dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
(Bug 19725) Do not include suppressed edits in the "View X deleted edits" message...
[lhc/web/wiklou.git] / includes / specials / SpecialBlock.php
1 <?php
2 /**
3 * Implements Special:Block
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
19 *
20 * @file
21 * @ingroup SpecialPage
22 */
23
24 /**
25 * A special page that allows users with 'block' right to block users from
26 * editing pages and other actions
27 *
28 * @ingroup SpecialPage
29 */
30 class SpecialBlock extends SpecialPage {
31
32 /** The maximum number of edits a user can have and still be hidden
33 * TODO: config setting? */
34 const HIDEUSER_CONTRIBLIMIT = 1000;
35
36 /** @var User user to be blocked, as passed either by parameter (url?wpTarget=Foo)
37 * or as subpage (Special:Block/Foo) */
38 protected $target;
39
40 /// @var Block::TYPE_ constant
41 protected $type;
42
43 /// @var User|String the previous block target
44 protected $previousTarget;
45
46 /// @var Bool whether the previous submission of the form asked for HideUser
47 protected $requestedHideUser;
48
49 /// @var Bool
50 protected $alreadyBlocked;
51
52 /// @var Array
53 protected $preErrors = array();
54
55 public function __construct() {
56 parent::__construct( 'Block', 'block' );
57 }
58
59 public function execute( $par ) {
60 global $wgUser, $wgOut, $wgRequest;
61
62 # Can't block when the database is locked
63 if( wfReadOnly() ) {
64 $wgOut->readOnlyPage();
65 return;
66 }
67 # Permission check
68 if( !$this->userCanExecute( $wgUser ) ) {
69 $wgOut->permissionRequired( 'block' );
70 return;
71 }
72
73 # Extract variables from the request. Try not to get into a situation where we
74 # need to extract *every* variable from the form just for processing here, but
75 # there are legitimate uses for some variables
76 list( $this->target, $this->type ) = self::getTargetAndType( $par, $wgRequest );
77 if ( $this->target instanceof User ) {
78 # Set the 'relevant user' in the skin, so it displays links like Contributions,
79 # User logs, UserRights, etc.
80 $this->getSkin()->setRelevantUser( $this->target );
81 }
82
83 list( $this->previousTarget, /*...*/ ) = Block::parseTarget( $wgRequest->getVal( 'wpPreviousTarget' ) );
84 $this->requestedHideUser = $wgRequest->getBool( 'wpHideUser' );
85
86 # bug 15810: blocked admins should have limited access here
87 $status = self::checkUnblockSelf( $this->target );
88 if ( $status !== true ) {
89 throw new ErrorPageError( 'badaccess', $status );
90 }
91
92 $wgOut->setPageTitle( wfMsg( 'blockip-title' ) );
93 $wgOut->addModules( 'mediawiki.special', 'mediawiki.special.block' );
94
95 $fields = self::getFormFields();
96 $this->maybeAlterFormDefaults( $fields );
97
98 $form = new HTMLForm( $fields, $this->getContext() );
99 $form->setWrapperLegend( wfMsg( 'blockip-legend' ) );
100 $form->setSubmitCallback( array( __CLASS__, 'processForm' ) );
101
102 $t = $this->alreadyBlocked
103 ? wfMsg( 'ipb-change-block' )
104 : wfMsg( 'ipbsubmit' );
105 $form->setSubmitText( $t );
106
107 $this->doPreText( $form );
108 $this->doHeadertext( $form );
109 $this->doPostText( $form );
110
111 if( $form->show() ){
112 $wgOut->setPageTitle( wfMsg( 'blockipsuccesssub' ) );
113 $wgOut->addWikiMsg( 'blockipsuccesstext', $this->target );
114 }
115 }
116
117 /**
118 * Get the HTMLForm descriptor array for the block form
119 * @return Array
120 */
121 protected static function getFormFields(){
122 global $wgUser, $wgBlockAllowsUTEdit;
123
124 $a = array(
125 'Target' => array(
126 'type' => 'text',
127 'label-message' => 'ipadressorusername',
128 'tabindex' => '1',
129 'id' => 'mw-bi-target',
130 'size' => '45',
131 'required' => true,
132 'validation-callback' => array( __CLASS__, 'validateTargetField' ),
133 ),
134 'Expiry' => array(
135 'type' => !count( self::getSuggestedDurations() ) ? 'text' : 'selectorother',
136 'label-message' => 'ipbexpiry',
137 'required' => true,
138 'tabindex' => '2',
139 'options' => self::getSuggestedDurations(),
140 'other' => wfMsg( 'ipbother' ),
141 ),
142 'Reason' => array(
143 'type' => 'selectandother',
144 'label-message' => 'ipbreason',
145 'options-message' => 'ipbreason-dropdown',
146 ),
147 'CreateAccount' => array(
148 'type' => 'check',
149 'label-message' => 'ipbcreateaccount',
150 'default' => true,
151 ),
152 );
153
154 if( self::canBlockEmail( $wgUser ) ) {
155 $a['DisableEmail'] = array(
156 'type' => 'check',
157 'label-message' => 'ipbemailban',
158 );
159 }
160
161 if( $wgBlockAllowsUTEdit ){
162 $a['DisableUTEdit'] = array(
163 'type' => 'check',
164 'label-message' => 'ipb-disableusertalk',
165 'default' => false,
166 );
167 }
168
169 $a['AutoBlock'] = array(
170 'type' => 'check',
171 'label-message' => 'ipbenableautoblock',
172 'default' => true,
173 );
174
175 # Allow some users to hide name from block log, blocklist and listusers
176 if( $wgUser->isAllowed( 'hideuser' ) ) {
177 $a['HideUser'] = array(
178 'type' => 'check',
179 'label-message' => 'ipbhidename',
180 'cssclass' => 'mw-block-hideuser',
181 );
182 }
183
184 # Watchlist their user page? (Only if user is logged in)
185 if( $wgUser->isLoggedIn() ) {
186 $a['Watch'] = array(
187 'type' => 'check',
188 'label-message' => 'ipbwatchuser',
189 );
190 }
191
192 $a['HardBlock'] = array(
193 'type' => 'check',
194 'label-message' => 'ipb-hardblock',
195 'default' => false,
196 );
197
198 # This is basically a copy of the Target field, but the user can't change it, so we
199 # can see if the warnings we maybe showed to the user before still apply
200 $a['PreviousTarget'] = array(
201 'type' => 'hidden',
202 'default' => false,
203 );
204
205 # We'll turn this into a checkbox if we need to
206 $a['Confirm'] = array(
207 'type' => 'hidden',
208 'default' => '',
209 'label-message' => 'ipb-confirm',
210 );
211
212 return $a;
213 }
214
215 /**
216 * If the user has already been blocked with similar settings, load that block
217 * and change the defaults for the form fields to match the existing settings.
218 * @param &$fields Array HTMLForm descriptor array
219 * @return Bool whether fields were altered (that is, whether the target is
220 * already blocked)
221 */
222 protected function maybeAlterFormDefaults( &$fields ){
223 global $wgRequest, $wgUser;
224
225 # This will be overwritten by request data
226 $fields['Target']['default'] = (string)$this->target;
227
228 # This won't be
229 $fields['PreviousTarget']['default'] = (string)$this->target;
230
231 $block = Block::newFromTarget( $this->target );
232
233 if( $block instanceof Block && !$block->mAuto # The block exists and isn't an autoblock
234 && ( $this->type != Block::TYPE_RANGE # The block isn't a rangeblock
235 || $block->getTarget() == $this->target ) # or if it is, the range is what we're about to block
236 )
237 {
238 $fields['HardBlock']['default'] = $block->isHardblock();
239 $fields['CreateAccount']['default'] = $block->prevents( 'createaccount' );
240 $fields['AutoBlock']['default'] = $block->isAutoblocking();
241 if( isset( $fields['DisableEmail'] ) ){
242 $fields['DisableEmail']['default'] = $block->prevents( 'sendemail' );
243 }
244 if( isset( $fields['HideUser'] ) ){
245 $fields['HideUser']['default'] = $block->mHideName;
246 }
247 if( isset( $fields['DisableUTEdit'] ) ){
248 $fields['DisableUTEdit']['default'] = $block->prevents( 'editownusertalk' );
249 }
250 $fields['Reason']['default'] = $block->mReason;
251
252 if( $wgRequest->wasPosted() ){
253 # Ok, so we got a POST submission asking us to reblock a user. So show the
254 # confirm checkbox; the user will only see it if they haven't previously
255 $fields['Confirm']['type'] = 'check';
256 } else {
257 # We got a target, but it wasn't a POST request, so the user must have gone
258 # to a link like [[Special:Block/User]]. We don't need to show the checkbox
259 # as long as they go ahead and block *that* user
260 $fields['Confirm']['default'] = 1;
261 }
262
263 if( $block->mExpiry == 'infinity' ) {
264 $fields['Expiry']['default'] = 'indefinite';
265 } else {
266 $fields['Expiry']['default'] = wfTimestamp( TS_RFC2822, $block->mExpiry );
267 }
268
269 $this->alreadyBlocked = true;
270 $this->preErrors[] = array( 'ipb-needreblock', (string)$block->getTarget() );
271 }
272
273 # We always need confirmation to do HideUser
274 if( $this->requestedHideUser ){
275 $fields['Confirm']['type'] = 'check';
276 unset( $fields['Confirm']['default'] );
277 $this->preErrors[] = 'ipb-confirmhideuser';
278 }
279
280 # Or if the user is trying to block themselves
281 if( (string)$this->target === $wgUser->getName() ){
282 $fields['Confirm']['type'] = 'check';
283 unset( $fields['Confirm']['default'] );
284 $this->preErrors[] = 'ipb-blockingself';
285 }
286 }
287
288 /**
289 * Add header elements like block log entries, etc.
290 * @param $form HTMLForm
291 * @return void
292 */
293 protected function doPreText( HTMLForm &$form ){
294 $form->addPreText( wfMsgExt( 'blockiptext', 'parse' ) );
295
296 $otherBlockMessages = array();
297 if( $this->target !== null ) {
298 # Get other blocks, i.e. from GlobalBlocking or TorBlock extension
299 wfRunHooks( 'OtherBlockLogLink', array( &$otherBlockMessages, $this->target ) );
300
301 if( count( $otherBlockMessages ) ) {
302 $s = Html::rawElement(
303 'h2',
304 array(),
305 wfMsgExt( 'ipb-otherblocks-header', 'parseinline', count( $otherBlockMessages ) )
306 ) . "\n";
307 $list = '';
308 foreach( $otherBlockMessages as $link ) {
309 $list .= Html::rawElement( 'li', array(), $link ) . "\n";
310 }
311 $s .= Html::rawElement(
312 'ul',
313 array( 'class' => 'mw-blockip-alreadyblocked' ),
314 $list
315 ) . "\n";
316 $form->addPreText( $s );
317 }
318 }
319 }
320
321 /**
322 * Add header text inside the form, just underneath where the errors would go
323 * @param $form HTMLForm
324 * @return void
325 */
326 protected function doHeaderText( HTMLForm &$form ){
327 global $wgRequest;
328 # Don't need to do anything if the form has been posted
329 if( !$wgRequest->wasPosted() && $this->preErrors ){
330 $s = HTMLForm::formatErrors( $this->preErrors );
331 if( $s ){
332 $form->addHeaderText( Html::rawElement(
333 'div',
334 array( 'class' => 'error' ),
335 $s
336 ) );
337 }
338 }
339 }
340
341 /**
342 * Add footer elements to the form
343 * @param $form HTMLForm
344 * @return void
345 */
346 protected function doPostText( HTMLForm &$form ){
347 global $wgUser, $wgLang;
348
349 $skin = $wgUser->getSkin();
350
351 # Link to the user's contributions, if applicable
352 if( $this->target instanceof User ){
353 $contribsPage = SpecialPage::getTitleFor( 'Contributions', $this->target->getName() );
354 $links[] = $skin->link(
355 $contribsPage,
356 wfMsgExt( 'ipb-blocklist-contribs', 'escape', $this->target->getName() )
357 );
358 }
359
360 # Link to unblock the specified user, or to a blank unblock form
361 if( $this->target instanceof User ) {
362 $message = wfMsgExt( 'ipb-unblock-addr', array( 'parseinline' ), $this->target->getName() );
363 $list = SpecialPage::getTitleFor( 'Unblock', $this->target->getName() );
364 } else {
365 $message = wfMsgExt( 'ipb-unblock', array( 'parseinline' ) );
366 $list = SpecialPage::getTitleFor( 'Unblock' );
367 }
368 $links[] = $skin->linkKnown( $list, $message, array() );
369
370 # Link to the block list
371 $links[] = $skin->linkKnown(
372 SpecialPage::getTitleFor( 'BlockList' ),
373 wfMsg( 'ipb-blocklist' )
374 );
375
376 # Link to edit the block dropdown reasons, if applicable
377 if ( $wgUser->isAllowed( 'editinterface' ) ) {
378 $links[] = $skin->link(
379 Title::makeTitle( NS_MEDIAWIKI, 'Ipbreason-dropdown' ),
380 wfMsgHtml( 'ipb-edit-dropdown' ),
381 array(),
382 array( 'action' => 'edit' )
383 );
384 }
385
386 $form->addPostText( Html::rawElement(
387 'p',
388 array( 'class' => 'mw-ipb-conveniencelinks' ),
389 $wgLang->pipeList( $links )
390 ) );
391
392 if( $this->target instanceof User ){
393 # Get relevant extracts from the block and suppression logs, if possible
394 $userpage = $this->target->getUserPage();
395 $out = '';
396
397 LogEventsList::showLogExtract(
398 $out,
399 'block',
400 $userpage->getPrefixedText(),
401 '',
402 array(
403 'lim' => 10,
404 'msgKey' => array( 'blocklog-showlog', $userpage->getText() ),
405 'showIfEmpty' => false
406 )
407 );
408 $form->addPostText( $out );
409
410 # Add suppression block entries if allowed
411 if( $wgUser->isAllowed( 'suppressionlog' ) ) {
412 LogEventsList::showLogExtract(
413 $out,
414 'suppress',
415 $userpage->getPrefixedText(),
416 '',
417 array(
418 'lim' => 10,
419 'conds' => array( 'log_action' => array( 'block', 'reblock', 'unblock' ) ),
420 'msgKey' => array( 'blocklog-showsuppresslog', $userpage->getText() ),
421 'showIfEmpty' => false
422 )
423 );
424 $form->addPostText( $out );
425 }
426 }
427 }
428
429 /**
430 * Determine the target of the block, and the type of target
431 * TODO: should be in Block.php?
432 * @param $par String subpage parameter passed to setup, or data value from
433 * the HTMLForm
434 * @param $request WebRequest optionally try and get data from a request too
435 * @return void
436 */
437 public static function getTargetAndType( $par, WebRequest $request = null ){
438 $i = 0;
439 $target = null;
440 while( true ){
441 switch( $i++ ){
442 case 0:
443 # The HTMLForm will check wpTarget first and only if it doesn't get
444 # a value use the default, which will be generated from the options
445 # below; so this has to have a higher precedence here than $par, or
446 # we could end up with different values in $this->target and the HTMLForm!
447 if( $request instanceof WebRequest ){
448 $target = $request->getText( 'wpTarget', null );
449 }
450 break;
451 case 1:
452 $target = $par;
453 break;
454 case 2:
455 if( $request instanceof WebRequest ){
456 $target = $request->getText( 'ip', null );
457 }
458 break;
459 case 3:
460 # B/C @since 1.18
461 if( $request instanceof WebRequest ){
462 $target = $request->getText( 'wpBlockAddress', null );
463 }
464 break;
465 case 4:
466 break 2;
467 }
468 list( $target, $type ) = Block::parseTarget( $target );
469 if( $type !== null ){
470 return array( $target, $type );
471 }
472 }
473 return array( null, null );
474 }
475
476 /**
477 * HTMLForm field validation-callback for Target field.
478 * @since 1.18
479 * @return Message
480 */
481 public static function validateTargetField( $value, $alldata = null ) {
482 global $wgBlockCIDRLimit;
483
484 list( $target, $type ) = self::getTargetAndType( $value );
485
486 if( $type == Block::TYPE_USER ){
487 # TODO: why do we not have a User->exists() method?
488 if( !$target->getId() ){
489 return wfMessage( 'nosuchusershort',
490 wfEscapeWikiText( $target->getName() ) );
491 }
492
493 $status = self::checkUnblockSelf( $target );
494 if ( $status !== true ) {
495 return wfMessage( 'badaccess', $status );
496 }
497
498 } elseif( $type == Block::TYPE_RANGE ){
499 list( $ip, $range ) = explode( '/', $target, 2 );
500
501 if( ( IP::isIPv4( $ip ) && $wgBlockCIDRLimit['IPv4'] == 32 )
502 || ( IP::isIPv6( $ip ) && $wgBlockCIDRLimit['IPV6'] == 128 ) )
503 {
504 # Range block effectively disabled
505 return wfMessage( 'range_block_disabled' );
506 }
507
508 if( ( IP::isIPv4( $ip ) && $range > 32 )
509 || ( IP::isIPv6( $ip ) && $range > 128 ) )
510 {
511 # Dodgy range
512 return wfMessage( 'ip_range_invalid' );
513 }
514
515 if( IP::isIPv4( $ip ) && $range < $wgBlockCIDRLimit['IPv4'] ) {
516 return wfMessage( 'ip_range_toolarge', $wgBlockCIDRLimit['IPv4'] );
517 }
518
519 if( IP::isIPv6( $ip ) && $range < $wgBlockCIDRLimit['IPv6'] ) {
520 return wfMessage( 'ip_range_toolarge', $wgBlockCIDRLimit['IPv6'] );
521 }
522
523 } elseif( $type == Block::TYPE_IP ){
524 # All is well
525
526 } else {
527 return wfMessage( 'badipaddress' );
528 }
529
530 return true;
531 }
532
533 /**
534 * Given the form data, actually implement a block
535 * @param $data Array
536 * @return Bool|String
537 */
538 public static function processForm( array $data ){
539 global $wgUser, $wgBlockAllowsUTEdit;
540
541 // Handled by field validator callback
542 // self::validateTargetField( $data['Target'] );
543
544 # This might have been a hidden field or a checkbox, so interesting data
545 # can come from it
546 $data['Confirm'] = !in_array( $data['Confirm'], array( '', '0', null, false ), true );
547
548 list( $target, $type ) = self::getTargetAndType( $data['Target'] );
549 if( $type == Block::TYPE_USER ){
550 $user = $target;
551 $target = $user->getName();
552 $userId = $user->getId();
553
554 # Give admins a heads-up before they go and block themselves. Much messier
555 # to do this for IPs, but it's pretty unlikely they'd ever get the 'block'
556 # permission anyway, although the code does allow for it
557 if( $target === $wgUser->getName() &&
558 ( $data['PreviousTarget'] != $data['Target'] || !$data['Confirm'] ) )
559 {
560 return array( 'ipb-blockingself' );
561 }
562
563 } elseif( $type == Block::TYPE_RANGE ){
564 $userId = 0;
565
566 } elseif( $type == Block::TYPE_IP ){
567 $target = $target->getName();
568 $userId = 0;
569
570 } else {
571 # This should have been caught in the form field validation
572 return array( 'badipaddress' );
573 }
574
575 if( ( strlen( $data['Expiry'] ) == 0) || ( strlen( $data['Expiry'] ) > 50 )
576 || !self::parseExpiryInput( $data['Expiry'] ) )
577 {
578 return array( 'ipb_expiry_invalid' );
579 }
580
581 if( !isset( $data['DisableEmail'] ) ){
582 $data['DisableEmail'] = false;
583 }
584
585 # If the user has done the form 'properly', they won't even have been given the
586 # option to suppress-block unless they have the 'hideuser' permission
587 if( !isset( $data['HideUser'] ) ){
588 $data['HideUser'] = false;
589 }
590 if( $data['HideUser'] ) {
591 if( !$wgUser->isAllowed('hideuser') ){
592 # this codepath is unreachable except by a malicious user spoofing forms,
593 # or by race conditions (user has oversight and sysop, loads block form,
594 # and is de-oversighted before submission); so need to fail completely
595 # rather than just silently disable hiding
596 return array( 'badaccess-group0' );
597 }
598
599 # Recheck params here...
600 if( $type != Block::TYPE_USER ) {
601 $data['HideUser'] = false; # IP users should not be hidden
602
603 } elseif( !in_array( $data['Expiry'], array( 'infinite', 'infinity', 'indefinite' ) ) ) {
604 # Bad expiry.
605 return array( 'ipb_expiry_temp' );
606
607 } elseif( $user->getEditCount() > self::HIDEUSER_CONTRIBLIMIT ) {
608 # Typically, the user should have a handful of edits.
609 # Disallow hiding users with many edits for performance.
610 return array( 'ipb_hide_invalid' );
611
612 } elseif( !$data['Confirm'] ){
613 return array( 'ipb-confirmhideuser' );
614 }
615 }
616
617 # Create block object.
618 $block = new Block();
619 $block->setTarget( $target );
620 $block->setBlocker( $wgUser );
621 $block->mReason = $data['Reason'][0];
622 $block->mExpiry = self::parseExpiryInput( $data['Expiry'] );
623 $block->prevents( 'createaccount', $data['CreateAccount'] );
624 $block->prevents( 'editownusertalk', ( !$wgBlockAllowsUTEdit || $data['DisableUTEdit'] ) );
625 $block->prevents( 'sendemail', $data['DisableEmail'] );
626 $block->isHardblock( $data['HardBlock'] );
627 $block->isAutoblocking( $data['AutoBlock'] );
628 $block->mHideName = $data['HideUser'];
629
630 if( !wfRunHooks( 'BlockIp', array( &$block, &$wgUser ) ) ) {
631 return array( 'hookaborted' );
632 }
633
634 # Try to insert block. Is there a conflicting block?
635 $status = $block->insert();
636 if( !$status ) {
637 # Show form unless the user is already aware of this...
638 if( !$data['Confirm'] || ( array_key_exists( 'PreviousTarget', $data )
639 && $data['PreviousTarget'] !== htmlspecialchars( $block->getTarget() ) ) )
640 {
641 return array( array( 'ipb_already_blocked', $block->getTarget() ) );
642 # Otherwise, try to update the block...
643 } else {
644 # This returns direct blocks before autoblocks/rangeblocks, since we should
645 # be sure the user is blocked by now it should work for our purposes
646 $currentBlock = Block::newFromTarget( $target );
647
648 if( $block->equals( $currentBlock ) ) {
649 return array( array( 'ipb_already_blocked', $block->getTarget() ) );
650 }
651
652 # If the name was hidden and the blocking user cannot hide
653 # names, then don't allow any block changes...
654 if( $currentBlock->mHideName && !$wgUser->isAllowed( 'hideuser' ) ) {
655 return array( 'cant-see-hidden-user' );
656 }
657
658 $currentBlock->delete();
659 $status = $block->insert();
660 $logaction = 'reblock';
661
662 # Unset _deleted fields if requested
663 if( $currentBlock->mHideName && !$data['HideUser'] ) {
664 RevisionDeleteUser::unsuppressUserName( $target, $userId );
665 }
666
667 # If hiding/unhiding a name, this should go in the private logs
668 if( (bool)$currentBlock->mHideName ){
669 $data['HideUser'] = true;
670 }
671 }
672 } else {
673 $logaction = 'block';
674 }
675
676 wfRunHooks( 'BlockIpComplete', array( $block, $wgUser ) );
677
678 # Set *_deleted fields if requested
679 if( $data['HideUser'] ) {
680 RevisionDeleteUser::suppressUserName( $target, $userId );
681 }
682
683 # Can't watch a rangeblock
684 if( $type != Block::TYPE_RANGE && $data['Watch'] ) {
685 $wgUser->addWatch( Title::makeTitle( NS_USER, $target ) );
686 }
687
688 # Block constructor sanitizes certain block options on insert
689 $data['BlockEmail'] = $block->prevents( 'sendemail' );
690 $data['AutoBlock'] = $block->isAutoblocking();
691
692 # Prepare log parameters
693 $logParams = array();
694 $logParams[] = $data['Expiry'];
695 $logParams[] = self::blockLogFlags( $data, $type );
696
697 # Make log entry, if the name is hidden, put it in the oversight log
698 $log_type = $data['HideUser'] ? 'suppress' : 'block';
699 $log = new LogPage( $log_type );
700 $log_id = $log->addEntry(
701 $logaction,
702 Title::makeTitle( NS_USER, $target ),
703 $data['Reason'][0],
704 $logParams
705 );
706 # Relate log ID to block IDs (bug 25763)
707 $blockIds = array_merge( array( $status['id'] ), $status['autoIds'] );
708 $log->addRelations( 'ipb_id', $blockIds, $log_id );
709
710 # Report to the user
711 return true;
712 }
713
714 /**
715 * Get an array of suggested block durations from MediaWiki:Ipboptions
716 * @todo FIXME: This uses a rather odd syntax for the options, should it be converted
717 * to the standard "**<duration>|<displayname>" format?
718 * @return Array
719 */
720 public static function getSuggestedDurations( $lang = null ){
721 $a = array();
722 $msg = $lang === null
723 ? wfMessage( 'ipboptions' )->inContentLanguage()->text()
724 : wfMessage( 'ipboptions' )->inLanguage( $lang )->text();
725
726 if( $msg == '-' ){
727 return array();
728 }
729
730 foreach( explode( ',', $msg ) as $option ) {
731 if( strpos( $option, ':' ) === false ){
732 $option = "$option:$option";
733 }
734 list( $show, $value ) = explode( ':', $option );
735 $a[htmlspecialchars( $show )] = htmlspecialchars( $value );
736 }
737 return $a;
738 }
739
740 /**
741 * Convert a submitted expiry time, which may be relative ("2 weeks", etc) or absolute
742 * ("24 May 2034", etc), into an absolute timestamp we can put into the database.
743 * @param $expiry String: whatever was typed into the form
744 * @return String: timestamp or "infinity" string for the DB implementation
745 */
746 public static function parseExpiryInput( $expiry ) {
747 static $infinity;
748 if( $infinity == null ){
749 $infinity = wfGetDB( DB_SLAVE )->getInfinity();
750 }
751 if ( $expiry == 'infinite' || $expiry == 'indefinite' ) {
752 $expiry = $infinity;
753 } else {
754 $expiry = strtotime( $expiry );
755 if ( $expiry < 0 || $expiry === false ) {
756 return false;
757 }
758 $expiry = wfTimestamp( TS_MW, $expiry );
759 }
760 return $expiry;
761 }
762
763 /**
764 * Can we do an email block?
765 * @param $user User: the sysop wanting to make a block
766 * @return Boolean
767 */
768 public static function canBlockEmail( $user ) {
769 global $wgEnableUserEmail, $wgSysopEmailBans;
770 return ( $wgEnableUserEmail && $wgSysopEmailBans && $user->isAllowed( 'blockemail' ) );
771 }
772
773 /**
774 * bug 15810: blocked admins should not be able to block/unblock
775 * others, and probably shouldn't be able to unblock themselves
776 * either.
777 * @param $user User|Int|String
778 */
779 public static function checkUnblockSelf( $user ) {
780 global $wgUser;
781 if ( is_int( $user ) ) {
782 $user = User::newFromId( $user );
783 } elseif ( is_string( $user ) ) {
784 $user = User::newFromName( $user );
785 }
786 if( $wgUser->isBlocked() ){
787 if( $user instanceof User && $user->getId() == $wgUser->getId() ) {
788 # User is trying to unblock themselves
789 if ( $wgUser->isAllowed( 'unblockself' ) ) {
790 return true;
791 } else {
792 return 'ipbnounblockself';
793 }
794 } else {
795 # User is trying to block/unblock someone else
796 return 'ipbblocked';
797 }
798 } else {
799 return true;
800 }
801 }
802
803 /**
804 * Return a comma-delimited list of "flags" to be passed to the log
805 * reader for this block, to provide more information in the logs
806 * @param $data Array from HTMLForm data
807 * @param $type Block::TYPE_ constant
808 * @return array
809 */
810 protected static function blockLogFlags( array $data, $type ) {
811 global $wgBlockAllowsUTEdit;
812 $flags = array();
813
814 # when blocking a user the option 'anononly' is not available/has no effect -> do not write this into log
815 if( !$data['HardBlock'] && $type != Block::TYPE_USER ){
816 $flags[] = 'anononly';
817 }
818
819 if( $data['CreateAccount'] ){
820 $flags[] = 'nocreate';
821 }
822
823 # Same as anononly, this is not displayed when blocking an IP address
824 if( !$data['AutoBlock'] && $type != Block::TYPE_IP ){
825 $flags[] = 'noautoblock';
826 }
827
828 if( $data['DisableEmail'] ){
829 $flags[] = 'noemail';
830 }
831
832 if( $wgBlockAllowsUTEdit && $data['DisableUTEdit'] ){
833 $flags[] = 'nousertalk';
834 }
835
836 if( $data['HideUser'] ){
837 $flags[] = 'hiddenname';
838 }
839
840 return implode( ',', $flags );
841 }
842 }
843
844 # BC @since 1.18
845 class IPBlockForm extends SpecialBlock {}
Wiklou, le Wiki du Wiklou