phorge-phorge/src/applications/auth/storage/PhabricatorAuthMessage.php

<?php

final class PhabricatorAuthMessage
  extends PhabricatorAuthDAO
  implements
    PhabricatorApplicationTransactionInterface,
    PhabricatorPolicyInterface,
    PhabricatorDestructibleInterface {

  protected $messageKey;
  protected $messageText;

  private $messageType = self::ATTACHABLE;

  public static function initializeNewMessage(
    PhabricatorAuthMessageType $type) {

    return id(new self())
      ->setMessageKey($type->getMessageTypeKey())
      ->attachMessageType($type);
  }

  protected function getConfiguration() {
    return array(
      self::CONFIG_AUX_PHID => true,
      self::CONFIG_COLUMN_SCHEMA => array(
        'messageKey' => 'text64',
        'messageText' => 'text',
      ),
      self::CONFIG_KEY_SCHEMA => array(
        'key_type' => array(
          'columns' => array('messageKey'),
          'unique' => true,
        ),
      ),
    ) + parent::getConfiguration();
  }

  public function getPHIDType() {
    return PhabricatorAuthMessagePHIDType::TYPECONST;
  }

  public function getObjectName() {
    return pht('Auth Message %d', $this->getID());
  }

  public function getURI() {
    return urisprintf('/auth/message/%s', $this->getID());
  }

  public function attachMessageType(PhabricatorAuthMessageType $type) {
    $this->messageType = $type;
    return $this;
  }

  public function getMessageType() {
    return $this->assertAttached($this->messageType);
  }

  public function getMessageTypeDisplayName() {
    return $this->getMessageType()->getDisplayName();
  }

  public static function loadMessage(
    PhabricatorUser $viewer,
    $message_key) {
    return id(new PhabricatorAuthMessageQuery())
      ->setViewer($viewer)
      ->withMessageKeys(array($message_key))
      ->executeOne();
  }

  public static function loadMessageText(
    PhabricatorUser $viewer,
    $message_key) {

    $message = self::loadMessage($viewer, $message_key);

    if (!$message) {
      return null;
    }

    return $message->getMessageText();
  }


/* -(  PhabricatorPolicyInterface  )----------------------------------------- */


  public function getCapabilities() {
    return array(
      PhabricatorPolicyCapability::CAN_VIEW,
      PhabricatorPolicyCapability::CAN_EDIT,
    );
  }

  public function getPolicy($capability) {
    switch ($capability) {
      case PhabricatorPolicyCapability::CAN_VIEW:
        return PhabricatorPolicies::getMostOpenPolicy();
      default:
        return false;
    }
  }

  public function hasAutomaticCapability($capability, PhabricatorUser $viewer) {
    switch ($capability) {
      case PhabricatorPolicyCapability::CAN_VIEW:
        // Even if an install doesn't allow public users, you can still view
        // auth messages: otherwise, we can't do things like show you
        // guidance on the login screen.
        return true;
      default:
        return false;
    }
  }

/* -(  PhabricatorApplicationTransactionInterface  )------------------------- */


  public function getApplicationTransactionEditor() {
    return new PhabricatorAuthMessageEditor();
  }

  public function getApplicationTransactionTemplate() {
    return new PhabricatorAuthMessageTransaction();
  }


/* -(  PhabricatorDestructibleInterface  )----------------------------------- */


  public function destroyObjectPermanently(
    PhabricatorDestructionEngine $engine) {
    $this->delete();
  }

}
Add "Auth Messages" to support customizing onboarding/welcome flows Summary: Ref T13222. Long ago, we had a Config option (`welcome.html`) to let you dump HTML onto the login screen, but this was relatively hard to use and not good from a security perspective. In some cases this was obsoleted by Dashboards, but there's at least some remaining set of use cases for actual login instructions on the login screen. For example, WMF has some guidance on //which// SSO mechanism to use based on what types of account you have. On `secure`, users assume they can register by clicking "Log In With GitHub" or whatever, and it might reduce frustration to tell them upfront that registration is closed. Some other types of auth messaging could also either use customization or defaults (e.g., the invite/welcome/approve mail). We could do this with a bunch of Config options, but I'd generally like to move to a world where there's less stuff in Config and more configuration is contextual. I think it tends to be easier to use, and we get a lot of fringe benefits (granular permissions, API, normal transaction logs, more abililty to customize workflows and provide contextual help/hints, etc). Here, for example, we can provide a remarkup preview, which would be trickier with Config. This does not actually do anything yet. Test Plan: {F6137541} Reviewers: amckinley Reviewed By: amckinley Subscribers: PHID-OPKG-gm6ozazyms6q6i22gyam Maniphest Tasks: T13222 Differential Revision: https://secure.phabricator.com/D19992 2019-01-17 10:47:13 -08:00			`<?php`

			`final class PhabricatorAuthMessage`
			`extends PhabricatorAuthDAO`
			`implements`
			`PhabricatorApplicationTransactionInterface,`
			`PhabricatorPolicyInterface,`
			`PhabricatorDestructibleInterface {`

			`protected $messageKey;`
			`protected $messageText;`

			`private $messageType = self::ATTACHABLE;`

			`public static function initializeNewMessage(`
			`PhabricatorAuthMessageType $type) {`

			`return id(new self())`
			`->setMessageKey($type->getMessageTypeKey())`
			`->attachMessageType($type);`
			`}`

			`protected function getConfiguration() {`
			`return array(`
			`self::CONFIG_AUX_PHID => true,`
			`self::CONFIG_COLUMN_SCHEMA => array(`
			`'messageKey' => 'text64',`
			`'messageText' => 'text',`
			`),`
			`self::CONFIG_KEY_SCHEMA => array(`
			`'key_type' => array(`
			`'columns' => array('messageKey'),`
			`'unique' => true,`
			`),`
			`),`
			`) + parent::getConfiguration();`
			`}`

			`public function getPHIDType() {`
			`return PhabricatorAuthMessagePHIDType::TYPECONST;`
			`}`

			`public function getObjectName() {`
			`return pht('Auth Message %d', $this->getID());`
			`}`

			`public function getURI() {`
			`return urisprintf('/auth/message/%s', $this->getID());`
			`}`

			`public function attachMessageType(PhabricatorAuthMessageType $type) {`
			`$this->messageType = $type;`
			`return $this;`
			`}`

			`public function getMessageType() {`
			`return $this->assertAttached($this->messageType);`
			`}`

			`public function getMessageTypeDisplayName() {`
			`return $this->getMessageType()->getDisplayName();`
			`}`

Use the customizable "Welcome Mail" message in welcome mail Summary: Depends on D19994. See PHI1027. If an install has customized the "Welcome Mail" message, include it in welcome mail. A special custom message from the profile screen overrides it, if provided. (I fiddled with putting the custom message as "placeholder" text in the remarkup area as a hint, but newlines in "placeholder" text appear to have issues in Safari and Firefox. I think this is probably reasonably clear as-is.) Make both render remarkup-into-text so things like links work properly, as it's reasonably likely that installs will want to link to things. Test Plan: - With custom "Welcome Mail" text, sent mail with no custom override (got custom text) and a custom override (got overridden text). - Linked to some stuff, got sensible links in the mail (`bin/mail show-outbound`). Reviewers: amckinley Reviewed By: amckinley Differential Revision: https://secure.phabricator.com/D19995 2019-01-17 19:05:45 -08:00			`public static function loadMessage(`
Show the customized "Login" message on the login screen Summary: Depends on D19992. Ref T13222. If administrators provide a custom login message, show it on the login screen. Test Plan: {F6137930} - Viewed login screen with and without a custom message. Reviewers: amckinley Reviewed By: amckinley Maniphest Tasks: T13222 Differential Revision: https://secure.phabricator.com/D19994 2019-01-17 18:29:42 -08:00			`PhabricatorUser $viewer,`
			`$message_key) {`
Use the customizable "Welcome Mail" message in welcome mail Summary: Depends on D19994. See PHI1027. If an install has customized the "Welcome Mail" message, include it in welcome mail. A special custom message from the profile screen overrides it, if provided. (I fiddled with putting the custom message as "placeholder" text in the remarkup area as a hint, but newlines in "placeholder" text appear to have issues in Safari and Firefox. I think this is probably reasonably clear as-is.) Make both render remarkup-into-text so things like links work properly, as it's reasonably likely that installs will want to link to things. Test Plan: - With custom "Welcome Mail" text, sent mail with no custom override (got custom text) and a custom override (got overridden text). - Linked to some stuff, got sensible links in the mail (`bin/mail show-outbound`). Reviewers: amckinley Reviewed By: amckinley Differential Revision: https://secure.phabricator.com/D19995 2019-01-17 19:05:45 -08:00			`return id(new PhabricatorAuthMessageQuery())`
Show the customized "Login" message on the login screen Summary: Depends on D19992. Ref T13222. If administrators provide a custom login message, show it on the login screen. Test Plan: {F6137930} - Viewed login screen with and without a custom message. Reviewers: amckinley Reviewed By: amckinley Maniphest Tasks: T13222 Differential Revision: https://secure.phabricator.com/D19994 2019-01-17 18:29:42 -08:00			`->setViewer($viewer)`
			`->withMessageKeys(array($message_key))`
			`->executeOne();`
Use the customizable "Welcome Mail" message in welcome mail Summary: Depends on D19994. See PHI1027. If an install has customized the "Welcome Mail" message, include it in welcome mail. A special custom message from the profile screen overrides it, if provided. (I fiddled with putting the custom message as "placeholder" text in the remarkup area as a hint, but newlines in "placeholder" text appear to have issues in Safari and Firefox. I think this is probably reasonably clear as-is.) Make both render remarkup-into-text so things like links work properly, as it's reasonably likely that installs will want to link to things. Test Plan: - With custom "Welcome Mail" text, sent mail with no custom override (got custom text) and a custom override (got overridden text). - Linked to some stuff, got sensible links in the mail (`bin/mail show-outbound`). Reviewers: amckinley Reviewed By: amckinley Differential Revision: https://secure.phabricator.com/D19995 2019-01-17 19:05:45 -08:00			`}`

			`public static function loadMessageText(`
			`PhabricatorUser $viewer,`
			`$message_key) {`

			`$message = self::loadMessage($viewer, $message_key);`
Show the customized "Login" message on the login screen Summary: Depends on D19992. Ref T13222. If administrators provide a custom login message, show it on the login screen. Test Plan: {F6137930} - Viewed login screen with and without a custom message. Reviewers: amckinley Reviewed By: amckinley Maniphest Tasks: T13222 Differential Revision: https://secure.phabricator.com/D19994 2019-01-17 18:29:42 -08:00
			`if (!$message) {`
			`return null;`
			`}`

			`return $message->getMessageText();`
			`}`

Add "Auth Messages" to support customizing onboarding/welcome flows Summary: Ref T13222. Long ago, we had a Config option (`welcome.html`) to let you dump HTML onto the login screen, but this was relatively hard to use and not good from a security perspective. In some cases this was obsoleted by Dashboards, but there's at least some remaining set of use cases for actual login instructions on the login screen. For example, WMF has some guidance on //which// SSO mechanism to use based on what types of account you have. On `secure`, users assume they can register by clicking "Log In With GitHub" or whatever, and it might reduce frustration to tell them upfront that registration is closed. Some other types of auth messaging could also either use customization or defaults (e.g., the invite/welcome/approve mail). We could do this with a bunch of Config options, but I'd generally like to move to a world where there's less stuff in Config and more configuration is contextual. I think it tends to be easier to use, and we get a lot of fringe benefits (granular permissions, API, normal transaction logs, more abililty to customize workflows and provide contextual help/hints, etc). Here, for example, we can provide a remarkup preview, which would be trickier with Config. This does not actually do anything yet. Test Plan: {F6137541} Reviewers: amckinley Reviewed By: amckinley Subscribers: PHID-OPKG-gm6ozazyms6q6i22gyam Maniphest Tasks: T13222 Differential Revision: https://secure.phabricator.com/D19992 2019-01-17 10:47:13 -08:00
			`/* -( PhabricatorPolicyInterface )----------------------------------------- */`


			`public function getCapabilities() {`
			`return array(`
			`PhabricatorPolicyCapability::CAN_VIEW,`
			`PhabricatorPolicyCapability::CAN_EDIT,`
			`);`
			`}`

			`public function getPolicy($capability) {`
			`switch ($capability) {`
			`case PhabricatorPolicyCapability::CAN_VIEW:`
			`return PhabricatorPolicies::getMostOpenPolicy();`
			`default:`
			`return false;`
			`}`
			`}`

			`public function hasAutomaticCapability($capability, PhabricatorUser $viewer) {`
			`switch ($capability) {`
			`case PhabricatorPolicyCapability::CAN_VIEW:`
			`// Even if an install doesn't allow public users, you can still view`
			`// auth messages: otherwise, we can't do things like show you`
			`// guidance on the login screen.`
			`return true;`
			`default:`
			`return false;`
			`}`
			`}`

			`/* -( PhabricatorApplicationTransactionInterface )------------------------- */`


			`public function getApplicationTransactionEditor() {`
			`return new PhabricatorAuthMessageEditor();`
			`}`

			`public function getApplicationTransactionTemplate() {`
			`return new PhabricatorAuthMessageTransaction();`
			`}`


			`/* -( PhabricatorDestructibleInterface )----------------------------------- */`


			`public function destroyObjectPermanently(`
			`PhabricatorDestructionEngine $engine) {`
			`$this->delete();`
			`}`

			`}`