Example #1
0
 public static function convertDataToAttributes($data)
 {
     // get ID of current CK instance
     $instance = RTE::getInstanceId();
     // properly encode JSON
     $encoded = RTEReverseParser::encodeRTEData($data);
     $encoded = Sanitizer::encodeAttribute($encoded);
     return " data-rte-meta=\"{$encoded}\" data-rte-instance=\"{$instance}\" ";
 }
Example #2
0
	/**
	 * Given an array of ('attributename' => 'value'), it generates the code
	 * to set the XML attributes : attributename="value".
	 * The values are passed to Sanitizer::encodeAttribute.
	 * Return null if no attributes given.
	 * @param array $attribs of attributes for an XML element
	 * @throws MWException
	 * @return null|string
	 */
	public static function expandAttributes( $attribs ) {
		$out = '';
		if ( is_null( $attribs ) ) {
			return null;
		} elseif ( is_array( $attribs ) ) {
			foreach ( $attribs as $name => $val ) {
				$out .= " {$name}=\"" . Sanitizer::encodeAttribute( $val ) . '"';
			}
			return $out;
		} else {
			throw new MWException( 'Expected attribute array, got something else in ' . __METHOD__ );
		}
	}
 public function index()
 {
     wfProfileIn(__METHOD__);
     if (!$this->getUser()->isAllowed('coppatool')) {
         wfProfileOut(__METHOD__);
         $this->displayRestrictionError();
         return false;
     }
     $this->specialPage->setHeaders();
     $this->response->setTemplateEngine(WikiaResponse::TEMPLATE_ENGINE_MUSTACHE);
     $this->userName = trim($this->getVal('username', $this->getPar()));
     $this->isIP = false;
     $this->validUser = false;
     if (IP::isIPAddress($this->userName)) {
         $this->userName = IP::sanitizeIP($this->userName);
         $this->isIP = true;
         $this->validUser = true;
     } else {
         $userObj = User::newFromName($this->userName);
         if (!$userObj || $userObj->getId() === 0) {
             $this->validUser = false;
         } else {
             $this->userName = $userObj->getName();
             $this->validUser = true;
         }
     }
     $this->userForm = $this->app->renderView('WikiaStyleGuideForm', 'index', ['form' => ['isInvalid' => $this->validUser || $this->userName === '' ? false : true, 'errorMsg' => $this->validUser || $this->userName === '' ? '' : $this->msg('coppatool-nosuchuser', $this->userName)->escaped(), 'inputs' => [['type' => 'text', 'name' => 'username', 'isRequired' => true, 'label' => $this->msg('coppatool-label-username')->escaped(), 'value' => Sanitizer::encodeAttribute($this->userName)], ['type' => 'submit', 'value' => $this->msg('coppatool-submit')->escaped()]], 'method' => 'GET', 'action' => $this->getTitle()->getLocalUrl()]]);
     if ($this->validUser) {
         $this->getOutput()->addModules('ext.coppaTool');
         $this->buttons = [];
         $this->blankImgUrl = wfBlankImgUrl();
         $this->formHeading = $this->msg('coppatool-form-header')->escaped();
         if (!$this->isIP) {
             $this->buttons[] = ['buttonAction' => 'disable-account', 'buttonLink' => Html::element('a', ['href' => '#'], $this->msg('coppatool-disable')->escaped()), 'done' => $userObj->getGlobalFlag('disabled', false)];
             $this->buttons[] = ['buttonAction' => 'blank-profile', 'buttonLink' => Html::element('a', ['href' => '#'], $this->msg('coppatool-blank-user-profile')->escaped())];
             $this->buttons[] = ['buttonAction' => 'delete-userpages', 'buttonLink' => Html::element('a', ['href' => '#'], $this->msg('coppatool-delete-user-pages')->escaped())];
             $this->buttons[] = ['buttonAction' => 'coppa-imagereview', 'buttonLink' => Linker::link(Title::newFromText('CoppaImageReview', NS_SPECIAL), $this->msg('coppatool-imagereview')->escaped(), ['target' => '_blank'], ['username' => $this->userName], ['known', 'noclasses'])];
         } else {
             $this->buttons[] = ['buttonAction' => 'phalanx-ip', 'buttonLink' => Linker::link(Title::newFromText('Phalanx', NS_SPECIAL), $this->msg('coppatool-phalanx-ip')->escaped(), ['target' => '_blank'], ['type' => Phalanx::TYPE_USER, 'wpPhalanxCheckBlocker' => $this->userName, 'target' => $this->userName], ['known', 'noclasses'])];
             $this->buttons[] = ['buttonAction' => 'rename-ip', 'buttonLink' => Html::element('a', ['href' => '#'], $this->msg('coppatool-rename-ip')->escaped())];
         }
     }
     wfProfileOut(__METHOD__);
 }
Example #4
0
 /**
  * Format an XML element with given attributes and, optionally, text content.
  * Element and attribute names are assumed to be ready for literal inclusion.
  * Strings are assumed to not contain XML-illegal characters; special
  * characters (<, >, &) are escaped but illegals are not touched.
  *
  * @param $element String:
  * @param $attribs Array: Name=>value pairs. Values will be escaped.
  * @param $contents String: NULL to make an open tag only; '' for a contentless closed tag (default)
  * @return string
  */
 public static function element($element, $attribs = null, $contents = '')
 {
     $out = '<' . $element;
     if (!is_null($attribs)) {
         foreach ($attribs as $name => $val) {
             $out .= ' ' . $name . '="' . Sanitizer::encodeAttribute($val) . '"';
         }
     }
     if (is_null($contents)) {
         $out .= '>';
     } else {
         if ($contents === '') {
             $out .= ' />';
         } else {
             $out .= '>' . htmlspecialchars($contents) . "</{$element}>";
         }
     }
     return $out;
 }
Example #5
0
 /**
  * This method takes an array and converts it to XML.
  * There are several noteworthy cases:
  *
  *  If array contains a key '_element', then the code assumes that ALL other keys are not important and replaces them with the value['_element'].
  *	Example:	name='root',  value = array( '_element'=>'page', 'x', 'y', 'z') creates <root>  <page>x</page>  <page>y</page>  <page>z</page> </root>
  *
  *  If any of the array's element key is '*', then the code treats all other key->value pairs as attributes, and the value['*'] as the element's content.
  *	Example:	name='root',  value = array( '*'=>'text', 'lang'=>'en', 'id'=>10)   creates  <root lang='en' id='10'>text</root>
  *
  * If neither key is found, all keys become element names, and values become element content.
  * The method is recursive, so the same rules apply to any sub-arrays.
  *
  * @param $elemName
  * @param $elemValue
  * @param $indent
  * @param $doublequote bool
  *
  * @return string
  */
 public static function recXmlPrint($elemName, $elemValue, $indent, $doublequote = false)
 {
     $retval = '';
     if (!is_null($indent)) {
         $indent += 2;
         $indstr = "\n" . str_repeat(' ', $indent);
     } else {
         $indstr = '';
     }
     $elemName = str_replace(' ', '_', $elemName);
     switch (gettype($elemValue)) {
         case 'array':
             if (isset($elemValue['*'])) {
                 $subElemContent = $elemValue['*'];
                 if ($doublequote) {
                     $subElemContent = Sanitizer::encodeAttribute($subElemContent);
                 }
                 unset($elemValue['*']);
                 // Add xml:space="preserve" to the
                 // element so XML parsers will leave
                 // whitespace in the content alone
                 $elemValue['xml:space'] = 'preserve';
             } else {
                 $subElemContent = null;
             }
             if (isset($elemValue['_element'])) {
                 $subElemIndName = $elemValue['_element'];
                 unset($elemValue['_element']);
             } else {
                 $subElemIndName = null;
             }
             $indElements = array();
             $subElements = array();
             foreach ($elemValue as $subElemId => &$subElemValue) {
                 if (is_string($subElemValue) && $doublequote) {
                     $subElemValue = Sanitizer::encodeAttribute($subElemValue);
                 }
                 if (gettype($subElemId) === 'integer') {
                     $indElements[] = $subElemValue;
                     unset($elemValue[$subElemId]);
                 } elseif (is_array($subElemValue)) {
                     $subElements[$subElemId] = $subElemValue;
                     unset($elemValue[$subElemId]);
                 }
             }
             if (is_null($subElemIndName) && count($indElements)) {
                 ApiBase::dieDebug(__METHOD__, "({$elemName}, ...) has integer keys without _element value. Use ApiResult::setIndexedTagName().");
             }
             if (count($subElements) && count($indElements) && !is_null($subElemContent)) {
                 ApiBase::dieDebug(__METHOD__, "({$elemName}, ...) has content and subelements");
             }
             if (!is_null($subElemContent)) {
                 $retval .= $indstr . Xml::element($elemName, $elemValue, $subElemContent);
             } elseif (!count($indElements) && !count($subElements)) {
                 $retval .= $indstr . Xml::element($elemName, $elemValue);
             } else {
                 $retval .= $indstr . Xml::element($elemName, $elemValue, null);
                 foreach ($subElements as $subElemId => &$subElemValue) {
                     $retval .= self::recXmlPrint($subElemId, $subElemValue, $indent);
                 }
                 foreach ($indElements as &$subElemValue) {
                     $retval .= self::recXmlPrint($subElemIndName, $subElemValue, $indent);
                 }
                 $retval .= $indstr . Xml::closeElement($elemName);
             }
             break;
         case 'object':
             // ignore
             break;
         default:
             $retval .= $indstr . Xml::element($elemName, null, $elemValue);
             break;
     }
     return $retval;
 }
Example #6
0
    $isNumber1 = false;
    if ($index == 1 && !$number1Found && !empty($items[$index]) && $items[$index]->getVotesCount() != $item->getVotesCount()) {
        $isNumber1 = true;
        $number1Found = true;
    }
    ?>
				<div class="ItemNumber<?php 
    echo $isNumber1 ? ' No1' : ' NotVotable';
    ?>
">
					<span>#<?php 
    echo $index;
    ?>
</span>
					<button class="VoteButton" id="<?php 
    echo Sanitizer::encodeAttribute($item->getTitle()->getSubpageText());
    ?>
">
						<img src="<?php 
    echo wfBlankImgUrl();
    ?>
" class="chevron"/>
						<?php 
    echo wfMessage('toplists-list-vote-up')->inContentLanguage()->escaped();
    ?>
					</button>
				</div>
				<div class="ItemContent">
					<?php 
    echo $item->getParsedContent();
    ?>
Example #7
0
	<?php 
    echo F::app()->renderView('MenuButton', 'Index', array('action' => array("text" => wfMessage('category-exhibition-' . $current)->escaped(), "id" => "category-exhibition-form-current"), 'class' => 'secondary', 'dropdown' => $dropdown, 'name' => 'sortType'));
    ?>
	<?php 
}
?>
	<a title="<?php 
echo wfMessage('category-exhibition-display-old')->escaped();
?>
" id="category-exhibition-form-new" href="<?php 
echo Sanitizer::encodeAttribute($path . '?display=page&sort=' . urlencode($current));
?>
" ><div id="category-exhibition-display-old" <?php 
if ($displayType == 'page') {
    echo ' class="active"';
}
?>
 ></div></a> | <a title="<?php 
echo wfMessage('category-exhibition-display-new')->escaped();
?>
" id="category-exhibition-form-old" href="<?php 
echo Sanitizer::encodeAttribute($path . '?display=exhibition&sort=' . urlencode($current));
?>
" ><div id="category-exhibition-display-new" <?php 
if ($displayType == 'exhibition') {
    echo ' class="active"';
}
?>
 ></div></a>
</div>
    /**
     * Format a single list item from a database row.
     * @param $row Database row object
     * @param $params An array of flags. Valid flags:
     * * admin (user can show/hide feedback items)
     * * show-anyway (user has asked to see this hidden item)
     * @param $response An array of response for feedback
     * @return string HTML
     */
    public static function formatListItem($row, $params = array(), $response = array())
    {
        global $wgLang, $wgUser;
        $classes = array('fbd-item');
        $toolLinks = array();
        //in case there is an error constructing the feedbackitem object,
        //we don't want to throw an error for the entire page.
        try {
            $feedbackItem = MBFeedbackItem::load($row);
        } catch (Exception $e) {
            $classes = Sanitizer::encodeAttribute(implode(' ', $classes));
            $error_message = wfMessage('moodbar-feedback-load-record-error')->escaped();
            return <<<HTML
\t\t\t<li class="{$classes}">
\t\t\t\t<div class="fbd-item-message" dir="auto">{$error_message}</div>
\t\t\t\t<div style="clear:both"></div>
\t\t\t</li>
HTML;
        }
        // Type
        $type = $feedbackItem->getProperty('type');
        $typeMsg = wfMessage("moodbar-type-{$type}")->params($feedbackItem->getProperty('user'))->escaped();
        // Timestamp
        $timestamp = wfTimestamp(TS_UNIX, $feedbackItem->getProperty('timestamp'));
        $timeMsg = wfMessage('ago')->params(MoodBarUtil::formatTimeSince($timestamp))->escaped();
        // Comment
        $comment = htmlspecialchars($feedbackItem->getProperty('comment'));
        // User information
        $userInfo = self::buildUserInfo($feedbackItem);
        // Tool links
        $toolLinks[] = self::getPermalink($feedbackItem);
        // Continuation data
        $id = $feedbackItem->getProperty('id');
        $continueData = wfTimestamp(TS_MW, $timestamp) . '|' . intval($id);
        // Now handle hiding, showing, etc
        if ($feedbackItem->getProperty('hidden-state') > 0) {
            $toolLinks = array();
            if (!in_array('show-anyway', $params)) {
                $userInfo = wfMessage('moodbar-user-hidden')->escaped();
                $comment = wfMessage('moodbar-comment-hidden')->escaped();
                $type = 'hidden';
                $typeMsg = '';
                $classes[] = 'fbd-hidden';
            }
            if (in_array('admin', $params)) {
                if (in_array('show-anyway', $params)) {
                    $toolLinks[] = self::getHiddenFooter($feedbackItem, 'shown');
                } else {
                    $toolLinks[] = self::getHiddenFooter($feedbackItem, 'hidden');
                }
            }
        } elseif (in_array('admin', $params)) {
            $toolLinks[] = self::getHideLink($feedbackItem);
        }
        $responseElements = self::buildResponseElement($feedbackItem, $response);
        $classes = Sanitizer::encodeAttribute(implode(' ', $classes));
        $toolLinks = implode("\n", $toolLinks);
        return <<<HTML
\t\t<li class="{$classes}" data-mbccontinue="{$continueData}">
\t\t\t<div class="fbd-item-emoticon fbd-item-emoticon-{$type}">
\t\t\t\t<span class="fbd-item-emoticon-label">{$typeMsg}</span>
\t\t\t</div>
\t\t\t<div class="fbd-item-time">{$timeMsg}</div>
\t\t\t{$userInfo}
\t\t\t<div class="fbd-item-message" dir="auto">{$comment}</div>
\t\t\t{$toolLinks}
\t\t\t{$responseElements}
\t\t\t<div style="clear:both"></div>
\t\t</li>
HTML;
    }
 /**
  *
  * @param $par String subpage string, if one was specified
  */
 function execute($par)
 {
     global $wgOut;
     global $wgRequest, $wgUser, $wgMemc;
     $MAX_RESULTS = 100;
     $CACHE_KEY_PREFIX = "LW_SOAP_FAILURES";
     $CACHE_KEY_DATA = wfMemcKey($CACHE_KEY_PREFIX, "data");
     $CACHE_KEY_TIME = wfMemcKey($CACHE_KEY_PREFIX, "cachedOn");
     $CACHE_KEY_STATS = wfMemcKey($CACHE_KEY_PREFIX, "stats");
     $wgOut->setPageTitle(wfMsg('soapfailures'));
     // This processes any requested for removal of an item from the list.
     if (isset($_POST['artist']) && isset($_POST['song'])) {
         $artist = $_POST['artist'];
         $song = $_POST['song'];
         $songResult = array();
         $failedLyrics = "Not found";
         /*
         			GLOBAL $IP;
         			define('LYRICWIKI_SOAP_FUNCS_ONLY', true); // so that we can use the SOAP functions but not actually instantiate a SOAP server & process a request.
         			include_once 'server.php'; // the SOAP functions
         
         			$songResult = getSong($artist, $song);*/
         // Pull in the NuSOAP code
         $dir = dirname(__FILE__) . '/';
         require_once $dir . 'nusoap.php';
         // Create the client instance
         $wsdlUrl = 'http://' . $_SERVER['SERVER_NAME'] . '/server.php?wsdl&1';
         $PROXY_HOST = "127.0.0.1";
         $PROXY_PORT = "6081";
         // use local-varnish for the proxy
         $client = new nusoapclient($wsdlUrl, true, $PROXY_HOST, $PROXY_PORT);
         $err = $client->getError();
         if ($err) {
             echo '<h2>Constructor error</h2><pre>' . $err . '</pre>';
         } else {
             // Create the proxy
             $proxy = $client->getProxy();
             global $LW_USERNAME, $LW_PASSWORD;
             if ($LW_USERNAME != "" || $LW_PASSWORD != "") {
                 $headers = "<username>{$LW_USERNAME}</username><password>{$LW_PASSWORD}</password>\n";
                 $proxy->setHeaders($headers);
             }
             $songResult = $proxy->getSongResult($artist, $song);
         }
         if ($songResult['lyrics'] == $failedLyrics || $songResult['lyrics'] == "") {
             print "<html><head><title>Error</title></head><body>\n";
             // TODO: i18n
             print '<div style="background-color:#fcc">Sorry, but ' . htmlspecialchars($artist) . ':' . htmlspecialchars($song) . " song still failed.</div>\n";
             print_r($songResult);
         } else {
             $dbw = wfGetDB(DB_MASTER);
             print "<html><head><title>Success</title></head><body>\n";
             // TODO: i18n
             print "Deleting record... ";
             $result = $dbw->delete('lw_soap_failures', ['request_artist' => $artist, 'request_song' => $song], __METHOD__);
             if ($result) {
                 print "Deleted.";
             } else {
                 print "Failed. " . mysql_error();
             }
             print "<br/>Clearing the cache... ";
             $wgMemc->delete($CACHE_KEY_DATA);
             // purge the entry from memcached
             $wgMemc->delete($CACHE_KEY_TIME);
             $wgMemc->delete($CACHE_KEY_STATS);
             print "<div style='background-color:#cfc'>The song was retrieved successfully and ";
             print "was removed from the failed requests list.";
             print "</div>\n";
         }
         global $wgScriptPath;
         print "<br/>Back to <a href='{$wgScriptPath}/Special:Soapfailures'>SOAP Failures</a>\n";
         print "</body></html>";
         exit;
         // wiki system throws database-connection errors if the page is allowed to display itself.
     } else {
         $wgOut->addHTML("<style type='text/css'>\n\t\t\t\ttable.soapfailures{\n\t\t\t\t\tborder-collapse:collapse;\n\t\t\t\t}\n\t\t\t\t.soapfailures tr.odd{background-color:#eef}\n\t\t\t\t.soapfailures td, .soapfailures th{\n\t\t\t\t\tborder:1px solid;\n\t\t\t\t\tcell-padding:0px;\n\t\t\t\t\tcell-spacing:0px;\n\t\t\t\t\tvertical-align:top;\n\t\t\t\t\tpadding:5px;\n\t\t\t\t}</style>\n");
         // Allow the cache to be manually cleared.
         $msg = "";
         if (isset($_GET['cache']) && $_GET['cache'] == "clear") {
             $msg .= "Forced clearing of the cache...\n";
             $wgMemc->delete($CACHE_KEY_DATA);
             // purge the entry from memcached
             $wgMemc->delete($CACHE_KEY_TIME);
             $wgMemc->delete($CACHE_KEY_STATS);
             unset($_GET['cache']);
             $_SERVER['REQUEST_URI'] = str_replace("?cache=clear", "", $_SERVER['REQUEST_URI']);
             $_SERVER['REQUEST_URI'] = str_replace("&cache=clear", "", $_SERVER['REQUEST_URI']);
         }
         $msg = $msg == "" ? "" : "<pre>{$msg}</pre>";
         $wgOut->addWikiText($msg);
         // Form for clearing a fixed song.
         $wgOut->addHTML(wfMsg('soapfailures-mark-as-fixed') . "\n\t\t\t\t\t\t\t<form method='post'>\n\t\t\t\t\t\t\t\t" . wfMsg('soapfailures-artist') . " <input type='text' name='artist'/><br/>\n\t\t\t\t\t\t\t\t" . wfMsg('soapfailures-song') . " <input type='text' name='song'/><br/>\n\t\t\t\t\t\t\t\t<input type='submit' name='fixed' value='" . wfMsg('soapfailures-fixed') . "'/>\n\t\t\t\t\t\t\t</form><br/>");
         $data = $wgMemc->get($CACHE_KEY_DATA);
         $cachedOn = $wgMemc->get($CACHE_KEY_TIME);
         $statsHtml = $wgMemc->get($CACHE_KEY_STATS);
         if (!$data) {
             $db =& wfGetDB(DB_SLAVE)->getProperty('mConn');
             $queryString = "SELECT * FROM lw_soap_failures ORDER BY numRequests DESC LIMIT {$MAX_RESULTS}";
             if ($result = mysql_query($queryString, $db)) {
                 $data = array();
                 if (($numRows = mysql_num_rows($result)) && $numRows > 0) {
                     for ($cnt = 0; $cnt < $numRows; $cnt++) {
                         $row = array();
                         $row['artist'] = mysql_result($result, $cnt, "request_artist");
                         $row['song'] = mysql_result($result, $cnt, "request_song");
                         $row['numRequests'] = mysql_result($result, $cnt, "numRequests");
                         $row['lookedFor'] = mysql_result($result, $cnt, "lookedFor");
                         $row['lookedFor'] = formatLookedFor($row['lookedFor']);
                         $data[] = $row;
                     }
                 }
             } else {
                 $wgOut->addHTML("<br/><br/><strong>Error: with query</strong><br/><em>{$queryString}</em><br/><strong>Error message: </strong>" . mysql_error($db));
             }
             $cachedOn = date('m/d/Y \\a\\t g:ia');
         }
         // Stats HTML is just an unimportant feature, hackily storing HTML instead of the data - FIXME: It's BAD to cache output rather than data.
         if (!$statsHtml) {
             // Display some hit-rate stats.
             ob_start();
             include_once __DIR__ . "/soap_stats.php";
             // for tracking success/failure
             print "<br/><br/><br/>";
             print "<em>" . wfMsg('soapfailures-stats-header') . "</em><br/>\n";
             print "<table border='1px' cellpadding='5px'>\n";
             print "\t<tr><th>" . wfMsg('soapfailures-stats-timeperiod') . "</th><th>" . wfMsg('soapfailures-stats-numfound') . "</th><th>" . wfMsg('soapfailures-stats-numnotfound') . "</th><th>&nbsp;</th></tr>\n";
             $stats = lw_soapStats_getStats(LW_TERM_DAILY, "", LW_API_TYPE_WEB);
             print "\t<tr><td>" . wfMsg('soapfailures-stats-period-today') . "</td><td>{$stats[LW_API_FOUND]}</td><td>{$stats[LW_API_NOT_FOUND]}</td><td>{$stats[LW_API_PERCENT_FOUND]}%</td></tr>\n";
             $stats = lw_soapStats_getStats(LW_TERM_WEEKLY, "", LW_API_TYPE_WEB);
             print "\t<tr><td>" . wfMsg('soapfailures-stats-period-thisweek') . "</td><td>{$stats[LW_API_FOUND]}</td><td>{$stats[LW_API_NOT_FOUND]}</td><td>{$stats[LW_API_PERCENT_FOUND]}%</td></tr>\n";
             $stats = lw_soapStats_getStats(LW_TERM_MONTHLY, "", LW_API_TYPE_WEB);
             print "\t<tr><td>" . wfMsg('soapfailures-stats-period-thismonth') . "</td><td>{$stats[LW_API_FOUND]}</td><td>{$stats[LW_API_NOT_FOUND]}</td><td>{$stats[LW_API_PERCENT_FOUND]}%</td></tr>\n";
             print "</table>\n";
             $statsHtml = ob_get_clean();
         }
         if ($data) {
             $wgOut->addWikiText(wfMsg('soapfailures-intro'));
             $wgOut->addHTML("This page is cached every 2 hours - \n");
             // TODO: i18n
             $wgOut->addHTML("last cached: <strong>{$cachedOn}</strong>\n");
             // TODO: i18n
             $totFailures = 0;
             if (!empty($data)) {
                 $wgOut->addHTML("<table class='soapfailures'>\n");
                 $wgOut->addHTML("<tr><th nowrap='nowrap'>" . wfMsg('soapfailures-header-requests') . "</th><th>" . wfMsg('soapfailures-header-artist') . "</th><th>" . wfMsg('soapfailures-header-song') . "</th><th>" . wfMsg('soapfailures-header-looked-for') . "</th><th>" . wfMsg('soapfailures-header-fixed') . "</th></tr>\n");
                 $REQUEST_URI = $_SERVER['REQUEST_URI'];
                 $rowIndex = 0;
                 foreach ($data as $row) {
                     $artist = $row['artist'];
                     $song = $row['song'];
                     $numRequests = $row['numRequests'];
                     $lookedFor = $row['lookedFor'];
                     $totFailures += $numRequests;
                     $wgOut->addHTML(utf8_encode("<tr" . ($rowIndex % 2 != 0 ? " class='odd'" : "") . "><td>{$numRequests}</td><td>"));
                     $wgOut->addWikiText("[[{$artist}]]");
                     $wgOut->addHTML("</td><td>");
                     $wgOut->addWikiText("[[{$artist}:{$song}|{$song}]]");
                     $delim = "&amp;";
                     $prefix = "";
                     // If the short-url is in the REQUEST_URI, make sure to add the index.php?title= prefix to it.
                     if (strpos($REQUEST_URI, "index.php?title=") === false) {
                         $prefix = "/index.php?title=";
                         // If we're adding the index.php ourselves, but the request still started with a slash, remove it because that would break the request if it came after the "title="
                         if (substr($REQUEST_URI, 0, 1) == "/") {
                             $REQUEST_URI = substr($REQUEST_URI, 1);
                         }
                     }
                     $wgOut->addHTML("</td><td>");
                     $wgOut->addWikiText("{$lookedFor}");
                     $wgOut->addHTML("</td><td>");
                     $wgOut->addHTML("<form action='' method='POST' target='_blank'>\n\t\t\t\t\t\t\t\t<input type='hidden' name='artist' value=\"" . Sanitizer::encodeAttribute($artist) . "\"/>\n\t\t\t\t\t\t\t\t<input type='hidden' name='song' value=\"" . Sanitizer::encodeAttribute($song) . "\"/>\n\t\t\t\t\t\t\t\t<input type='submit' name='fixed' value=\"" . wfMessage('soapfailures-fixed')->escaped() . "\"/>\n\t\t\t\t\t\t\t</form>\n");
                     $wgOut->addHTML("</td>");
                     $wgOut->addHTML("</tr>\n");
                     $rowIndex++;
                 }
                 $wgOut->addHTML("</table>\n");
                 $wgOut->addHTML("<br/>Total of <strong id='lw_numFailures'>{$totFailures}</strong> requests in the top {$MAX_RESULTS}.  This number will increase slightly over time, but we should fight to keep it as low as possible!");
             } else {
                 $wgOut->addHTML("<em>No results found.</em>\n");
             }
             if (!empty($data)) {
                 $TWO_HOURS_IN_SECONDS = 60 * 60 * 2;
                 $wgMemc->set($CACHE_KEY_TIME, $cachedOn, $TWO_HOURS_IN_SECONDS);
                 $wgMemc->set($CACHE_KEY_STATS, $statsHtml, $TWO_HOURS_IN_SECONDS);
                 // We use CACHE_KEY_DATA to determine when all of these keys have expired, so it should expire a few microseconds after the other two (that's why it's below the other set()s).
                 $wgMemc->set($CACHE_KEY_DATA, $data, $TWO_HOURS_IN_SECONDS);
             }
         }
         $wgOut->addHTML($statsHtml);
     }
 }
}
?>
	<form method=post action="<?php 
echo $formPostAction;
?>
">
		<input type=hidden name=loginToken id='loginToken' value="<?php 
echo Sanitizer::encodeAttribute($loginToken);
?>
">
		<input type=hidden name=keeploggedin value=true>
		<?php 
if (!empty($returnto)) {
    ?>
			<input type=hidden name=returnto value="<?php 
    echo Sanitizer::encodeAttribute($returnto);
    ?>
">
		<?php 
}
?>
		<input type=text name=username class=wkInp
		       placeholder='<?php 
echo wfMessage('yourname')->escaped();
?>
'<?php 
echo $username ? ' value="' . htmlspecialchars($username) . '"' : '';
echo $userErr ? ' class=inpErr' : '';
?>
>
		<?php 
        ?>
</th>
						<?php 
    }
    ?>
					</tr>
					<?php 
    foreach ($content as $item) {
        ?>
						<tr class="insights-list-item">
							<td class="insights-list-item-page insights-list-cell insights-list-first-column">
								<a class="insights-list-item-title <?php 
        echo Sanitizer::encodeAttribute($item['link']['classes']);
        ?>
" title="<?php 
        echo Sanitizer::encodeAttribute($item['link']['title']);
        ?>
" href="<?php 
        echo Sanitizer::cleanUrl($item['link']['url']);
        ?>
"><?php 
        echo Sanitizer::escapeHtmlAllowEntities($item['link']['text']);
        ?>
</a>
								<?php 
        if (isset($item['metadata'])) {
            ?>
									<p class="insights-list-item-metadata">
										<?php 
            if (isset($item['metadata']['lastRevision'])) {
                ?>
 * @var string $birthday
 * @var bool $isEn
 * @var string $createAccountButtonLabel
 * @var string $returnto
 * @var string $msg
 * @var array $avatars
 * @var array $popularWikis
 */
$form = ['id' => 'WikiaSignupForm', 'method' => 'post', 'inputs' => [['type' => 'hidden', 'name' => 'signupToken', 'value' => Sanitizer::encodeAttribute($signupToken)], ['type' => 'hidden', 'name' => 'username', 'value' => '', 'label' => wfMessage('yourname')->escaped()], ['type' => 'text', 'name' => 'userloginext01', 'value' => htmlspecialchars($username), 'label' => wfMessage('yourname')->escaped(), 'isRequired' => true, 'isInvalid' => !empty($errParam) && $errParam === 'username', 'errorMsg' => !empty($msg) ? $msg : ''], ['type' => 'text', 'name' => 'email', 'value' => Sanitizer::encodeAttribute($email), 'label' => wfMessage('email')->escaped(), 'isRequired' => true, 'isInvalid' => !empty($errParam) && $errParam === 'email', 'errorMsg' => !empty($msg) ? $msg : ''], ['type' => 'hidden', 'name' => 'password', 'value' => '', 'label' => wfMessage('yourpassword')->escaped()], ['type' => 'password', 'name' => 'userloginext02', 'value' => '', 'label' => wfMessage('yourpassword')->escaped(), 'isRequired' => true, 'isInvalid' => !empty($errParam) && $errParam === 'password', 'errorMsg' => !empty($msg) ? $msg : ''], ['type' => 'hidden', 'name' => 'wpRegistrationCountry', 'value' => ''], ['type' => 'nirvanaview', 'controller' => 'UserSignupSpecial', 'view' => 'birthday', 'isRequired' => true, 'isInvalid' => !empty($errParam) && $errParam === 'birthyear' || !empty($errParam) && $errParam === 'birthmonth' || !empty($errParam) && $errParam === 'birthday', 'errorMsg' => !empty($msg) ? $msg : '', 'params' => ['birthyear' => $birthyear, 'birthmonth' => $birthmonth, 'birthday' => $birthday, 'isEn' => $isEn]], ['type' => 'nirvana', 'controller' => 'UserSignupSpecial', 'method' => 'captcha', 'isRequired' => true, 'class' => 'captcha', 'isInvalid' => !empty($errParam) && $errParam === 'wpCaptchaWord', 'errorMsg' => !empty($msg) ? $msg : ''], ['class' => 'opt-in-container hidden', 'type' => 'checkbox', 'name' => 'wpMarketingOptIn', 'label' => wfMessage('userlogin-opt-in-label')->escaped()], ['type' => 'nirvanaview', 'controller' => 'UserSignupSpecial', 'view' => 'submit', 'class' => 'submit-pane error', 'params' => ['createAccountButtonLabel' => $createAccountButtonLabel]]]];
$form['isInvalid'] = !empty($result) && $result === 'error' && empty($errParam);
$form['errorMsg'] = $form['isInvalid'] ? $msg : '';
if (!empty($returnto)) {
    $form['inputs'][] = ['type' => 'hidden', 'name' => 'returnto', 'value' => Sanitizer::encodeAttribute($returnto)];
}
if (!empty($byemail)) {
    $form['inputs'][] = ['type' => 'hidden', 'name' => 'byemail', 'value' => Sanitizer::encodeAttribute($byemail)];
}
?>

<section class="WikiaSignup">
	<?php 
if (!$isMonobookOrUncyclo) {
    ?>
		<h2 class="pageheading">
			<?php 
    echo $pageHeading;
    ?>
		</h2>
		<h3 class="subheading"></h3>
		<div class="wiki-info">
			<?php 
<div class="UserLogin ChangePassword">
	<?php 
if (!empty($pageHeading)) {
    ?>
		<h1><?php 
    echo $pageHeading;
    ?>
</h1>
	<?php 
}
?>
	<?php 
if (!empty($subheading)) {
    ?>
		<h2 class="subheading"><?php 
    echo $subheading;
    ?>
</h2>
	<?php 
}
?>
	<?php 
$form = array('method' => 'post', 'action' => $formPostAction, 'inputs' => array(array('type' => 'hidden', 'name' => 'editToken', 'value' => htmlspecialchars($editToken)), array('type' => 'hidden', 'name' => 'loginToken', 'value' => htmlspecialchars($loginToken)), array('type' => 'hidden', 'name' => 'username', 'value' => htmlspecialchars($username)), array('type' => 'hidden', 'name' => 'returnto', 'value' => Sanitizer::encodeAttribute($returnto)), array('type' => 'custom', 'output' => '<label>' . wfMessage('yourname')->escaped() . '</label><p class="username">' . htmlspecialchars($username) . '</p>'), array('type' => 'password', 'name' => 'password', 'id' => 'password', 'label' => wfMessage('userlogin-oldpassword')->escaped(), 'value' => htmlspecialchars($password)), array('type' => 'password', 'name' => 'newpassword', 'id' => 'newpassword', 'label' => wfMessage('userlogin-newpassword')->escaped()), array('type' => 'password', 'name' => 'retype', 'id' => 'retype', 'label' => wfMessage('userlogin-retypenew')->escaped())), 'submits' => array(array('value' => wfMessage('resetpass_submit')->escaped(), 'name' => 'action', 'class' => 'big login-button')));
$form['isInvalid'] = $result == 'error';
$form['errorMsg'] = !empty($msg) ? $msg : '';
echo F::app()->renderView('WikiaStyleGuideForm', 'index', array('form' => $form));
?>
</div>
<div id="UserLoginDropdown" class="UserLoginDropdown subnav">
<?php 
$tabIndex = 0;
$form = array('inputs' => array(array('type' => 'hidden', 'name' => 'loginToken', 'value' => ''), array('type' => 'hidden', 'name' => 'returnto', 'value' => Sanitizer::encodeAttribute($returnto)), array('type' => 'hidden', 'name' => 'returntoquery', 'value' => Sanitizer::encodeAttribute($returntoquery)), array('type' => 'text', 'name' => 'username', 'isRequired' => true, 'label' => wfMessage('yourname')->escaped(), 'tabindex' => ++$tabIndex), array('type' => 'password', 'name' => 'password', 'class' => 'password-input', 'isRequired' => true, 'label' => wfMessage('yourpassword')->escaped(), 'tabindex' => ++$tabIndex), array('type' => 'nirvanaview', 'controller' => 'UserLogin', 'view' => 'forgotPasswordLink'), array('type' => 'checkbox', 'name' => 'keeploggedin', 'class' => 'keep-logged-in', 'value' => '1', 'label' => wfMessage('userlogin-remembermypassword')->escaped(), 'tabindex' => ++$tabIndex), array('type' => 'submit', 'value' => wfMessage('login')->escaped(), 'class' => 'login-button', 'tabindex' => ++$tabIndex)), 'method' => 'post', 'action' => $formPostAction);
$form['isInvalid'] = true;
$form['errorMsg'] = '';
echo $app->renderView('WikiaStyleGuideForm', 'index', array('form' => $form));
// 3rd party providers buttons
echo $app->renderView('UserLoginSpecial', 'Providers', array('tabindex' => ++$tabIndex));
?>
</div>
Example #15
0
<footer class="global-footer">
	<nav>
		<div class="branding <?php 
echo !empty($verticalShort) ? 'vertical-' . $verticalShort : '';
?>
 <?php 
echo !$isCorporate ? 'black' : '';
?>
">
			<a class="wikia-logo" href="<?php 
echo Sanitizer::encodeAttribute($logoLink);
?>
">
				<img src="<?php 
echo $wg->BlankImgUrl;
?>
">
				<?php 
if (!$isCorporate && !empty($verticalShort)) {
    ?>
					<span><?php 
    echo $verticalNameMessage->escaped();
    ?>
</span>
				<?php 
}
?>
			</a>
		</div>
		<ul>
			<?php 
Example #16
0
">
				<div class="category-gallery-item-image">
					<?php 
    if (!empty($row['img'])) {
        ?>
						<img src="<?php 
        echo Sanitizer::encodeAttribute($row['img']);
        ?>
" alt="<?php 
        echo Sanitizer::encodeAttribute($row['title']);
        ?>
" width="<?php 
        echo Sanitizer::encodeAttribute($row['width']);
        ?>
" height="<?php 
        echo Sanitizer::encodeAttribute($row['height']);
        ?>
" />
					<?php 
    } elseif (!empty($row['snippet'])) {
        ?>
						<div class="snippet">
							<span class="quote">&#x201C;</span>
							<span class="text"><?php 
        echo htmlspecialchars($row['snippet']);
        ?>
</span>
						</div>
					<?php 
    } else {
        ?>
<?php

if (empty($code)) {
    echo "<p class=\"error\">{$resultMessage}</p>";
} else {
    ?>
<div class="UserLogin UserConfirm">
	<h2 class="subheading"><?php 
    echo wfMessage('wikiaconfirmemail-subheading')->escaped();
    ?>
</h2>
<?php 
    $form = ['method' => 'post', 'inputs' => [['type' => 'hidden', 'name' => 'code', 'value' => Sanitizer::encodeAttribute($code)], ['type' => 'hidden', 'name' => 'editToken', 'value' => htmlspecialchars($editToken)], ['type' => 'hidden', 'name' => 'loginToken', 'value' => htmlspecialchars($loginToken)], ['type' => 'text', 'name' => 'username', 'label' => wfMessage('wikiaconfirmemail-username')->escaped(), 'value' => Sanitizer::encodeAttribute($username), 'isInvalid' => !empty($errParam) && $errParam === 'username', 'errorMsg' => !empty($resultMessage) ? $resultMessage : ''], ['type' => 'password', 'name' => 'password', 'label' => wfMessage('yourpassword')->escaped(), 'isInvalid' => !empty($errParam) && $errParam === 'password', 'errorMsg' => !empty($resultMessage) ? $resultMessage : '']], 'submits' => [['name' => 'action', 'value' => wfMessage('wikiaconfirmemail-login-button')->escaped(), 'class' => 'big login-button']]];
    $form['isInvalid'] = empty($success) && empty($errParam) && !empty($resultMessage);
    $form['errorMsg'] = !empty($resultMessage) ? $resultMessage : '';
    echo F::app()->renderView('WikiaStyleGuideForm', 'index', ['form' => $form]);
    ?>
</div>
<?php 
}
<div class="UserLoginModal">
<?php 
$tabIndex = 5;
$specialSignupLink = SpecialPage::getTitleFor('UserSignup')->getLocalURL();
$form = array('inputs' => array(array('type' => 'hidden', 'name' => 'loginToken', 'value' => Sanitizer::encodeAttribute($loginToken)), array('type' => 'hidden', 'name' => 'returnto', 'value' => ''), array('type' => 'text', 'name' => 'username', 'isRequired' => true, 'label' => wfMessage('yourname')->escaped(), 'tabindex' => ++$tabIndex), array('type' => 'password', 'name' => 'password', 'class' => 'password-input', 'isRequired' => true, 'label' => wfMessage('yourpassword')->escaped(), 'tabindex' => ++$tabIndex), array('type' => 'custom', 'output' => '<a href="#" class="forgot-password" tabindex="0">' . wfMessage('userlogin-forgot-password')->escaped() . '</a>'), array('type' => 'checkbox', 'name' => 'keeploggedin', 'value' => '1', 'label' => wfMessage('userlogin-remembermypassword')->escaped(), 'class' => 'keep-logged-in', 'tabindex' => ++$tabIndex), array('type' => 'submit', 'value' => wfMessage('login')->escaped(), 'class' => 'login-button big', 'tabindex' => ++$tabIndex), array('type' => 'custom', 'output' => wfMessage('userlogin-get-account', array($specialSignupLink, ++$tabIndex))->inContentLanguage()->text(), 'class' => 'get-account', 'tabindex' => ++$tabIndex)), 'method' => 'post', 'action' => $formPostAction);
//$form['isInvalid'] = true;
//$form['errorMsg'] = '';
echo $app->renderView('WikiaStyleGuideForm', 'index', array('form' => $form));
echo $app->renderView('UserLoginSpecial', 'Providers', array('tabindex' => ++$tabIndex));
?>
</div>
Example #19
0
 /**
  * Renders and returns the output.
  * @see ParserHook::render
  * 
  * @since 0.1
  * 
  * @param array $parameters
  * 
  * @return string
  */
 public function render(array $parameters)
 {
     $title = $this->getTitle($parameters['page']);
     $pages = $this->getSubPages($title, $parameters);
     // There is no need in encoding `$parameters['element']', because it is validated and can
     // be only one of `span', `p', or `div'.
     $element = $parameters['element'];
     // Using `$parameters['class']' is dangerous and may be a security hole, because it may lead
     // to incorrect (or malicious) HTML code. `encodeAttribute' solves the issue.
     $class = Sanitizer::encodeAttribute($parameters['class']);
     $open = "<{$element} class=\"{$class}\">";
     $close = "</{$element}>";
     $inlineList = $parameters['format'] == 'list' || $parameters['format'] == 'bar';
     $inlineText = $element == 'span';
     $list = '';
     if (count($pages) > 0) {
         $intro = $parameters['intro'];
         $outro = $parameters['outro'];
         if ($inlineText && !$inlineList) {
             if ($intro !== '') {
                 $list .= $open . $intro . $close;
             }
             $list .= "<div class=\"{$class}\">" . $this->makeList($title, $parameters, $pages) . "</div>";
             if ($outro !== "") {
                 $list .= $open . $outro . $close;
             }
         } else {
             $list = $open . $intro . $this->makeList($title, $parameters, $pages) . $outro . $close;
         }
         $list = $this->parseWikitext($list);
     } else {
         $default = $parameters['default'];
         if ($default === "") {
             if (is_null($title)) {
                 $list = "''" . wfMsg('spl-noparentpage', $parameters['page']) . "''";
             } elseif ($title instanceof Title) {
                 $list = "''" . wfMsg('spl-nosubpages', '[[' . $title->getFullText() . ']]') . "''";
             } else {
                 $list = "''" . wfMsg('spl-nopages', $parameters['page']) . "''";
             }
         } elseif ($default !== "-") {
             $list = $default;
         }
         // Format element only if content is not empty.
         if ($list !== "") {
             $list = $open . $this->parseWikitext($list) . $close;
         }
     }
     return $list;
 }
">
				<input type="submit" value="<?php 
    echo wfMessage('usersignup-confirm-email-resend-email')->escaped();
    ?>
" class="link">
			</div>
		</fieldset>
	</form>
<?php 
    if (!$isMonobookOrUncyclo) {
        ?>
	<p>
		<?php 
        echo $app->sendRequest('WikiaStyleGuideTooltipIconController', 'index', array('text' => wfMessage('usersignup-confirm-email-change-email-content'), 'classes' => 'email-tooltip', 'tooltipIconTitle' => wfMessage('usersignup-confirm-email-tooltip')->escaped()));
        ?>
		<br />
		<a href="#" class="change-email-link"><?php 
        echo wfMessage('usersignup-confirm-email-change-email')->escaped();
        ?>
</a>
	</p>
<?php 
        $form = array('method' => 'post', 'class' => 'email-form' . (!empty($msgEmail) ? ' show' : ''), 'inputs' => array(array('type' => 'hidden', 'name' => 'action', 'value' => 'changeemail'), array('type' => 'hidden', 'name' => 'username', 'value' => htmlspecialchars($username)), array('type' => 'text', 'label' => wfMessage('usersignup-confirm-email-new-email-label')->escaped(), 'name' => 'email', 'isInvalid' => !empty($errParam) && $errParam === 'email', 'value' => !empty($email) ? Sanitizer::encodeAttribute($email) : '', 'errorMsg' => !empty($msgEmail) ? $msgEmail : '')), 'submits' => array(array('value' => wfMessage('usersignup-confirm-email-update')->escaped(), 'class' => 'update-button')));
        echo F::app()->renderView('WikiaStyleGuideForm', 'index', array('form' => $form));
    }
    //$isMonobookOrUncyclo
}
//$isbyemail
?>
</section>
<div id="UserLoginDropdown" class="UserLoginDropdown global-nav-dropdown">
	<div class="ajaxRegisterContainer"><?php 
echo $registerLink;
?>
</div>
	<?php 
$tabIndex = 0;
$cachedMessages = ['yourname' => wfMessage('yourname')->escaped(), 'yourpassword' => wfMessage('yourpassword')->escaped()];
$form = ['inputs' => [['type' => 'hidden', 'name' => 'loginToken', 'value' => ''], ['type' => 'hidden', 'name' => 'returnto', 'value' => Sanitizer::encodeAttribute($returnto)], ['type' => 'hidden', 'name' => 'returntoquery', 'value' => Sanitizer::encodeAttribute($returntoquery)], ['id' => 'usernameInput', 'type' => 'text', 'name' => 'username', 'class' => 'hide-label', 'isRequired' => true, 'placeholder' => $cachedMessages['yourname'], 'label' => $cachedMessages['yourname'], 'tabindex' => ++$tabIndex], ['id' => 'passwordInput', 'type' => 'password', 'name' => 'password', 'class' => 'hide-label', 'isRequired' => true, 'placeholder' => $cachedMessages['yourpassword'], 'label' => $cachedMessages['yourpassword'], 'tabindex' => ++$tabIndex], ['type' => 'nirvanaview', 'controller' => 'UserLogin', 'view' => 'forgotPasswordLink'], ['type' => 'checkbox', 'name' => 'keeploggedin', 'class' => 'keep-logged-in', 'value' => '1', 'label' => wfMessage('userlogin-remembermypassword')->escaped(), 'tabindex' => ++$tabIndex], ['type' => 'submit', 'value' => wfMessage('login')->escaped(), 'class' => 'login-button', 'tabindex' => ++$tabIndex]], 'method' => 'post', 'action' => $formPostAction];
$form['isInvalid'] = true;
$form['errorMsg'] = '';
echo $app->renderView('WikiaStyleGuideForm', 'index', ['form' => $form]);
// 3rd party providers buttons
echo $app->renderView('UserLoginSpecial', 'Providers', ['tabindex' => ++$tabIndex]);
?>
</div>
<div class="UserLogin">
<?php 
$tabIndex = 5;
$loginTokenInput = array('type' => 'hidden', 'name' => 'loginToken', 'value' => Sanitizer::encodeAttribute($loginToken));
$userNameInput = array('type' => 'text', 'name' => 'username', 'isRequired' => true, 'label' => wfMessage('yourname')->escaped(), 'isInvalid' => !empty($errParam) && $errParam === 'username', 'value' => htmlspecialchars($username), 'tabindex' => ++$tabIndex);
$userNameInput['errorMsg'] = $userNameInput['isInvalid'] ? $msg : '';
$passwordInput = array('type' => 'password', 'name' => 'password', 'class' => 'password-input', 'isRequired' => true, 'label' => wfMessage('yourpassword')->escaped(), 'isInvalid' => !empty($errParam) && $errParam === 'password', 'value' => htmlspecialchars($password), 'tabindex' => ++$tabIndex);
$passwordInput['errorMsg'] = $passwordInput['isInvalid'] ? $msg : '';
$forgotPasswordLinkUrl = SpecialPage::getTitleFor('UserLogin')->getLocalURL(array('type' => 'forgotPassword'));
$forgotPasswordLink = array('type' => 'custom', 'output' => '<a href="' . $forgotPasswordLinkUrl . '" class="forgot-password" tabindex="0">' . wfMessage('userlogin-forgot-password')->escaped() . '</a>');
$rememberMeInput = array('type' => 'checkbox', 'name' => 'keeploggedin', 'class' => 'keep-logged-in', 'isRequired' => false, 'value' => '1', 'checked' => $keeploggedin, 'label' => wfMessage('userlogin-remembermypassword')->escaped(), 'tabindex' => ++$tabIndex);
$loginBtn = array('type' => 'submit', 'value' => wfMessage('login')->escaped(), 'class' => 'login-button big', 'tabindex' => ++$tabIndex);
$specialSignupLink = SpecialPage::getTitleFor('UserSignup')->getLocalURL();
$createAccount = array('type' => 'custom', 'output' => wfMessage('userlogin-get-account', array($specialSignupLink, ++$tabIndex))->inContentLanguage()->text(), 'class' => 'get-account', 'tabindex' => ++$tabIndex);
$form = array('inputs' => array($loginTokenInput, $userNameInput, $passwordInput, $forgotPasswordLink, $rememberMeInput, $loginBtn, $createAccount), 'method' => 'post');
$form['isInvalid'] = !empty($result) && empty($errParam) && !empty($msg);
$form['errorMsg'] = !empty($msg) ? $msg : '';
if (!empty($returnto)) {
    $form['inputs'][] = array('type' => 'hidden', 'name' => 'returnto', 'value' => Sanitizer::encodeAttribute($returnto));
}
if (!empty($returntoquery)) {
    $form['inputs'][] = array('type' => 'hidden', 'name' => 'returntoquery', 'value' => Sanitizer::encodeAttribute($returntoquery));
}
echo $app->renderView('WikiaStyleGuideForm', 'index', array('form' => $form));
// 3rd party providers buttons
if (!$isMonobookOrUncyclo) {
    echo $app->renderView('UserLoginSpecial', 'Providers', array('tabindex' => ++$tabIndex));
}
?>
</div>
Example #23
0
 private function doubleQuote($text)
 {
     return Sanitizer::encodeAttribute($text);
 }
 static function newFromExternalLink($url, $label)
 {
     $item = new ALItem();
     $item->label = $label;
     $item->text = "<a class=\"external text\" rel=\"nofollow\" href=\"" . Sanitizer::encodeAttribute($url) . "\">" . htmlspecialchars($label) . "</a>";
     return $item;
 }
Example #25
0
 /**
  * Encode an attribute value for HTML tags, with extra armoring
  * against further wiki processing.
  * @param string $text
  * @return string HTML-encoded text fragment
  */
 static function safeEncodeAttribute($text)
 {
     $encValue = Sanitizer::encodeAttribute($text);
     # Templates and links may be expanded in later parsing,
     # creating invalid or dangerous output. Suppress this.
     $encValue = strtr($encValue, array('<' => '&lt;', '>' => '&gt;', '"' => '&quot;', '{' => '&#123;', '[' => '&#91;', "''" => '&#39;&#39;', 'ISBN' => '&#73;SBN', 'RFC' => '&#82;FC', 'PMID' => '&#80;MID', '|' => '&#124;', '__' => '&#95;_'));
     # Stupid hack
     $encValue = preg_replace_callback('/((?i)' . wfUrlProtocols() . ')/', array('Sanitizer', 'armorLinksCallback'), $encValue);
     return $encValue;
 }
Example #26
0
            ?>
</a>
</li>
<?php 
            break;
        case 'devinfo':
            /* Temporary, BugId:5497; TODO: call getPerformanceStats in DevInfoUserCommand.php rather than here */
            ?>
<li class="loadtime">
    <span><?php 
            echo wfGetPerformanceStats();
            ?>
</span>
</li>
<?php 
            break;
        case 'disabled':
            ?>
<li class="overflow">
	<span title="<?php 
            echo Sanitizer::encodeAttribute($item['error-message']);
            ?>
"><?php 
            echo htmlspecialchars($item['caption']);
            ?>
</span>
</li>
<?php 
            break;
    }
}
    echo $userName;
} else {
    echo wfMessage('userlogin-login-heading')->text();
}
?>
		</header>
	<?php 
if ($loggedIn) {
    ?>
		<ul class=wkLst>
			<li><a class=chg href="<?php 
    echo Sanitizer::encodeAttribute(AvatarService::getUrl($userName));
    ?>
"><?php 
    echo wfMessage('wikiamobile-profile')->escaped();
    ?>
</a></li>
			<li><a class=logout href="<?php 
    echo Sanitizer::encodeAttribute(str_replace("\$1", SpecialPage::getSafeTitleFor('UserLogout')->getPrefixedText() . '?returnto=' . $wg->Title->getPrefixedURL(), $wg->ArticlePath));
    ?>
"><?php 
    echo wfMessage('logout')->escaped();
    ?>
</a></li>
		</ul>
	<?php 
}
?>
	</div>
</section>
Example #28
0
 /**
  * Encode an attribute value for HTML tags, with extra armoring
  * against further wiki processing.
  * @param $text
  * @return HTML-encoded text fragment
  */
 static function safeEncodeAttribute($text)
 {
     $encValue = Sanitizer::encodeAttribute($text);
     # Templates and links may be expanded in later parsing,
     # creating invalid or dangerous output. Suppress this.
     $encValue = strtr($encValue, array('<' => '&lt;', '>' => '&gt;', '"' => '&quot;', '{' => '&#123;', '[' => '&#91;', "''" => '&#39;&#39;', 'ISBN' => '&#73;SBN', 'RFC' => '&#82;FC', 'PMID' => '&#80;MID', '|' => '&#124;', '__' => '&#95;_'));
     # Stupid hack
     $rawProtocols = array('http://', 'https://', 'ftp://', 'irc://', 'gopher://', 'telnet://', 'nntp://', 'worldwind://', 'mailto:', 'news:');
     $protocols = array();
     foreach ($rawProtocols as $protocol) {
         $protocols[] = preg_quote($protocol, '/');
     }
     $encValue = preg_replace_callback('/(' . implode('|', $protocols) . ')/', array('Sanitizer', 'armorLinksCallback'), $encValue);
     return $encValue;
 }
 private function getLanguageOptions()
 {
     $options = [];
     $languages = $this->getClient()->getSupportedLanguages();
     foreach ($languages as $code => $language) {
         $options[] = ['value' => $code, 'content' => Sanitizer::encodeAttribute($code . ' - ' . $language)];
     }
     return $options;
 }
 protected function getIndexParams($forPaginator = false)
 {
     if ($forPaginator) {
         $page = '%s';
     } else {
         $page = $this->page;
     }
     $indexParams = ['searchPhrase' => $this->searchPhrase, 'verticalId' => Sanitizer::encodeAttribute($this->selectedVerticalId), 'langCode' => $this->selectedLangCode, 'date' => isset($this->selectedDate) ? $this->selectedDate : null, 'page' => Sanitizer::encodeAttribute($page)];
     return $indexParams;
 }