*/
class SpecialListGroupRights extends SpecialPage {
public function __construct() {
parent::__construct( 'Listgrouprights' );
}
/**
* Show the special page
* @param string|null $par
*/
public function execute( $par ) {
$this->setHeaders();
$this->outputHeader();
$out = $this->getOutput();
$out->addModuleStyles( 'mediawiki.special' );
$this->addHelpLink( 'Help:User_rights_and_groups' );
$out->wrapWikiMsg( "
\n$1\n
", 'listgrouprights-key' );
$out->addHTML(
Xml::openElement( 'table', [ 'class' => 'wikitable mw-listgrouprights-table' ] ) .
'' .
Xml::element( 'th', null, $this->msg( 'listgrouprights-group' )->text() ) .
Xml::element( 'th', null, $this->msg( 'listgrouprights-rights' )->text() ) .
'
'
);
$config = $this->getConfig();
$groupPermissions = $config->get( 'GroupPermissions' );
$revokePermissions = $config->get( 'RevokePermissions' );
$addGroups = $config->get( 'AddGroups' );
$removeGroups = $config->get( 'RemoveGroups' );
$groupsAddToSelf = $config->get( 'GroupsAddToSelf' );
$groupsRemoveFromSelf = $config->get( 'GroupsRemoveFromSelf' );
$allGroups = array_unique( array_merge(
array_keys( $groupPermissions ),
array_keys( $revokePermissions ),
array_keys( $addGroups ),
array_keys( $removeGroups ),
array_keys( $groupsAddToSelf ),
array_keys( $groupsRemoveFromSelf )
) );
asort( $allGroups );
$linkRenderer = $this->getLinkRenderer();
foreach ( $allGroups as $group ) {
$permissions = $groupPermissions[$group] ?? [];
$groupname = ( $group == '*' ) // Replace * with a more descriptive groupname
? 'all'
: $group;
$groupnameLocalized = UserGroupMembership::getGroupName( $groupname );
$grouppageLocalizedTitle = UserGroupMembership::getGroupPage( $groupname )
?: Title::newFromText( MediaWikiServices::getInstance()->getNamespaceInfo()->
getCanonicalName( NS_PROJECT ) . ':' . $groupname );
if ( $group == '*' || !$grouppageLocalizedTitle ) {
// Do not make a link for the generic * group or group with invalid group page
$grouppage = htmlspecialchars( $groupnameLocalized );
} else {
$grouppage = $linkRenderer->makeLink(
$grouppageLocalizedTitle,
$groupnameLocalized
);
}
if ( $group === 'user' ) {
// Link to Special:listusers for implicit group 'user'
$grouplink = '
' . $linkRenderer->makeKnownLink(
SpecialPage::getTitleFor( 'Listusers' ),
$this->msg( 'listgrouprights-members' )->text()
);
} elseif ( !in_array( $group, $config->get( 'ImplicitGroups' ) ) ) {
$grouplink = '
' . $linkRenderer->makeKnownLink(
SpecialPage::getTitleFor( 'Listusers' ),
$this->msg( 'listgrouprights-members' )->text(),
[],
[ 'group' => $group ]
);
} else {
// No link to Special:listusers for other implicit groups as they are unlistable
$grouplink = '';
}
$revoke = $revokePermissions[$group] ?? [];
$addgroups = $addGroups[$group] ?? [];
$removegroups = $removeGroups[$group] ?? [];
$addgroupsSelf = $groupsAddToSelf[$group] ?? [];
$removegroupsSelf = $groupsRemoveFromSelf[$group] ?? [];
$id = $group == '*' ? false : Sanitizer::escapeIdForAttribute( $group );
$out->addHTML( Html::rawElement( 'tr', [ 'id' => $id ], "
$grouppage$grouplink |
" .
$this->formatPermissions( $permissions, $revoke, $addgroups, $removegroups,
$addgroupsSelf, $removegroupsSelf ) .
' |
'
) );
}
$out->addHTML( Xml::closeElement( 'table' ) );
$this->outputNamespaceProtectionInfo();
}
private function outputNamespaceProtectionInfo() {
$out = $this->getOutput();
$namespaceProtection = $this->getConfig()->get( 'NamespaceProtection' );
if ( count( $namespaceProtection ) == 0 ) {
return;
}
$header = $this->msg( 'listgrouprights-namespaceprotection-header' )->text();
$out->addHTML(
Html::rawElement( 'h2', [], Html::element( 'span', [
'class' => 'mw-headline',
'id' => substr( Parser::guessSectionNameFromStrippedText( $header ), 1 )
], $header ) ) .
Xml::openElement( 'table', [ 'class' => 'wikitable' ] ) .
Html::element(
'th',
[],
$this->msg( 'listgrouprights-namespaceprotection-namespace' )->text()
) .
Html::element(
'th',
[],
$this->msg( 'listgrouprights-namespaceprotection-restrictedto' )->text()
)
);
$linkRenderer = $this->getLinkRenderer();
ksort( $namespaceProtection );
$validNamespaces =
MediaWikiServices::getInstance()->getNamespaceInfo()->getValidNamespaces();
$contLang = MediaWikiServices::getInstance()->getContentLanguage();
foreach ( $namespaceProtection as $namespace => $rights ) {
if ( !in_array( $namespace, $validNamespaces ) ) {
continue;
}
if ( $namespace == NS_MAIN ) {
$namespaceText = $this->msg( 'blanknamespace' )->text();
} else {
$namespaceText = $contLang->convertNamespace( $namespace );
}
$out->addHTML(
Xml::openElement( 'tr' ) .
Html::rawElement(
'td',
[],
$linkRenderer->makeLink(
SpecialPage::getTitleFor( 'Allpages' ),
$namespaceText,
[],
[ 'namespace' => $namespace ]
)
) .
Xml::openElement( 'td' ) . Xml::openElement( 'ul' )
);
if ( !is_array( $rights ) ) {
$rights = [ $rights ];
}
foreach ( $rights as $right ) {
$out->addHTML(
Html::rawElement( 'li', [], $this->msg(
'listgrouprights-right-display',
User::getRightDescription( $right ),
Html::element(
'span',
[ 'class' => 'mw-listgrouprights-right-name' ],
$right
)
)->parse() )
);
}
$out->addHTML(
Xml::closeElement( 'ul' ) .
Xml::closeElement( 'td' ) .
Xml::closeElement( 'tr' )
);
}
$out->addHTML( Xml::closeElement( 'table' ) );
}
/**
* Create a user-readable list of permissions from the given array.
*
* @param array $permissions Array of permission => bool (from $wgGroupPermissions items)
* @param array $revoke Array of permission => bool (from $wgRevokePermissions items)
* @param array $add Array of groups this group is allowed to add or true
* @param array $remove Array of groups this group is allowed to remove or true
* @param array $addSelf Array of groups this group is allowed to add to self or true
* @param array $removeSelf Array of group this group is allowed to remove from self or true
* @return string HTML list of all granted permissions
*/
private function formatPermissions( $permissions, $revoke, $add, $remove, $addSelf, $removeSelf ) {
$r = [];
foreach ( $permissions as $permission => $granted ) {
// show as granted only if it isn't revoked to prevent duplicate display of permissions
if ( $granted && ( !isset( $revoke[$permission] ) || !$revoke[$permission] ) ) {
$r[] = $this->msg( 'listgrouprights-right-display',
User::getRightDescription( $permission ),
'' . $permission . ''
)->parse();
}
}
foreach ( $revoke as $permission => $revoked ) {
if ( $revoked ) {
$r[] = $this->msg( 'listgrouprights-right-revoked',
User::getRightDescription( $permission ),
'' . $permission . ''
)->parse();
}
}
sort( $r );
$lang = $this->getLanguage();
$allGroups = User::getAllGroups();
$changeGroups = [
'addgroup' => $add,
'removegroup' => $remove,
'addgroup-self' => $addSelf,
'removegroup-self' => $removeSelf
];
foreach ( $changeGroups as $messageKey => $changeGroup ) {
// @phan-suppress-next-line PhanTypeComparisonFromArray
if ( $changeGroup === true ) {
// For grep: listgrouprights-addgroup-all, listgrouprights-removegroup-all,
// listgrouprights-addgroup-self-all, listgrouprights-removegroup-self-all
$r[] = $this->msg( 'listgrouprights-' . $messageKey . '-all' )->escaped();
} elseif ( is_array( $changeGroup ) ) {
$changeGroup = array_intersect( array_values( array_unique( $changeGroup ) ), $allGroups );
if ( count( $changeGroup ) ) {
$groupLinks = [];
foreach ( $changeGroup as $group ) {
$groupLinks[] = UserGroupMembership::getLink( $group, $this->getContext(), 'wiki' );
}
// For grep: listgrouprights-addgroup, listgrouprights-removegroup,
// listgrouprights-addgroup-self, listgrouprights-removegroup-self
$r[] = $this->msg( 'listgrouprights-' . $messageKey,
$lang->listToText( $groupLinks ), count( $changeGroup ) )->parse();
}
}
}
// @phan-suppress-next-line PhanImpossibleCondition
if ( empty( $r ) ) {
return '';
} else {
return '- ' . implode( "
\n- ", $r ) . '
';
}
}
protected function getGroupName() {
return 'users';
}
}