Page MenuHomePhabricator
Create Task
Maniphest T145294

mw.ForeignApi should have an option to perform anonymous requests
Closed, ResolvedPublic
Actions

Description

mw.ForeignApi should have an option to perform anonymous requests.

Use cases:

  • The target wiki accepts cross-origin requests from us, but we will not be performing any write actions and we don't need to read anything restricted, and want to avoid the overhead of CORS pre-flight request and centralauthtoken request.
  • The target wiki doesn't accept cross-origin requests from us (e.g. querying from any random wiki with $wgUseInstantCommons to Commons to get information about some file) and want to move with the times and not use JSONP.

Details

SubjectRepoBranchLines +/-
mw.ForeignApi: Allow anonymous requestsmediawiki/coremaster+10 -2
CentralAuthForeignApi: Allow anonymous requestsmediawiki/extensions/CentralAuthmaster+2 -1
Customize query in gerrit

Related Objects
Search...

Event Timeline

matmarex created this task.Sep 10 2016, 6:45 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptSep 10 2016, 6:45 PM
matmarex added a parent task: T143279: [Regression pre-wmf.16] Infinite error throwing loop when MediaSearchWidget triggers jQuery JSONP exception in Beta Cluster (due to loop with Sentry).Sep 10 2016, 6:46 PM

MediaWiki accepts anonymous CORS requests since d83e655b (T62835).

matmarex added a subtask: T62835: Enable cross-domain API requests in API's JSON responses.Sep 10 2016, 6:47 PM
gerritbot subscribed.Sep 10 2016, 7:06 PM

Change 309760 had a related patch set uploaded (by Bartosz Dziewoński):
mw.ForeignApi: Allow anonymous requests

https://gerrit.wikimedia.org/r/309760

gerritbot added a project: Patch-For-Review.Sep 10 2016, 7:06 PM

Change 309762 had a related patch set uploaded (by Bartosz Dziewoński):
CentralAuthForeignApi: Allow anonymous requests

https://gerrit.wikimedia.org/r/309762

gerritbot added a comment.Sep 10 2016, 7:42 PM

Change 309760 merged by jenkins-bot:
mw.ForeignApi: Allow anonymous requests

https://gerrit.wikimedia.org/r/309760

gerritbot added a comment.Sep 10 2016, 7:42 PM

Change 309762 merged by jenkins-bot:
CentralAuthForeignApi: Allow anonymous requests

https://gerrit.wikimedia.org/r/309762

matmarex closed this task as Resolved.Sep 10 2016, 7:55 PM
matmarex claimed this task.
ReleaseTaggerBot added projects: MW-1.28-release (WMF-deploy-2016-09-13_(1.28.0-wmf.19)), MW-1.28-release-notes.Sep 10 2016, 8:00 PM
santhosh mentioned this in T146248: Use mw.ForeignApi with anonymous options in Sitemapper module .Sep 21 2016, 4:01 AM
MarcoAurelio moved this task from Backlog to Done on the MediaWiki-extensions-CentralAuth board.Dec 15 2016, 4:08 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits