalue & 0x3F);
2818 $bytesleft--;
2819 if ( $bytesleft <= 0 ) {
2820 $result .= "&#x" . strtoupper( dechex( $working ) ) . ";";
2821 }
2822 } elseif ( $bytevalue <= 0xDF ) { //110x xxxx
2823 $working = $bytevalue & 0x1F;
2824 $bytesleft = 1;
2825 } elseif ( $bytevalue <= 0xEF ) { //1110 xxxx
2826 $working = $bytevalue & 0x0F;
2827 $bytesleft = 2;
2828 } else { //1111 0xxx
2829 $working = $bytevalue & 0x07;
2830 $bytesleft = 3;
2831 }
2832 }
2833 return $result;
2834 }
2835
2836 /**
2837 * Reverse the previously applied transliteration of non-ASCII characters
2838 * back to UTF-8. Used to protect data from corruption by broken web browsers
2839 * as listed in $wgBrowserBlackList.
2840 *
2841 * @param $invalue String
2842 * @return String
2843 * @private
2844 */
2845 function unmakesafe( $invalue ) {
2846 $result = "";
2847 for( $i = 0; $i < strlen( $invalue ); $i++ ) {
2848 if ( ( substr( $invalue, $i, 3 ) == "&#x" ) && ( $invalue[$i+3] != '0' ) ) {
2849 $i += 3;
2850 $hexstring = "";
2851 do {
2852 $hexstring .= $invalue[$i];
2853 $i++;
2854 } while( ctype_xdigit( $invalue[$i] ) && ( $i < strlen( $invalue ) ) );
2855
2856 // Do some sanity checks. These aren't needed for reversability,
2857 // but should help keep the breakage down if the editor
2858 // breaks one of the entities whilst editing.
2859 if ( (substr($invalue,$i,1)==";") and (strlen($hexstring) <= 6) ) {
2860 $codepoint = hexdec($hexstring);
2861 $result .= codepointToUtf8( $codepoint );
2862 } else {
2863 $result .= "&#x" . $hexstring . substr( $invalue, $i, 1 );
2864 }
2865 } else {
2866 $result .= substr( $invalue, $i, 1 );
2867 }
2868 }
2869 // reverse the transform that we made for reversability reasons.
2870 return strtr( $result, array( "&#x0" => "&#x" ) );
2871 }
2872
2873 function noCreatePermission() {
2874 global $wgOut;
2875 $wgOut->setPageTitle( wfMsg( 'nocreatetitle' ) );
2876 $wgOut->addWikiMsg( 'nocreatetext' );
2877 }
2878
2879 /**
2880 * Attempt submission
2881 * @return bool false if output is done, true if the rest of the form should be displayed
2882 */
2883 function attemptSave() {
2884 global $wgUser, $wgOut;
2885
2886 $resultDetails = false;
2887 # Allow bots to exempt some edits from bot flagging
2888 $bot = $wgUser->isAllowed( 'bot' ) && $this->bot;
2889 $status = $this->internalAttemptSave( $resultDetails, $bot );
2890 // FIXME: once the interface for internalAttemptSave() is made nicer, this should use the message in $status
2891
2892 if ( $status->value == self::AS_SUCCESS_UPDATE || $status->value == self::AS_SUCCESS_NEW_ARTICLE ) {
2893 $this->didSave = true;
2894 }
2895
2896 switch ( $status->value ) {
2897 case self::AS_HOOK_ERROR_EXPECTED:
2898 case self::AS_CONTENT_TOO_BIG:
2899 case self::AS_ARTICLE_WAS_DELETED:
2900 case self::AS_CONFLICT_DETECTED:
2901 case self::AS_SUMMARY_NEEDED:
2902 case self::AS_TEXTBOX_EMPTY:
2903 case self::AS_MAX_ARTICLE_SIZE_EXCEEDED:
2904 case self::AS_END:
2905 return true;
2906
2907 case self::AS_HOOK_ERROR:
2908 case self::AS_FILTERING:
2909 return false;
2910
2911 case self::AS_SUCCESS_NEW_ARTICLE:
2912 $query = $resultDetails['redirect'] ? 'redirect=no' : '';
2913 $wgOut->redirect( $this->mTitle->getFullURL( $query ) );
2914 return false;
2915
2916 case self::AS_SUCCESS_UPDATE:
2917 $extraQuery = '';
2918 $sectionanchor = $resultDetails['sectionanchor'];
2919
2920 // Give extensions a chance to modify URL query on update
2921 wfRunHooks( 'ArticleUpdateBeforeRedirect', array( $this->mArticle, &$sectionanchor, &$extraQuery ) );
2922
2923 if ( $resultDetails['redirect'] ) {
2924 if ( $extraQuery == '' ) {
2925 $extraQuery = 'redirect=no';
2926 } else {
2927 $extraQuery = 'redirect=no&' . $extraQuery;
2928 }
2929 }
2930 $wgOut->redirect( $this->mTitle->getFullURL( $extraQuery ) . $sectionanchor );
2931 return false;
2932
2933 case self::AS_SPAM_ERROR:
2934 $this->spamPageWithContent( $resultDetails['spam'] );
2935 return false;
2936
2937 case self::AS_BLOCKED_PAGE_FOR_USER:
2938 $this->blockedPage();
2939 return false;
2940
2941 case self::AS_IMAGE_REDIRECT_ANON:
2942 $wgOut->showErrorPage( 'uploadnologin', 'uploadnologintext' );
2943 return false;
2944
2945 case self::AS_READ_ONLY_PAGE_ANON:
2946 $this->userNotLoggedInPage();
2947 return false;
2948
2949 case self::AS_READ_ONLY_PAGE_LOGGED:
2950 case self::AS_READ_ONLY_PAGE:
2951 $wgOut->readOnlyPage();
2952 return false;
2953
2954 case self::AS_RATE_LIMITED:
2955 $wgOut->rateLimited();
2956 return false;
2957
2958 case self::AS_NO_CREATE_PERMISSION:
2959 $this->noCreatePermission();
2960 return false;
2961
2962 case self::AS_BLANK_ARTICLE:
2963 $wgOut->redirect( $this->getContextTitle()->getFullURL() );
2964 return false;
2965
2966 case self::AS_IMAGE_REDIRECT_LOGGED:
2967 $wgOut->permissionRequired( 'upload' );
2968 return false;
2969 }
2970 }
2971
2972 /**
2973 * @return Revision
2974 */
2975 function getBaseRevision() {
2976 if ( !$this->mBaseRevision ) {
2977 $db = wfGetDB( DB_MASTER );
2978 $baseRevision = Revision::loadFromTimestamp(
2979 $db, $this->mTitle, $this->edittime );
2980 return $this->mBaseRevision = $baseRevision;
2981 } else {
2982 return $this->mBaseRevision;
2983 }
2984 }
2985 }
Wiklou, le Wiki du Wiklou