dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Merge "API: Use message-per-value for apihelp-query+usercontribs-param-prop"
[lhc/web/wiklou.git] / includes / htmlform / HTMLForm.php
1 <?php
2
3 /**
4 * HTML form generation and submission handling.
5 *
6 * This program is free software; you can redistribute it and/or modify
7 * it under the terms of the GNU General Public License as published by
8 * the Free Software Foundation; either version 2 of the License, or
9 * (at your option) any later version.
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 * GNU General Public License for more details.
15 *
16 * You should have received a copy of the GNU General Public License along
17 * with this program; if not, write to the Free Software Foundation, Inc.,
18 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
19 * http://www.gnu.org/copyleft/gpl.html
20 *
21 * @file
22 */
23
24 /**
25 * Object handling generic submission, CSRF protection, layout and
26 * other logic for UI forms. in a reusable manner.
27 *
28 * In order to generate the form, the HTMLForm object takes an array
29 * structure detailing the form fields available. Each element of the
30 * array is a basic property-list, including the type of field, the
31 * label it is to be given in the form, callbacks for validation and
32 * 'filtering', and other pertinent information.
33 *
34 * Field types are implemented as subclasses of the generic HTMLFormField
35 * object, and typically implement at least getInputHTML, which generates
36 * the HTML for the input field to be placed in the table.
37 *
38 * You can find extensive documentation on the www.mediawiki.org wiki:
39 * - https://www.mediawiki.org/wiki/HTMLForm
40 * - https://www.mediawiki.org/wiki/HTMLForm/tutorial
41 *
42 * The constructor input is an associative array of $fieldname => $info,
43 * where $info is an Associative Array with any of the following:
44 *
45 * 'class' -- the subclass of HTMLFormField that will be used
46 * to create the object. *NOT* the CSS class!
47 * 'type' -- roughly translates into the <select> type attribute.
48 * if 'class' is not specified, this is used as a map
49 * through HTMLForm::$typeMappings to get the class name.
50 * 'default' -- default value when the form is displayed
51 * 'id' -- HTML id attribute
52 * 'cssclass' -- CSS class
53 * 'csshelpclass' -- CSS class used to style help text
54 * 'dir' -- Direction of the element.
55 * 'options' -- associative array mapping labels to values.
56 * Some field types support multi-level arrays.
57 * 'options-messages' -- associative array mapping message keys to values.
58 * Some field types support multi-level arrays.
59 * 'options-message' -- message key to be parsed to extract the list of
60 * options (like 'ipbreason-dropdown').
61 * 'label-message' -- message key for a message to use as the label.
62 * can be an array of msg key and then parameters to
63 * the message.
64 * 'label' -- alternatively, a raw text message. Overridden by
65 * label-message
66 * 'help' -- message text for a message to use as a help text.
67 * 'help-message' -- message key for a message to use as a help text.
68 * can be an array of msg key and then parameters to
69 * the message.
70 * Overwrites 'help-messages' and 'help'.
71 * 'help-messages' -- array of message key. As above, each item can
72 * be an array of msg key and then parameters.
73 * Overwrites 'help'.
74 * 'required' -- passed through to the object, indicating that it
75 * is a required field.
76 * 'size' -- the length of text fields
77 * 'filter-callback -- a function name to give you the chance to
78 * massage the inputted value before it's processed.
79 * @see HTMLFormField::filter()
80 * 'validation-callback' -- a function name to give you the chance
81 * to impose extra validation on the field input.
82 * @see HTMLFormField::validate()
83 * 'name' -- By default, the 'name' attribute of the input field
84 * is "wp{$fieldname}". If you want a different name
85 * (eg one without the "wp" prefix), specify it here and
86 * it will be used without modification.
87 * 'hide-if' -- expression given as an array stating when the field
88 * should be hidden. The first array value has to be the
89 * expression's logic operator. Supported expressions:
90 * 'NOT'
91 * [ 'NOT', array $expression ]
92 * To hide a field if a given expression is not true.
93 * '==='
94 * [ '===', string $fieldName, string $value ]
95 * To hide a field if another field identified by
96 * $field has the value $value.
97 * '!=='
98 * [ '!==', string $fieldName, string $value ]
99 * Same as [ 'NOT', [ '===', $fieldName, $value ]
100 * 'OR', 'AND', 'NOR', 'NAND'
101 * [ 'XXX', array $expression1, ..., array $expressionN ]
102 * To hide a field if one or more (OR), all (AND),
103 * neither (NOR) or not all (NAND) given expressions
104 * are evaluated as true.
105 * The expressions will be given to a JavaScript frontend
106 * module which will continually update the field's
107 * visibility.
108 *
109 * Since 1.20, you can chain mutators to ease the form generation:
110 * @par Example:
111 * @code
112 * $form = new HTMLForm( $someFields );
113 * $form->setMethod( 'get' )
114 * ->setWrapperLegendMsg( 'message-key' )
115 * ->prepareForm()
116 * ->displayForm( '' );
117 * @endcode
118 * Note that you will have prepareForm and displayForm at the end. Other
119 * methods call done after that would simply not be part of the form :(
120 *
121 * @todo Document 'section' / 'subsection' stuff
122 */
123 class HTMLForm extends ContextSource {
124 // A mapping of 'type' inputs onto standard HTMLFormField subclasses
125 public static $typeMappings = array(
126 'api' => 'HTMLApiField',
127 'text' => 'HTMLTextField',
128 'textwithbutton' => 'HTMLTextFieldWithButton',
129 'textarea' => 'HTMLTextAreaField',
130 'select' => 'HTMLSelectField',
131 'radio' => 'HTMLRadioField',
132 'multiselect' => 'HTMLMultiSelectField',
133 'limitselect' => 'HTMLSelectLimitField',
134 'check' => 'HTMLCheckField',
135 'toggle' => 'HTMLCheckField',
136 'int' => 'HTMLIntField',
137 'float' => 'HTMLFloatField',
138 'info' => 'HTMLInfoField',
139 'selectorother' => 'HTMLSelectOrOtherField',
140 'selectandother' => 'HTMLSelectAndOtherField',
141 'namespaceselect' => 'HTMLSelectNamespace',
142 'namespaceselectwithbutton' => 'HTMLSelectNamespaceWithButton',
143 'tagfilter' => 'HTMLTagFilter',
144 'submit' => 'HTMLSubmitField',
145 'hidden' => 'HTMLHiddenField',
146 'edittools' => 'HTMLEditTools',
147 'checkmatrix' => 'HTMLCheckMatrix',
148 'cloner' => 'HTMLFormFieldCloner',
149 'autocompleteselect' => 'HTMLAutoCompleteSelectField',
150 // HTMLTextField will output the correct type="" attribute automagically.
151 // There are about four zillion other HTML5 input types, like range, but
152 // we don't use those at the moment, so no point in adding all of them.
153 'email' => 'HTMLTextField',
154 'password' => 'HTMLTextField',
155 'url' => 'HTMLTextField',
156 'title' => 'HTMLTitleTextField',
157 'user' => 'HTMLUserTextField',
158 );
159
160 public $mFieldData;
161
162 protected $mMessagePrefix;
163
164 /** @var HTMLFormField[] */
165 protected $mFlatFields;
166
167 protected $mFieldTree;
168 protected $mShowReset = false;
169 protected $mShowSubmit = true;
170 protected $mSubmitFlags = array( 'constructive', 'primary' );
171
172 protected $mSubmitCallback;
173 protected $mValidationErrorMessage;
174
175 protected $mPre = '';
176 protected $mHeader = '';
177 protected $mFooter = '';
178 protected $mSectionHeaders = array();
179 protected $mSectionFooters = array();
180 protected $mPost = '';
181 protected $mId;
182 protected $mTableId = '';
183
184 protected $mSubmitID;
185 protected $mSubmitName;
186 protected $mSubmitText;
187 protected $mSubmitTooltip;
188
189 protected $mTitle;
190 protected $mMethod = 'post';
191 protected $mWasSubmitted = false;
192
193 /**
194 * Form action URL. false means we will use the URL to set Title
195 * @since 1.19
196 * @var bool|string
197 */
198 protected $mAction = false;
199
200 protected $mUseMultipart = false;
201 protected $mHiddenFields = array();
202 protected $mButtons = array();
203
204 protected $mWrapperLegend = false;
205
206 /**
207 * Salt for the edit token.
208 * @var string|array
209 */
210 protected $mTokenSalt = '';
211
212 /**
213 * If true, sections that contain both fields and subsections will
214 * render their subsections before their fields.
215 *
216 * Subclasses may set this to false to render subsections after fields
217 * instead.
218 */
219 protected $mSubSectionBeforeFields = true;
220
221 /**
222 * Format in which to display form. For viable options,
223 * @see $availableDisplayFormats
224 * @var string
225 */
226 protected $displayFormat = 'table';
227
228 /**
229 * Available formats in which to display the form
230 * @var array
231 */
232 protected $availableDisplayFormats = array(
233 'table',
234 'div',
235 'raw',
236 'inline',
237 );
238
239 /**
240 * Available formats in which to display the form
241 * @var array
242 */
243 protected $availableSubclassDisplayFormats = array(
244 'vform',
245 'ooui',
246 );
247
248 /**
249 * Construct a HTMLForm object for given display type. May return a HTMLForm subclass.
250 *
251 * @param string $displayFormat
252 * @param mixed $arguments... Additional arguments to pass to the constructor.
253 * @return HTMLForm
254 */
255 public static function factory( $displayFormat/*, $arguments...*/ ) {
256 $arguments = func_get_args();
257 array_shift( $arguments );
258
259 switch ( $displayFormat ) {
260 case 'vform':
261 $reflector = new ReflectionClass( 'VFormHTMLForm' );
262 return $reflector->newInstanceArgs( $arguments );
263 case 'ooui':
264 $reflector = new ReflectionClass( 'OOUIHTMLForm' );
265 return $reflector->newInstanceArgs( $arguments );
266 default:
267 $reflector = new ReflectionClass( 'HTMLForm' );
268 $form = $reflector->newInstanceArgs( $arguments );
269 $form->setDisplayFormat( $displayFormat );
270 return $form;
271 }
272 }
273
274 /**
275 * Build a new HTMLForm from an array of field attributes
276 *
277 * @param array $descriptor Array of Field constructs, as described above
278 * @param IContextSource $context Available since 1.18, will become compulsory in 1.18.
279 * Obviates the need to call $form->setTitle()
280 * @param string $messagePrefix A prefix to go in front of default messages
281 */
282 public function __construct( $descriptor, /*IContextSource*/ $context = null,
283 $messagePrefix = ''
284 ) {
285 if ( $context instanceof IContextSource ) {
286 $this->setContext( $context );
287 $this->mTitle = false; // We don't need them to set a title
288 $this->mMessagePrefix = $messagePrefix;
289 } elseif ( is_null( $context ) && $messagePrefix !== '' ) {
290 $this->mMessagePrefix = $messagePrefix;
291 } elseif ( is_string( $context ) && $messagePrefix === '' ) {
292 // B/C since 1.18
293 // it's actually $messagePrefix
294 $this->mMessagePrefix = $context;
295 }
296
297 // Evil hack for mobile :(
298 if (
299 !$this->getConfig()->get( 'HTMLFormAllowTableFormat' )
300 && $this->displayFormat === 'table'
301 ) {
302 $this->displayFormat = 'div';
303 }
304
305 // Expand out into a tree.
306 $loadedDescriptor = array();
307 $this->mFlatFields = array();
308
309 foreach ( $descriptor as $fieldname => $info ) {
310 $section = isset( $info['section'] )
311 ? $info['section']
312 : '';
313
314 if ( isset( $info['type'] ) && $info['type'] == 'file' ) {
315 $this->mUseMultipart = true;
316 }
317
318 $field = static::loadInputFromParameters( $fieldname, $info, $this );
319
320 $setSection =& $loadedDescriptor;
321 if ( $section ) {
322 $sectionParts = explode( '/', $section );
323
324 while ( count( $sectionParts ) ) {
325 $newName = array_shift( $sectionParts );
326
327 if ( !isset( $setSection[$newName] ) ) {
328 $setSection[$newName] = array();
329 }
330
331 $setSection =& $setSection[$newName];
332 }
333 }
334
335 $setSection[$fieldname] = $field;
336 $this->mFlatFields[$fieldname] = $field;
337 }
338
339 $this->mFieldTree = $loadedDescriptor;
340 }
341
342 /**
343 * Set format in which to display the form
344 *
345 * @param string $format The name of the format to use, must be one of
346 * $this->availableDisplayFormats
347 *
348 * @throws MWException
349 * @since 1.20
350 * @return HTMLForm $this for chaining calls (since 1.20)
351 */
352 public function setDisplayFormat( $format ) {
353 if (
354 in_array( $format, $this->availableSubclassDisplayFormats ) ||
355 in_array( $this->displayFormat, $this->availableSubclassDisplayFormats )
356 ) {
357 throw new MWException( 'Cannot change display format after creation, ' .
358 'use HTMLForm::factory() instead' );
359 }
360
361 if ( !in_array( $format, $this->availableDisplayFormats ) ) {
362 throw new MWException( 'Display format must be one of ' .
363 print_r( $this->availableDisplayFormats, true ) );
364 }
365
366 // Evil hack for mobile :(
367 if ( !$this->getConfig()->get( 'HTMLFormAllowTableFormat' ) && $format === 'table' ) {
368 $format = 'div';
369 }
370
371 $this->displayFormat = $format;
372
373 return $this;
374 }
375
376 /**
377 * Getter for displayFormat
378 * @since 1.20
379 * @return string
380 */
381 public function getDisplayFormat() {
382 return $this->displayFormat;
383 }
384
385 /**
386 * Test if displayFormat is 'vform'
387 * @since 1.22
388 * @deprecated since 1.25
389 * @return bool
390 */
391 public function isVForm() {
392 wfDeprecated( __METHOD__, '1.25' );
393 return false;
394 }
395
396 /**
397 * Get the HTMLFormField subclass for this descriptor.
398 *
399 * The descriptor can be passed either 'class' which is the name of
400 * a HTMLFormField subclass, or a shorter 'type' which is an alias.
401 * This makes sure the 'class' is always set, and also is returned by
402 * this function for ease.
403 *
404 * @since 1.23
405 *
406 * @param string $fieldname Name of the field
407 * @param array $descriptor Input Descriptor, as described above
408 *
409 * @throws MWException
410 * @return string Name of a HTMLFormField subclass
411 */
412 public static function getClassFromDescriptor( $fieldname, &$descriptor ) {
413 if ( isset( $descriptor['class'] ) ) {
414 $class = $descriptor['class'];
415 } elseif ( isset( $descriptor['type'] ) ) {
416 $class = static::$typeMappings[$descriptor['type']];
417 $descriptor['class'] = $class;
418 } else {
419 $class = null;
420 }
421
422 if ( !$class ) {
423 throw new MWException( "Descriptor with no class for $fieldname: "
424 . print_r( $descriptor, true ) );
425 }
426
427 return $class;
428 }
429
430 /**
431 * Initialise a new Object for the field
432 *
433 * @param string $fieldname Name of the field
434 * @param array $descriptor Input Descriptor, as described above
435 * @param HTMLForm|null $parent Parent instance of HTMLForm
436 *
437 * @throws MWException
438 * @return HTMLFormField Instance of a subclass of HTMLFormField
439 */
440 public static function loadInputFromParameters( $fieldname, $descriptor,
441 HTMLForm $parent = null
442 ) {
443 $class = static::getClassFromDescriptor( $fieldname, $descriptor );
444
445 $descriptor['fieldname'] = $fieldname;
446 if ( $parent ) {
447 $descriptor['parent'] = $parent;
448 }
449
450 # @todo This will throw a fatal error whenever someone try to use
451 # 'class' to feed a CSS class instead of 'cssclass'. Would be
452 # great to avoid the fatal error and show a nice error.
453 $obj = new $class( $descriptor );
454
455 return $obj;
456 }
457
458 /**
459 * Prepare form for submission.
460 *
461 * @attention When doing method chaining, that should be the very last
462 * method call before displayForm().
463 *
464 * @throws MWException
465 * @return HTMLForm $this for chaining calls (since 1.20)
466 */
467 function prepareForm() {
468 # Check if we have the info we need
469 if ( !$this->mTitle instanceof Title && $this->mTitle !== false ) {
470 throw new MWException( "You must call setTitle() on an HTMLForm" );
471 }
472
473 # Load data from the request.
474 $this->loadData();
475
476 return $this;
477 }
478
479 /**
480 * Try submitting, with edit token check first
481 * @return Status|bool
482 */
483 function tryAuthorizedSubmit() {
484 $result = false;
485
486 $submit = false;
487 if ( $this->getMethod() != 'post' ) {
488 $submit = true; // no session check needed
489 } elseif ( $this->getRequest()->wasPosted() ) {
490 $editToken = $this->getRequest()->getVal( 'wpEditToken' );
491 if ( $this->getUser()->isLoggedIn() || $editToken != null ) {
492 // Session tokens for logged-out users have no security value.
493 // However, if the user gave one, check it in order to give a nice
494 // "session expired" error instead of "permission denied" or such.
495 $submit = $this->getUser()->matchEditToken( $editToken, $this->mTokenSalt );
496 } else {
497 $submit = true;
498 }
499 }
500
501 if ( $submit ) {
502 $this->mWasSubmitted = true;
503 $result = $this->trySubmit();
504 }
505
506 return $result;
507 }
508
509 /**
510 * The here's-one-I-made-earlier option: do the submission if
511 * posted, or display the form with or without funky validation
512 * errors
513 * @return bool|Status Whether submission was successful.
514 */
515 function show() {
516 $this->prepareForm();
517
518 $result = $this->tryAuthorizedSubmit();
519 if ( $result === true || ( $result instanceof Status && $result->isGood() ) ) {
520 return $result;
521 }
522
523 $this->displayForm( $result );
524
525 return false;
526 }
527
528 /**
529 * Validate all the fields, and call the submission callback
530 * function if everything is kosher.
531 * @throws MWException
532 * @return bool|string|array|Status
533 * - Bool true or a good Status object indicates success,
534 * - Bool false indicates no submission was attempted,
535 * - Anything else indicates failure. The value may be a fatal Status
536 * object, an HTML string, or an array of arrays (message keys and
537 * params) or strings (message keys)
538 */
539 function trySubmit() {
540 $this->mWasSubmitted = true;
541
542 # Check for cancelled submission
543 foreach ( $this->mFlatFields as $fieldname => $field ) {
544 if ( !empty( $field->mParams['nodata'] ) ) {
545 continue;
546 }
547 if ( $field->cancelSubmit( $this->mFieldData[$fieldname], $this->mFieldData ) ) {
548 $this->mWasSubmitted = false;
549 return false;
550 }
551 }
552
553 # Check for validation
554 foreach ( $this->mFlatFields as $fieldname => $field ) {
555 if ( !empty( $field->mParams['nodata'] ) ) {
556 continue;
557 }
558 if ( $field->isHidden( $this->mFieldData ) ) {
559 continue;
560 }
561 if ( $field->validate(
562 $this->mFieldData[$fieldname],
563 $this->mFieldData )
564 !== true
565 ) {
566 return isset( $this->mValidationErrorMessage )
567 ? $this->mValidationErrorMessage
568 : array( 'htmlform-invalid-input' );
569 }
570 }
571
572 $callback = $this->mSubmitCallback;
573 if ( !is_callable( $callback ) ) {
574 throw new MWException( 'HTMLForm: no submit callback provided. Use ' .
575 'setSubmitCallback() to set one.' );
576 }
577
578 $data = $this->filterDataForSubmit( $this->mFieldData );
579
580 $res = call_user_func( $callback, $data, $this );
581 if ( $res === false ) {
582 $this->mWasSubmitted = false;
583 }
584
585 return $res;
586 }
587
588 /**
589 * Test whether the form was considered to have been submitted or not, i.e.
590 * whether the last call to tryAuthorizedSubmit or trySubmit returned
591 * non-false.
592 *
593 * This will return false until HTMLForm::tryAuthorizedSubmit or
594 * HTMLForm::trySubmit is called.
595 *
596 * @since 1.23
597 * @return bool
598 */
599 function wasSubmitted() {
600 return $this->mWasSubmitted;
601 }
602
603 /**
604 * Set a callback to a function to do something with the form
605 * once it's been successfully validated.
606 *
607 * @param callable $cb The function will be passed the output from
608 * HTMLForm::filterDataForSubmit and this HTMLForm object, and must
609 * return as documented for HTMLForm::trySubmit
610 *
611 * @return HTMLForm $this for chaining calls (since 1.20)
612 */
613 function setSubmitCallback( $cb ) {
614 $this->mSubmitCallback = $cb;
615
616 return $this;
617 }
618
619 /**
620 * Set a message to display on a validation error.
621 *
622 * @param string|array $msg String or Array of valid inputs to wfMessage()
623 * (so each entry can be either a String or Array)
624 *
625 * @return HTMLForm $this for chaining calls (since 1.20)
626 */
627 function setValidationErrorMessage( $msg ) {
628 $this->mValidationErrorMessage = $msg;
629
630 return $this;
631 }
632
633 /**
634 * Set the introductory message, overwriting any existing message.
635 *
636 * @param string $msg Complete text of message to display
637 *
638 * @return HTMLForm $this for chaining calls (since 1.20)
639 */
640 function setIntro( $msg ) {
641 $this->setPreText( $msg );
642
643 return $this;
644 }
645
646 /**
647 * Set the introductory message, overwriting any existing message.
648 * @since 1.19
649 *
650 * @param string $msg Complete text of message to display
651 *
652 * @return HTMLForm $this for chaining calls (since 1.20)
653 */
654 function setPreText( $msg ) {
655 $this->mPre = $msg;
656
657 return $this;
658 }
659
660 /**
661 * Add introductory text.
662 *
663 * @param string $msg Complete text of message to display
664 *
665 * @return HTMLForm $this for chaining calls (since 1.20)
666 */
667 function addPreText( $msg ) {
668 $this->mPre .= $msg;
669
670 return $this;
671 }
672
673 /**
674 * Add header text, inside the form.
675 *
676 * @param string $msg Complete text of message to display
677 * @param string|null $section The section to add the header to
678 *
679 * @return HTMLForm $this for chaining calls (since 1.20)
680 */
681 function addHeaderText( $msg, $section = null ) {
682 if ( is_null( $section ) ) {
683 $this->mHeader .= $msg;
684 } else {
685 if ( !isset( $this->mSectionHeaders[$section] ) ) {
686 $this->mSectionHeaders[$section] = '';
687 }
688 $this->mSectionHeaders[$section] .= $msg;
689 }
690
691 return $this;
692 }
693
694 /**
695 * Set header text, inside the form.
696 * @since 1.19
697 *
698 * @param string $msg Complete text of message to display
699 * @param string|null $section The section to add the header to
700 *
701 * @return HTMLForm $this for chaining calls (since 1.20)
702 */
703 function setHeaderText( $msg, $section = null ) {
704 if ( is_null( $section ) ) {
705 $this->mHeader = $msg;
706 } else {
707 $this->mSectionHeaders[$section] = $msg;
708 }
709
710 return $this;
711 }
712
713 /**
714 * Add footer text, inside the form.
715 *
716 * @param string $msg Complete text of message to display
717 * @param string|null $section The section to add the footer text to
718 *
719 * @return HTMLForm $this for chaining calls (since 1.20)
720 */
721 function addFooterText( $msg, $section = null ) {
722 if ( is_null( $section ) ) {
723 $this->mFooter .= $msg;
724 } else {
725 if ( !isset( $this->mSectionFooters[$section] ) ) {
726 $this->mSectionFooters[$section] = '';
727 }
728 $this->mSectionFooters[$section] .= $msg;
729 }
730
731 return $this;
732 }
733
734 /**
735 * Set footer text, inside the form.
736 * @since 1.19
737 *
738 * @param string $msg Complete text of message to display
739 * @param string|null $section The section to add the footer text to
740 *
741 * @return HTMLForm $this for chaining calls (since 1.20)
742 */
743 function setFooterText( $msg, $section = null ) {
744 if ( is_null( $section ) ) {
745 $this->mFooter = $msg;
746 } else {
747 $this->mSectionFooters[$section] = $msg;
748 }
749
750 return $this;
751 }
752
753 /**
754 * Add text to the end of the display.
755 *
756 * @param string $msg Complete text of message to display
757 *
758 * @return HTMLForm $this for chaining calls (since 1.20)
759 */
760 function addPostText( $msg ) {
761 $this->mPost .= $msg;
762
763 return $this;
764 }
765
766 /**
767 * Set text at the end of the display.
768 *
769 * @param string $msg Complete text of message to display
770 *
771 * @return HTMLForm $this for chaining calls (since 1.20)
772 */
773 function setPostText( $msg ) {
774 $this->mPost = $msg;
775
776 return $this;
777 }
778
779 /**
780 * Add a hidden field to the output
781 *
782 * @param string $name Field name. This will be used exactly as entered
783 * @param string $value Field value
784 * @param array $attribs
785 *
786 * @return HTMLForm $this for chaining calls (since 1.20)
787 */
788 public function addHiddenField( $name, $value, $attribs = array() ) {
789 $attribs += array( 'name' => $name );
790 $this->mHiddenFields[] = array( $value, $attribs );
791
792 return $this;
793 }
794
795 /**
796 * Add an array of hidden fields to the output
797 *
798 * @since 1.22
799 *
800 * @param array $fields Associative array of fields to add;
801 * mapping names to their values
802 *
803 * @return HTMLForm $this for chaining calls
804 */
805 public function addHiddenFields( array $fields ) {
806 foreach ( $fields as $name => $value ) {
807 $this->mHiddenFields[] = array( $value, array( 'name' => $name ) );
808 }
809
810 return $this;
811 }
812
813 /**
814 * Add a button to the form
815 *
816 * @param string $name Field name.
817 * @param string $value Field value
818 * @param string $id DOM id for the button (default: null)
819 * @param array $attribs
820 *
821 * @return HTMLForm $this for chaining calls (since 1.20)
822 */
823 public function addButton( $name, $value, $id = null, $attribs = null ) {
824 $this->mButtons[] = compact( 'name', 'value', 'id', 'attribs' );
825
826 return $this;
827 }
828
829 /**
830 * Set the salt for the edit token.
831 *
832 * Only useful when the method is "post".
833 *
834 * @since 1.24
835 * @param string|array $salt Salt to use
836 * @return HTMLForm $this For chaining calls
837 */
838 public function setTokenSalt( $salt ) {
839 $this->mTokenSalt = $salt;
840
841 return $this;
842 }
843
844 /**
845 * Display the form (sending to the context's OutputPage object), with an
846 * appropriate error message or stack of messages, and any validation errors, etc.
847 *
848 * @attention You should call prepareForm() before calling this function.
849 * Moreover, when doing method chaining this should be the very last method
850 * call just after prepareForm().
851 *
852 * @param bool|string|array|Status $submitResult Output from HTMLForm::trySubmit()
853 *
854 * @return void Nothing, should be last call
855 */
856 function displayForm( $submitResult ) {
857 $this->getOutput()->addHTML( $this->getHTML( $submitResult ) );
858 }
859
860 /**
861 * Returns the raw HTML generated by the form
862 *
863 * @param bool|string|array|Status $submitResult Output from HTMLForm::trySubmit()
864 *
865 * @return string
866 */
867 function getHTML( $submitResult ) {
868 # For good measure (it is the default)
869 $this->getOutput()->preventClickjacking();
870 $this->getOutput()->addModules( 'mediawiki.htmlform' );
871
872 $html = ''
873 . $this->getErrors( $submitResult )
874 // In OOUI forms, we handle mHeader elsewhere. FIXME This is horrible.
875 . ( $this->getDisplayFormat() === 'ooui' ? '' : $this->mHeader )
876 . $this->getBody()
877 . $this->getHiddenFields()
878 . $this->getButtons()
879 . $this->mFooter;
880
881 $html = $this->wrapForm( $html );
882
883 return '' . $this->mPre . $html . $this->mPost;
884 }
885
886 /**
887 * Get HTML attributes for the `<form>` tag.
888 * @return array
889 */
890 protected function getFormAttributes() {
891 # Use multipart/form-data
892 $encType = $this->mUseMultipart
893 ? 'multipart/form-data'
894 : 'application/x-www-form-urlencoded';
895 # Attributes
896 $attribs = array(
897 'action' => $this->getAction(),
898 'method' => $this->getMethod(),
899 'enctype' => $encType,
900 );
901 if ( !empty( $this->mId ) ) {
902 $attribs['id'] = $this->mId;
903 }
904 return $attribs;
905 }
906
907 /**
908 * Wrap the form innards in an actual "<form>" element
909 *
910 * @param string $html HTML contents to wrap.
911 *
912 * @return string Wrapped HTML.
913 */
914 function wrapForm( $html ) {
915 # Include a <fieldset> wrapper for style, if requested.
916 if ( $this->mWrapperLegend !== false ) {
917 $legend = is_string( $this->mWrapperLegend ) ? $this->mWrapperLegend : false;
918 $html = Xml::fieldset( $legend, $html );
919 }
920
921 return Html::rawElement( 'form', $this->getFormAttributes() + array( 'class' => 'visualClear' ), $html );
922 }
923
924 /**
925 * Get the hidden fields that should go inside the form.
926 * @return string HTML.
927 */
928 function getHiddenFields() {
929 $html = '';
930 if ( $this->getMethod() == 'post' ) {
931 $html .= Html::hidden(
932 'wpEditToken',
933 $this->getUser()->getEditToken( $this->mTokenSalt ),
934 array( 'id' => 'wpEditToken' )
935 ) . "\n";
936 $html .= Html::hidden( 'title', $this->getTitle()->getPrefixedText() ) . "\n";
937 }
938
939 $articlePath = $this->getConfig()->get( 'ArticlePath' );
940 if ( strpos( $articlePath, '?' ) !== false && $this->getMethod() == 'get' ) {
941 $html .= Html::hidden( 'title', $this->getTitle()->getPrefixedText() ) . "\n";
942 }
943
944 foreach ( $this->mHiddenFields as $data ) {
945 list( $value, $attribs ) = $data;
946 $html .= Html::hidden( $attribs['name'], $value, $attribs ) . "\n";
947 }
948
949 return $html;
950 }
951
952 /**
953 * Get the submit and (potentially) reset buttons.
954 * @return string HTML.
955 */
956 function getButtons() {
957 $buttons = '';
958 $useMediaWikiUIEverywhere = $this->getConfig()->get( 'UseMediaWikiUIEverywhere' );
959
960 if ( $this->mShowSubmit ) {
961 $attribs = array();
962
963 if ( isset( $this->mSubmitID ) ) {
964 $attribs['id'] = $this->mSubmitID;
965 }
966
967 if ( isset( $this->mSubmitName ) ) {
968 $attribs['name'] = $this->mSubmitName;
969 }
970
971 if ( isset( $this->mSubmitTooltip ) ) {
972 $attribs += Linker::tooltipAndAccesskeyAttribs( $this->mSubmitTooltip );
973 }
974
975 $attribs['class'] = array( 'mw-htmlform-submit' );
976
977 if ( $useMediaWikiUIEverywhere ) {
978 foreach ( $this->mSubmitFlags as $flag ) {
979 array_push( $attribs['class'], 'mw-ui-' . $flag );
980 }
981 array_push( $attribs['class'], 'mw-ui-button' );
982 }
983
984 $buttons .= Xml::submitButton( $this->getSubmitText(), $attribs ) . "\n";
985 }
986
987 if ( $this->mShowReset ) {
988 $buttons .= Html::element(
989 'input',
990 array(
991 'type' => 'reset',
992 'value' => $this->msg( 'htmlform-reset' )->text(),
993 'class' => ( $useMediaWikiUIEverywhere ? 'mw-ui-button' : null ),
994 )
995 ) . "\n";
996 }
997
998 foreach ( $this->mButtons as $button ) {
999 $attrs = array(
1000 'type' => 'submit',
1001 'name' => $button['name'],
1002 'value' => $button['value']
1003 );
1004
1005 if ( $button['attribs'] ) {
1006 $attrs += $button['attribs'];
1007 }
1008
1009 if ( isset( $button['id'] ) ) {
1010 $attrs['id'] = $button['id'];
1011 }
1012
1013 if ( $useMediaWikiUIEverywhere ) {
1014 $attrs['class'] = isset( $attrs['class'] ) ? (array)$attrs['class'] : array();
1015 $attrs['class'][] = 'mw-ui-button';
1016 }
1017
1018 $buttons .= Html::element( 'input', $attrs ) . "\n";
1019 }
1020
1021 $html = Html::rawElement( 'span',
1022 array( 'class' => 'mw-htmlform-submit-buttons' ), "\n$buttons" ) . "\n";
1023
1024 return $html;
1025 }
1026
1027 /**
1028 * Get the whole body of the form.
1029 * @return string
1030 */
1031 function getBody() {
1032 return $this->displaySection( $this->mFieldTree, $this->mTableId );
1033 }
1034
1035 /**
1036 * Format and display an error message stack.
1037 *
1038 * @param string|array|Status $errors
1039 *
1040 * @return string
1041 */
1042 function getErrors( $errors ) {
1043 if ( $errors instanceof Status ) {
1044 if ( $errors->isOK() ) {
1045 $errorstr = '';
1046 } else {
1047 $errorstr = $this->getOutput()->parse( $errors->getWikiText() );
1048 }
1049 } elseif ( is_array( $errors ) ) {
1050 $errorstr = $this->formatErrors( $errors );
1051 } else {
1052 $errorstr = $errors;
1053 }
1054
1055 return $errorstr
1056 ? Html::rawElement( 'div', array( 'class' => 'error' ), $errorstr )
1057 : '';
1058 }
1059
1060 /**
1061 * Format a stack of error messages into a single HTML string
1062 *
1063 * @param array $errors Array of message keys/values
1064 *
1065 * @return string HTML, a "<ul>" list of errors
1066 */
1067 public function formatErrors( $errors ) {
1068 $errorstr = '';
1069
1070 foreach ( $errors as $error ) {
1071 if ( is_array( $error ) ) {
1072 $msg = array_shift( $error );
1073 } else {
1074 $msg = $error;
1075 $error = array();
1076 }
1077
1078 $errorstr .= Html::rawElement(
1079 'li',
1080 array(),
1081 $this->msg( $msg, $error )->parse()
1082 );
1083 }
1084
1085 $errorstr = Html::rawElement( 'ul', array(), $errorstr );
1086
1087 return $errorstr;
1088 }
1089
1090 /**
1091 * Set the text for the submit button
1092 *
1093 * @param string $t Plaintext
1094 *
1095 * @return HTMLForm $this for chaining calls (since 1.20)
1096 */
1097 function setSubmitText( $t ) {
1098 $this->mSubmitText = $t;
1099
1100 return $this;
1101 }
1102
1103 /**
1104 * Identify that the submit button in the form has a destructive action
1105 * @since 1.24
1106 */
1107 public function setSubmitDestructive() {
1108 $this->mSubmitFlags = array( 'destructive', 'primary' );
1109 }
1110
1111 /**
1112 * Identify that the submit button in the form has a progressive action
1113 * @since 1.25
1114 */
1115 public function setSubmitProgressive() {
1116 $this->mSubmitFlags = array( 'progressive', 'primary' );
1117 }
1118
1119 /**
1120 * Set the text for the submit button to a message
1121 * @since 1.19
1122 *
1123 * @param string|Message $msg Message key or Message object
1124 *
1125 * @return HTMLForm $this for chaining calls (since 1.20)
1126 */
1127 public function setSubmitTextMsg( $msg ) {
1128 if ( !$msg instanceof Message ) {
1129 $msg = $this->msg( $msg );
1130 }
1131 $this->setSubmitText( $msg->text() );
1132
1133 return $this;
1134 }
1135
1136 /**
1137 * Get the text for the submit button, either customised or a default.
1138 * @return string
1139 */
1140 function getSubmitText() {
1141 return $this->mSubmitText
1142 ? $this->mSubmitText
1143 : $this->msg( 'htmlform-submit' )->text();
1144 }
1145
1146 /**
1147 * @param string $name Submit button name
1148 *
1149 * @return HTMLForm $this for chaining calls (since 1.20)
1150 */
1151 public function setSubmitName( $name ) {
1152 $this->mSubmitName = $name;
1153
1154 return $this;
1155 }
1156
1157 /**
1158 * @param string $name Tooltip for the submit button
1159 *
1160 * @return HTMLForm $this for chaining calls (since 1.20)
1161 */
1162 public function setSubmitTooltip( $name ) {
1163 $this->mSubmitTooltip = $name;
1164
1165 return $this;
1166 }
1167
1168 /**
1169 * Set the id for the submit button.
1170 *
1171 * @param string $t
1172 *
1173 * @todo FIXME: Integrity of $t is *not* validated
1174 * @return HTMLForm $this for chaining calls (since 1.20)
1175 */
1176 function setSubmitID( $t ) {
1177 $this->mSubmitID = $t;
1178
1179 return $this;
1180 }
1181
1182 /**
1183 * Stop a default submit button being shown for this form. This implies that an
1184 * alternate submit method must be provided manually.
1185 *
1186 * @since 1.22
1187 *
1188 * @param bool $suppressSubmit Set to false to re-enable the button again
1189 *
1190 * @return HTMLForm $this for chaining calls
1191 */
1192 function suppressDefaultSubmit( $suppressSubmit = true ) {
1193 $this->mShowSubmit = !$suppressSubmit;
1194
1195 return $this;
1196 }
1197
1198 /**
1199 * Set the id of the \<table\> or outermost \<div\> element.
1200 *
1201 * @since 1.22
1202 *
1203 * @param string $id New value of the id attribute, or "" to remove
1204 *
1205 * @return HTMLForm $this for chaining calls
1206 */
1207 public function setTableId( $id ) {
1208 $this->mTableId = $id;
1209
1210 return $this;
1211 }
1212
1213 /**
1214 * @param string $id DOM id for the form
1215 *
1216 * @return HTMLForm $this for chaining calls (since 1.20)
1217 */
1218 public function setId( $id ) {
1219 $this->mId = $id;
1220
1221 return $this;
1222 }
1223
1224 /**
1225 * Prompt the whole form to be wrapped in a "<fieldset>", with
1226 * this text as its "<legend>" element.
1227 *
1228 * @param string|bool $legend If false, no wrapper or legend will be displayed.
1229 * If true, a wrapper will be displayed, but no legend.
1230 * If a string, a wrapper will be displayed with that string as a legend.
1231 * The string will be escaped before being output (this doesn't support HTML).
1232 *
1233 * @return HTMLForm $this for chaining calls (since 1.20)
1234 */
1235 public function setWrapperLegend( $legend ) {
1236 $this->mWrapperLegend = $legend;
1237
1238 return $this;
1239 }
1240
1241 /**
1242 * Prompt the whole form to be wrapped in a "<fieldset>", with
1243 * this message as its "<legend>" element.
1244 * @since 1.19
1245 *
1246 * @param string|Message $msg Message key or Message object
1247 *
1248 * @return HTMLForm $this for chaining calls (since 1.20)
1249 */
1250 public function setWrapperLegendMsg( $msg ) {
1251 if ( !$msg instanceof Message ) {
1252 $msg = $this->msg( $msg );
1253 }
1254 $this->setWrapperLegend( $msg->text() );
1255
1256 return $this;
1257 }
1258
1259 /**
1260 * Set the prefix for various default messages
1261 * @todo Currently only used for the "<fieldset>" legend on forms
1262 * with multiple sections; should be used elsewhere?
1263 *
1264 * @param string $p
1265 *
1266 * @return HTMLForm $this for chaining calls (since 1.20)
1267 */
1268 function setMessagePrefix( $p ) {
1269 $this->mMessagePrefix = $p;
1270
1271 return $this;
1272 }
1273
1274 /**
1275 * Set the title for form submission
1276 *
1277 * @param Title $t Title of page the form is on/should be posted to
1278 *
1279 * @return HTMLForm $this for chaining calls (since 1.20)
1280 */
1281 function setTitle( $t ) {
1282 $this->mTitle = $t;
1283
1284 return $this;
1285 }
1286
1287 /**
1288 * Get the title
1289 * @return Title
1290 */
1291 function getTitle() {
1292 return $this->mTitle === false
1293 ? $this->getContext()->getTitle()
1294 : $this->mTitle;
1295 }
1296
1297 /**
1298 * Set the method used to submit the form
1299 *
1300 * @param string $method
1301 *
1302 * @return HTMLForm $this for chaining calls (since 1.20)
1303 */
1304 public function setMethod( $method = 'post' ) {
1305 $this->mMethod = strtolower( $method );
1306
1307 return $this;
1308 }
1309
1310 /**
1311 * @return string Always lowercase
1312 */
1313 public function getMethod() {
1314 return $this->mMethod;
1315 }
1316
1317 /**
1318 * @todo Document
1319 *
1320 * @param array[]|HTMLFormField[] $fields Array of fields (either arrays or
1321 * objects).
1322 * @param string $sectionName ID attribute of the "<table>" tag for this
1323 * section, ignored if empty.
1324 * @param string $fieldsetIDPrefix ID prefix for the "<fieldset>" tag of
1325 * each subsection, ignored if empty.
1326 * @param bool &$hasUserVisibleFields Whether the section had user-visible fields.
1327 *
1328 * @return string
1329 */
1330 public function displaySection( $fields,
1331 $sectionName = '',
1332 $fieldsetIDPrefix = '',
1333 &$hasUserVisibleFields = false ) {
1334 $displayFormat = $this->getDisplayFormat();
1335
1336 $html = '';
1337 $subsectionHtml = '';
1338 $hasLabel = false;
1339
1340 // Conveniently, PHP method names are case-insensitive.
1341 $getFieldHtmlMethod = $displayFormat == 'table' ? 'getTableRow' : ( 'get' . $displayFormat );
1342
1343 foreach ( $fields as $key => $value ) {
1344 if ( $value instanceof HTMLFormField ) {
1345 $v = empty( $value->mParams['nodata'] )
1346 ? $this->mFieldData[$key]
1347 : $value->getDefault();
1348 $html .= $value->$getFieldHtmlMethod( $v );
1349
1350 $labelValue = trim( $value->getLabel() );
1351 if ( $labelValue != '&#160;' && $labelValue !== '' ) {
1352 $hasLabel = true;
1353 }
1354
1355 if ( get_class( $value ) !== 'HTMLHiddenField' &&
1356 get_class( $value ) !== 'HTMLApiField'
1357 ) {
1358 $hasUserVisibleFields = true;
1359 }
1360 } elseif ( is_array( $value ) ) {
1361 $subsectionHasVisibleFields = false;
1362 $section =
1363 $this->displaySection( $value,
1364 "mw-htmlform-$key",
1365 "$fieldsetIDPrefix$key-",
1366 $subsectionHasVisibleFields );
1367 $legend = null;
1368
1369 if ( $subsectionHasVisibleFields === true ) {
1370 // Display the section with various niceties.
1371 $hasUserVisibleFields = true;
1372
1373 $legend = $this->getLegend( $key );
1374
1375 if ( isset( $this->mSectionHeaders[$key] ) ) {
1376 $section = $this->mSectionHeaders[$key] . $section;
1377 }
1378 if ( isset( $this->mSectionFooters[$key] ) ) {
1379 $section .= $this->mSectionFooters[$key];
1380 }
1381
1382 $attributes = array();
1383 if ( $fieldsetIDPrefix ) {
1384 $attributes['id'] = Sanitizer::escapeId( "$fieldsetIDPrefix$key" );
1385 }
1386 $subsectionHtml .= Xml::fieldset( $legend, $section, $attributes ) . "\n";
1387 } else {
1388 // Just return the inputs, nothing fancy.
1389 $subsectionHtml .= $section;
1390 }
1391 }
1392 }
1393
1394 if ( $displayFormat !== 'raw' ) {
1395 $classes = array();
1396
1397 if ( !$hasLabel ) { // Avoid strange spacing when no labels exist
1398 $classes[] = 'mw-htmlform-nolabel';
1399 }
1400
1401 $attribs = array(
1402 'class' => implode( ' ', $classes ),
1403 );
1404
1405 if ( $sectionName ) {
1406 $attribs['id'] = Sanitizer::escapeId( $sectionName );
1407 }
1408
1409 if ( $displayFormat === 'table' ) {
1410 $html = Html::rawElement( 'table',
1411 $attribs,
1412 Html::rawElement( 'tbody', array(), "\n$html\n" ) ) . "\n";
1413 } elseif ( $displayFormat === 'inline' ) {
1414 $html = Html::rawElement( 'span', $attribs, "\n$html\n" );
1415 } elseif ( $displayFormat === 'ooui' ) {
1416 $config = array(
1417 'classes' => $classes,
1418 );
1419 if ( $sectionName ) {
1420 $config['id'] = Sanitizer::escapeId( $sectionName );
1421 }
1422 if ( is_string( $this->mWrapperLegend ) ) {
1423 $config['label'] = $this->mWrapperLegend;
1424 }
1425 $fieldset = new OOUI\FieldsetLayout( $config );
1426 // Ewww. We should pass this as $config['items'], but there might be string snippets.
1427 $fieldset->group->appendContent( new OOUI\HtmlSnippet( $html ) );
1428 $html = $fieldset;
1429 } else {
1430 $html = Html::rawElement( 'div', $attribs, "\n$html\n" );
1431 }
1432 }
1433
1434 if ( $subsectionHtml ) {
1435 if ( $this->mSubSectionBeforeFields ) {
1436 return $subsectionHtml . "\n" . $html;
1437 } else {
1438 return $html . "\n" . $subsectionHtml;
1439 }
1440 } else {
1441 return $html;
1442 }
1443 }
1444
1445 /**
1446 * Construct the form fields from the Descriptor array
1447 */
1448 function loadData() {
1449 $fieldData = array();
1450
1451 foreach ( $this->mFlatFields as $fieldname => $field ) {
1452 if ( !empty( $field->mParams['nodata'] ) ) {
1453 continue;
1454 } elseif ( !empty( $field->mParams['disabled'] ) ) {
1455 $fieldData[$fieldname] = $field->getDefault();
1456 } else {
1457 $fieldData[$fieldname] = $field->loadDataFromRequest( $this->getRequest() );
1458 }
1459 }
1460
1461 # Filter data.
1462 foreach ( $fieldData as $name => &$value ) {
1463 $field = $this->mFlatFields[$name];
1464 $value = $field->filter( $value, $this->mFlatFields );
1465 }
1466
1467 $this->mFieldData = $fieldData;
1468 }
1469
1470 /**
1471 * Stop a reset button being shown for this form
1472 *
1473 * @param bool $suppressReset Set to false to re-enable the button again
1474 *
1475 * @return HTMLForm $this for chaining calls (since 1.20)
1476 */
1477 function suppressReset( $suppressReset = true ) {
1478 $this->mShowReset = !$suppressReset;
1479
1480 return $this;
1481 }
1482
1483 /**
1484 * Overload this if you want to apply special filtration routines
1485 * to the form as a whole, after it's submitted but before it's
1486 * processed.
1487 *
1488 * @param array $data
1489 *
1490 * @return array
1491 */
1492 function filterDataForSubmit( $data ) {
1493 return $data;
1494 }
1495
1496 /**
1497 * Get a string to go in the "<legend>" of a section fieldset.
1498 * Override this if you want something more complicated.
1499 *
1500 * @param string $key
1501 *
1502 * @return string
1503 */
1504 public function getLegend( $key ) {
1505 return $this->msg( "{$this->mMessagePrefix}-$key" )->text();
1506 }
1507
1508 /**
1509 * Set the value for the action attribute of the form.
1510 * When set to false (which is the default state), the set title is used.
1511 *
1512 * @since 1.19
1513 *
1514 * @param string|bool $action
1515 *
1516 * @return HTMLForm $this for chaining calls (since 1.20)
1517 */
1518 public function setAction( $action ) {
1519 $this->mAction = $action;
1520
1521 return $this;
1522 }
1523
1524 /**
1525 * Get the value for the action attribute of the form.
1526 *
1527 * @since 1.22
1528 *
1529 * @return string
1530 */
1531 public function getAction() {
1532 // If an action is alredy provided, return it
1533 if ( $this->mAction !== false ) {
1534 return $this->mAction;
1535 }
1536
1537 $articlePath = $this->getConfig()->get( 'ArticlePath' );
1538 // Check whether we are in GET mode and the ArticlePath contains a "?"
1539 // meaning that getLocalURL() would return something like "index.php?title=...".
1540 // As browser remove the query string before submitting GET forms,
1541 // it means that the title would be lost. In such case use wfScript() instead
1542 // and put title in an hidden field (see getHiddenFields()).
1543 if ( strpos( $articlePath, '?' ) !== false && $this->getMethod() === 'get' ) {
1544 return wfScript();
1545 }
1546
1547 return $this->getTitle()->getLocalURL();
1548 }
1549 }
Wiklou, le Wiki du Wiklou