Topic on Project:Support desk

I am tracking the error.

Due to my lack of ability, I can only give you a suggestion. Try download a new tarball that match your current version from this site, then extract the includes/auth/ directory to overwrite your existing directory of the same name.

I just downloaded a fresh copy of MediaWiki 1.30.0 (the version my installation is now on), and replaced the contents of my includes/auth/ directory with the contents of that directory in the download. Unfortunately the error still persists; this is now the response:

[a4df1cc376641f0cce5b784c] [no req]   PasswordError from line 62 of /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php: * The supplied credentials cannot be changed, as nothing would use them.
* The authentication data change was not handled. Maybe no provider was configured?

Backtrace:
#0 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/doMaintenance.php(92): ChangePassword->execute()
#1 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php(73): require_once(string)
#2 {main}

I need more debug information. Please edit mediawiki/includes/auth/AuthManager.php, add var_dump($status); behind $any = $any || $status->value !== 'ignored'; on line 860. Then rerun changePassword.php and observe its behavior, and post error response here.

Note: Do not to modify the file in the production environment. Because it will output debugging information to your web page.

Sure thing; here is the full dump of the response:

object(StatusValue)#148 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  NULL
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#148 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#148 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#148 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  NULL
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#148 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#147 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#147 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#149 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
object(StatusValue)#147 (6) {
  ["ok":protected]=>
  bool(true)
  ["errors":protected]=>
  array(0) {
  }
  ["value"]=>
  string(7) "ignored"
  ["success"]=>
  array(0) {
  }
  ["successCount"]=>
  int(0)
  ["failCount"]=>
  int(0)
}
[93c813483873d32b2ec10490] [no req]   PasswordError from line 62 of /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php: * The supplied credentials cannot be changed, as nothing would use them.
* The authentication data change was not handled. Maybe no provider was configured?

Backtrace:
#0 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/doMaintenance.php(92): ChangePassword->execute()
#1 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php(73): require_once(string)
#2 {main}

The command I run is php changePassword.php --user=UserName --password=NewPassword.

Ok. Then, in the same place, modify as such:

public function allowsAuthenticationDataChange( AuthenticationRequest $req, $checkData = true ) {
        $any = false;
        $providers = $this->getPrimaryAuthenticationProviders() +
            $this->getSecondaryAuthenticationProviders();
        foreach ( $providers as $provider ) {
            $status = $provider->providerAllowsAuthenticationDataChange( $req, $checkData );
            if ( !$status->isGood() ) {
                return Status::wrap( $status );
            }
            $any = $any || $status->value !== 'ignored';var_dump($any);
        }echo "test\n"
        if ( !$any ) {
            $status = Status::newGood( 'ignored' );
            $status->warning( 'authmanager-change-not-supported' );
            return $status;
        }
        return Status::newGood();
}

Rerun changePassword.php.

The result is as follows:

bool(true)
bool(true)
bool(true)
bool(true)
bool(true)
test
bool(false)
bool(true)
bool(true)
bool(true)
bool(true)
test
bool(false)
bool(false)
bool(false)
bool(false)
bool(false)
test

I think your LocalPasswordPrimaryAuthenticationProvider have a problem. Most likely is database query problem. Can you access your database directly via command line interface or other connectors?

That's interesting. Yes, I can easily access the database via phpMyAdmin.

Try select action SELECT user_id FROM user WHERE user_name='<UserName>' via phpMyAdmin. (<UserName> is you want to change username) Can you select out a number?

Now I think it is unlikely that the database problem. Maybe other in LocalPasswordPrimaryAuthenticationProvider.

For the user whose password I'm trying to reset, the user_id is 1.

Looks like not a database problem. Edit mediawiki/includes/auth/LocalPasswordPrimaryAuthenticationProvider.php, add var_dump($row); behind ); on line 222., then rerun changePassword.php.

OK, I've made that addition to LocalPasswordPrimaryAuthenticationProvider.php; below is the result from running changePassword. (Nothing extra seems to appear from the dump.)

[2f16bf0d63423d2400ce46db] [no req]   PasswordError from line 62 of /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php: * The supplied credentials cannot be changed, as nothing would use them.
* The authentication data change was not handled. Maybe no provider was configured?

Backtrace:
#0 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/doMaintenance.php(92): ChangePassword->execute()
#1 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php(73): require_once(string)
#2 {main}

Oh, now. Edit mediawiki/includes/auth/LocalPasswordPrimaryAuthenticationProvider.php, add var_dump($username);behind $username = User::getCanonicalName( $req->username, 'usable' ); on line 215., then rerun changePassword.php.

The response is bool(false).

What username did you input when you run changePassword.php?

Huwmanbeing is the username I'm inputting.

Please use the following code to edit your line 1092-1141 in includes/user/User.php.

public static function getCanonicalName( $name, $validate = 'valid' ) {
    // Force usernames to capital
    global $wgContLang;
    $name = $wgContLang->ucfirst( $name );

    # Reject names containing '#'; these will be cleaned up
    # with title normalisation, but then it's too late to
    # check elsewhere
    if ( strpos( $name, '#' ) !== false ) {
        return false;
    }
echo "test1\n";
    // Clean up name according to title rules,
    // but only when validation is requested (T14654)
    $t = ( $validate !== false ) ?
        Title::newFromText( $name, NS_USER ) : Title::makeTitle( NS_USER, $name );
    // Check for invalid titles
    if ( is_null( $t ) || $t->getNamespace() !== NS_USER || $t->isExternal() ) {
        return false;
    }
echo "test2\n";
    // Reject various classes of invalid names
    $name = AuthManager::callLegacyAuthPlugin(
        'getCanonicalName', [ $t->getText() ], $t->getText()
    );

    switch ( $validate ) {
        case false:
            break;
        case 'valid':
            if ( !self::isValidUserName( $name ) ) {
                $name = false;
            }
        break;
        case 'usable':
            if ( !self::isUsableName( $name ) ) {
                $name = false;
            }
            break;
        case 'creatable':
            if ( !self::isCreatableName( $name ) ) {
                $name = false;
            }
            break;
        default:
            throw new InvalidArgumentException(
                'Invalid parameter value for $validate in ' . __METHOD__ );
            }
        return $name;
}

The response:

test1
test2
test1
test2
bool(false)

Maybe, I find the problem point. Are you set $wgReservedUsernames in LocalSettings.php? Or do you installed an extension that blocks users from logging in or registering?

I don't have any $wgReservedUsernames defined in LocalSettings.

I do have new account creation turned off for unregistered users ($wgGroupPermissions['*']['createaccount'] = false;). I tried re-enabling account creation and re-running changePassword but the result is the same.

I have several extensions installed, but none specifically for blocking logins or registrations. Other than the three automatically-installed "spam prevention" extensions (ConfirmEdit, SpamBlacklist, and TitleBlacklist), I have two others: Abuse Filter and AntiSpoof. I've tried disabling them both and re-running changePassword but that also didn't seem to change anything.

Very strange. Add var_dump($reservedUsernames); to line 912 in includes/user/User.php.

Yes, it's very odd — I really appreciate all your help with trying to track it down. Here's the result from var_dump($reservedUsernames):

array(12) {
  [0]=>
  string(17) "MediaWiki default"
  [1]=>
  string(17) "Conversion script"
  [2]=>
  string(18) "Maintenance script"
  [3]=>
  string(40) "Template namespace initialisation script"
  [4]=>
  string(14) "ScriptImporter"
  [5]=>
  string(12) "Unknown user"
  [6]=>
  string(25) "msg:double-redirect-fixer"
  [7]=>
  string(22) "msg:usermessage-editor"
  [8]=>
  string(16) "msg:proxyblocker"
  [9]=>
  string(20) "msg:spambot_username"
  [10]=>
  string(23) "msg:autochange-username"
  [11]=>
  string(25) "msg:newusermessage-editor"
}

Add echo "test\n"; to line 921 in mediawiki/includes/user/User.php behind behind }.

This should be the last debugging if you get test. Since, this is not logical.

I added that echo to the end of line 921; the result appears unchanged. Here's the full response:

array(12) {
  [0]=>
  string(17) "MediaWiki default"
  [1]=>
  string(17) "Conversion script"
  [2]=>
  string(18) "Maintenance script"
  [3]=>
  string(40) "Template namespace initialisation script"
  [4]=>
  string(14) "ScriptImporter"
  [5]=>
  string(12) "Unknown user"
  [6]=>
  string(25) "msg:double-redirect-fixer"
  [7]=>
  string(22) "msg:usermessage-editor"
  [8]=>
  string(16) "msg:proxyblocker"
  [9]=>
  string(20) "msg:spambot_username"
  [10]=>
  string(23) "msg:autochange-username"
  [11]=>
  string(25) "msg:newusermessage-editor"
}
[722c407595dc086df92e31ac] [no req]   PasswordError from line 62 of /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php: * The supplied credentials cannot be changed, as nothing would use them.
* The authentication data change was not handled. Maybe no provider was configured?

Backtrace:
#0 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/doMaintenance.php(92): ChangePassword->execute()
#1 /var/www/mywiki/public_html/mediawiki-1.30.0/maintenance/changePassword.php(73): require_once(string)
#2 {main}

Do you suspect it's something amiss with reserved usernames?

Yes, there should be have a problem. This should a last test: add var_dump($reserved);var_dump($name); to line 919 in the same file before return false;.

Here's the result:

array(12) {
  [0]=>
  string(17) "MediaWiki default"
  [1]=>
  string(17) "Conversion script"
  [2]=>
  string(18) "Maintenance script"
  [3]=>
  string(40) "Template namespace initialisation script"
  [4]=>
  string(14) "ScriptImporter"
  [5]=>
  string(12) "Unknown user"
  [6]=>
  string(25) "msg:double-redirect-fixer"
  [7]=>
  string(22) "msg:usermessage-editor"
  [8]=>
  string(16) "msg:proxyblocker"
  [9]=>
  string(20) "msg:spambot_username"
  [10]=>
  string(23) "msg:autochange-username"
  [11]=>
  string(25) "msg:newusermessage-editor"
}
string(11) "Huwmanbeing"
string(11) "Huwmanbeing"

That is it. You situation that due $reserved == $name so User::isUsableName() return false and cause you can't change the password. But I do not know why your name will be in $reservedUsernames array. Please add var_dump($reservedUsernames); to line 919 in the same file before return false;. Oh, previous code for debugging can be remove.

One of those messages has been customized to Huwmanbeing presumably?

Set $wgReservedUsernames = []; in LocalSettings.php should can fix it.

Success! Thank you so much for your diligence in diagnosing this problem — I greatly appreciate it.

Here's the coda to the story. After setting $wgReservedUsernames = [] I re-ran changePassword.php and saw this:

array(1) {
  [0]=>
  string(25) "msg:newusermessage-editor"
}

NewUserMessage is an extension that automatically posts a message to the talk pages of newly-created users. After disabling that extension, I was able to log in without issue — and I verified that changePassword worked fine too. The source of the problem was apparently the MediaWiki:Newusermessage-editor setting, which was set to "Huwmanbeing". I've now set up a separate account just for that extension to use for posting welcome messages.

Thanks again!

Yes, I see Set the username of the user that makes the edit on user talk pages. If this user does not exist, "MediaWiki default" will show up as editing user. The user set here is marked as reserved and won't be able to login! in Extension:NewUserMessage#In-wiki configuration. I'm not sure if I want to add this case to Manual:changePassword.php as troubleshooting note.