r94995 MediaWiki - Code Review archive

Repository:	MediaWiki
Revision:	< r94994‎ \| r94995 \| r94996 >
Date:	11:23, 19 August 2011
Author:	catrope
Status:	ok (Comments)
Tags:	config, scaptrap
Comment:	Per CR on r44412 and my promise in the commit summary of r94990, stop abusing $wgInternalServer (intended for Squid URLs) for IRC/e-mail URLs and introduce $wgCanonicalServer for these purposes instead. This revision introduces two new hooks for WMF hacks, in exchange for making the core code saner. * Introduce $wgCanonicalServer, which should typically be a fully qualified version of $wgServer but in practice can be anything that you'd like to be used in IRC/e-mail notifs Default value is $wgServer, expanded to http:// if protocol-relative This means you can easily set HTTPS as the 'default' protocol to use in IRC and e-mail notifs by setting $wgCanonicalServer to https://example.com * Introduce Title::getCanonicalURL(). Similar to getInternalURL(), including a hook for WMF usage (which will be needed as long as secure.wikimedia.org is used) ** Also add escapeCanonicalURL(). Due to some ridiculous accident of history, the other escapeFooURL() functions don't have a $variant parameter; I decided not to follow that bad example * Reinstate the spirit of r44406 and r44412: instead of calling getInternalURL() (or getCanonicalURL()) and regexing the title parameter out, obtain the path to index.php using $wgCanonicalServer . $wgScript and append params to that. Sadly, we need to add a hook here to support the secure server hack for WMF, but that's the price of saner code in this case * Introduce the {{canonicalurl:}} and {{canonicalurle:}} parser functions, which work just like {{fullurl:}} and {{fullurle:}} except that they use getCanonicalURL() instead of getFullURL() * Use {{canonicalurl:}} in the enotif_body message, fixing bug 29993 (protocol-relative URLs appear in e-mail notifications)
Modified paths:	/trunk/phase3/includes/DefaultSettings.php (modified) (history) /trunk/phase3/includes/RecentChange.php (modified) (history) /trunk/phase3/includes/Setup.php (modified) (history) /trunk/phase3/includes/Title.php (modified) (history) /trunk/phase3/includes/parser/CoreParserFunctions.php (modified) (history) /trunk/phase3/languages/messages/MessagesEn.php (modified) (history)

Diff [purge]

Index: trunk/phase3/includes/RecentChange.php
—	—	@@ -682,7 +682,8 @@
683	683	}
684	684
685	685	public function getIRCLine() {
686		~~- global $wgUseRCPatrol, $wgUseNPPatrol, $wgRC2UDPInterwikiPrefix, $wgLocalInterwiki;~~
	686	+ global $wgUseRCPatrol, $wgUseNPPatrol, $wgRC2UDPInterwikiPrefix, $wgLocalInterwiki,
	687	+ $wgCanonicalServer, $wgScript;
687	688
688	689	if( $this->mAttribs['rc_type'] == RC_LOG ) {
689	690	$titleObj = Title::newFromText( 'Log/' . $this->mAttribs['rc_log_type'], NS_SPECIAL );
—	—	@@ -695,19 +696,18 @@
696	697	if( $this->mAttribs['rc_type'] == RC_LOG ) {
697	698	$url = '';
698	699	} else {
	700	+ $url = $wgCanonicalServer . $wgScript;
699	701	if( $this->mAttribs['rc_type'] == RC_NEW ) {
700		~~- $url = 'oldid=' . $this->mAttribs['rc_this_oldid'];~~
	702	+ $query = '?oldid=' . $this->mAttribs['rc_this_oldid'];
701	703	} else {
702		~~- $url = 'diff=' . $this->mAttribs['rc_this_oldid'] . '&oldid=' . $this->mAttribs['rc_last_oldid'];~~
	704	+ $query = '?diff=' . $this->mAttribs['rc_this_oldid'] . '&oldid=' . $this->mAttribs['rc_last_oldid'];
703	705	}
704	706	if ( $wgUseRCPatrol \|\| ( $this->mAttribs['rc_type'] == RC_NEW && $wgUseNPPatrol ) ) {
705		~~- $url .= '&rcid=' . $this->mAttribs['rc_id'];~~
	707	+ $query .= '&rcid=' . $this->mAttribs['rc_id'];
706	708	}
707		~~- // XXX: HACK this should use getFullURL(), hacked for SSL madness --brion 2005-12-26~~
708		~~- // XXX: HACK^2 the preg_replace() undoes much of what getInternalURL() does, but we~~
709		~~- // XXX: need to call it so that URL paths on the Wikimedia secure server can be fixed~~
710		~~- // XXX: by a custom GetInternalURL hook --vyznev 2008-12-10~~
711		~~- $url = preg_replace( '/title=[^&]*&/', '', $titleObj->getInternalURL( $url ) );~~
	709	+ // HACK: We need this hook for WMF's secure server setup
	710	+ wfRunHooks( 'IRCLineURL', array( &$url, &$query ) );
	711	+ $url .= $query;
712	712	}
713	713
714	714	if( isset( $this->mExtra['oldSize'] ) && isset( $this->mExtra['newSize'] ) ) {
Index: trunk/phase3/includes/parser/CoreParserFunctions.php
—	—	@@ -35,6 +35,8 @@
36	36	$parser->setFunctionHook( 'localurle', array( __CLASS__, 'localurle' ), SFH_NO_HASH );
37	37	$parser->setFunctionHook( 'fullurl', array( __CLASS__, 'fullurl' ), SFH_NO_HASH );
38	38	$parser->setFunctionHook( 'fullurle', array( __CLASS__, 'fullurle' ), SFH_NO_HASH );
	39	+ $parser->setFunctionHook( 'canonicalurl', array( __CLASS__, 'canonicalurl' ), SFH_NO_HASH );
	40	+ $parser->setFunctionHook( 'canonicalurle', array( __CLASS__, 'canonicalurle' ), SFH_NO_HASH );
39	41	$parser->setFunctionHook( 'formatnum', array( __CLASS__, 'formatnum' ), SFH_NO_HASH );
40	42	$parser->setFunctionHook( 'grammar', array( __CLASS__, 'grammar' ), SFH_NO_HASH );
41	43	$parser->setFunctionHook( 'gender', array( __CLASS__, 'gender' ), SFH_NO_HASH );
—	—	@@ -218,6 +220,8 @@
219	221	static function localurle( $parser, $s = '', $arg = null ) { return self::urlFunction( 'escapeLocalURL', $s, $arg ); }
220	222	static function fullurl( $parser, $s = '', $arg = null ) { return self::urlFunction( 'getFullURL', $s, $arg ); }
221	223	static function fullurle( $parser, $s = '', $arg = null ) { return self::urlFunction( 'escapeFullURL', $s, $arg ); }
	224	+ static function canonicalurl( $parser, $s = '', $arg = null ) { return self::urlFunction( 'getCanonicalURL', $s, $arg ); }
	225	+ static function canonicalurle( $parser, $s = '', $arg = null ) { return self::urlFunction( 'escapeCanonicalURL', $s, $arg ); }
222	226
223	227	static function urlFunction( $func, $s = '', $arg = null ) {
224	228	$title = Title::newFromText( $s );
Index: trunk/phase3/includes/Setup.php
—	—	@@ -343,6 +343,11 @@
344	344	wfProfileOut( $fname . '-includes' );
345	345	}
346	346
	347	+# Now that GlobalFunctions is loaded, set the default for $wgCanonicalServer
	348	+if ( $wgCanonicalServer === false ) {
	349	+ $wgCanonicalServer = wfExpandUrl( $wgServer, PROTO_HTTP );
	350	+}
	351	+
347	352	wfProfileIn( $fname . '-misc1' );
348	353
349	354	# Raise the memory limit if it's too low
Index: trunk/phase3/includes/Title.php
—	—	@@ -987,6 +987,13 @@
988	988	public function escapeFullURL( $query = '' ) {
989	989	return htmlspecialchars( $this->getFullURL( $query ) );
990	990	}
	991	+
	992	+ /**
	993	+ * HTML-escaped version of getCanonicalURL()
	994	+ */
	995	+ public function escapeCanonicalURL( $query = '', $variant = false ) {
	996	+ return htmlspecialchars( $this->getCanonicalURL( $query, $variant ) );
	997	+ }
991	998
992	999	/**
993	1000	* Get the URL form for an internal link.
—	—	@@ -1010,6 +1017,22 @@
1011	1018	}
1012	1019
1013	1020	/**
	1021	+ * Get the URL for a canonical link, for use in things like IRC and
	1022	+ * e-mail notifications. Uses $wgCanonicalServer and the
	1023	+ * GetCanonicalURL hook.
	1024	+ *
	1025	+ * @param $query string An optional query string
	1026	+ * @param $variant string Language variant of URL (for sr, zh, ...)
	1027	+ * @return string The URL
	1028	+ */
	1029	+ public function getCanonicalURL( $query = '', $variant = false ) {
	1030	+ global $wgCanonicalServer;
	1031	+ $url = $wgCanonicalServer . $this->getLocalURL( $query, $variant );
	1032	+ wfRunHooks( 'GetCanonicalURL', array( &$this, &$url, $query ) );
	1033	+ return $url;
	1034	+ }
	1035	+
	1036	+ /**
1014	1037	* Get the edit URL for this Title
1015	1038	*
1016	1039	* @return String the URL, or a null string if this is an
Index: trunk/phase3/includes/DefaultSettings.php
—	—	@@ -39,19 +39,31 @@
40	40	$wgSitename = 'MediaWiki';
41	41
42	42	/**
43		~~- * URL of the server. It will be automatically built including https mode.~~
	43	+ * URL of the server.
44	44	*
45	45	* Example:
46	46	* <code>
47		~~- * $wgServer = http://example.com~~
	47	+ * $wgServer = 'http://example.com';
48	48	* </code>
49	49	*
50	50	* This is usually detected correctly by MediaWiki. If MediaWiki detects the
51	51	* wrong server, it will redirect incorrectly after you save a page. In that
52	52	* case, set this variable to fix it.
	53	+ *
	54	+ * If you want to use protocol-relative URLs on your wiki, set this to a
	55	+ * protocol-relative URL like '//example.com' and set $wgCanonicalServer
	56	+ * to a fully qualified URL.
53	57	*/
54	58	$wgServer = WebRequest::detectServer();
55	59
	60	+/**
	61	+ * Canonical URL of the server, to use in IRC feeds and notification e-mails.
	62	+ * Must be fully qualified, even if $wgServer is protocol-relative.
	63	+ *
	64	+ * Defaults to $wgServer, expanded to a fully qualified http:// URL if needed.
	65	+ */
	66	+$wgCanonicalServer = false;
	67	+
56	68	/**********************************************************************//
57	69	* @name Script path settings
58	70	* @{
—	—	@@ -120,6 +132,7 @@
121	133	*/
122	134	$wgLoadScript = false;
123	135
	136	+
124	137	/*@}/
125	138
126	139	/**********************************************************************//
Index: trunk/phase3/languages/messages/MessagesEn.php
—	—	@@ -310,6 +310,8 @@
311	311	'plural' => array( 0, 'PLURAL:' ),
312	312	'fullurl' => array( 0, 'FULLURL:' ),
313	313	'fullurle' => array( 0, 'FULLURLE:' ),
	314	+ 'canonicalurl' => array( 0, 'CANONICALURL:' ),
	315	+ 'canonicalurle' => array( 0, 'CANONICALURLE:' ),
314	316	'lcfirst' => array( 0, 'LCFIRST:' ),
315	317	'ucfirst' => array( 0, 'UCFIRST:' ),
316	318	'lc' => array( 0, 'LC:' ),
—	—	@@ -2772,16 +2774,16 @@
2773	2775
2774	2776	--
2775	2777	To change your email notification settings, visit
2776		~~-{{fullurl:{{#special:Preferences}}}}~~
	2778	+{{canonicalurl:{{#special:Preferences}}}}
2777	2779
2778	2780	To change your watchlist settings, visit
2779		~~-{{fullurl:{{#special:EditWatchlist}}}}~~
	2781	+{{canonicalurl:{{#special:EditWatchlist}}}}
2780	2782
2781	2783	To delete the page from your watchlist, visit
2782	2784	$UNWATCHURL
2783	2785
2784	2786	Feedback and further assistance:
2785		~~-{{fullurl:{{MediaWiki:Helppage}}}}',~~
	2787	+{{canonicalurl:{{MediaWiki:Helppage}}}}',
2786	2788
2787	2789	# Delete
2788	2790	'deletepage' => 'Delete page',

Sign-offs

User	Flag	Date
Nikerabbit	inspected	14:43, 19 August 2011
Brion VIBBER	inspected	23:27, 23 August 2011

Follow-up revisions

Revision	Commit summary	Author	Date
r94997	Followup r94995: add hooks.txt entries for the new hooks	catrope	14:05, 19 August 2011
r95000	Use canonical URLs (introduced in r94995) in the OpenSearch discovery thingy	catrope	14:39, 19 August 2011
r95002	Use canonical URLs (introduced in r94995) for all URLs in e-mails	catrope	14:46, 19 August 2011
r95505	1.17wmf1: Merge a truckload of HTTPS / prot rel URL fixes: r93847, r94990, r9...	catrope	19:32, 25 August 2011
r95607	MFT to REL1_18...	hashar	19:28, 27 August 2011
r95627	Fix bug in r94995: getCanonicalUrl() doesn't append the fragment. This is cor...	catrope	15:15, 28 August 2011
r96180	Use wfExpandUrl+PROTO_CANONICAL inside of getCanonicalURL instead of just pre...	dantman	13:17, 3 September 2011

Past revisions this follows-up on

Revision	Commit summary	Author	Date
r44406	(bug 4253, bug 16586) Don't repeat titles of new pages in URLs in the RC->IRC...	vyznev	15:56, 10 December 2008
r44412	Seems r44406 would've broken the RC feed on secure.wikimedia org: fix by intr...	vyznev	17:03, 10 December 2008
r94990	Followup r94754: move protocol expansion from getIRCLine() to inside getInter...	catrope	08:56, 19 August 2011

Comments

#Comment by Brion VIBBER (talk | contribs) 23:26, 23 August 2011

Looks good overall! Doc comments I think need to be tweaked to indicate $query can be an array, as it is on getLocalURL etc.

Deployment configuration in secure.php will need to be updated to continue supporting the secure.wikimedia.org gateway:

apply the GetInternalURL hook handler to GetCanonicalURL as well (to collapse the expanded path back to the regular path)
equivalent function for IRCLineURL
set $wgCanonicalServer to the $wgInternalServer value

Note that we may not want to set $wgCanonicalServer to use 'https://', as it'll leave the same problems we have now with links in notification emails depending on what someone *else* did instead of what *you* did.

In the future though I recommend setting it always to use 'https://', for a magical future where we run all login sessions of SSL like sane people. :)

#Comment by Catrope (talk | contribs) 09:14, 24 August 2011

Doc comments: sure, will tweak
secure.php: I know, that's why there's a big fat scaptrap on this :)
CanonicalServer: maybe I didn't document this well enough, but $wgCanonicalServer must always be the same, regardless of which protocol the user comes in on. This ensures consistency in e-mails, but also prevents cache pollution. We can choose to set it to http (which we will start out with) and we can switch it to https when we feel comfortable to, but the important thing is that it's set to a preferred protocol which is fixed. Setting wgCanonicalServer to https won't reintroduce the notification e-mail problems, it'll simply make all links in notification e-mails show https for everyone, so things don't depend on what someone else did, but on what we decide should be the site-wide default

#Comment by Brion VIBBER (talk | contribs) 18:37, 24 August 2011

Right -- having $wgCanonicalServer differ between http and https is what would be problematic. Just writing these things down explicitly so we don't forget when the scaptrap comes due. ;)

#Comment by Krinkle (talk | contribs) 23:13, 24 August 2011

Status & tagging log

22:36, 16 September 2011 Aaron Schulz (talk | contribs) changed the tags for r94995 [added: config]
19:28, 27 August 2011 Hashar (talk | contribs) changed the tags for r94995 [removed: 1.18]
19:33, 25 August 2011 Catrope (talk | contribs) changed the tags for r94995 [removed: httpsdeploy,1.17wmf1]
17:39, 24 August 2011 Reedy (talk | contribs) changed the status of r94995 [removed: new added: ok]
11:27, 19 August 2011 Catrope (talk | contribs) changed the tags for r94995 [added: scaptrap]
11:26, 19 August 2011 Catrope (talk | contribs) changed the tags for r94995 [added: httpsdeploy,1.17wmf1,1.18]