Page MenuHomePhabricator
Create Task
Maniphest T151414

LoginNotify cleanup
Closed, ResolvedPublic3 Estimated Story Points
Actions

Description

  • EchoBasicFormatter seems AWOL T151413
  • onLoginAuthenticateAudit says return bool, but it doesn't return one
  • onUserLoadOptions calls isUserOptionOverriden with too many parameters

Details

SubjectRepoBranchLines +/-
Remove EchoBasicFormatter - no longer in usemediawiki/extensions/LoginNotifymaster+3 -26
Customize query in gerrit

Related Objects
Search...

Event Timeline

Reedy created this task.Nov 22 2016, 10:31 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 22 2016, 10:31 PM
Reedy mentioned this in T140167: Security Review of LoginNotify extension.Nov 22 2016, 10:32 PM
Legoktm subscribed.Nov 22 2016, 10:36 PM

Theoretically the class extending EchoBasicFormatter should just be deleted - it won't be used because Echo now uses the presentation model and got rid of the old formatting system. See https://www.mediawiki.org/wiki/Extension:Echo/Creating_a_new_notification_type

Legoktm added a comment.Nov 22 2016, 10:47 PM

Relying on $user->getRequest() is misleading IMO since it's using the global request, nothing specific to a user.

TheDJ subscribed.Nov 24 2016, 9:37 AM

I was looking at the code, and I think it currently treats primary and secondary authentication failures the same right ? I'm wonder if with 2FA there will be a very different failure rate on the 2FA auth, and if we need different weight depending on the Authmanager plugin throwing it.

I don't think we will be able to determine that before hand, but maybe we should have some logging, which would allow us to evaluate the experience ?

Bawolff added a comment.Nov 24 2016, 6:46 PM
In T151414#2820316, @TheDJ wrote:

I was looking at the code, and I think it currently treats primary and secondary authentication failures the same right ? I'm wonder if with 2FA there will be a very different failure rate on the 2FA auth, and if we need different weight depending on the Authmanager plugin throwing it.

I don't think we will be able to determine that before hand, but maybe we should have some logging, which would allow us to evaluate the experience ?

Yeah. Original this was written pre auth manager so secondary auth was not really a thing yet. That's a good point. Im not really sure what the correct answer is.

kaldari added a project: Community-Tech.Dec 24 2016, 12:28 AM
kaldari moved this task from New & TBD Tickets to Needs Discussion on the Community-Tech board.
kaldari added a parent task: T11838: Send notification to account owner on multiple unsuccessful login attempts.
kaldari mentioned this in T153335: Investigation: Notify on multiple unsuccessful login attempts.Dec 24 2016, 12:39 AM
Aklapper added a project: Technical-Debt.Dec 25 2016, 1:01 PM
Liuxinyu970226 edited projects, added MediaWiki-extensions-LoginNotify; removed MediaWiki-extensions-Other.Dec 27 2016, 4:35 AM
kaldari triaged this task as Medium priority.Jan 3 2017, 5:44 PM
kaldari set the point value for this task to 3.
kaldari moved this task from Needs Discussion to Up Next (May 20-June 3) on the Community-Tech board.
DannyH edited projects, added Community-Tech-Sprint; removed Community-Tech.Jan 17 2017, 5:41 PM
gerritbot subscribed.Jan 23 2017, 4:25 PM

Change 333671 had a related patch set uploaded (by Niharika29):
Remove EchoBasicFormatter - no longer in use

https://gerrit.wikimedia.org/r/333671

gerritbot added a project: Patch-For-Review.Jan 23 2017, 4:25 PM
Diffusion mentioned this in rELGNdcd03ec0a3c5: Remove EchoBasicFormatter - no longer in use.Jan 23 2017, 4:25 PM
Diffusion mentioned this in rELGNa142f2251bb9: [WIP] Remove EchoBasicFormatter - no longer in use.Jan 23 2017, 4:44 PM
Diffusion mentioned this in rELGNc836673986fd: [WIP] Remove EchoBasicFormatter - no longer in use.Jan 23 2017, 4:59 PM
Niharika moved this task from Ready to In Development on the Community-Tech-Sprint board.Jan 23 2017, 5:48 PM
Niharika moved this task from In Development to Needs Review/Feedback on the Community-Tech-Sprint board.Jan 24 2017, 3:20 PM
kaldari added subscribers: Niharika, kaldari.Feb 1 2017, 3:32 AM

@Niharika: This looks done, but the commit summary says "[WIP]". Is it still being worked on or safe to merge?

Niharika added a comment.Feb 1 2017, 3:35 AM

@kaldari Removed WIP. It's waiting for a review before merge.

Diffusion mentioned this in rELGN03839f7d96bd: Remove EchoBasicFormatter - no longer in use.Feb 1 2017, 3:35 AM
gerritbot added a comment.Feb 1 2017, 3:37 AM

Change 333671 merged by jenkins-bot:
Remove EchoBasicFormatter - no longer in use

https://gerrit.wikimedia.org/r/333671

kaldari closed this task as Resolved.Feb 1 2017, 5:05 PM
kaldari moved this task from Needs Review/Feedback to Q1 2018-19 on the Community-Tech-Sprint board.
DannyH edited projects, added Community-Tech; removed Community-Tech-Sprint.Mar 2 2017, 6:30 PM
DannyH moved this task from Up Next (May 20-June 3) to Archive on the Community-Tech board.Mar 2 2017, 6:40 PM
MarcoAurelio moved this task from Backlog to Done on the MediaWiki-extensions-LoginNotify board.Aug 28 2017, 8:04 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL