<?php
# WARNING: This file is publicly viewable on the web. Do not put private data here.

# This file holds common overrides specific to Beta Cluster.
# For per-wiki overrides, see InitialiseSettings-labs.php.
#
# This for BETA and MUST NOT be loaded for production.
#
# Effective load order:
# - multiversion
# - mediawiki/DefaultSettings.php
# - wmf-config/*Services.php
# - wmf-config/InitialiseSettings.php
# - wmf-config/InitialiseSettings-labs.php
# - wmf-config/CommonSettings.php
# - wmf-config/CommonSettings-labs.php [THIS FILE]
#
# Included from: wmf-config/CommonSettings.php.
#

use MediaWiki\MediaWikiServices;

// safe guard
if ( $wmgRealm == 'labs' ) {

$wmgAddWikiNotify = false;

# Use a different address from the production one - T192686
$wgPasswordSender = 'wiki@wikimedia.beta.wmflabs.org';

# Use a different site name (T181908)
$wgSitename = "Beta $wgSitename";

# Enable for all Beta wikis, depends on $wmgAllServices.
$wgDebugLogFile = "udp://{$wmgUdp2logDest}/wfDebug";

// Password policies; see https://meta.wikimedia.org/wiki/Password_policy
$wmgPrivilegedPolicy = [
	'MinimalPasswordLength' => [ 'value' => 10, 'suggestChangeOnLogin' => true ],
	'MinimumPasswordLengthToLogin' => [ 'value' => 1, 'suggestChangeOnLogin' => true ],
	'PasswordNotInCommonList' => [ 'value' => true, 'suggestChangeOnLogin' => true ],
];
foreach ( $wmgPrivilegedGroups as $group ) {
	// On non-SUL wikis this is the effective password policy. On SUL wikis, it will be overridden
	// in the PasswordPoliciesForUser hook, but still needed for Special:PasswordPolicies
	if ( $group === 'user' ) {
		// For e.g. private and fishbowl wikis; covers 'user' in password policies
		$group = 'default';
	}
	$wgPasswordPolicy['policies'][$group] = array_merge( $wgPasswordPolicy['policies'][$group] ?? [],
		$wmgPrivilegedPolicy );

}

$wgPasswordPolicy['policies']['default']['MinimalPasswordLength'] = [
	'value' => 8,
	'suggestChangeOnLogin' => false,
];

// Enforce password policy when users login on other wikis; also for sensitive global groups
// FIXME does this just duplicate the global policy checks down in the main $wmgUseCentralAuth block?
if ( $wmgUseCentralAuth ) {
	$wgHooks['PasswordPoliciesForUser'][] = static function ( User $user, array &$effectivePolicy ) use ( $wmgPrivilegedPolicy ) {
		$privilegedGroups = wmfGetPrivilegedGroups( $user );
		if ( $privilegedGroups ) {
			$effectivePolicy = UserPasswordPolicy::maxOfPolicies( $effectivePolicy, $wmgPrivilegedPolicy );
			if ( in_array( 'staff', $privilegedGroups, true ) ) {
				$effectivePolicy['MinimumPasswordLengthToLogin'] = [
					'value' => 10,
					'suggestChangeOnLogin' => true,
				];
			}
		}
		return true;
	};
}

$wgLocalVirtualHosts = [
	'wikipedia.beta.wmflabs.org',
	'wiktionary.beta.wmflabs.org',
	'wikibooks.beta.wmflabs.org',
	'wikiquote.beta.wmflabs.org',
	'wikinews.beta.wmflabs.org',
	'wikisource.beta.wmflabs.org',
	'wikiversity.beta.wmflabs.org',
	'wikivoyage.beta.wmflabs.org',
	'meta.wikimedia.beta.wmflabs.org',
	'commons.wikimedia.beta.wmflabs.org',
	'api.wikimedia.beta.wmflabs.org',
	'wikifunctions.beta.wmflabs.org',
];

// T49647
$wgHooks['EnterMobileMode'][] = static function () {
	global $wgCentralAuthCookieDomain;
	$domainRegexp = '/(?<!\.m)\.wikimedia\.beta\.wmflabs\.org$/';
	$mobileDomain = '.m.wikimedia.beta.wmflabs.org';

	if ( preg_match( $domainRegexp, $wgCentralAuthCookieDomain ) ) {
		$wgCentralAuthCookieDomain = preg_replace( $domainRegexp, $mobileDomain, $wgCentralAuthCookieDomain );
	}

	$hookContainer = MediaWikiServices::getInstance()->getHookContainer();
	$hookContainer->register( 'WebResponseSetCookie', static function ( &$name, &$value, &$expire, &$options ) use ( $domainRegexp, $mobileDomain ) {
			if ( isset( $options['domain'] ) && preg_match( $domainRegexp, $options['domain'] ) ) {
				$options['domain'] = preg_replace( $domainRegexp, $mobileDomain, $options['domain'] );
			}
	} );
};

# Attempt to auto block users using faulty servers
# See also http://www.us.sorbs.net/general/using.shtml
$wgEnableDnsBlacklist = true;
$wgDnsBlacklistUrls   = [
	'proxies.dnsbl.sorbs.net.',
];

if ( $wmgUseGlobalPreferences ) {
	// Allow global preferences for email-blacklist to be auto-set where it is overridden
	// T231577
	$wgGlobalPreferencesAutoPrefs = [
		'email-blacklist',
		'echo-notifications-blacklist'
	];
}

if ( $wmgUseFlow ) {
	// Override CommonSettings.php, which has:
	// $wgFlowExternalStore = $wgDefaultExternalStore;
	$wgFlowExternalStore = [
		'DB://flow_cluster1',
	];

	$wgExtraNamespaces += [
		190 => 'Flow_test',
		191 => 'Flow_test_talk',
	];

	$wgNamespacesWithSubpages += [
		190 => true,
		191 => true,
	];

	// CONTENT_MODEL_FLOW_BOARD
	$wgNamespaceContentModels[ 191 ] = 'flow-board';
}

if ( $wmgUseFileExporter ) {
	$wgFileExporterTarget = 'https://commons.wikimedia.beta.wmflabs.org/wiki/Special:ImportFile';
}

if ( $wmgUseContentTranslation ) {
	$wgContentTranslationSiteTemplates['cx'] = 'https://cxserver-beta.wmcloud.org/v1';
	$wgContentTranslationSiteTemplates['cookieDomain'] = false;
	$wgContentTranslationTranslateInTarget = false;
}

if ( $wmgUseIPInfo ) {
	// This allows admins on beta to test the feature.
	$wgGroupPermissions['sysop']['ipinfo'] = true;
	$wgGroupPermissions['sysop']['ipinfo-view-basic'] = true;
}

if ( $wmgUseCentralNotice ) {
	// Emit CSP headers on banner previews. This can go away when full CSP
	// support (T135963) is deployed.
	// www.pages04.net is used by Wikimedia Fundraising to enable 'remind me later' banner functionality, which submits email addresses to our email campaign vendor
	$wgCentralNoticeContentSecurityPolicy = "script-src 'unsafe-eval' blob: 'self' meta.wikimedia.beta.wmflabs.org *.wikimedia.org *.wikipedia.org *.wikinews.org *.wiktionary.org *.wikibooks.org *.wikiversity.org *.wikisource.org wikisource.org *.wikiquote.org *.wikidata.org *.wikivoyage.org *.mediawiki.org 'unsafe-inline'; default-src 'self' data: blob: https://upload.beta.wmflabs.org upload.beta.wmflabs.org https://upload.wikimedia.beta.wmflabs.org upload.wikimedia.beta.wmflabs.org https://commons.wikimedia.beta.wmflabs.org https://upload.wikimedia.org https://commons.wikimedia.org meta.wikimedia.beta.wmflabs.org wikifunctions.beta.wmflabs.org *.wikimedia.org *.wikipedia.org *.wikinews.org *.wiktionary.org *.wikibooks.org *.wikiversity.org *.wikisource.org wikisource.org *.wikiquote.org *.wikidata.org *.wikivoyage.org *.mediawiki.org wikimedia.org www.pages04.net; style-src 'self' data: blob: https://upload.beta.wmflabs.org upload.beta.wmflabs.org https://upload.wikimedia.beta.wmflabs.org upload.wikimedia.beta.wmflabs.org https://commons.wikimedia.beta.wmflabs.org https://wikifunctions.beta.wmflabs.org https://upload.wikimedia.org https://commons.wikimedia.org meta.wikimedia.beta.wmflabs.org *.wikimedia.org *.wikipedia.org *.wikinews.org *.wiktionary.org *.wikibooks.org *.wikiversity.org *.wikisource.org wikisource.org *.wikiquote.org *.wikidata.org *.wikivoyage.org *.wikifunctions.org *.mediawiki.org wikimedia.org 'unsafe-inline';";
}

if ( $wmgUseCite ) {
	// Temporary until we deploy to production, T236894
	$wgCiteBookReferencing = true;
}

// Labs override for GlobalCssJs
if ( $wmgUseGlobalCssJs && $wmgUseCentralAuth ) {
	// Load from betalabs metawiki
	$wgResourceLoaderSources['metawiki'] = [
		'apiScript' => '//meta.wikimedia.beta.wmflabs.org/w/api.php',
		'loadScript' => '//meta.wikimedia.beta.wmflabs.org/w/load.php',
	];
}

if ( $wmgUseGlobalUserPage && $wmgUseCentralAuth ) {
	// Labs override
	$wgGlobalUserPageAPIUrl = 'https://meta.wikimedia.beta.wmflabs.org/w/api.php';
	$wgGlobalUserPageDBname = 'metawiki';
}

if ( $wmgUseUrlShortener ) {
	// Labs overrides
	$wgUrlShortenerReadOnly = false;
	$wgUrlShortenerServer = 'w-beta.wmflabs.org';
	$wgUrlShortenerDBCluster = false;
	$wgUrlShortenerDBName = 'wikishared';
	$wgUrlShortenerEnableSidebar = true;
	$wgUrlShortenerAllowedDomains = [
		'(.*\.)?wikipedia\.beta\.wmflabs\.org',
		'(.*\.)?wiktionary\.beta\.wmflabs\.org',
		'(.*\.)?wikibooks\.beta\.wmflabs\.org',
		'(.*\.)?wikinews\.beta\.wmflabs\.org',
		'(.*\.)?wikiquote\.beta\.wmflabs\.org',
		'(.*\.)?wikisource\.beta\.wmflabs\.org',
		'(.*\.)?wikiversity\.beta\.wmflabs\.org',
		'(.*\.)?wikivoyage\.beta\.wmflabs\.org',
		'(.*\.)?wikimedia\.beta\.wmflabs\.org',
		'(.*\.)?wikidata\.beta\.wmflabs\.org',
	];
	$wgUrlShortenerApprovedDomains = [
		'*.wikipedia.beta.wmflabs.org',
		'*.wiktionary.beta.wmflabs.org',
		'*.wikibooks.beta.wmflabs.org',
		'*.wikinews.beta.wmflabs.org',
		'*.wikiquote.beta.wmflabs.org',
		'*.wikisource.beta.wmflabs.org',
		'*.wikiversity.beta.wmflabs.org',
		'*.wikivoyage.beta.wmflabs.org',
		'*.wikimedia.beta.wmflabs.org',
		'*.wikidata.beta.wmflabs.org',
	];
}

// Labs override for BounceHandler
if ( $wmgUseBounceHandler ) {
	// $wgVERPsecret = ''; // This was set in PrivateSettings.php by Legoktm
	$wgBounceHandlerCluster = false;
	$wgBounceHandlerSharedDB = false;
	// deployment-mx03.deployment-prep.eqiad1.wikimedia.cloud
	$wgBounceHandlerInternalIPs = [ '127.0.0.1', '::1', '172.16.6.221' ];
	$wgBounceHandlerUnconfirmUsers = true;
	$wgBounceRecordLimit = 5;
	$wgVERPdomainPart = 'beta.wmflabs.org';
}

if ( $wmgUseTimedMediaHandler ) {
	$wgMwEmbedModuleConfig[ 'MediaWiki.ApiProviders' ] = [
	"commons" => [
		'url' => '//commons.wikimedia.beta.wmflabs.org/w/api.php'
	] ];
	// enable transcoding on labs
	$wgEnableTranscode = true;
	// use new ffmpeg build w/ VP9 & Opus support
	$wgFFmpegLocation = '/usr/bin/ffmpeg';
}

// Enable Flickr uploads on commons beta T86120
if ( $wgDBname == 'commonswiki' ) {
	$wgGroupPermissions['user']['upload'] = true;
	$wgGroupPermissions['user']['upload_by_url'] = true;
} else {
	// Use InstantCommons on all betawikis except commonswiki
	$wgUseInstantCommons = true;
}

if ( $wmgEnableJsonConfigDataMode && $wgDBname !== 'commonswiki' ) {

	// Enable Tabular data namespace on Commons - T148745
	$wgJsonConfigs['Tabular.JsonConfig']['remote']['url'] = 'https://commons.wikimedia.beta.wmflabs.org/w/api.php';

	// Enable Map (GeoJSON) data namespace on Commons - T149548
	$wgJsonConfigs['Map.JsonConfig']['remote']['url'] = 'https://commons.wikimedia.beta.wmflabs.org/w/api.php';
}

if ( $wmgUseMath ) {
	$wgMathValidModes = [ 'source', 'mathml', 'native' ];
	$wgDefaultUserOptions[ 'math' ] = 'mathml';
	$wgMathEnableFormulaLinks = true;
	$wgMathWikibasePropertyIdHasPart = 'P253104';
	$wgMathWikibasePropertyIdDefiningFormula = 'P253105';
	$wgMathWikibasePropertyIdQuantitySymbol = 'P253106';
}

// CORS (cross-domain AJAX, T22814)
// This lists the domains that are accepted as *origins* of CORS requests
// DO NOT add domains here that aren't WMF wikis unless you really know what you're doing
if ( $wmgUseCORS ) {
	$wgCrossSiteAJAXdomains = [
		'*.beta.wmflabs.org',
	];
}

// Temporary override to test T68699 on Beta Cluster.  Remove when in production.
$wgExtendedLoginCookieExpiration = 365 * 86400;

if ( $wmgUseCollection ) {
	$wgCollectionPortletFormats[] = 'rdf2text';
	// Don't use production proxy to reach PediaPress
	$wgCollectionCommandToServeURL[ 'zip_post' ] = 'https://pediapress.com/wmfup/';
}

if ( $wmgUseEcho ) {
	$wgEchoNotifiers['push'] = [ 'EchoPush\\PushNotifier', 'notifyWithPush' ];
	$wgDefaultNotifyTypeAvailability['push'] = true;
	$wgNotifyTypeAvailabilityByCategory['system']['push'] = false;
	$wgNotifyTypeAvailabilityByCategory['system-noemail']['push'] = false;
}

if ( $wmgUseEcho && $wmgUseCentralAuth ) {
	$wgEchoSharedTrackingDB = 'wikishared';
	// Set cluster back to false, to override CommonSettings.php setting it to 'extension1'
	$wgEchoSharedTrackingCluster = false;
}

// Enabling thank-you-edit on beta for testing T128249. Still disabled in prod.
$wgEchoNotifications['thank-you-edit']['notify-type-availability']['web'] = true;

// Enabling article-reminder on beta for testing T166973. Still disabled in prod.
$wgAllowArticleReminderNotification = true;

if ( $wmgUseGraph ) {
	// **** THIS LIST MUST MATCH puppet/blob/production/hieradata/cloud/eqiad1/deployment-prep/common.yaml ****
	// See https://www.mediawiki.org/wiki/Extension:Graph#External_data
	$wgGraphAllowedDomains = [
		'http' => [
			'wmflabs.org',
		],
		'https' => [
			'beta.wmflabs.org',
		],
		'wikirawupload' => [
			'upload.beta.wmflabs.org',
			'upload.wikimedia.beta.wmflabs.org',
			'upload.wikimedia.org',
		],
		'wikidatasparql' => [
			'wdqs-test.wmflabs.org',
			'query.wikidata.org',
		],
		'geoshape' => [
			'maps.wikimedia.org',
		],
	];
}

if ( $wmgUseORES ) {
	$wgOresBaseUrl = 'https://ores-beta.wmflabs.org/';
}

if ( $wmgUseUniversalLanguageSelector ) {
	$wgDefaultUserOptions['compact-language-links'] = 0;
}

$wgLoginNotifyAttemptsKnownIP = 10;
$wgLoginNotifyAttemptsNewIP = 1;

if ( $wmgUseTwoColConflict ) {
	$wgTwoColConflictBetaFeature = false;
}

if ( $wmgUseFileImporter ) {
	// Beta commons references configuration files hosted locally.
	// Note that beta testwiki will continue to fetch its configuration from production mw.org .
	if ( $wgDBname == 'commonswiki' ) {
		$wgFileImporterCommonsHelperServer = 'https://commons.wikimedia.beta.wmflabs.org';
		$wgFileImporterCommonsHelperBasePageName = 'Extension:FileImporter/Data/';
		$wgFileImporterCommonsHelperHelpPage = 'https://commons.wikimedia.beta.wmflabs.org/wiki/Extension:FileImporter/Data';
		$wgFileImporterWikidataEntityEndpoint = 'https://wikidata.beta.wmflabs.org/wiki/Special:EntityData/';
		$wgFileImporterWikidataNowCommonsEntity = 'Q531650';
	}
}

if ( $wmgUseEventBus ) {
	$wgEventBusEnableRunJobAPI = true;
}

if ( $wmgUseStopForumSpam ) {
	wfLoadExtension( 'StopForumSpam' );
	$wgSFSIPListLocation = 'https://www.stopforumspam.com/downloads/listed_ip_90_ipv46_all.gz';
	$wgSFSIPListLocationMD5 = 'https://www.stopforumspam.com/downloads/listed_ip_90_ipv46_all.gz.md5';
}

$wgMessageCacheType = CACHE_ACCEL;

// This will work for most wikis, which is considered good enough.
$wgPageViewInfoWikimediaDomain = "$lang.$site.org";
$wgPageViewInfoWikimediaEndpoint = 'https://wikimedia.org/api/rest_v1';

if ( $wmgUseGrowthExperiments ) {
	$wgGERestbaseUrl = $wgGERestbaseUrl ?: "https://$lang.$site.org/api/rest_v1";
	// Overrides CommonSettings.php which would use LabsServices.php,
	// but we can't use variables there.
	$wgGEImageRecommendationServiceUrl = "https://$lang.$site.org/w/api.php";
}

// Let Beta Cluster Commons do upload-from-URL from production Commons.
if ( $wgDBname == 'commonswiki' ) {
	$wgCopyUploadsDomains[] = 'upload.wikimedia.org';
}

// Turn off exact search match redirects on beta commons
if ( $wgDBname == 'commonswiki' ) {
	$wgDefaultUserOptions['search-match-redirect'] = false;
}

if ( $wmgUseWikimediaApiPortalOAuth ) {
	$wgWikimediaApiPortalOAuthMetaApiURL = 'https://meta.wikimedia.beta.wmflabs.org/w/api.php';
	$wgWikimediaApiPortalOAuthMetaRestURL = 'https://meta.wikimedia.beta.wmflabs.org/w/rest.php';
}

// Test of new import source configuration on labs cluster
$wgImportSources = [];
require_once __DIR__ . '/import.php';
$wgHooks['ImportSources'][] = 'wmfImportSources';

wfLoadExtension( 'Parsoid', "$IP/vendor/wikimedia/parsoid/extension.json" );

// Enable ChessBrowser extension, see T244075
if ( $wmgUseChessBrowser ) {
	wfLoadExtension( 'ChessBrowser' );
}

// SecurePoll -- do not let users to view PII
if ( $wmgUseSecurePoll ) {
	foreach ( $wgGroupPermissions as $group => $permissions ) {
		if ( array_key_exists( 'securepoll-view-voter-pii', $permissions ) ) {
			$wgGroupPermissions[$group]['securepoll-view-voter-pii'] = false;
		}
	}
}

// Point to the deployment-prep kartotherian server, see T310150.
$wgKartographerMapServer = 'https://maps-beta.wmflabs.org';

// Temporary feature flag for the Parsoid support for Kartographer (T340134)
$wgKartographerParsoidSupport = true;

// Enable max-width for editing. T307725.
$wgVectorMaxWidthOptions['exclude']['querystring']['action'] = '(history|edit)';

if ( $wmgUseCampaignEvents ) {
	// Use wikishared for all wikis, unlike production
	$wgCampaignEventsDatabaseCluster = 'extension1';
	$wgCampaignEventsDatabaseName = 'wikishared';
	$wgCampaignEventsProgramsAndEventsDashboardInstance = 'staging';
	// Re-add rights removed in the production config
	$wgGroupPermissions['user']['campaignevents-enable-registration'] = true;
	$wgGroupPermissions['user']['campaignevents-organize-events'] = true;
	// This group is not needed in beta.
	unset( $wgGroupPermissions['campaignevents-beta-tester'] );
}

// Ignore parameter order when matching request URLs to CDN URLs (T314868)
$wgCdnMatchParameterOrder = false;

// T314294
if ( $wmgUsePhonos ) {
	wfLoadExtension( 'Phonos' );
	// $wgPhonosApiKeyGoogle in PrivateSettings
	$wgPhonosEngine = 'google';
	$wgPhonosFileBackend = 'global-multiwrite';
}

if ( $wmgUseReportIncident ) {
	wfLoadExtension( 'ReportIncident' );
}

// IP Masking
// NOTE: This is here to ensure temp accounts behave as temp accounts on all wikis. Autocreation of temp
// accounts for wikis where IP Masking is not enabled is disabled in an if below.
$wgAutoCreateTempUser['enabled'] = true;

$wgAutoCreateTempUser['serialProvider'] = [
	'type' => 'centralauth',
	'numShards' => 8,
];
$wgAutoCreateTempUser['serialMapping'] = [ 'type' => 'scramble' ];

if ( $wmgEnableIPMasking ) {
	// editing is enabled only for temp accounts
	$wgGroupPermissions['*']['edit'] = false;
	$wgGroupPermissions['temp']['edit'] = true;

} else {
	// do not actually autocreate temp accounts on non-pilot wikis
	$wgAutoCreateTempUser['actions'] = [];
}

// Jade was undeployed as part of T281430, and content is being cleaned up as part of T345874
$wgContentHandlers['JadeEntity'] = 'FallbackContentHandler';
$wgContentHandlers['JadeJudgment'] = 'FallbackContentHandler';

}
// end safeguard