Page MenuHomePhabricator
Create Task
Maniphest T180654

Disable Two-factor authentication for user AuburnPilot (enwiki)
Closed, ResolvedPublic
Actions

Description

I no longer have access to the authentication code generator used when setting up 2FA on my en.wiki admin account (AuburnPilot) and am requesting two-factor authentication be disabled on my account.

I posted on the en:wiki Bureaucrats' noticeboard ‎to inform the Bureaucrats that I no longer had access to the account and it was suggested that I create a ticket here requesting the removal of 2FA from my account. My identity has been verified by checkuser who confirmed I am the only person in control of the admin account and the sock account I used to notify the Bureaucrat's noticeboard. The discussion can be found at the link below, including confirmation of my identity by en.wiki checkuser KrakatoaKatie. In addition to the confirmation by checkuser, I have email enabled on both accounts and can offer verification from other members of the en.wiki community.

Related Objects

Event Timeline

AuburnPilot created this task.Nov 16 2017, 12:41 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 16 2017, 12:41 AM
jrbs edited projects, added Wikimedia-Site-requests; removed MediaWiki-extensions-OATHAuth.Nov 16 2017, 12:42 AM
jrbs moved this task from Backlog to Support on the Trust-and-Safety board.
AuburnPilot added a comment.Nov 16 2017, 12:46 AM

Side note: I discovered I do still have access to the AuburnPilot account, I am just unable to disable 2FA myself since doing so requires an authentication code.

jrbs subscribed.EditedNov 16 2017, 12:47 AM
In T180654#3765348, @AuburnPilot wrote:

Side note: I discovered I do still have access to the AuburnPilot account, I am just unable to disable 2FA myself since doing so requires an authentication code.

If this is true, could you post something to (say) your talk page? Just like "confirming this is me" or something like that, even in the editsum. Thanks!

(If that's not possible, it'd be cool if you could email ca@wikimedia.org from the email address currently attached to your account. That'd be more than plenty to be safe.)

AuburnPilot added a comment.Nov 16 2017, 12:52 AM

Sure!

jrbs closed this task as Resolved.Nov 16 2017, 12:58 AM
jrbs claimed this task.

Smashing. Done.

$ mwscript extensions/OATHAuth/maintenance/disableOATHAuthForUser.php --wiki=enwiki AuburnPilot
OATHAuth disabled for AuburnPilot.
Stashbot subscribed.Nov 16 2017, 12:59 AM

Mentioned in SAL (#wikimedia-operations) [2017-11-16T00:59:57Z] <tzatziki> Removing 2FA from AuburnPilot (T180654)

AuburnPilot added a comment.Nov 16 2017, 12:59 AM

You're amazing. Thanks for the incredibly quick resolution!

Xaosflux subscribed.Nov 16 2017, 3:10 AM

@jrbs can you take a look at T85706 - seems there is a gap on what policies and procedures are best to use in these situations. Thank you!

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL