No OneTemporary
Actions

Size

46 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php b/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php
	index b59b130f09..71532f4e92 100644
	--- a/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php
	+++ b/src/aphront/configuration/AphrontDefaultApplicationConfiguration.php
	@@ -1,720 +1,720 @@
	<?php

	/*
	* Copyright 2012 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	/**
	* @group aphront
	*/
	class AphrontDefaultApplicationConfiguration
	extends AphrontApplicationConfiguration {

	public function __construct() {

	}

	public function getApplicationName() {
	return 'aphront-default';
	}

	public function getURIMap() {
	return $this->getResourceURIMapRules() + array(
	'/(?:(?P<filter>(?:jump\|apps))/)?' =>
	'PhabricatorDirectoryMainController',
	'/(?:(?P<filter>feed)/)' => array(
	'public/' => 'PhabricatorFeedPublicStreamController',
	'(?:(?P<subfilter>[^/]+)/)?' =>
	'PhabricatorDirectoryMainController',
	),
	'/F(?P<id>\d+)' => 'PhabricatorFileShortcutController',
	'/file/' => array(
	'' => 'PhabricatorFileListController',
	'filter/(?P<filter>\w+)/' => 'PhabricatorFileListController',
	'upload/' => 'PhabricatorFileUploadController',
	'dropupload/' => 'PhabricatorFileDropUploadController',
	'delete/(?P<id>\d+)/' => 'PhabricatorFileDeleteController',
	'info/(?P<phid>[^/]+)/' => 'PhabricatorFileInfoController',

	'data/(?P<key>[^/]+)/(?P<phid>[^/]+)/.*'
	=> 'PhabricatorFileDataController',
	// TODO: This is a deprecated version of /data/. Remove it after
	// old links have had a chance to rot.
	'alt/(?P<key>[^/]+)/(?P<phid>[^/]+)/'
	=> 'PhabricatorFileDataController',

	'macro/' => array(
	'' => 'PhabricatorFileMacroListController',
	'edit/(?:(?P<id>\d+)/)?' => 'PhabricatorFileMacroEditController',
	'delete/(?P<id>\d+)/' => 'PhabricatorFileMacroDeleteController',
	),
	'proxy/' => 'PhabricatorFileProxyController',
	'xform/(?P<transform>[^/]+)/(?P<phid>[^/]+)/'
	=> 'PhabricatorFileTransformController',
	),
	'/phid/' => array(
	'' => 'PhabricatorPHIDLookupController',
	),
	'/people/' => array(
	'' => 'PhabricatorPeopleListController',
	'logs/' => 'PhabricatorPeopleLogsController',
	'edit/(?:(?P<id>\d+)/(?:(?P<view>\w+)/)?)?'
	=> 'PhabricatorPeopleEditController',
	),
	- '/p/(?P<username>\w+)/(?:(?P<page>\w+)/)?'
	+ '/p/(?P<username>[\w._-]+)/(?:(?P<page>\w+)/)?'
	=> 'PhabricatorPeopleProfileController',
	'/conduit/' => array(
	'' => 'PhabricatorConduitListController',
	'method/(?P<method>[^/]+)/' => 'PhabricatorConduitConsoleController',
	'log/' => 'PhabricatorConduitLogController',
	'log/view/(?P<view>[^/]+)/' => 'PhabricatorConduitLogController',
	'token/' => 'PhabricatorConduitTokenController',
	),
	'/api/(?P<method>[^/]+)' => 'PhabricatorConduitAPIController',

	'/D(?P<id>\d+)' => 'DifferentialRevisionViewController',
	'/differential/' => array(
	'' => 'DifferentialRevisionListController',
	'filter/(?P<filter>\w+)/(?:(?P<username>\w+)/)?' =>
	'DifferentialRevisionListController',
	'stats/(?P<filter>\w+)/' => 'DifferentialRevisionStatsController',
	'diff/' => array(
	'(?P<id>\d+)/' => 'DifferentialDiffViewController',
	'create/' => 'DifferentialDiffCreateController',
	),
	'changeset/' => 'DifferentialChangesetViewController',
	'revision/edit/(?:(?P<id>\d+)/)?'
	=> 'DifferentialRevisionEditController',
	'comment/' => array(
	'preview/(?P<id>\d+)/' => 'DifferentialCommentPreviewController',
	'save/' => 'DifferentialCommentSaveController',
	'inline/' => array(
	'preview/(?P<id>\d+)/' =>
	'DifferentialInlineCommentPreviewController',
	'edit/(?P<id>\d+)/' => 'DifferentialInlineCommentEditController',
	),
	),
	'subscribe/(?P<action>add\|rem)/(?P<id>\d+)/'
	=> 'DifferentialSubscribeController',
	),

	'/typeahead/' => array(
	'common/(?P<type>\w+)/'
	=> 'PhabricatorTypeaheadCommonDatasourceController',
	),

	'/mail/' => array(
	'' => 'PhabricatorMetaMTAListController',
	'send/' => 'PhabricatorMetaMTASendController',
	'view/(?P<id>\d+)/' => 'PhabricatorMetaMTAViewController',
	'lists/' => 'PhabricatorMetaMTAMailingListsController',
	'lists/edit/(?:(?P<id>\d+)/)?'
	=> 'PhabricatorMetaMTAMailingListEditController',
	'receive/' => 'PhabricatorMetaMTAReceiveController',
	'received/' => 'PhabricatorMetaMTAReceivedListController',
	'sendgrid/' => 'PhabricatorMetaMTASendGridReceiveController',
	),

	'/login/' => array(
	'' => 'PhabricatorLoginController',
	'email/' => 'PhabricatorEmailLoginController',
	'etoken/(?P<token>\w+)/' => 'PhabricatorEmailTokenController',
	'refresh/' => 'PhabricatorRefreshCSRFController',
	'validate/' => 'PhabricatorLoginValidateController',
	'mustverify/' => 'PhabricatorMustVerifyEmailController',
	),

	'/logout/' => 'PhabricatorLogoutController',

	'/oauth/' => array(
	'(?P<provider>\w+)/' => array(
	'login/' => 'PhabricatorOAuthLoginController',
	'diagnose/' => 'PhabricatorOAuthDiagnosticsController',
	'unlink/' => 'PhabricatorOAuthUnlinkController',
	),
	),

	'/oauthserver/' => array(
	'auth/' => 'PhabricatorOAuthServerAuthController',
	'test/' => 'PhabricatorOAuthServerTestController',
	'token/' => 'PhabricatorOAuthServerTokenController',
	'clientauthorization/' => array(
	'' => 'PhabricatorOAuthClientAuthorizationListController',
	'delete/(?P<phid>[^/]+)/' =>
	'PhabricatorOAuthClientAuthorizationDeleteController',
	'edit/(?P<phid>[^/]+)/' =>
	'PhabricatorOAuthClientAuthorizationEditController',
	),
	'client/' => array(
	'' => 'PhabricatorOAuthClientListController',
	'create/' => 'PhabricatorOAuthClientEditController',
	'delete/(?P<phid>[^/]+)/' => 'PhabricatorOAuthClientDeleteController',
	'edit/(?P<phid>[^/]+)/' => 'PhabricatorOAuthClientEditController',
	'view/(?P<phid>[^/]+)/' => 'PhabricatorOAuthClientViewController',
	),
	),

	'/xhprof/' => array(
	'profile/(?P<phid>[^/]+)/' => 'PhabricatorXHProfProfileController',
	),

	'/~/' => 'DarkConsoleController',

	'/settings/' => array(
	'(?:page/(?P<page>[^/]+)/)?' => 'PhabricatorUserSettingsController',
	),

	'/maniphest/' => array(
	'' => 'ManiphestTaskListController',
	'view/(?P<view>\w+)/' => 'ManiphestTaskListController',
	'report/(?:(?P<view>\w+)/)?' => 'ManiphestReportController',
	'batch/' => 'ManiphestBatchEditController',
	'task/' => array(
	'create/' => 'ManiphestTaskEditController',
	'edit/(?P<id>\d+)/' => 'ManiphestTaskEditController',
	'descriptionchange/(?:(?P<id>\d+)/)?' =>
	'ManiphestTaskDescriptionChangeController',
	'descriptionpreview/' =>
	'ManiphestTaskDescriptionPreviewController',
	),
	'transaction/' => array(
	'save/' => 'ManiphestTransactionSaveController',
	'preview/(?P<id>\d+)/' => 'ManiphestTransactionPreviewController',
	),
	'export/(?P<key>[^/]+)/' => 'ManiphestExportController',
	'subpriority/' => 'ManiphestSubpriorityController',
	'custom/' => array(
	'' => 'ManiphestSavedQueryListController',
	'edit/(?:(?P<id>\d+)/)?' => 'ManiphestSavedQueryEditController',
	'delete/(?P<id>\d+)/' => 'ManiphestSavedQueryDeleteController',
	),
	),

	'/T(?P<id>\d+)' => 'ManiphestTaskDetailController',

	'/repository/' => array(
	'' => 'PhabricatorRepositoryListController',
	'create/' => 'PhabricatorRepositoryCreateController',
	'edit/(?P<id>\d+)/(?:(?P<view>\w+)?/)?' =>
	'PhabricatorRepositoryEditController',
	'delete/(?P<id>\d+)/' => 'PhabricatorRepositoryDeleteController',
	'project/(?P<id>\d+)/' =>
	'PhabricatorRepositoryArcanistProjectEditController',
	),

	'/search/' => array(
	'' => 'PhabricatorSearchController',
	'(?P<key>[^/]+)/' => 'PhabricatorSearchController',
	'attach/(?P<phid>[^/]+)/(?P<type>\w+)/(?:(?P<action>\w+)/)?'
	=> 'PhabricatorSearchAttachController',
	'select/(?P<type>\w+)/'
	=> 'PhabricatorSearchSelectController',
	'index/(?P<phid>[^/]+)/' => 'PhabricatorSearchIndexController',
	),

	'/project/' => array(
	'' => 'PhabricatorProjectListController',
	'filter/(?P<filter>[^/]+)/' => 'PhabricatorProjectListController',
	'edit/(?P<id>\d+)/' => 'PhabricatorProjectProfileEditController',
	'view/(?P<id>\d+)/(?:(?P<page>\w+)/)?'
	=> 'PhabricatorProjectProfileController',
	'create/' => 'PhabricatorProjectCreateController',
	'update/(?P<id>\d+)/(?P<action>[^/]+)/'
	=> 'PhabricatorProjectUpdateController',
	),

	'/r(?P<callsign>[A-Z]+)(?P<commit>[a-z0-9]+)'
	=> 'DiffusionCommitController',
	'/diffusion/' => array(
	'' => 'DiffusionHomeController',
	'(?P<callsign>[A-Z]+)/' => array(
	'' => 'DiffusionRepositoryController',

	'repository/(?P<dblob>.*)' => 'DiffusionRepositoryController',
	'change/(?P<dblob>.*)' => 'DiffusionChangeController',
	'history/(?P<dblob>.*)' => 'DiffusionHistoryController',
	'browse/(?P<dblob>.*)' => 'DiffusionBrowseController',
	'lastmodified/(?P<dblob>.*)' => 'DiffusionLastModifiedController',
	'diff/' => 'DiffusionDiffController',
	'tags/(?P<dblob>.*)' => 'DiffusionTagListController',
	'branches/(?P<dblob>.*)' => 'DiffusionBranchTableController',
	),
	'inline/(?P<phid>[^/]+)/' => 'DiffusionInlineCommentController',
	'services/' => array(
	'path/' => array(
	'complete/' => 'DiffusionPathCompleteController',
	'validate/' => 'DiffusionPathValidateController',
	),
	),
	'symbol/(?P<name>[^/]+)/' => 'DiffusionSymbolController',
	'external/' => 'DiffusionExternalController',
	),

	'/daemon/' => array(
	'task/(?P<id>\d+)/' => 'PhabricatorWorkerTaskDetailController',
	'task/(?P<id>\d+)/(?P<action>[^/]+)/'
	=> 'PhabricatorWorkerTaskUpdateController',
	'log/' => array(
	'' => 'PhabricatorDaemonLogListController',
	'combined/' => 'PhabricatorDaemonCombinedLogController',
	'(?P<id>\d+)/' => 'PhabricatorDaemonLogViewController',
	),
	'timeline/' => 'PhabricatorDaemonTimelineConsoleController',
	'timeline/(?P<id>\d+)/' => 'PhabricatorDaemonTimelineEventController',
	'' => 'PhabricatorDaemonConsoleController',
	),

	'/herald/' => array(
	'' => 'HeraldHomeController',
	'view/(?P<content_type>[^/]+)/(?:(?P<rule_type>[^/]+)/)?'
	=> 'HeraldHomeController',
	'new/(?:(?P<type>[^/]+)/(?:(?P<rule_type>[^/]+)/)?)?'
	=> 'HeraldNewController',
	'rule/(?:(?P<id>\d+)/)?' => 'HeraldRuleController',
	'history/(?:(?P<id>\d+)/)?' => 'HeraldRuleEditHistoryController',
	'delete/(?P<id>\d+)/' => 'HeraldDeleteController',
	'test/' => 'HeraldTestConsoleController',
	'transcript/' => 'HeraldTranscriptListController',
	'transcript/(?P<id>\d+)/(?:(?P<filter>\w+)/)?'
	=> 'HeraldTranscriptController',
	),

	'/uiexample/' => array(
	'' => 'PhabricatorUIExampleRenderController',
	'view/(?P<class>[^/]+)/' => 'PhabricatorUIExampleRenderController',
	),

	'/owners/' => array(
	'' => 'PhabricatorOwnersListController',
	'view/(?P<view>[^/]+)/' => 'PhabricatorOwnersListController',
	'edit/(?P<id>\d+)/' => 'PhabricatorOwnersEditController',
	'new/' => 'PhabricatorOwnersEditController',
	'package/(?P<id>\d+)/' => 'PhabricatorOwnersDetailController',
	'delete/(?P<id>\d+)/' => 'PhabricatorOwnersDeleteController',
	),

	'/audit/' => array(
	'' => 'PhabricatorAuditListController',
	'view/(?P<filter>[^/]+)/(?:(?P<name>[^/]+)/)?'
	=> 'PhabricatorAuditListController',
	'addcomment/' => 'PhabricatorAuditAddCommentController',
	'preview/(?P<id>\d+)/' => 'PhabricatorAuditPreviewController',
	),

	'/xhpast/' => array(
	'' => 'PhabricatorXHPASTViewRunController',
	'view/(?P<id>\d+)/'
	=> 'PhabricatorXHPASTViewFrameController',
	'frameset/(?P<id>\d+)/'
	=> 'PhabricatorXHPASTViewFramesetController',
	'input/(?P<id>\d+)/'
	=> 'PhabricatorXHPASTViewInputController',
	'tree/(?P<id>\d+)/'
	=> 'PhabricatorXHPASTViewTreeController',
	'stream/(?P<id>\d+)/'
	=> 'PhabricatorXHPASTViewStreamController',
	),

	'/status/' => 'PhabricatorStatusController',

	'/paste/' => array(
	'' => 'PhabricatorPasteListController',
	'filter/(?P<filter>\w+)/' => 'PhabricatorPasteListController',
	),
	'/P(?P<id>\d+)' => 'PhabricatorPasteViewController',

	'/help/' => array(
	'keyboardshortcut/' => 'PhabricatorHelpKeyboardShortcutController',
	),

	'/countdown/' => array(
	''
	=> 'PhabricatorCountdownListController',
	'(?P<id>\d+)/'
	=> 'PhabricatorCountdownViewController',
	'edit/(?:(?P<id>\d+)/)?'
	=> 'PhabricatorCountdownEditController',
	'delete/(?P<id>\d+)/'
	=> 'PhabricatorCountdownDeleteController'
	),

	'/V(?P<id>\d+)' => 'PhabricatorSlowvotePollController',
	'/vote/' => array(
	'(?:view/(?P<view>\w+)/)?' => 'PhabricatorSlowvoteListController',
	'create/' => 'PhabricatorSlowvoteCreateController',
	),

	// Match "/w/" with slug "/".
	'/w(?P<slug>/)' => 'PhrictionDocumentController',
	// Match "/w/x/y/z/" with slug "x/y/z/".
	'/w/(?P<slug>.+/)' => 'PhrictionDocumentController',

	'/phriction/' => array(
	'' => 'PhrictionListController',
	'list/(?P<view>[^/]+)/' => 'PhrictionListController',

	'history(?P<slug>/)' => 'PhrictionHistoryController',
	'history/(?P<slug>.+/)' => 'PhrictionHistoryController',

	'edit/(?:(?P<id>\d+)/)?' => 'PhrictionEditController',
	'delete/(?P<id>\d+)/' => 'PhrictionDeleteController',

	'preview/' => 'PhrictionDocumentPreviewController',
	'diff/(?P<id>\d+)/' => 'PhrictionDiffController',
	),

	'/phame/' => array(
	'' => 'PhamePostListController',
	'post/' => array(
	'' => 'PhamePostListController',
	'delete/(?P<phid>[^/]+)/' => 'PhamePostDeleteController',
	'edit/(?P<phid>[^/]+)/' => 'PhamePostEditController',
	'new/' => 'PhamePostEditController',
	'preview/' => 'PhamePostPreviewController',
	'view/(?P<phid>[^/]+)/' => 'PhamePostViewController',
	),
	'draft/' => array(
	'' => 'PhameDraftListController',
	'new/' => 'PhamePostEditController',
	),
	'posts/' => array(
	'' => 'PhamePostListController',
	'(?P<bloggername>\w+)/' => 'PhamePostListController',
	'(?P<bloggername>\w+)/(?P<phametitle>.+/)'
	=> 'PhamePostViewController',
	),
	),

	'/calendar/' => array(
	'' => 'PhabricatorCalendarBrowseController',
	),

	'/drydock/' => array(
	'' => 'DrydockResourceListController',
	'resource/' => 'DrydockResourceListController',
	'resource/allocate/' => 'DrydockResourceAllocateController',
	'host/' => array(
	'' => 'DrydockHostListController',
	'edit/' => 'DrydockHostEditController',
	'edit/(?P<id>\d+)/' => 'DrydockhostEditController',
	),
	'lease/' => 'DrydockLeaseListController',
	'log/' => 'DrydockLogController',
	),

	'/chatlog/' => array(
	'' =>
	'PhabricatorChatLogChannelListController',
	'channel/(?P<channel>[^/]+)/' =>
	'PhabricatorChatLogChannelLogController',
	),

	'/notification/test/' => 'PhabricatorNotificationTestController',
	'/notification/panel/' => 'PhabricatorNotificationPanelController',
	'/notification/individual/'
	=> 'PhabricatorNotificationIndividualController',
	'/flag/' => array(
	'' => 'PhabricatorFlagListController',
	'view/(?P<view>[^/]+)/' => 'PhabricatorFlagListController',
	'edit/(?P<phid>[^/]+)/' => 'PhabricatorFlagEditController',
	'delete/(?P<id>\d+)/' => 'PhabricatorFlagDeleteController',
	),

	'/phortune/' => array(
	'stripe/' => array(
	'testpaymentform/' => 'PhortuneStripeTestPaymentFormController',
	),
	),

	'/emailverify/(?P<code>[^/]+)/' =>
	'PhabricatorEmailVerificationController',
	);
	}

	protected function getResourceURIMapRules() {
	return array(
	'/res/' => array(
	'(?P<package>pkg/)?'.
	'(?P<hash>[a-f0-9]{8})/'.
	'(?P<path>.+\.(?:css\|js\|jpg\|png\|swf\|gif))'
	=> 'CelerityResourceController',
	),
	);
	}

	public function buildRequest() {
	$request = new AphrontRequest($this->getHost(), $this->getPath());
	$request->setRequestData($_GET + $_POST);
	$request->setApplicationConfiguration($this);
	return $request;
	}

	public function handleException(Exception $ex) {
	$request = $this->getRequest();

	// For Conduit requests, return a Conduit response.
	if ($request->isConduit()) {
	$response = new ConduitAPIResponse();
	$response->setErrorCode(get_class($ex));
	$response->setErrorInfo($ex->getMessage());

	return id(new AphrontJSONResponse())
	->setContent($response->toDictionary());
	}

	// For non-workflow requests, return a Ajax response.
	if ($request->isAjax() && !$request->isJavelinWorkflow()) {
	$response = new AphrontAjaxResponse();
	$response->setError(
	array(
	'code' => get_class($ex),
	'info' => $ex->getMessage(),
	));
	return $response;
	}

	$is_serious = PhabricatorEnv::getEnvConfig('phabricator.serious-business');

	$user = $request->getUser();
	if (!$user) {
	// If we hit an exception very early, we won't have a user.
	$user = new PhabricatorUser();
	}

	if ($ex instanceof PhabricatorPolicyException) {
	$content =
	'<div class="aphront-policy-exception">'.
	phutil_escape_html($ex->getMessage()).
	'</div>';

	$dialog = new AphrontDialogView();
	$dialog
	->setTitle(
	$is_serious
	? 'Access Denied'
	: "You Shall Not Pass")
	->setClass('aphront-access-dialog')
	->setUser($user)
	->appendChild($content);

	if ($this->getRequest()->isAjax()) {
	$dialog->addCancelButton('/', 'Close');
	} else {
	$dialog->addCancelButton('/', $is_serious ? 'OK' : 'Away With Thee');
	}

	$response = new AphrontDialogResponse();
	$response->setDialog($dialog);
	return $response;
	}

	if ($ex instanceof AphrontUsageException) {
	$error = new AphrontErrorView();
	$error->setTitle(phutil_escape_html($ex->getTitle()));
	$error->appendChild(phutil_escape_html($ex->getMessage()));

	$view = new PhabricatorStandardPageView();
	$view->setRequest($this->getRequest());
	$view->appendChild($error);

	$response = new AphrontWebpageResponse();
	$response->setContent($view->render());

	return $response;
	}


	// Always log the unhandled exception.
	phlog($ex);

	$class = phutil_escape_html(get_class($ex));
	$message = phutil_escape_html($ex->getMessage());

	if (PhabricatorEnv::getEnvConfig('phabricator.show-stack-traces')) {
	$trace = $this->renderStackTrace($ex->getTrace(), $user);
	} else {
	$trace = null;
	}

	$content =
	'<div class="aphront-unhandled-exception">'.
	'<div class="exception-message">'.$message.'</div>'.
	$trace.
	'</div>';

	$dialog = new AphrontDialogView();
	$dialog
	->setTitle('Unhandled Exception ("'.$class.'")')
	->setClass('aphront-exception-dialog')
	->setUser($user)
	->appendChild($content);

	if ($this->getRequest()->isAjax()) {
	$dialog->addCancelButton('/', 'Close');
	}

	$response = new AphrontDialogResponse();
	$response->setDialog($dialog);

	return $response;
	}

	public function willSendResponse(AphrontResponse $response) {
	$request = $this->getRequest();
	$response->setRequest($request);
	if ($response instanceof AphrontDialogResponse) {
	if (!$request->isAjax()) {
	$view = new PhabricatorStandardPageView();
	$view->setRequest($request);
	$view->appendChild(
	'<div style="padding: 2em 0;">'.
	$response->buildResponseString().
	'</div>');
	$response = new AphrontWebpageResponse();
	$response->setContent($view->render());
	return $response;
	} else {
	return id(new AphrontAjaxResponse())
	->setContent(array(
	'dialog' => $response->buildResponseString(),
	));
	}
	} else if ($response instanceof AphrontRedirectResponse) {
	if ($request->isAjax()) {
	return id(new AphrontAjaxResponse())
	->setContent(
	array(
	'redirect' => $response->getURI(),
	));
	}
	}

	return $response;
	}

	public function build404Controller() {
	return array(new Phabricator404Controller($this->getRequest()), array());
	}

	public function buildRedirectController($uri) {
	return array(
	new PhabricatorRedirectController($this->getRequest()),
	array(
	'uri' => $uri,
	));
	}

	private function renderStackTrace($trace, PhabricatorUser $user) {

	$libraries = PhutilBootloader::getInstance()->getAllLibraries();

	// TODO: Make this configurable?
	$path = 'https://secure.phabricator.com/diffusion/%s/browse/master/src/';

	$callsigns = array(
	'arcanist' => 'ARC',
	'phutil' => 'PHU',
	'phabricator' => 'P',
	);

	$rows = array();
	$depth = count($trace);
	foreach ($trace as $part) {
	$lib = null;
	$file = idx($part, 'file');
	$relative = $file;
	foreach ($libraries as $library) {
	$root = phutil_get_library_root($library);
	if (Filesystem::isDescendant($file, $root)) {
	$lib = $library;
	$relative = Filesystem::readablePath($file, $root);
	break;
	}
	}

	$where = '';
	if (isset($part['class'])) {
	$where .= $part['class'].'::';
	}
	if (isset($part['function'])) {
	$where .= $part['function'].'()';
	}

	if ($file) {
	if (isset($callsigns[$lib])) {
	$attrs = array('title' => $file);
	try {
	$attrs['href'] = $user->loadEditorLink(
	'/src/'.$relative,
	$part['line'],
	$callsigns[$lib]);
	} catch (Exception $ex) {
	// The database can be inaccessible.
	}
	if (empty($attrs['href'])) {
	$attrs['href'] = sprintf($path, $callsigns[$lib]).
	str_replace(DIRECTORY_SEPARATOR, '/', $relative).
	'$'.$part['line'];
	$attrs['target'] = '_blank';
	}
	$file_name = phutil_render_tag(
	'a',
	$attrs,
	phutil_escape_html($relative));
	} else {
	$file_name = phutil_render_tag(
	'span',
	array(
	'title' => $file,
	),
	phutil_escape_html($relative));
	}
	$file_name = $file_name.' : '.(int)$part['line'];
	} else {
	$file_name = '<em>(Internal)</em>';
	}


	$rows[] = array(
	$depth--,
	phutil_escape_html($lib),
	$file_name,
	phutil_escape_html($where),
	);
	}
	$table = new AphrontTableView($rows);
	$table->setHeaders(
	array(
	'Depth',
	'Library',
	'File',
	'Where',
	));
	$table->setColumnClasses(
	array(
	'n',
	'',
	'',
	'wide',
	));

	return
	'<div class="exception-trace">'.
	'<div class="exception-trace-header">Stack Trace</div>'.
	$table->render().
	'</div>';
	}

	}
	diff --git a/src/applications/people/storage/PhabricatorUser.php b/src/applications/people/storage/PhabricatorUser.php
	index 93c19b701d..3f54a6efe3 100644
	--- a/src/applications/people/storage/PhabricatorUser.php
	+++ b/src/applications/people/storage/PhabricatorUser.php
	@@ -1,632 +1,639 @@
	<?php

	/*
	* Copyright 2012 Facebook, Inc.
	*
	* Licensed under the Apache License, Version 2.0 (the "License");
	* you may not use this file except in compliance with the License.
	* You may obtain a copy of the License at
	*
	* http://www.apache.org/licenses/LICENSE-2.0
	*
	* Unless required by applicable law or agreed to in writing, software
	* distributed under the License is distributed on an "AS IS" BASIS,
	* WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
	* See the License for the specific language governing permissions and
	* limitations under the License.
	*/

	final class PhabricatorUser extends PhabricatorUserDAO {

	const SESSION_TABLE = 'phabricator_session';
	const NAMETOKEN_TABLE = 'user_nametoken';

	protected $phid;
	protected $userName;
	protected $realName;
	protected $sex;
	protected $passwordSalt;
	protected $passwordHash;
	protected $profileImagePHID;
	protected $timezoneIdentifier = '';

	protected $consoleEnabled = 0;
	protected $consoleVisible = 0;
	protected $consoleTab = '';

	protected $conduitCertificate;

	protected $isSystemAgent = 0;
	protected $isAdmin = 0;
	protected $isDisabled = 0;

	private $preferences = null;

	protected function readField($field) {
	switch ($field) {
	case 'timezoneIdentifier':
	// If the user hasn't set one, guess the server's time.
	return nonempty(
	$this->timezoneIdentifier,
	date_default_timezone_get());
	// Make sure these return booleans.
	case 'isAdmin':
	return (bool)$this->isAdmin;
	case 'isDisabled':
	return (bool)$this->isDisabled;
	case 'isSystemAgent':
	return (bool)$this->isSystemAgent;
	default:
	return parent::readField($field);
	}
	}

	public function getConfiguration() {
	return array(
	self::CONFIG_AUX_PHID => true,
	self::CONFIG_PARTIAL_OBJECTS => true,
	) + parent::getConfiguration();
	}

	public function generatePHID() {
	return PhabricatorPHID::generateNewPHID(
	PhabricatorPHIDConstants::PHID_TYPE_USER);
	}

	public function setPassword($password) {
	if (!$this->getPHID()) {
	throw new Exception(
	"You can not set a password for an unsaved user because their PHID ".
	"is a salt component in the password hash.");
	}

	if (!strlen($password)) {
	$this->setPasswordHash('');
	} else {
	$this->setPasswordSalt(md5(mt_rand()));
	$hash = $this->hashPassword($password);
	$this->setPasswordHash($hash);
	}
	return $this;
	}

	public function isLoggedIn() {
	return !($this->getPHID() === null);
	}

	public function save() {
	if (!$this->getConduitCertificate()) {
	$this->setConduitCertificate($this->generateConduitCertificate());
	}
	$result = parent::save();

	$this->updateNameTokens();
	PhabricatorSearchUserIndexer::indexUser($this);

	return $result;
	}

	private function generateConduitCertificate() {
	return Filesystem::readRandomCharacters(255);
	}

	public function comparePassword($password) {
	if (!strlen($password)) {
	return false;
	}
	if (!strlen($this->getPasswordHash())) {
	return false;
	}
	$password = $this->hashPassword($password);
	return ($password === $this->getPasswordHash());
	}

	private function hashPassword($password) {
	$password = $this->getUsername().
	$password.
	$this->getPHID().
	$this->getPasswordSalt();
	for ($ii = 0; $ii < 1000; $ii++) {
	$password = md5($password);
	}
	return $password;
	}

	const CSRF_CYCLE_FREQUENCY = 3600;
	const CSRF_TOKEN_LENGTH = 16;

	const EMAIL_CYCLE_FREQUENCY = 86400;
	const EMAIL_TOKEN_LENGTH = 24;

	public function getCSRFToken($offset = 0) {
	return $this->generateToken(
	time() + (self::CSRF_CYCLE_FREQUENCY * $offset),
	self::CSRF_CYCLE_FREQUENCY,
	PhabricatorEnv::getEnvConfig('phabricator.csrf-key'),
	self::CSRF_TOKEN_LENGTH);
	}

	public function validateCSRFToken($token) {

	if (!$this->getPHID()) {
	return true;
	}

	// When the user posts a form, we check that it contains a valid CSRF token.
	// Tokens cycle each hour (every CSRF_CYLCE_FREQUENCY seconds) and we accept
	// either the current token, the next token (users can submit a "future"
	// token if you have two web frontends that have some clock skew) or any of
	// the last 6 tokens. This means that pages are valid for up to 7 hours.
	// There is also some Javascript which periodically refreshes the CSRF
	// tokens on each page, so theoretically pages should be valid indefinitely.
	// However, this code may fail to run (if the user loses their internet
	// connection, or there's a JS problem, or they don't have JS enabled).
	// Choosing the size of the window in which we accept old CSRF tokens is
	// an issue of balancing concerns between security and usability. We could
	// choose a very narrow (e.g., 1-hour) window to reduce vulnerability to
	// attacks using captured CSRF tokens, but it's also more likely that real
	// users will be affected by this, e.g. if they close their laptop for an
	// hour, open it back up, and try to submit a form before the CSRF refresh
	// can kick in. Since the user experience of submitting a form with expired
	// CSRF is often quite bad (you basically lose data, or it's a big pain to
	// recover at least) and I believe we gain little additional protection
	// by keeping the window very short (the overwhelming value here is in
	// preventing blind attacks, and most attacks which can capture CSRF tokens
	// can also just capture authentication information [sniffing networks]
	// or act as the user [xss]) the 7 hour default seems like a reasonable
	// balance. Other major platforms have much longer CSRF token lifetimes,
	// like Rails (session duration) and Django (forever), which suggests this
	// is a reasonable analysis.
	$csrf_window = 6;

	for ($ii = -$csrf_window; $ii <= 1; $ii++) {
	$valid = $this->getCSRFToken($ii);
	if ($token == $valid) {
	return true;
	}
	}

	return false;
	}

	private function generateToken($epoch, $frequency, $key, $len) {
	$time_block = floor($epoch / $frequency);
	$vec = $this->getPHID().$this->getPasswordHash().$key.$time_block;
	return substr(PhabricatorHash::digest($vec), 0, $len);
	}

	/**
	* Issue a new session key to this user. Phabricator supports different
	* types of sessions (like "web" and "conduit") and each session type may
	* have multiple concurrent sessions (this allows a user to be logged in on
	* multiple browsers at the same time, for instance).
	*
	* Note that this method is transport-agnostic and does not set cookies or
	* issue other types of tokens, it ONLY generates a new session key.
	*
	* You can configure the maximum number of concurrent sessions for various
	* session types in the Phabricator configuration.
	*
	* @param string Session type, like "web".
	* @return string Newly generated session key.
	*/
	public function establishSession($session_type) {
	$conn_w = $this->establishConnection('w');

	if (strpos($session_type, '-') !== false) {
	throw new Exception("Session type must not contain hyphen ('-')!");
	}

	// We allow multiple sessions of the same type, so when a caller requests
	// a new session of type "web", we give them the first available session in
	// "web-1", "web-2", ..., "web-N", up to some configurable limit. If none
	// of these sessions is available, we overwrite the oldest session and
	// reissue a new one in its place.

	$session_limit = 1;
	switch ($session_type) {
	case 'web':
	$session_limit = PhabricatorEnv::getEnvConfig('auth.sessions.web');
	break;
	case 'conduit':
	$session_limit = PhabricatorEnv::getEnvConfig('auth.sessions.conduit');
	break;
	default:
	throw new Exception("Unknown session type '{$session_type}'!");
	}

	$session_limit = (int)$session_limit;
	if ($session_limit <= 0) {
	throw new Exception(
	"Session limit for '{$session_type}' must be at least 1!");
	}

	// NOTE: Session establishment is sensitive to race conditions, as when
	// piping `arc` to `arc`:
	//
	// arc export ... \| arc paste ...
	//
	// To avoid this, we overwrite an old session only if it hasn't been
	// re-established since we read it.

	// Consume entropy to generate a new session key, forestalling the eventual
	// heat death of the universe.
	$session_key = Filesystem::readRandomCharacters(40);

	// Load all the currently active sessions.
	$sessions = queryfx_all(
	$conn_w,
	'SELECT type, sessionKey, sessionStart FROM %T
	WHERE userPHID = %s AND type LIKE %>',
	PhabricatorUser::SESSION_TABLE,
	$this->getPHID(),
	$session_type.'-');
	$sessions = ipull($sessions, null, 'type');
	$sessions = isort($sessions, 'sessionStart');

	$existing_sessions = array_keys($sessions);

	// UNGUARDED WRITES: Logging-in users don't have CSRF stuff yet.
	$unguarded = AphrontWriteGuard::beginScopedUnguardedWrites();

	$retries = 0;
	while (true) {


	// Choose which 'type' we'll actually establish, i.e. what number we're
	// going to append to the basic session type. To do this, just check all
	// the numbers sequentially until we find an available session.
	$establish_type = null;
	for ($ii = 1; $ii <= $session_limit; $ii++) {
	$try_type = $session_type.'-'.$ii;
	if (!in_array($try_type, $existing_sessions)) {
	$establish_type = $try_type;
	$expect_key = $session_key;
	$existing_sessions[] = $try_type;

	// Ensure the row exists so we can issue an update below. We don't
	// care if we race here or not.
	queryfx(
	$conn_w,
	'INSERT IGNORE INTO %T (userPHID, type, sessionKey, sessionStart)
	VALUES (%s, %s, %s, 0)',
	self::SESSION_TABLE,
	$this->getPHID(),
	$establish_type,
	$session_key);
	break;
	}
	}

	// If we didn't find an available session, choose the oldest session and
	// overwrite it.
	if (!$establish_type) {
	$oldest = reset($sessions);
	$establish_type = $oldest['type'];
	$expect_key = $oldest['sessionKey'];
	}

	// This is so that we'll only overwrite the session if it hasn't been
	// refreshed since we read it. If it has, the session key will be
	// different and we know we're racing other processes. Whichever one
	// won gets the session, we go back and try again.

	queryfx(
	$conn_w,
	'UPDATE %T SET sessionKey = %s, sessionStart = UNIX_TIMESTAMP()
	WHERE userPHID = %s AND type = %s AND sessionKey = %s',
	self::SESSION_TABLE,
	$session_key,
	$this->getPHID(),
	$establish_type,
	$expect_key);

	if ($conn_w->getAffectedRows()) {
	// The update worked, so the session is valid.
	break;
	} else {
	// We know this just got grabbed, so don't try it again.
	unset($sessions[$establish_type]);
	}

	if (++$retries > $session_limit) {
	throw new Exception("Failed to establish a session!");
	}
	}

	$log = PhabricatorUserLog::newLog(
	$this,
	$this,
	PhabricatorUserLog::ACTION_LOGIN);
	$log->setDetails(
	array(
	'session_type' => $session_type,
	'session_issued' => $establish_type,
	));
	$log->setSession($session_key);
	$log->save();

	return $session_key;
	}

	public function destroySession($session_key) {
	$conn_w = $this->establishConnection('w');
	queryfx(
	$conn_w,
	'DELETE FROM %T WHERE userPHID = %s AND sessionKey = %s',
	self::SESSION_TABLE,
	$this->getPHID(),
	$session_key);
	}

	private function generateEmailToken(
	PhabricatorUserEmail $email,
	$offset = 0) {

	$key = implode(
	'-',
	array(
	PhabricatorEnv::getEnvConfig('phabricator.csrf-key'),
	$this->getPHID(),
	$email->getVerificationCode(),
	));

	return $this->generateToken(
	time() + ($offset * self::EMAIL_CYCLE_FREQUENCY),
	self::EMAIL_CYCLE_FREQUENCY,
	$key,
	self::EMAIL_TOKEN_LENGTH);
	}

	public function validateEmailToken(
	PhabricatorUserEmail $email,
	$token) {
	for ($ii = -1; $ii <= 1; $ii++) {
	$valid = $this->generateEmailToken($email, $ii);
	if ($token == $valid) {
	return true;
	}
	}
	return false;
	}

	public function getEmailLoginURI(PhabricatorUserEmail $email = null) {
	if (!$email) {
	$email = $this->loadPrimaryEmail();
	if (!$email) {
	throw new Exception("User has no primary email!");
	}
	}
	$token = $this->generateEmailToken($email);
	$uri = PhabricatorEnv::getProductionURI('/login/etoken/'.$token.'/');
	$uri = new PhutilURI($uri);
	return $uri->alter('email', $email->getAddress());
	}

	public function loadPrimaryEmailAddress() {
	$email = $this->loadPrimaryEmail();
	if (!$email) {
	throw new Exception("User has no primary email address!");
	}
	return $email->getAddress();
	}

	public function loadPrimaryEmail() {
	return $this->loadOneRelative(
	new PhabricatorUserEmail(),
	'userPHID',
	'getPHID',
	'(isPrimary = 1)');
	}

	public function loadPreferences() {
	if ($this->preferences) {
	return $this->preferences;
	}

	$preferences = id(new PhabricatorUserPreferences())->loadOneWhere(
	'userPHID = %s',
	$this->getPHID());

	if (!$preferences) {
	$preferences = new PhabricatorUserPreferences();
	$preferences->setUserPHID($this->getPHID());

	$default_dict = array(
	PhabricatorUserPreferences::PREFERENCE_TITLES => 'glyph',
	PhabricatorUserPreferences::PREFERENCE_EDITOR => '',
	PhabricatorUserPreferences::PREFERENCE_MONOSPACED => '');

	$preferences->setPreferences($default_dict);
	}

	$this->preferences = $preferences;
	return $preferences;
	}

	public function loadEditorLink($path, $line, $callsign) {
	$editor = $this->loadPreferences()->getPreference(
	PhabricatorUserPreferences::PREFERENCE_EDITOR);
	if ($editor) {
	return strtr($editor, array(
	'%%' => '%',
	'%f' => phutil_escape_uri($path),
	'%l' => phutil_escape_uri($line),
	'%r' => phutil_escape_uri($callsign),
	));
	}
	}

	private static function tokenizeName($name) {
	if (function_exists('mb_strtolower')) {
	$name = mb_strtolower($name, 'UTF-8');
	} else {
	$name = strtolower($name);
	}
	$name = trim($name);
	if (!strlen($name)) {
	return array();
	}
	return preg_split('/\s+/', $name);
	}

	/**
	* Populate the nametoken table, which used to fetch typeahead results. When
	* a user types "linc", we want to match "Abraham Lincoln" from on-demand
	* typeahead sources. To do this, we need a separate table of name fragments.
	*/
	public function updateNameTokens() {
	$tokens = array_merge(
	self::tokenizeName($this->getRealName()),
	self::tokenizeName($this->getUserName()));
	$tokens = array_unique($tokens);
	$table = self::NAMETOKEN_TABLE;
	$conn_w = $this->establishConnection('w');

	$sql = array();
	foreach ($tokens as $token) {
	$sql[] = qsprintf(
	$conn_w,
	'(%d, %s)',
	$this->getID(),
	$token);
	}

	queryfx(
	$conn_w,
	'DELETE FROM %T WHERE userID = %d',
	$table,
	$this->getID());
	if ($sql) {
	queryfx(
	$conn_w,
	'INSERT INTO %T (userID, token) VALUES %Q',
	$table,
	implode(', ', $sql));
	}
	}

	public function sendWelcomeEmail(PhabricatorUser $admin) {
	$admin_username = $admin->getUserName();
	$admin_realname = $admin->getRealName();
	$user_username = $this->getUserName();
	$is_serious = PhabricatorEnv::getEnvConfig('phabricator.serious-business');

	$base_uri = PhabricatorEnv::getProductionURI('/');

	$uri = $this->getEmailLoginURI();
	$body = <<<EOBODY
	Welcome to Phabricator!

	{$admin_username} ({$admin_realname}) has created an account for you.

	Username: {$user_username}

	To login to Phabricator, follow this link and set a password:

	{$uri}

	After you have set a password, you can login in the future by going here:

	{$base_uri}

	EOBODY;

	if (!$is_serious) {
	$body .= <<<EOBODY

	Love,
	Phabricator

	EOBODY;
	}

	$mail = id(new PhabricatorMetaMTAMail())
	->addTos(array($this->getPHID()))
	->setSubject('[Phabricator] Welcome to Phabricator')
	->setBody($body)
	->setFrom($admin->getPHID())
	->saveAndSend();
	}

	public function sendUsernameChangeEmail(
	PhabricatorUser $admin,
	$old_username) {

	$admin_username = $admin->getUserName();
	$admin_realname = $admin->getRealName();
	$new_username = $this->getUserName();

	$password_instructions = null;
	if (PhabricatorEnv::getEnvConfig('auth.password-auth-enabled')) {
	$uri = $this->getEmailLoginURI();
	$password_instructions = <<<EOTXT
	If you use a password to login, you'll need to reset it before you can login
	again. You can reset your password by following this link:

	{$uri}

	And, of course, you'll need to use your new username to login from now on. If
	you use OAuth to login, nothing should change.

	EOTXT;
	}

	$body = <<<EOBODY
	{$admin_username} ({$admin_realname}) has changed your Phabricator username.

	Old Username: {$old_username}
	New Username: {$new_username}

	{$password_instructions}
	EOBODY;

	$mail = id(new PhabricatorMetaMTAMail())
	->addTos(array($this->getPHID()))
	->setSubject('[Phabricator] Username Changed')
	->setBody($body)
	->setFrom($admin->getPHID())
	->saveAndSend();
	}

	public static function describeValidUsername() {
	return 'Usernames must contain only numbers, letters, period, underscore '.
	'and hyphen, and can not end with a period.';
	}

	public static function validateUsername($username) {
	+ // NOTE: If you update this, make sure to update:
	+ //
	+ // - Remarkup rule for @mentions.
	+ // - Routing rule for "/p/username/".
	+ // - Unit tests, obviously.
	+ // - describeValidUsername() method, above.
	+
	return (bool)preg_match('/^[a-zA-Z0-9._-]*[a-zA-Z0-9_-]$/', $username);
	}

	public static function getDefaultProfileImageURI() {
	return celerity_get_resource_uri('/rsrc/image/avatar.png');
	}

	public function loadProfileImageURI() {
	$src_phid = $this->getProfileImagePHID();

	$file = id(new PhabricatorFile())->loadOneWhere('phid = %s', $src_phid);
	if ($file) {
	return $file->getBestURI();
	}

	return self::getDefaultProfileImageURI();
	}

	public function getFullName() {
	return $this->getUsername().' ('.$this->getRealName().')';
	}

	public static function loadOneWithEmailAddress($address) {
	$email = id(new PhabricatorUserEmail())->loadOneWhere(
	'address = %s',
	$address);
	if (!$email) {
	return null;
	}
	return id(new PhabricatorUser())->loadOneWhere(
	'phid = %s',
	$email->getUserPHID());
	}

	}

File Metadata

Mime Type: text/x-diff
Expires: Sat, Nov 15, 3:20 PM (13 h, 27 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 338070
Default Alt Text: (46 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions