includes/specials/SpecialChangeEmail.php

   1 <?php
   2 /**
   3  * Implements Special:ChangeEmail
   4  *
   5  * This program is free software; you can redistribute it and/or modify
   6  * it under the terms of the GNU General Public License as published by
   7  * the Free Software Foundation; either version 2 of the License, or
   8  * (at your option) any later version.
   9  *
  10  * This program is distributed in the hope that it will be useful,
  11  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  12  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  13  * GNU General Public License for more details.
  14  *
  15  * You should have received a copy of the GNU General Public License along
  16  * with this program; if not, write to the Free Software Foundation, Inc.,
  17  * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
  18  * http://www.gnu.org/copyleft/gpl.html
  19  *
  20  * @file
  21  * @ingroup SpecialPage
  22  */
  23
  24 use MediaWiki\Auth\AuthManager;
  25 use MediaWiki\Logger\LoggerFactory;
  26
  27 /**
  28  * Let users change their email address.
  29  *
  30  * @ingroup SpecialPage
  31  */
  32 class SpecialChangeEmail extends FormSpecialPage {
  33         /**
  34          * @var Status
  35          */
  36         private $status;
  37
  38         public function __construct() {
  39                 parent::__construct( 'ChangeEmail', 'editmyprivateinfo' );
  40         }
  41
  42         public function doesWrites() {
  43                 return true;
  44         }
  45
  46         /**
  47          * @return bool
  48          */
  49         public function isListed() {
  50                 return AuthManager::singleton()->allowsPropertyChange( 'emailaddress' );
  51         }
  52
  53         /**
  54          * Main execution point
  55          * @param string $par
  56          */
  57         function execute( $par ) {
  58                 $out = $this->getOutput();
  59                 $out->disallowUserJs();
  60
  61                 parent::execute( $par );
  62         }
  63
  64         protected function getLoginSecurityLevel() {
  65                 return $this->getName();
  66         }
  67
  68         protected function checkExecutePermissions( User $user ) {
  69                 if ( !AuthManager::singleton()->allowsPropertyChange( 'emailaddress' ) ) {
  70                         throw new ErrorPageError( 'changeemail', 'cannotchangeemail' );
  71                 }
  72
  73                 $this->requireLogin( 'changeemail-no-info' );
  74
  75                 // This could also let someone check the current email address, so
  76                 // require both permissions.
  77                 if ( !$this->getUser()->isAllowed( 'viewmyprivateinfo' ) ) {
  78                         throw new PermissionsError( 'viewmyprivateinfo' );
  79                 }
  80
  81                 if ( $user->isBlockedFromEmailuser() ) {
  82                         throw new UserBlockedError( $user->getBlock() );
  83                 }
  84
  85                 parent::checkExecutePermissions( $user );
  86         }
  87
  88         protected function getFormFields() {
  89                 $user = $this->getUser();
  90
  91                 $fields = [
  92                         'Name' => [
  93                                 'type' => 'info',
  94                                 'label-message' => 'username',
  95                                 'default' => $user->getName(),
  96                         ],
  97                         'OldEmail' => [
  98                                 'type' => 'info',
  99                                 'label-message' => 'changeemail-oldemail',
 100                                 'default' => $user->getEmail() ?: $this->msg( 'changeemail-none' )->text(),
 101                         ],
 102                         'NewEmail' => [
 103                                 'type' => 'email',
 104                                 'label-message' => 'changeemail-newemail',
 105                                 'autofocus' => true,
 106                                 'help-message' => 'changeemail-newemail-help',
 107                         ],
 108                 ];
 109
 110                 return $fields;
 111         }
 112
 113         protected function getDisplayFormat() {
 114                 return 'ooui';
 115         }
 116
 117         protected function alterForm( HTMLForm $form ) {
 118                 $form->setId( 'mw-changeemail-form' );
 119                 $form->setTableId( 'mw-changeemail-table' );
 120                 $form->setSubmitTextMsg( 'changeemail-submit' );
 121                 $form->addHiddenFields( $this->getRequest()->getValues( 'returnto', 'returntoquery' ) );
 122
 123                 $form->addHeaderText( $this->msg( 'changeemail-header' )->parseAsBlock() );
 124         }
 125
 126         public function onSubmit( array $data ) {
 127                 $status = $this->attemptChange( $this->getUser(), $data['NewEmail'] );
 128
 129                 $this->status = $status;
 130
 131                 return $status;
 132         }
 133
 134         public function onSuccess() {
 135                 $request = $this->getRequest();
 136
 137                 $returnto = $request->getVal( 'returnto' );
 138                 $titleObj = $returnto !== null ? Title::newFromText( $returnto ) : null;
 139                 if ( !$titleObj instanceof Title ) {
 140                         $titleObj = Title::newMainPage();
 141                 }
 142                 $query = $request->getVal( 'returntoquery' );
 143
 144                 if ( $this->status->value === true ) {
 145                         $this->getOutput()->redirect( $titleObj->getFullUrlForRedirect( $query ) );
 146                 } elseif ( $this->status->value === 'eauth' ) {
 147                         # Notify user that a confirmation email has been sent...
 148                         $this->getOutput()->wrapWikiMsg( "<div class='error' style='clear: both;'>\n$1\n</div>",
 149                                 'eauthentsent', $this->getUser()->getName() );
 150                         // just show the link to go back
 151                         $this->getOutput()->addReturnTo( $titleObj, wfCgiToArray( $query ) );
 152                 }
 153         }
 154
 155         /**
 156          * @param User $user
 157          * @param string $newaddr
 158          * @return Status
 159          */
 160         private function attemptChange( User $user, $newaddr ) {
 161                 $authManager = AuthManager::singleton();
 162
 163                 if ( $newaddr != '' && !Sanitizer::validateEmail( $newaddr ) ) {
 164                         return Status::newFatal( 'invalidemailaddress' );
 165                 }
 166
 167                 if ( $newaddr === $user->getEmail() ) {
 168                         return Status::newFatal( 'changeemail-nochange' );
 169                 }
 170
 171                 // To prevent spam, rate limit adding a new address, but do
 172                 // not rate limit removing an address.
 173                 if ( $newaddr !== '' && $user->pingLimiter( 'changeemail' ) ) {
 174                         return Status::newFatal( 'actionthrottledtext' );
 175                 }
 176
 177                 $oldaddr = $user->getEmail();
 178                 $status = $user->setEmailWithConfirmation( $newaddr );
 179                 if ( !$status->isGood() ) {
 180                         return $status;
 181                 }
 182
 183                 LoggerFactory::getInstance( 'authentication' )->info(
 184                         'Changing email address for {user} from {oldemail} to {newemail}', [
 185                                 'user' => $user->getName(),
 186                                 'oldemail' => $oldaddr,
 187                                 'newemail' => $newaddr,
 188                         ]
 189                 );
 190
 191                 Hooks::run( 'PrefsEmailAudit', [ $user, $oldaddr, $newaddr ] );
 192
 193                 $user->saveSettings();
 194                 MediaWiki\Auth\AuthManager::callLegacyAuthPlugin( 'updateExternalDB', [ $user ] );
 195
 196                 return $status;
 197         }
 198
 199         public function requiresUnblock() {
 200                 return false;
 201         }
 202
 203         protected function getGroupName() {
 204                 return 'users';
 205         }
 206 }