Page MenuHomePhabricator
Create Task
Maniphest T218214

SO878 Step 3: Finalize settings and user experience
Closed, ResolvedPublic
Actions

Assigned To
ItSpiderman
Authored By
Osnard
Mar 13 2019, 2:09 PM
Tags
Referenced Files
F29990060: Screenshot 2019-08-07 at 10.10.15.png
Aug 7 2019, 5:10 PM
F29990055: Screenshot 2019-08-07 at 10.08.49.png
Aug 7 2019, 5:09 PM
F29990056: Screenshot 2019-08-07 at 10.06.29.png
Aug 7 2019, 5:09 PM
F29990038: Screenshot 2019-08-07 at 10.02.26.png
Aug 7 2019, 5:02 PM
F29990033: Screenshot 2019-08-07 at 09.53.41.png
Aug 7 2019, 5:01 PM
Subscribers
Aklapper
Osnard
Reedy
TheDJ

Description

Objective: The user experience using WebAuthn is smooth and seamless. Also, users can
enable and disable the method.
The following functions are the result of this project phase

  • User setting to enable WebAuthn
  • Integration of necessary form fields in login and registration form
  • Configuration variables on the server side to customize WebAuthn

Details

SubjectRepoBranchLines +/-
UI upgrademediawiki/extensions/OATHAuthmaster+280 -130
Customize query in gerrit

Related Objects
Search...

Event Timeline

Osnard created this task.Mar 13 2019, 2:09 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 13 2019, 2:09 PM
CCicalese_WMF triaged this task as Medium priority.Mar 25 2019, 4:28 PM
CCicalese_WMF added a parent task: T100373: WebAuthn (U2F) integration for Extension:OATHAuth.
CCicalese_WMF added projects: Platform Engineering (Needs Cleaning - Security, stability, performance, and scalability (TEC1)), Platform Team Workboards (Contractor - Ready).Mar 26 2019, 5:59 PM
Osnard mentioned this in T226053: Special:Manage_Two-factor_authentication looks odd.Jul 4 2019, 7:27 AM
Reedy added a subtask: T226058: oathauth-ui-error-page-no-module need refining.Jul 4 2019, 6:56 PM
Reedy added a subtask: T226056: Describe what different auth methods are.
WDoranWMF moved this task from Contractor - Ready to S&F Workboard on the Platform Team Workboards board.Jul 5 2019, 4:55 PM
WDoranWMF edited projects, added Platform Team Workboards (S&F Workboard); removed Platform Team Workboards (Contractor - Ready).
WDoranWMF moved this task from Backlog to Current sprint Backlog on the Platform Team Workboards (S&F Workboard) board.Jul 5 2019, 4:57 PM
CCicalese_WMF edited projects, added Platform Team Initiatives (Two-Factor Authentication (TEC1)); removed Platform Engineering (Needs Cleaning - Security, stability, performance, and scalability (TEC1)).Jul 27 2019, 4:13 PM
CCicalese_WMF closed subtask T226058: oathauth-ui-error-page-no-module need refining as Resolved.Jul 31 2019, 4:41 PM
gerritbot added a comment.Aug 1 2019, 12:09 PM

Change 527089 had a related patch set uploaded (by ItSpiderman; owner: ItSpiderman):
[mediawiki/extensions/OATHAuth@master] UI upgrade

https://gerrit.wikimedia.org/r/527089

gerritbot added a project: Patch-For-Review.Aug 1 2019, 12:09 PM
Reedy subscribed.EditedAug 7 2019, 5:01 PM

Screenshot 2019-08-07 at 09.53.41.png (1×2 px, 234 KB)

^ to show the re-introduction of the empty "available" section. And below is how it currently is in master

Screenshot 2019-08-07 at 10.02.26.png (532×2 px, 110 KB)

Reedy added a comment.EditedAug 7 2019, 5:09 PM

As mentioned in T226056 too... I wonder if we should have some sort of non technical/"laymans" description?

And I guess in the totp case... Some sort of mobile app suggestion/recommendations?

FB/Google examples:

Screenshot 2019-08-07 at 10.06.29.png (976×1 px, 180 KB)

Screenshot 2019-08-07 at 10.08.49.png (852×1 px, 111 KB)

Screenshot 2019-08-07 at 10.10.15.png (284×1 px, 59 KB)

ItSpiderman added a comment.Aug 28 2019, 6:15 AM

Re-introduction of empty "Available methods" section is now fixed

Reedy added a comment.Aug 29 2019, 10:25 AM

One minor niggle, but I'm guesing it's due to the existence of the button and the text... Is that "TOTP (one-time token)" is slightly higher than "Two-factor authentication:"

Not going to block the merge on it though

gerritbot added a comment.Aug 29 2019, 10:45 AM

Change 527089 merged by jenkins-bot:
[mediawiki/extensions/OATHAuth@master] UI upgrade

https://gerrit.wikimedia.org/r/527089

Maintenance_bot removed a project: Patch-For-Review.Aug 29 2019, 11:11 AM
CCicalese_WMF moved this task from Current sprint Backlog to In Progress/Doing on the Platform Team Workboards (S&F Workboard) board.Aug 30 2019, 9:01 PM
Reedy added a subtask: T231786: Error trying to enable 2FA on testwiki: "Call to a member function getSecret() on a non-object (array)".Sep 3 2019, 11:15 AM
Reedy closed subtask T231786: Error trying to enable 2FA on testwiki: "Call to a member function getSecret() on a non-object (array)" as Resolved.Sep 4 2019, 12:46 PM
Reedy closed subtask T226056: Describe what different auth methods are as Resolved.Sep 4 2019, 4:41 PM
TheDJ subscribed.Sep 9 2019, 10:07 AM

I like this improvement a lot ! The messages do indeed still need some work.

I was looking at the screenshot of FB by Reedy and was wondering if we too should consider making the recovery codes a separate method ? Might make more sense.

Reedy added a comment.Sep 9 2019, 1:01 PM
In T218214#5474303, @TheDJ wrote:

I like this improvement a lot ! The messages do indeed still need some work.

Patches welcome ;)

In T218214#5474303, @TheDJ wrote:

I was looking at the screenshot of FB by Reedy and was wondering if we too should consider making the recovery codes a separate method ? Might make more sense.

Could be an interesting thing to do. Because the WebAuthn method technically has no recovery method... Beyond allowing multiple devices/keys

Seems worth filing it as a separate task, as it's possibly out of scope for this

TheDJ mentioned this in T232336: Separate recovery codes into a separate MFA method.Sep 9 2019, 1:47 PM
SD0001 reopened subtask T231786: Error trying to enable 2FA on testwiki: "Call to a member function getSecret() on a non-object (array)" as Open.Oct 5 2019, 10:50 AM
Reedy closed subtask T231786: Error trying to enable 2FA on testwiki: "Call to a member function getSecret() on a non-object (array)" as Resolved.Oct 5 2019, 12:48 PM
Reedy closed subtask T232008: Ability to overwrite 2FA method without providing/re-auth using existing secondary authentication method as Resolved.Oct 9 2019, 9:25 PM
Reedy added a subtask: T235645: OATHAuth requesting re-auth during the middle (or mostly just before the end) of the process.Oct 16 2019, 2:36 PM
Reedy changed the status of subtask T235645: OATHAuth requesting re-auth during the middle (or mostly just before the end) of the process from Open to Stalled.Oct 16 2019, 2:52 PM
CCicalese_WMF removed a subtask: T235645: OATHAuth requesting re-auth during the middle (or mostly just before the end) of the process.Oct 22 2019, 7:41 PM
CCicalese_WMF removed a subtask: T229415: Remove any orphaned i18n messages.
CCicalese_WMF closed this task as Resolved.Oct 22 2019, 7:44 PM
CCicalese_WMF moved this task from In Progress/Doing to Done on the Platform Team Workboards (S&F Workboard) board.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL