Page MenuHomePhabricator
Create Task
Maniphest T108112

Spike: get Amazon authentication working with automatic redirect
Closed, ResolvedPublic2 Estimated Story Points
Actions

Description

We can't load Amazon's scripts on any page before the Amazon-specific payments form. Once the donor gets to Special:AmazonGateway, they should be redirected to the Amazon authentication screen without having to click a button.

Some info on redirect authentication:
https://payments.amazon.com/documentation/lpwa/201750560#201750010

Details

SubjectRepoBranchLines +/-
Clean up a bit of Amazon javascriptmediawiki/extensions/DonationInterfaceamazon+11 -8
Use modern hook registration for Amazonmediawiki/extensions/DonationInterfaceamazon+1 -3
Move Amazon Widget script and return URL into accountmediawiki/extensions/DonationInterfaceamazon+20 -22
Move Amazon Widget script and return URL into accountmediawiki/extensions/DonationInterfacepayWithAmazon+20 -22
Clean up a bit of Amazon javascriptmediawiki/extensions/DonationInterfacepayWithAmazon+11 -8
Use modern hook registration for Amazonmediawiki/extensions/DonationInterfacepayWithAmazon+1 -3
Redirect to Amazon for loginmediawiki/extensions/DonationInterfacepayWithAmazon+115 -2
Customize query in gerrit

Related Objects
Search...

Event Timeline

Ejegg created this task.Aug 5 2015, 9:27 PM
Ejegg raised the priority of this task from to Needs Triage.
Ejegg updated the task description. (Show Details)
Ejegg added a project: Fundraising-Backlog.
Ejegg subscribed.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 5 2015, 9:27 PM
Ejegg added a parent task: T108102: [EPIC] Amazon (embedded) internal test .Aug 5 2015, 9:54 PM
DStrine moved this task from Triage to Closed Sprint Work Q1 1516 on the Fundraising-Backlog board.Aug 5 2015, 10:08 PM
DStrine set Security to None.Aug 5 2015, 10:11 PM
DStrine edited a custom field.
atgo added a project: Fundraising Sprint Queen.Aug 5 2015, 10:27 PM
Ejegg claimed this task.Aug 7 2015, 5:56 PM
Ejegg moved this task from Backlog to Doing on the Fundraising Sprint Queen board.
Ejegg added a comment.Aug 7 2015, 9:07 PM

This has to be done via a Jacascript redirect (so not as fast as server redirect), but it turns out to be not that hard.
From the Javascript SDK Reference and the page linked above you can piece this together:

window.onAmazonLoginReady = function() {
	amazon.Login.setClientId( OUR_CLIENT_ID );
	amazon.Login.setUseCookie( true );
	amazon.Login.setSandboxMode( true ); // if you want to use test accounts

	if ( !loggedIn ) { 
		loginOptions = {
			scope: 'payments:widget',
			popup: false
		};
		amazon.Login.authorize( loginOptions, RETURN_URL );
	}
}

Then source either the widget script or just the login script. It'll call your function as soon as it's loaded and immediately redirect. With the Login.authorize call there's no need to simulate clicking on a button.
You can determine whether the user is logged in by looking at the hash that's appended to the return url, which you are then supposed to store in a cookie called amazon_Login_accessToken (for use by the widgets, I think).

gerritbot subscribed.Aug 7 2015, 11:33 PM

Change 230253 had a related patch set uploaded (by Ejegg):
Clear out old Amazon code to prepare for PwA

https://gerrit.wikimedia.org/r/230253

gerritbot added a project: Patch-For-Review.Aug 7 2015, 11:33 PM
gerritbot added a comment.Aug 11 2015, 12:40 AM

Change 230707 had a related patch set uploaded (by Ejegg):
Redirect to Amazon for login

https://gerrit.wikimedia.org/r/230707

Ejegg moved this task from Doing to Review on the Fundraising Sprint Queen board.Aug 11 2015, 7:57 PM
gerritbot added a comment.Aug 13 2015, 8:01 PM

Change 230707 merged by jenkins-bot:
Redirect to Amazon for login

https://gerrit.wikimedia.org/r/230707

awight mentioned this in rEDOI752155e0ff44: Redirect to Amazon for login.Aug 13 2015, 8:01 PM
gerritbot added a comment.Aug 14 2015, 5:05 PM

Change 231585 had a related patch set uploaded (by Ejegg):
Move Amazon Widget script and return URL into account

https://gerrit.wikimedia.org/r/231585

gerritbot added a comment.Aug 14 2015, 5:52 PM

Change 231595 had a related patch set uploaded (by Ejegg):
Clean up a bit of Amazon javascript

https://gerrit.wikimedia.org/r/231595

gerritbot added a comment.Aug 14 2015, 5:57 PM

Change 231596 had a related patch set uploaded (by Ejegg):
Use modern hook registration for Amazon

https://gerrit.wikimedia.org/r/231596

gerritbot added a comment.Aug 15 2015, 5:48 PM

Change 231792 had a related patch set uploaded (by Ejegg):
Move Amazon Widget script and return URL into account

https://gerrit.wikimedia.org/r/231792

gerritbot added a comment.Aug 15 2015, 5:49 PM

Change 231793 had a related patch set uploaded (by Ejegg):
Use modern hook registration for Amazon

https://gerrit.wikimedia.org/r/231793

gerritbot added a comment.Aug 15 2015, 5:49 PM

Change 231794 had a related patch set uploaded (by Ejegg):
Clean up a bit of Amazon javascript

https://gerrit.wikimedia.org/r/231794

gerritbot added a comment.Aug 15 2015, 5:54 PM

Change 231596 abandoned by Ejegg:
Use modern hook registration for Amazon

Reason:
rebased into another change set

https://gerrit.wikimedia.org/r/231596

gerritbot added a comment.Aug 15 2015, 5:55 PM

Change 231595 abandoned by Ejegg:
Clean up a bit of Amazon javascript

Reason:
rebased into alternate reality

https://gerrit.wikimedia.org/r/231595

gerritbot added a comment.Aug 15 2015, 5:55 PM

Change 231585 abandoned by Ejegg:
Move Amazon Widget script and return URL into account

Reason:
Rebased onto alternate future

https://gerrit.wikimedia.org/r/231585

atgo added a project: Fundraising Sprint Rowlf the Dog.Aug 19 2015, 10:58 PM
Ejegg moved this task from Backlog to Review on the Fundraising Sprint Rowlf the Dog board.Aug 19 2015, 11:00 PM
gerritbot added a comment.Aug 26 2015, 3:38 PM

Change 231792 merged by jenkins-bot:
Move Amazon Widget script and return URL into account

https://gerrit.wikimedia.org/r/231792

gerritbot added a comment.Aug 26 2015, 3:39 PM

Change 231793 merged by jenkins-bot:
Use modern hook registration for Amazon

https://gerrit.wikimedia.org/r/231793

Ejegg mentioned this in rEDOIebc4c1fa0a66: Move Amazon Widget script and return URL into account.Aug 26 2015, 3:39 PM
Ejegg mentioned this in rEDOI92c92ea6438c: Use modern hook registration for Amazon.
gerritbot added a comment.Aug 26 2015, 4:09 PM

Change 231794 merged by jenkins-bot:
Clean up a bit of Amazon javascript

https://gerrit.wikimedia.org/r/231794

awight mentioned this in rEDOI35576139f915: Clean up a bit of Amazon javascript.Aug 26 2015, 4:09 PM
Ejegg closed this task as Resolved.Aug 26 2015, 5:23 PM
Ejegg moved this task from Review to Done on the Fundraising Sprint Rowlf the Dog board.
DStrine added a project: FR-Amazon.Aug 15 2016, 6:57 PM
DStrine edited projects, added Fr-tech-archived-from-FY-2015/16; removed Fundraising-Backlog.Jan 11 2018, 9:39 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL