3 * Implements Special:Emailuser
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 2 of the License, or
8 * (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
15 * You should have received a copy of the GNU General Public License along
16 * with this program; if not, write to the Free Software Foundation, Inc.,
17 * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
18 * http://www.gnu.org/copyleft/gpl.html
21 * @ingroup SpecialPage
23 use MediaWiki\MediaWikiServices
;
26 * A special page that allows users to send e-mails to other users
28 * @ingroup SpecialPage
30 class SpecialEmailUser
extends UnlistedSpecialPage
{
34 * @var User|string $mTargetObj
36 protected $mTargetObj;
38 public function __construct() {
39 parent
::__construct( 'Emailuser' );
42 public function doesWrites() {
46 public function getDescription() {
47 $target = self
::getTarget( $this->mTarget
, $this->getUser() );
48 if ( !$target instanceof User
) {
49 return $this->msg( 'emailuser-title-notarget' )->text();
52 return $this->msg( 'emailuser-title-target', $target->getName() )->text();
55 protected function getFormFields() {
56 $linkRenderer = $this->getLinkRenderer();
61 'default' => $linkRenderer->makeLink(
62 $this->getUser()->getUserPage(),
63 $this->getUser()->getName()
65 'label-message' => 'emailfrom',
66 'id' => 'mw-emailuser-sender',
71 'default' => $linkRenderer->makeLink(
72 $this->mTargetObj
->getUserPage(),
73 $this->mTargetObj
->getName()
75 'label-message' => 'emailto',
76 'id' => 'mw-emailuser-recipient',
80 'default' => $this->mTargetObj
->getName(),
84 'default' => $this->msg( 'defemailsubject',
85 $this->getUser()->getName() )->inContentLanguage()->text(),
86 'label-message' => 'emailsubject',
95 'label-message' => 'emailmessage',
100 'label-message' => 'emailccme',
101 'default' => $this->getUser()->getBoolOption( 'ccmeonemails' ),
106 public function execute( $par ) {
107 $out = $this->getOutput();
108 $out->addModuleStyles( 'mediawiki.special' );
110 $this->mTarget
= is_null( $par )
111 ?
$this->getRequest()->getVal( 'wpTarget', $this->getRequest()->getVal( 'target', '' ) )
114 // This needs to be below assignment of $this->mTarget because
115 // getDescription() needs it to determine the correct page title.
117 $this->outputHeader();
119 // error out if sending user cannot do this
120 $error = self
::getPermissionsError(
122 $this->getRequest()->getVal( 'wpEditToken' ),
131 throw new PermissionsError( 'sendemail' );
132 case 'blockedemailuser':
133 throw new UserBlockedError( $this->getUser()->mBlock
);
134 case 'actionthrottledtext':
135 throw new ThrottledError
;
137 case 'usermaildisabled':
138 throw new ErrorPageError( $error, "{$error}text" );
141 list( $title, $msg, $params ) = $error;
142 throw new ErrorPageError( $title, $msg, $params );
144 // Got a valid target user name? Else ask for one.
145 $ret = self
::getTarget( $this->mTarget
, $this->getUser() );
146 if ( !$ret instanceof User
) {
147 if ( $this->mTarget
!= '' ) {
148 // Messages used here: notargettext, noemailtext, nowikiemailtext
149 $ret = ( $ret == 'notarget' ) ?
'emailnotarget' : ( $ret . 'text' );
150 $out->wrapWikiMsg( "<p class='error'>$1</p>", $ret );
152 $out->addHTML( $this->userForm( $this->mTarget
) );
157 $this->mTargetObj
= $ret;
159 // Set the 'relevant user' in the skin, so it displays links like Contributions,
160 // User logs, UserRights, etc.
161 $this->getSkin()->setRelevantUser( $this->mTargetObj
);
163 $context = new DerivativeContext( $this->getContext() );
164 $context->setTitle( $this->getPageTitle() ); // Remove subpage
165 $form = new HTMLForm( $this->getFormFields(), $context );
166 // By now we are supposed to be sure that $this->mTarget is a user name
167 $form->addPreText( $this->msg( 'emailpagetext', $this->mTarget
)->parse() );
168 $form->setSubmitTextMsg( 'emailsend' );
169 $form->setSubmitCallback( [ __CLASS__
, 'uiSubmit' ] );
170 $form->setWrapperLegendMsg( 'email-legend' );
173 if ( !Hooks
::run( 'EmailUserForm', [ &$form ] ) ) {
177 $result = $form->show();
179 if ( $result === true ||
( $result instanceof Status
&& $result->isGood() ) ) {
180 $out->setPageTitle( $this->msg( 'emailsent' ) );
181 $out->addWikiMsg( 'emailsenttext', $this->mTarget
);
182 $out->returnToMain( false, $this->mTargetObj
->getUserPage() );
187 * Validate target User
189 * @param string $target Target user name
190 * @param User|null $sender User sending the email
191 * @return User|string User object on success or a string on error
193 public static function getTarget( $target, User
$sender = null ) {
194 if ( $sender === null ) {
195 wfDeprecated( __METHOD__
. ' without specifying the sending user', '1.30' );
198 if ( $target == '' ) {
199 wfDebug( "Target is empty.\n" );
204 $nu = User
::newFromName( $target );
205 $error = self
::validateTarget( $nu, $sender );
207 return $error ?
$error : $nu;
211 * Validate target User
213 * @param User $target Target user
214 * @param User|null $sender User sending the email
215 * @return string Error message or empty string if valid.
218 public static function validateTarget( $target, User
$sender = null ) {
219 if ( $sender === null ) {
220 wfDeprecated( __METHOD__
. ' without specifying the sending user', '1.30' );
223 if ( !$target instanceof User ||
!$target->getId() ) {
224 wfDebug( "Target is invalid user.\n" );
229 if ( !$target->isEmailConfirmed() ) {
230 wfDebug( "User has no valid email.\n" );
235 if ( !$target->canReceiveEmail() ) {
236 wfDebug( "User does not allow user emails.\n" );
238 return 'nowikiemail';
241 if ( $target->getEditCount() === 0 &&
242 ( $sender === null ||
!$sender->isAllowed( 'sendemail-new-users' ) )
244 // Determine if target has any other logged actions.
245 $dbr = wfGetDB( DB_REPLICA
);
246 $log_id = $dbr->selectField(
250 'log_user' => $target->getId(),
251 "NOT (log_type = 'newusers' AND log_action = 'autocreate')",
258 wfDebug( "User has no logged actions on this wiki.\n" );
260 return 'nowikiemail';
264 if ( $sender !== null && !$target->getOption( 'email-allow-new-users' ) &&
267 wfDebug( "User does not allow user emails from new users.\n" );
269 return 'nowikiemail';
272 if ( $sender !== null ) {
273 $blacklist = $target->getOption( 'email-blacklist', [] );
275 $lookup = CentralIdLookup
::factory();
276 $senderId = $lookup->centralIdFromLocalUser( $sender );
277 if ( $senderId !== 0 && in_array( $senderId, $blacklist ) ) {
278 wfDebug( "User does not allow user emails from this user.\n" );
280 return 'nowikiemail';
289 * Check whether a user is allowed to send email
292 * @param string $editToken Edit token
293 * @param Config $config optional for backwards compatibility
294 * @return string|null Null on success or string on error
296 public static function getPermissionsError( $user, $editToken, Config
$config = null ) {
297 if ( $config === null ) {
298 wfDebug( __METHOD__
. ' called without a Config instance passed to it' );
299 $config = MediaWikiServices
::getInstance()->getMainConfig();
301 if ( !$config->get( 'EnableEmail' ) ||
!$config->get( 'EnableUserEmail' ) ) {
302 return 'usermaildisabled';
305 // Run this before $user->isAllowed, to show appropriate message to anons (T160309)
306 if ( !$user->isEmailConfirmed() ) {
307 return 'mailnologin';
310 if ( !$user->isAllowed( 'sendemail' ) ) {
314 if ( $user->isBlockedFromEmailuser() ) {
315 wfDebug( "User is blocked from sending e-mail.\n" );
317 return "blockedemailuser";
320 // Check the ping limiter without incrementing it - we'll check it
321 // again later and increment it on a successful send
322 if ( $user->pingLimiter( 'emailuser', 0 ) ) {
323 wfDebug( "Ping limiter triggered.\n" );
325 return 'actionthrottledtext';
330 Hooks
::run( 'UserCanSendEmail', [ &$user, &$hookErr ] );
331 Hooks
::run( 'EmailUserPermissionsErrors', [ $user, $editToken, &$hookErr ] );
341 * Form to ask for target user name.
343 * @param string $name User name submitted.
344 * @return string Form asking for user name.
346 protected function userForm( $name ) {
347 $this->getOutput()->addModules( 'mediawiki.userSuggest' );
348 $string = Html
::openElement(
350 [ 'method' => 'get', 'action' => wfScript(), 'id' => 'askusername' ]
352 Html
::hidden( 'title', $this->getPageTitle()->getPrefixedText() ) .
353 Html
::openElement( 'fieldset' ) .
354 Html
::rawElement( 'legend', null, $this->msg( 'emailtarget' )->parse() ) .
356 $this->msg( 'emailusername' )->text(),
364 'id' => 'emailusertarget',
365 'class' => 'mw-autocomplete-user', // used by mediawiki.userSuggest
371 Html
::submitButton( $this->msg( 'emailusernamesubmit' )->text(), [] ) .
372 Html
::closeElement( 'fieldset' ) .
373 Html
::closeElement( 'form' ) . "\n";
379 * Submit callback for an HTMLForm object, will simply call submit().
383 * @param HTMLForm $form
384 * @return Status|bool
386 public static function uiSubmit( array $data, HTMLForm
$form ) {
387 return self
::submit( $data, $form->getContext() );
391 * Really send a mail. Permissions should have been checked using
392 * getPermissionsError(). It is probably also a good
393 * idea to check the edit token and ping limiter in advance.
396 * @param IContextSource $context
397 * @return Status|bool
399 public static function submit( array $data, IContextSource
$context ) {
400 $config = $context->getConfig();
402 $target = self
::getTarget( $data['Target'], $context->getUser() );
403 if ( !$target instanceof User
) {
404 // Messages used here: notargettext, noemailtext, nowikiemailtext
405 return Status
::newFatal( $target . 'text' );
408 $to = MailAddress
::newFromUser( $target );
409 $from = MailAddress
::newFromUser( $context->getUser() );
410 $subject = $data['Subject'];
411 $text = $data['Text'];
413 // Add a standard footer and trim up trailing newlines
414 $text = rtrim( $text ) . "\n\n-- \n";
415 $text .= $context->msg( 'emailuserfooter',
416 $from->name
, $to->name
)->inContentLanguage()->text();
418 // Check and increment the rate limits
419 if ( $context->getUser()->pingLimiter( 'emailuser' ) ) {
420 throw new ThrottledError();
424 if ( !Hooks
::run( 'EmailUser', [ &$to, &$from, &$subject, &$text, &$error ] ) ) {
425 if ( $error instanceof Status
) {
427 } elseif ( $error === false ||
$error === '' ||
$error === [] ) {
428 // Possibly to tell HTMLForm to pretend there was no submission?
430 } elseif ( $error === true ) {
431 // Hook sent the mail itself and indicates success?
432 return Status
::newGood();
433 } elseif ( is_array( $error ) ) {
434 $status = Status
::newGood();
435 foreach ( $error as $e ) {
436 $status->fatal( $e );
439 } elseif ( $error instanceof MessageSpecifier
) {
440 return Status
::newFatal( $error );
442 // Ugh. Either a raw HTML string, or something that's supposed
443 // to be treated like one.
444 $type = is_object( $error ) ?
get_class( $error ) : gettype( $error );
445 wfDeprecated( "EmailUser hook returning a $type as \$error", '1.29' );
446 return Status
::newFatal( new ApiRawMessage(
447 [ '$1', Message
::rawParam( (string)$error ) ], 'hookaborted'
452 if ( $config->get( 'UserEmailUseReplyTo' ) ) {
454 * Put the generic wiki autogenerated address in the From:
455 * header and reserve the user for Reply-To.
457 * This is a bit ugly, but will serve to differentiate
458 * wiki-borne mails from direct mails and protects against
459 * SPF and bounce problems with some mailers (see below).
461 $mailFrom = new MailAddress( $config->get( 'PasswordSender' ),
462 wfMessage( 'emailsender' )->inContentLanguage()->text() );
466 * Put the sending user's e-mail address in the From: header.
468 * This is clean-looking and convenient, but has issues.
469 * One is that it doesn't as clearly differentiate the wiki mail
470 * from "directly" sent mails.
472 * Another is that some mailers (like sSMTP) will use the From
473 * address as the envelope sender as well. For open sites this
474 * can cause mails to be flunked for SPF violations (since the
475 * wiki server isn't an authorized sender for various users'
476 * domains) as well as creating a privacy issue as bounces
477 * containing the recipient's e-mail address may get sent to
484 $status = UserMailer
::send( $to, $mailFrom, $subject, $text, [
485 'replyTo' => $replyTo,
488 if ( !$status->isGood() ) {
491 // if the user requested a copy of this mail, do this now,
492 // unless they are emailing themselves, in which case one
493 // copy of the message is sufficient.
494 if ( $data['CCMe'] && $to != $from ) {
497 $ccSubject = $context->msg( 'emailccsubject' )->rawParams(
498 $target->getName(), $subject )->text();
501 Hooks
::run( 'EmailUserCC', [ &$ccTo, &$ccFrom, &$ccSubject, &$ccText ] );
503 if ( $config->get( 'UserEmailUseReplyTo' ) ) {
504 $mailFrom = new MailAddress(
505 $config->get( 'PasswordSender' ),
506 wfMessage( 'emailsender' )->inContentLanguage()->text()
514 $ccStatus = UserMailer
::send(
515 $ccTo, $mailFrom, $ccSubject, $ccText, [
516 'replyTo' => $replyTo,
518 $status->merge( $ccStatus );
521 Hooks
::run( 'EmailUserComplete', [ $to, $from, $subject, $text ] );
528 * Return an array of subpages beginning with $search that this special page will accept.
530 * @param string $search Prefix to search for
531 * @param int $limit Maximum number of results to return (usually 10)
532 * @param int $offset Number of results to skip (usually 0)
533 * @return string[] Matching subpages
535 public function prefixSearchSubpages( $search, $limit, $offset ) {
536 $user = User
::newFromName( $search );
538 // No prefix suggestion for invalid user
541 // Autocomplete subpage as user list - public to allow caching
542 return UserNamePrefixSearch
::search( 'public', $search, $limit, $offset );
545 protected function getGroupName() {