5 # Copyright (C) 2004 Brion Vibber <brion@pobox.com>
6 # http://www.mediawiki.org/
8 # This program is free software; you can redistribute it and/or modify
9 # it under the terms of the GNU General Public License as published by
10 # the Free Software Foundation; either version 2 of the License, or
11 # (at your option) any later version.
13 # This program is distributed in the hope that it will be useful,
14 # but WITHOUT ANY WARRANTY; without even the implied warranty of
15 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
16 # GNU General Public License for more details.
18 # You should have received a copy of the GNU General Public License along
19 # with this program; if not, write to the Free Software Foundation, Inc.,
20 # 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
21 # http://www.gnu.org/copyleft/gpl.html
24 * Authentication plugin interface. Instantiate a subclass of AuthPlugin
25 * and set $wgAuth to it to authenticate against some external tool.
27 * The default behavior is not to do anything, and use the local user
28 * database for all authentication. A subclass can require that all
29 * accounts authenticate externally, or use it only as a fallback; also
30 * you can transparently create internal wiki accounts the first time
31 * someone logs in who can be authenticated externally.
33 * This interface is new, and might change a bit before 1.4.0 final is
40 * Check whether there exists a user account with the given name.
41 * The name will be normalized to MediaWiki's requirements, so
42 * you might need to munge it (for instance, for lowercase initial
45 * @param $username String: username.
49 function userExists( $username ) {
55 * Check if a username+password pair is a valid login.
56 * The name will be normalized to MediaWiki's requirements, so
57 * you might need to munge it (for instance, for lowercase initial
60 * @param $username String: username.
61 * @param $password String: user password.
65 function authenticate( $username, $password ) {
71 * Modify options in the login template.
73 * @param $template UserLoginTemplate object.
76 function modifyUITemplate( &$template ) {
78 $template->set( 'usedomain', false );
82 * Set the domain this plugin is supposed to use when authenticating.
84 * @param $domain String: authentication domain.
87 function setDomain( $domain ) {
88 $this->domain
= $domain;
92 * Check to see if the specific domain is a valid domain.
94 * @param $domain String: authentication domain.
98 function validDomain( $domain ) {
104 * When a user logs in, optionally fill in preferences and such.
105 * For instance, you might pull the email address or real name from the
106 * external user database.
108 * The User object is passed by reference so it can be modified; don't
109 * forget the & on your function declaration.
114 function updateUser( &$user ) {
115 # Override this and do something
121 * Return true if the wiki should create a new local account automatically
122 * when asked to login a user who doesn't exist locally but does in the
123 * external auth database.
125 * If you don't automatically create accounts, you must still create
126 * accounts in some way. It's not possible to authenticate without
129 * This is just a question, and shouldn't perform any actions.
134 function autoCreate() {
139 * Can users change their passwords?
143 function allowPasswordChange() {
148 * Set the given password in the authentication database.
149 * As a special case, the password may be set to null to request
150 * locking the password to an unusable value, with the expectation
151 * that it will be set later through a mail reset or other method.
153 * Return true if successful.
155 * @param $user User object.
156 * @param $password String: password.
160 function setPassword( $user, $password ) {
165 * Update user information in the external authentication database.
166 * Return true if successful.
168 * @param $user User object.
172 function updateExternalDB( $user ) {
177 * Check to see if external accounts can be created.
178 * Return true if external accounts can be created.
182 function canCreateAccounts() {
187 * Add a user to the external authentication database.
188 * Return true if successful.
190 * @param User $user - only the name should be assumed valid at this point
191 * @param string $password
192 * @param string $email
193 * @param string $realname
197 function addUser( $user, $password, $email='', $realname='' ) {
203 * Return true to prevent logins that don't authenticate here from being
204 * checked against the local database's password fields.
206 * This is just a question, and shouldn't perform any actions.
216 * When creating a user account, optionally fill in preferences and such.
217 * For instance, you might pull the email address or real name from the
218 * external user database.
220 * The User object is passed by reference so it can be modified; don't
221 * forget the & on your function declaration.
223 * @param $user User object.
226 function initUser( &$user ) {
227 # Override this to do something.
231 * If you want to munge the case of an account name before the final
232 * check, now is your chance.
234 function getCanonicalName( $username ) {
dépôts / lhc / web / wiklou.git / blob