3 use MediaWiki\Auth\AuthenticationResponse
;
4 use MediaWiki\Auth\AuthManager
;
5 use MediaWiki\Session\SessionManager
;
7 class SpecialUnlinkAccounts
extends AuthManagerSpecialPage
{
8 protected static $allowedActions = [ AuthManager
::ACTION_UNLINK
];
10 public function __construct() {
11 parent
::__construct( 'UnlinkAccounts' );
14 protected function getLoginSecurityLevel() {
15 return 'UnlinkAccount';
18 protected function getDefaultAction( $subPage ) {
19 return AuthManager
::ACTION_UNLINK
;
23 * Under which header this special page is listed in Special:SpecialPages.
26 protected function getGroupName() {
30 public function isListed() {
31 return AuthManager
::singleton()->canLinkAccounts();
34 protected function getRequestBlacklist() {
35 return $this->getConfig()->get( 'RemoveCredentialsBlacklist' );
38 public function execute( $subPage ) {
40 $this->loadAuth( $subPage );
41 $this->outputHeader();
43 $status = $this->trySubmit();
45 if ( $status === false ||
!$status->isOK() ) {
46 $this->displayForm( $status );
50 /** @var AuthenticationResponse $response */
51 $response = $status->getValue();
53 if ( $response->status
=== AuthenticationResponse
::FAIL
) {
54 $this->displayForm( StatusValue
::newFatal( $response->message
) );
58 $status = StatusValue
::newGood();
59 $status->warning( $this->msg( 'unlinkaccounts-success' ) );
60 $this->loadAuth( $subPage, null, true ); // update requests so the unlinked one doesn't show up
62 // Reset sessions - if the user unlinked an account because it was compromised,
63 // log attackers out from sessions obtained via that account.
64 $session = $this->getRequest()->getSession();
65 $user = $this->getUser();
66 SessionManager
::singleton()->invalidateSessionsForUser( $user );
67 $session->setUser( $user );
70 $this->displayForm( $status );
73 public function handleFormSubmit( $data ) {
74 // unlink requests do not accept user input so repeat parent code but skip call to
75 // AuthenticationRequest::loadRequestsFromSubmission
76 $response = $this->performAuthenticationStep( $this->authAction
, $this->authRequests
);
77 return Status
::newGood( $response );