r111120 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r111119‎ \| r111120 \| r111121 >
Date:	23:22, 9 February 2012
Author:	reedy
Status:	resolved (Comments)
Tags:
Comment:	* (bug 32341) Add upload by URL domain limitation. Essentially reverts r109741 live again Which was r109562, r109564, r109570
Modified paths:	/trunk/phase3/RELEASE-NOTES-1.20 (modified) (history) /trunk/phase3/includes/DefaultSettings.php (modified) (history) /trunk/phase3/includes/api/ApiBase.php (modified) (history) /trunk/phase3/includes/api/ApiUpload.php (modified) (history) /trunk/phase3/includes/upload/UploadFromUrl.php (modified) (history) /trunk/phase3/languages/messages/MessagesEn.php (modified) (history) /trunk/phase3/maintenance/language/messages.inc (modified) (history)

Diff [purge]

Index: trunk/phase3/languages/messages/MessagesEn.php
—	—	@@ -2236,6 +2236,7 @@
2237	2237	'upload-too-many-redirects' => 'The URL contained too many redirects',
2238	2238	'upload-unknown-size' => 'Unknown size',
2239	2239	'upload-http-error' => 'An HTTP error occured: $1',
	2240	+'upload-copy-upload-invalid-domain' => 'Copy uploads are not available from this domain.',
2240	2241
2241	2242	# File backend
2242	2243	'backend-fail-stream' => 'Could not stream file $1.',
Index: trunk/phase3/includes/DefaultSettings.php
—	—	@@ -453,6 +453,10 @@
454	454	* This feature is experimental and broken as of r81612.
455	455	*/
456	456	$wgAllowAsyncCopyUploads = false;
	457	+/**
	458	+ * A list of domains copy uploads can come from
	459	+ */
	460	+$wgCopyUploadsDomains = array();
457	461
458	462	/**
459	463	* Max size for uploads, in bytes. If not set to an array, applies to all
Index: trunk/phase3/includes/upload/UploadFromUrl.php
—	—	@@ -37,6 +37,28 @@
38	38	}
39	39
40	40	/**
	41	+ * Checks whether the URL is for an allowed host
	42	+ *
	43	+ * @param $url string
	44	+ * @return bool
	45	+ */
	46	+ public static function isAllowedHost( $url ) {
	47	+ global $wgCopyUploadsDomains;
	48	+ if ( !count( $wgCopyUploadsDomains ) ) {
	49	+ return true;
	50	+ }
	51	+ $valid = false;
	52	+ $parsedUrl = wfParseUrl( $url );
	53	+ foreach( $wgCopyUploadsDomains as $domain ) {
	54	+ if ( $parsedUrl['host'] === $domain ) {
	55	+ $valid = true;
	56	+ break;
	57	+ }
	58	+ }
	59	+ return $valid;
	60	+ }
	61	+
	62	+ /**
41	63	* Entry point for API upload
42	64	*
43	65	* @param $name string
—	—	@@ -101,6 +123,9 @@
102	124	return Status::newFatal( 'http-invalid-url' );
103	125	}
104	126
	127	+ if( !self::isAllowedHost( $this->mUrl ) ) {
	128	+ return Status::newFatal( 'upload-copy-upload-invalid-domain' );
	129	+ }
105	130	if ( !$this->mAsync ) {
106	131	return $this->reallyFetchFile();
107	132	}
Index: trunk/phase3/includes/api/ApiUpload.php
—	—	@@ -322,6 +322,10 @@
323	323	$this->dieUsageMsg( 'copyuploaddisabled' );
324	324	}
325	325
	326	+ if ( !UploadFromUrl::isAllowedHost( $this->mParams['url'] ) ) {
	327	+ $this->dieUsageMsg( 'copyuploadbaddomain' );
	328	+ }
	329	+
326	330	$async = false;
327	331	if ( $this->mParams['asyncdownload'] ) {
328	332	$this->checkAsyncDownloadEnabled();
Index: trunk/phase3/includes/api/ApiBase.php
—	—	@@ -1231,6 +1231,7 @@
1232	1232	'nouploadmodule' => array( 'code' => 'nouploadmodule', 'info' => 'No upload module set' ),
1233	1233	'uploaddisabled' => array( 'code' => 'uploaddisabled', 'info' => 'Uploads are not enabled. Make sure $wgEnableUploads is set to true in LocalSettings.php and the PHP ini setting file_uploads is true' ),
1234	1234	'copyuploaddisabled' => array( 'code' => 'copyuploaddisabled', 'info' => 'Uploads by URL is not enabled. Make sure $wgAllowCopyUploads is set to true in LocalSettings.php.' ),
	1235	+ 'copyuploadbaddomain' => array( 'code' => 'copyuploadbaddomain', 'info' => 'Uploads by URL are not allowed from this domain.' ),
1235	1236
1236	1237	'filename-tooshort' => array( 'code' => 'filename-tooshort', 'info' => 'The filename is too short' ),
1237	1238	'filename-toolong' => array( 'code' => 'filename-toolong', 'info' => 'The filename is too long' ),
Index: trunk/phase3/maintenance/language/messages.inc
—	—	@@ -1345,6 +1345,7 @@
1346	1346	'upload-too-many-redirects',
1347	1347	'upload-unknown-size',
1348	1348	'upload-http-error',
	1349	+ 'upload-copy-upload-invalid-domain',
1349	1350	),
1350	1351
1351	1352	'filebackend-errors' => array(
Index: trunk/phase3/RELEASE-NOTES-1.20
—	—	@@ -14,6 +14,7 @@
15	15
16	16	=== New features in 1.20 ===
17	17	* Added TitleIsKnown hook which gets called when determining if a page exists.
	18	+* (bug 32341) Add upload by URL domain limitation.
18	19
19	20	=== Bug fixes in 1.20 ===
20	21	* (bug 30245) Use the correct way to construct a log page title.

Follow-up revisions

Revision	Commit summary	Author	Date
r111239	Followup r11120, wfParseUrl() can return false, if it does, the host isn't go...	reedy	15:13, 11 February 2012

Past revisions this follows-up on

Revision	Commit summary	Author	Date
r109562	* (bug 32341) Add upload by URL domain limitation.	reedy	19:16, 19 January 2012
r109564	Followup r109562...	reedy	20:26, 19 January 2012
r109570	r109562: Register new message key for maintenance script	raymond	21:12, 19 January 2012
r109741	Revert feature out of r109562, r109564, r109570...	reedy	17:33, 22 January 2012

Comments

#Comment by Aaron Schulz (talk | contribs) 00:39, 11 February 2012

wfParseUrl() can return false.

#Comment by Reedy (talk | contribs) 15:11, 11 February 2012

Why am I not getting emails from CR atm? :/

#Comment by Reedy (talk | contribs) 15:15, 11 February 2012

Also, omg table css change...

#Comment by IAlex (talk | contribs) 14:00, 12 February 2012

Please create a description page on this wiki for the new setting and link to it from Manual:Configuration settings. Thank you.

Status & tagging log

17:37, 11 February 2012 Aaron Schulz (talk | contribs) changed the status of r111120 [removed: new added: resolved]
15:14, 11 February 2012 Reedy (talk | contribs) changed the status of r111120 [removed: fixme added: new]
00:39, 11 February 2012 Aaron Schulz (talk | contribs) changed the status of r111120 [removed: new added: fixme]