dépôts / lhc / web / wiklou.git / blob
? search:


bff9fd009569780df197aec54d6f4421f458123c
[lhc/web/wiklou.git] / includes / api / ApiFormatBase.php
1 <?php
2 /**
3 * Copyright © 2006 Yuri Astrakhan "<Firstname><Lastname>@gmail.com"
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
19 *
20 * @file
21 */
22
23 /**
24 * This is the abstract base class for API formatters.
25 *
26 * @ingroup API
27 */
28 abstract class ApiFormatBase extends ApiBase {
29 private $mIsHtml, $mFormat;
30 private $mBuffer, $mDisabled = false;
31 private $mIsWrappedHtml = false;
32 private $mHttpStatus = false;
33 protected $mForceDefaultParams = false;
34
35 /**
36 * If $format ends with 'fm', pretty-print the output in HTML.
37 * @param ApiMain $main
38 * @param string $format Format name
39 */
40 public function __construct( ApiMain $main, $format ) {
41 parent::__construct( $main, $format );
42
43 $this->mIsHtml = ( substr( $format, -2, 2 ) === 'fm' ); // ends with 'fm'
44 if ( $this->mIsHtml ) {
45 $this->mFormat = substr( $format, 0, -2 ); // remove ending 'fm'
46 $this->mIsWrappedHtml = $this->getMain()->getCheck( 'wrappedhtml' );
47 } else {
48 $this->mFormat = $format;
49 }
50 $this->mFormat = strtoupper( $this->mFormat );
51 }
52
53 /**
54 * Overriding class returns the MIME type that should be sent to the client.
55 *
56 * When getIsHtml() returns true, the return value here is used for syntax
57 * highlighting but the client sees text/html.
58 *
59 * @return string
60 */
61 abstract public function getMimeType();
62
63 /**
64 * Return a filename for this module's output.
65 * @note If $this->getIsWrappedHtml() || $this->getIsHtml(), you'll very
66 * likely want to fall back to this class's version.
67 * @since 1.27
68 * @return string Generally this should be "api-result.$ext"
69 */
70 public function getFilename() {
71 if ( $this->getIsWrappedHtml() ) {
72 return 'api-result-wrapped.json';
73 } elseif ( $this->getIsHtml() ) {
74 return 'api-result.html';
75 } else {
76 $exts = MediaWiki\MediaWikiServices::getInstance()->getMimeAnalyzer()
77 ->getExtensionsForType( $this->getMimeType() );
78 $ext = $exts ? strtok( $exts, ' ' ) : strtolower( $this->mFormat );
79 return "api-result.$ext";
80 }
81 }
82
83 /**
84 * Get the internal format name
85 * @return string
86 */
87 public function getFormat() {
88 return $this->mFormat;
89 }
90
91 /**
92 * Returns true when the HTML pretty-printer should be used.
93 * The default implementation assumes that formats ending with 'fm'
94 * should be formatted in HTML.
95 * @return bool
96 */
97 public function getIsHtml() {
98 return $this->mIsHtml;
99 }
100
101 /**
102 * Returns true when the special wrapped mode is enabled.
103 * @since 1.27
104 * @return bool
105 */
106 protected function getIsWrappedHtml() {
107 return $this->mIsWrappedHtml;
108 }
109
110 /**
111 * Disable the formatter.
112 *
113 * This causes calls to initPrinter() and closePrinter() to be ignored.
114 */
115 public function disable() {
116 $this->mDisabled = true;
117 }
118
119 /**
120 * Whether the printer is disabled
121 * @return bool
122 */
123 public function isDisabled() {
124 return $this->mDisabled;
125 }
126
127 /**
128 * Whether this formatter can handle printing API errors.
129 *
130 * If this returns false, then on API errors the default printer will be
131 * instantiated.
132 * @since 1.23
133 * @return bool
134 */
135 public function canPrintErrors() {
136 return true;
137 }
138
139 /**
140 * Ignore request parameters, force a default.
141 *
142 * Used as a fallback if errors are being thrown.
143 * @since 1.26
144 */
145 public function forceDefaultParams() {
146 $this->mForceDefaultParams = true;
147 }
148
149 /**
150 * Overridden to honor $this->forceDefaultParams(), if applicable
151 * @inheritDoc
152 * @since 1.26
153 */
154 protected function getParameterFromSettings( $paramName, $paramSettings, $parseLimit ) {
155 if ( !$this->mForceDefaultParams ) {
156 return parent::getParameterFromSettings( $paramName, $paramSettings, $parseLimit );
157 }
158
159 if ( !is_array( $paramSettings ) ) {
160 return $paramSettings;
161 }
162
163 return $paramSettings[self::PARAM_DFLT] ?? null;
164 }
165
166 /**
167 * Set the HTTP status code to be used for the response
168 * @since 1.29
169 * @param int $code
170 */
171 public function setHttpStatus( $code ) {
172 if ( $this->mDisabled ) {
173 return;
174 }
175
176 if ( $this->getIsHtml() ) {
177 $this->mHttpStatus = $code;
178 } else {
179 $this->getMain()->getRequest()->response()->statusHeader( $code );
180 }
181 }
182
183 /**
184 * Initialize the printer function and prepare the output headers.
185 * @param bool $unused Always false since 1.25
186 */
187 public function initPrinter( $unused = false ) {
188 if ( $this->mDisabled ) {
189 return;
190 }
191
192 $mime = $this->getIsWrappedHtml()
193 ? 'text/mediawiki-api-prettyprint-wrapped'
194 : ( $this->getIsHtml() ? 'text/html' : $this->getMimeType() );
195
196 // Some printers (ex. Feed) do their own header settings,
197 // in which case $mime will be set to null
198 if ( $mime === null ) {
199 return; // skip any initialization
200 }
201
202 $this->getMain()->getRequest()->response()->header( "Content-Type: $mime; charset=utf-8" );
203
204 // Set X-Frame-Options API results (T41180)
205 $apiFrameOptions = $this->getConfig()->get( 'ApiFrameOptions' );
206 if ( $apiFrameOptions ) {
207 $this->getMain()->getRequest()->response()->header( "X-Frame-Options: $apiFrameOptions" );
208 }
209
210 // Set a Content-Disposition header so something downloading an API
211 // response uses a halfway-sensible filename (T128209).
212 $header = 'Content-Disposition: inline';
213 $filename = $this->getFilename();
214 $compatFilename = mb_convert_encoding( $filename, 'ISO-8859-1' );
215 if ( preg_match( '/^[0-9a-zA-Z!#$%&\'*+\-.^_`|~]+$/', $compatFilename ) ) {
216 $header .= '; filename=' . $compatFilename;
217 } else {
218 $header .= '; filename="'
219 . preg_replace( '/([\0-\x1f"\x5c\x7f])/', '\\\\$1', $compatFilename ) . '"';
220 }
221 if ( $compatFilename !== $filename ) {
222 $value = "UTF-8''" . rawurlencode( $filename );
223 // rawurlencode() encodes more characters than RFC 5987 specifies. Unescape the ones it allows.
224 $value = strtr( $value, [
225 '%21' => '!', '%23' => '#', '%24' => '$', '%26' => '&', '%2B' => '+', '%5E' => '^',
226 '%60' => '`', '%7C' => '|',
227 ] );
228 $header .= '; filename*=' . $value;
229 }
230 $this->getMain()->getRequest()->response()->header( $header );
231 }
232
233 /**
234 * Finish printing and output buffered data.
235 */
236 public function closePrinter() {
237 if ( $this->mDisabled ) {
238 return;
239 }
240
241 $mime = $this->getMimeType();
242 if ( $this->getIsHtml() && $mime !== null ) {
243 $format = $this->getFormat();
244 $lcformat = strtolower( $format );
245 $result = $this->getBuffer();
246
247 $context = new DerivativeContext( $this->getMain() );
248 $context->setSkin( SkinFactory::getDefaultInstance()->makeSkin( 'apioutput' ) );
249 $context->setTitle( SpecialPage::getTitleFor( 'ApiHelp' ) );
250 $out = new OutputPage( $context );
251 $context->setOutput( $out );
252
253 $out->setRobotPolicy( 'noindex,nofollow' );
254 $out->addModuleStyles( 'mediawiki.apipretty' );
255 $out->setPageTitle( $context->msg( 'api-format-title' ) );
256
257 if ( !$this->getIsWrappedHtml() ) {
258 // When the format without suffix 'fm' is defined, there is a non-html version
259 if ( $this->getMain()->getModuleManager()->isDefined( $lcformat, 'format' ) ) {
260 if ( !$this->getRequest()->wasPosted() ) {
261 $nonHtmlUrl = strtok( $this->getRequest()->getFullRequestURL(), '?' )
262 . '?' . $this->getRequest()->appendQueryValue( 'format', $lcformat );
263 $msg = $context->msg( 'api-format-prettyprint-header-hyperlinked' )
264 ->params( $format, $lcformat, $nonHtmlUrl );
265 } else {
266 $msg = $context->msg( 'api-format-prettyprint-header' )->params( $format, $lcformat );
267 }
268 } else {
269 $msg = $context->msg( 'api-format-prettyprint-header-only-html' )->params( $format );
270 }
271
272 $header = $msg->parseAsBlock();
273 $out->addHTML(
274 Html::rawElement( 'div', [ 'class' => 'api-pretty-header' ],
275 ApiHelp::fixHelpLinks( $header )
276 )
277 );
278
279 if ( $this->mHttpStatus && $this->mHttpStatus !== 200 ) {
280 $out->addHTML(
281 Html::rawElement( 'div', [ 'class' => 'api-pretty-header api-pretty-status' ],
282 $this->msg(
283 'api-format-prettyprint-status',
284 $this->mHttpStatus,
285 HttpStatus::getMessage( $this->mHttpStatus )
286 )->parse()
287 )
288 );
289 }
290 }
291
292 if ( Hooks::run( 'ApiFormatHighlight', [ $context, $result, $mime, $format ] ) ) {
293 $out->addHTML(
294 Html::element( 'pre', [ 'class' => 'api-pretty-content' ], $result )
295 );
296 }
297
298 if ( $this->getIsWrappedHtml() ) {
299 // This is a special output mode mainly intended for ApiSandbox use
300 $time = $this->getMain()->getRequest()->getElapsedTime();
301 $json = FormatJson::encode(
302 [
303 'status' => (int)( $this->mHttpStatus ?: 200 ),
304 'statustext' => HttpStatus::getMessage( $this->mHttpStatus ?: 200 ),
305 'html' => $out->getHTML(),
306 'modules' => array_values( array_unique( array_merge(
307 $out->getModules(),
308 $out->getModuleStyles()
309 ) ) ),
310 'continue' => $this->getResult()->getResultData( 'continue' ),
311 'time' => round( $time * 1000 ),
312 ],
313 false, FormatJson::ALL_OK
314 );
315
316 // T68776: OutputHandler::mangleFlashPolicy() avoids a nasty bug in
317 // Flash, but what it does isn't friendly for the API, so we need to
318 // work around it.
319 if ( preg_match( '/\<\s*cross-domain-policy\s*\>/i', $json ) ) {
320 $json = preg_replace(
321 '/\<(\s*cross-domain-policy\s*)\>/i', '\\u003C$1\\u003E', $json
322 );
323 }
324
325 echo $json;
326 } else {
327 // API handles its own clickjacking protection.
328 // Note, that $wgBreakFrames will still override $wgApiFrameOptions for format mode.
329 $out->allowClickjacking();
330 $out->output();
331 }
332 } else {
333 // For non-HTML output, clear all errors that might have been
334 // displayed if display_errors=On
335 ob_clean();
336
337 echo $this->getBuffer();
338 }
339 }
340
341 /**
342 * Append text to the output buffer.
343 * @param string $text
344 */
345 public function printText( $text ) {
346 $this->mBuffer .= $text;
347 }
348
349 /**
350 * Get the contents of the buffer.
351 * @return string
352 */
353 public function getBuffer() {
354 return $this->mBuffer;
355 }
356
357 public function getAllowedParams() {
358 $ret = [];
359 if ( $this->getIsHtml() ) {
360 $ret['wrappedhtml'] = [
361 ApiBase::PARAM_DFLT => false,
362 ApiBase::PARAM_HELP_MSG => 'apihelp-format-param-wrappedhtml',
363
364 ];
365 }
366 return $ret;
367 }
368
369 protected function getExamplesMessages() {
370 return [
371 'action=query&meta=siteinfo&siprop=namespaces&format=' . $this->getModuleName()
372 => [ 'apihelp-format-example-generic', $this->getFormat() ]
373 ];
374 }
375
376 public function getHelpUrls() {
377 return 'https://www.mediawiki.org/wiki/Special:MyLanguage/API:Data_formats';
378 }
379
380 }
381
382 /**
383 * For really cool vim folding this needs to be at the end:
384 * vim: foldmarker=@{,@} foldmethod=marker
385 */
Wiklou, le Wiki du Wiklou