Page MenuHomePhabricator
Create Task
Maniphest T144710

Create Wikitech/LDAP accounts via a new user friendly guided workflow
Closed, ResolvedPublic
Actions

Assigned To
bd808
Authored By
bd808
Sep 5 2016, 5:26 AM
Tags
Referenced Files
F4533496: 003-choose-ldap-username.png
Sep 28 2016, 4:35 PM
F4533494: 002-allow-oauth-on-wiki.png
Sep 28 2016, 4:35 PM
F4533498: 004-choose-shell-username.png
Sep 28 2016, 4:35 PM
F4533500: 005-add-email.png
Sep 28 2016, 4:35 PM
F4533506: 008-login-with-LDAP.png
Sep 28 2016, 4:35 PM
F4533502: 006-set-password.png
Sep 28 2016, 4:35 PM
F4533492: 001-login-with-oauth.png
Sep 28 2016, 4:35 PM
F4533504: 007-agree-and-create.png
Sep 28 2016, 4:35 PM
Subscribers
Aklapper
bd808
gerritbot
MZMcBride
Stashbot
tom29739
zhuyifei1999
Tokens
"Orange Medal" token, awarded by Krinkle."Orange Medal" token, awarded by Aklapper."Love" token, awarded by zhuyifei1999.

Description

Add a guided account creation workflow to Striker that addresses accidental complexities in the Wikitech UI (see T128158#2128397 for some background):

  • Describe the two separate but related usernames (Wikitech & shell)
    • Wikitech name is used in Wikitech and Gerrit; often a full name/display name including whitespace.
    • shell name is used when logging into Labs instances including Tool Labs; not displayed in any user interfaces {{cn}}
  • Pre-submission validation of unique shell name
  • Clear error messages when LDAP name and/or shell name are disallowed
  • Make it clear that a valid email address is required
  • Describe common next steps after account creation:
    • Upload of SSH key(s) for Labs/Tool Labs access
    • Upload of SSH key(s) for Gerrit ssh access
    • Request for Tool Labs access

Details

Show related patches Customize query in gerrit

Related Objects
Search...

Event Timeline

bd808 created this task.Sep 5 2016, 5:26 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptSep 5 2016, 5:26 AM
bd808 moved this task from Backlog to Ready on the Striker board.Sep 5 2016, 5:27 AM
bd808 claimed this task.Sep 20 2016, 4:16 PM
Restricted Application added a project: User-bd808. · View Herald TranscriptSep 20 2016, 4:16 PM
bd808 moved this task from Ready to Doing on the Striker board.Sep 20 2016, 4:16 PM
bd808 moved this task from To Do to In Dev/Progress on the User-bd808 board.
bd808 added a project: Community-Tech-Tool-Labs.Sep 21 2016, 3:28 AM
bd808 moved this task from Backlog to Doing on the Community-Tech-Tool-Labs board.
gerritbot subscribed.Sep 27 2016, 11:09 PM

Change 313137 had a related patch set uploaded (by BryanDavis):
Allow OAuth authentication for anon users

https://gerrit.wikimedia.org/r/313137

gerritbot added a project: Patch-For-Review.Sep 27 2016, 11:09 PM

Change 313138 had a related patch set uploaded (by BryanDavis):
Add account creation initial screen

https://gerrit.wikimedia.org/r/313138

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313139 had a related patch set uploaded (by BryanDavis):
Collect data needed to create a new LDAP account

https://gerrit.wikimedia.org/r/313139

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313140 had a related patch set uploaded (by BryanDavis):
Add check for unique sul account, username, and shell account

https://gerrit.wikimedia.org/r/313140

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313141 had a related patch set uploaded (by BryanDavis):
Add confirmation step to account creation wizard

https://gerrit.wikimedia.org/r/313141

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313142 had a related patch set uploaded (by BryanDavis):
Add client side registration form validation

https://gerrit.wikimedia.org/r/313142

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313143 had a related patch set uploaded (by BryanDavis):
Create LDAP and Striker users from registration form data

https://gerrit.wikimedia.org/r/313143

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313144 had a related patch set uploaded (by BryanDavis):
Add striker.labsauth.utils.oauth_from_session helper

https://gerrit.wikimedia.org/r/313144

gerritbot added a comment.Sep 27 2016, 11:09 PM

Change 313146 had a related patch set uploaded (by BryanDavis):
Add a goal prompt for SSH public key upload

https://gerrit.wikimedia.org/r/313146

gerritbot added a comment.Sep 28 2016, 12:12 AM

Change 313152 had a related patch set uploaded (by BryanDavis):
Add parsley javascript library

https://gerrit.wikimedia.org/r/313152

bd808 mentioned this in rLSTS83ec2e5dfe9a: Add parsley javascript library.Sep 28 2016, 12:20 AM
Stashbot subscribed.Sep 28 2016, 12:25 AM

Mentioned in SAL (#wikimedia-labs) [2016-09-28T00:25:48Z] <bd808> Deployed changes from T144710 for testing

bd808 added a comment.Sep 28 2016, 4:35 PM

Here's what the happy path of adding a new account looks like on https://striker.wmflabs.org/:

OAuth prompt
OAuth approve
LDAP username
Shell username
Email
Password
Review & approve
Login

bd808 created subtask T147024: Striker should respect TitleBlacklist bans on new account names.Sep 29 2016, 8:10 PM
bd808 moved this task from In Dev/Progress to Needs Review/Feedback on the User-bd808 board.Oct 17 2016, 4:03 PM
bd808 added a project: Goal.Oct 28 2016, 11:03 PM
tom29739 subscribed.Oct 28 2016, 11:04 PM
gerritbot added a comment.Nov 29 2016, 4:53 AM

Change 313137 merged by jenkins-bot:
Allow OAuth authentication for anon users

https://gerrit.wikimedia.org/r/313137

gerritbot added a comment.Nov 29 2016, 4:53 AM

Change 313138 merged by jenkins-bot:
Add account creation initial screen

https://gerrit.wikimedia.org/r/313138

gerritbot added a comment.Nov 29 2016, 4:56 AM

Change 313139 merged by jenkins-bot:
Collect data needed to create a new LDAP account

https://gerrit.wikimedia.org/r/313139

gerritbot added a comment.Nov 29 2016, 4:57 AM

Change 313140 merged by jenkins-bot:
Add check for unique sul account, username, and shell account

https://gerrit.wikimedia.org/r/313140

gerritbot added a comment.Nov 29 2016, 4:58 AM

Change 313141 merged by jenkins-bot:
Add confirmation step to account creation wizard

https://gerrit.wikimedia.org/r/313141

gerritbot added a comment.Nov 30 2016, 1:29 AM

Change 313142 merged by jenkins-bot:
Add client side registration form validation

https://gerrit.wikimedia.org/r/313142

gerritbot added a comment.Nov 30 2016, 8:24 PM

Change 313143 merged by jenkins-bot:
Create LDAP and Striker users from registration form data

https://gerrit.wikimedia.org/r/313143

gerritbot added a comment.Nov 30 2016, 8:24 PM

Change 313144 merged by jenkins-bot:
Add striker.labsauth.utils.oauth_from_session helper

https://gerrit.wikimedia.org/r/313144

gerritbot added a comment.Nov 30 2016, 8:56 PM

Change 313146 merged by jenkins-bot:
Add a goal prompt for SSH public key upload

https://gerrit.wikimedia.org/r/313146

gerritbot added a comment.Dec 7 2016, 6:15 PM

Change 313152 merged by jenkins-bot:
Add parsley javascript library

https://gerrit.wikimedia.org/r/313152

zhuyifei1999 awarded a token.Dec 7 2016, 6:17 PM
zhuyifei1999 subscribed.
gerritbot added a comment.Dec 7 2016, 10:11 PM

Change 325850 had a related patch set uploaded (by BryanDavis):
Add wheels for formtools, parsley, and mwclient

https://gerrit.wikimedia.org/r/325850

gerritbot added a comment.Dec 7 2016, 10:13 PM

Change 325850 merged by jenkins-bot:
Add wheels for formtools, parsley, and mwclient

https://gerrit.wikimedia.org/r/325850

bd808 mentioned this in rLSTS6f7ea9379054: Add parsley javascript library.Dec 7 2016, 11:59 PM
Stashbot added a comment.Dec 8 2016, 12:06 AM

Mentioned in SAL (#wikimedia-labs) [2016-12-08T00:06:37Z] <bd808> Update to 82eb1c3 (T144710)

bd808 mentioned this in rLSTW3cc461272470: Add wheels for formtools, parsley, and mwclient.Dec 8 2016, 3:04 AM
gerritbot added a comment.Dec 8 2016, 7:12 AM

Change 325814 had a related patch set uploaded (by BryanDavis):
Bump static, striker, and wheels submodules

https://gerrit.wikimedia.org/r/325814

gerritbot added a comment.Dec 22 2016, 5:58 PM

Change 325814 merged by jenkins-bot:
Bump static, striker, and wheels submodules

https://gerrit.wikimedia.org/r/325814

bd808 mentioned this in T156195: Deploy Striker account creation and management workflow.Jan 24 2017, 10:09 PM
Stashbot added a comment.Jan 25 2017, 6:22 PM

Mentioned in SAL (#wikimedia-operations) [2017-01-25T18:21:59Z] <bd808@tin> Starting deploy [striker/deploy@5aa3aa8]: Update Striker to 5aa3aa8 (T144710, T147024, T144712, T144711, T153935)

Stashbot mentioned this in T147024: Striker should respect TitleBlacklist bans on new account names.Jan 25 2017, 6:22 PM
Stashbot mentioned this in T144712: Check for 2FA protection and enforce validation of 2FA tokens.
Stashbot mentioned this in T144711: Allow management of LDAP SSH keys.
Stashbot mentioned this in T153935: Allow changing LDAP password from Striker.

Mentioned in SAL (#wikimedia-operations) [2017-01-25T18:22:23Z] <bd808@tin> Finished deploy [striker/deploy@5aa3aa8]: Update Striker to 5aa3aa8 (T144710, T147024, T144712, T144711, T153935) (duration: 00m 24s)

bd808 closed this task as Resolved.Jan 25 2017, 7:24 PM
bd808 closed subtask T147024: Striker should respect TitleBlacklist bans on new account names as Resolved.
bd808 added a parent task: T128158: Tools web interface for tool authors (Brainstorming ticket).Jan 26 2017, 4:06 AM
bd808 mentioned this in T128158: Tools web interface for tool authors (Brainstorming ticket).
MZMcBride subscribed.Jan 26 2017, 7:03 AM
Aklapper awarded a token.Jan 26 2017, 10:53 AM
bd808 moved this task from Doing to Done on the Striker board.Mar 4 2017, 3:53 AM
Krinkle awarded a token.Aug 8 2017, 1:06 AM
Krinkle removed a project: Patch-For-Review.
bd808 mentioned this in T250189: LDAP access to the wmf group for Sam Walton.Apr 27 2020, 8:06 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits