dépôts / lhc / web / wiklou.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
history | raw | HEAD
Merge "Print chained exceptions when maintenance script fails."
[lhc/web/wiklou.git] / maintenance / createAndPromote.php
1 <?php
2 /**
3 * Creates an account and grants it rights.
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
19 *
20 * @file
21 * @ingroup Maintenance
22 * @author Rob Church <robchur@gmail.com>
23 * @author Pablo Castellano <pablo@anche.no>
24 */
25
26 require_once __DIR__ . '/Maintenance.php';
27
28 /**
29 * Maintenance script to create an account and grant it rights.
30 *
31 * @ingroup Maintenance
32 */
33 class CreateAndPromote extends Maintenance {
34 private static $permitRoles = [ 'sysop', 'bureaucrat', 'interface-admin', 'bot' ];
35
36 public function __construct() {
37 parent::__construct();
38 $this->addDescription( 'Create a new user account and/or grant it additional rights' );
39 $this->addOption(
40 'force',
41 'If acccount exists already, just grant it rights or change password.'
42 );
43 foreach ( self::$permitRoles as $role ) {
44 $this->addOption( $role, "Add the account to the {$role} group" );
45 }
46
47 $this->addOption(
48 'custom-groups',
49 'Comma-separated list of groups to add the user to',
50 false,
51 true
52 );
53
54 $this->addArg( "username", "Username of new user" );
55 $this->addArg( "password", "Password to set (not required if --force is used)", false );
56 }
57
58 public function execute() {
59 $username = $this->getArg( 0 );
60 $password = $this->getArg( 1 );
61 $force = $this->hasOption( 'force' );
62 $inGroups = [];
63
64 $user = User::newFromName( $username );
65 if ( !is_object( $user ) ) {
66 $this->fatalError( "invalid username." );
67 }
68
69 $exists = ( $user->idForName() !== 0 );
70
71 if ( $exists && !$force ) {
72 $this->fatalError( "Account exists. Perhaps you want the --force option?" );
73 } elseif ( !$exists && !$password ) {
74 $this->error( "Argument <password> required!" );
75 $this->maybeHelp( true );
76 } elseif ( $exists ) {
77 $inGroups = $user->getGroups();
78 }
79
80 $groups = array_filter( self::$permitRoles, [ $this, 'hasOption' ] );
81 if ( $this->hasOption( 'custom-groups' ) ) {
82 $allGroups = array_flip( User::getAllGroups() );
83 $customGroupsText = $this->getOption( 'custom-groups' );
84 if ( $customGroupsText !== '' ) {
85 $customGroups = explode( ',', $customGroupsText );
86 foreach ( $customGroups as $customGroup ) {
87 if ( isset( $allGroups[$customGroup] ) ) {
88 $groups[] = trim( $customGroup );
89 } else {
90 $this->output( "$customGroup is not a valid group, ignoring!\n" );
91 }
92 }
93 }
94 }
95
96 $promotions = array_diff(
97 $groups,
98 $inGroups
99 );
100
101 if ( $exists && !$password && count( $promotions ) === 0 ) {
102 $this->output( "Account exists and nothing to do.\n" );
103
104 return;
105 } elseif ( count( $promotions ) !== 0 ) {
106 $promoText = "User:{$username} into " . implode( ', ', $promotions ) . "...\n";
107 if ( $exists ) {
108 $this->output( wfWikiID() . ": Promoting $promoText" );
109 } else {
110 $this->output( wfWikiID() . ": Creating and promoting $promoText" );
111 }
112 }
113
114 if ( !$exists ) {
115 // Create the user via AuthManager as there may be various side
116 // effects that are perfomed by the configured AuthManager chain.
117 $status = MediaWiki\Auth\AuthManager::singleton()->autoCreateUser(
118 $user,
119 MediaWiki\Auth\AuthManager::AUTOCREATE_SOURCE_MAINT,
120 false
121 );
122 if ( !$status->isGood() ) {
123 $this->fatalError( $status->getWikiText( null, null, 'en' ) );
124 }
125 }
126
127 if ( $password ) {
128 # Try to set the password
129 try {
130 $status = $user->changeAuthenticationData( [
131 'username' => $user->getName(),
132 'password' => $password,
133 'retype' => $password,
134 ] );
135 if ( !$status->isGood() ) {
136 throw new PasswordError( $status->getWikiText( null, null, 'en' ) );
137 }
138 if ( $exists ) {
139 $this->output( "Password set.\n" );
140 $user->saveSettings();
141 }
142 } catch ( PasswordError $pwe ) {
143 $this->fatalError( $pwe->getText() );
144 }
145 }
146
147 # Promote user
148 array_map( [ $user, 'addGroup' ], $promotions );
149
150 if ( !$exists ) {
151 # Increment site_stats.ss_users
152 $ssu = new SiteStatsUpdate( 0, 0, 0, 0, 1 );
153 $ssu->doUpdate();
154 }
155
156 $this->output( "done.\n" );
157 }
158 }
159
160 $maintClass = CreateAndPromote::class;
161 require_once RUN_MAINTENANCE_IF_MAIN;
Wiklou, le Wiki du Wiklou