Page MenuHomePhabricator

OAuth consumer proposal form should not allow invalid callback URLs
Closed, ResolvedPublic

Description

Apparently, proposals with URLs such as localhost or / are possible. MWOAuthConsumerSubmitControl::getRequiredFields seems to validate the URL but somehow that got broken.

Event Timeline

Change 360375 had a related patch set uploaded (by Gergő Tisza; owner: Gergő Tisza):
[mediawiki/extensions/OAuth@master] Fix registration form URL validation

https://gerrit.wikimedia.org/r/360375

Change 360375 merged by jenkins-bot:
[mediawiki/extensions/OAuth@master] Fix registration form URL validation

https://gerrit.wikimedia.org/r/360375

Tgr claimed this task.