Page MenuHomePhabricator
Create Task
Maniphest T234576

Remove 'editToken' from mw.user.tokens (deprecated for 'csrfToken')
Closed, ResolvedPublic
Actions

Description

It's been some 3 years since this became obsolete.

The editToken key of mw.users.tokens has been replaced by csrfToken since 298cf413dbc3fa4e (MediaWiki 1.27, released 2016).

The primary user of it, mediawiki.api was already migrated in the same commit. This means code using mw.Api#getToken('edit') will continue to work and is already using the new csrfToken key underneath.

What we need to migrate still is anything that uses editToken directly via mw.user.tokens.

Let's update whatever is using this in tarballed/WMF extensions and remove it from the payload.

Details

SubjectRepoBranchLines +/-
selenium: Stop using editTokenmediawiki/coremaster+2 -2
resourceloader: Remove 'editToken' from mw.user.tokensmediawiki/coremaster+0 -1
Customize query in gerrit

Related Objects
Search...

Event Timeline

Krinkle triaged this task as Medium priority.EditedOct 3 2019, 9:48 PM
Krinkle created this task.
Krinkle mentioned this in T233442: Remove use of deprecated 'editToken' in mw.user.tokens (replace with 'csrfToken').

Migration in extensions tracked at T233442: Remove use of deprecated 'editToken' in mw.user.tokens (replace with 'csrfToken').

Amorymeltzer subscribed.Oct 3 2019, 10:48 PM
gerritbot added a comment.Oct 4 2019, 12:06 AM

Change 540732 had a related patch set uploaded (by Krinkle; owner: Krinkle):
[mediawiki/core@master] resourceloader: Remove 'editToken' from mw.user.tokens

https://gerrit.wikimedia.org/r/540732

gerritbot added a project: Patch-For-Review.Oct 4 2019, 12:06 AM
Krinkle moved this task from Untriaged to 2020 | MW 1.35 on the Technical-Debt (Deprecation process) board.Oct 4 2019, 12:09 AM
gerritbot added a comment.Oct 6 2019, 3:34 PM

Change 541087 had a related patch set uploaded (by Ladsgroup; owner: Ladsgroup):
[mediawiki/core@master] selenium: Stop using editToken

https://gerrit.wikimedia.org/r/541087

gerritbot added a comment.Oct 6 2019, 6:57 PM

Change 540732 merged by jenkins-bot:
[mediawiki/core@master] resourceloader: Remove 'editToken' from mw.user.tokens

https://gerrit.wikimedia.org/r/540732

ReleaseTaggerBot added a project: MW-1.35-notes (1.35.0-wmf.1; 2019-10-08).Oct 6 2019, 7:00 PM
gerritbot added a comment.Oct 6 2019, 10:56 PM

Change 541087 abandoned by Ladsgroup:
selenium: Stop using editToken

Reason:
oh alright then.

https://gerrit.wikimedia.org/r/541087

Maintenance_bot removed a project: Patch-For-Review.Oct 6 2019, 11:10 PM
Gilles moved this task from Inbox, needs triage to To-do: Goals, prioritized next 4 Quarters on the Performance-Team board.Oct 7 2019, 7:58 PM
Krinkle removed a project: MW-1.35-notes (1.35.0-wmf.1; 2019-10-08).Oct 7 2019, 7:58 PM
Krinkle closed this task as Resolved.Oct 8 2019, 7:00 PM
Krinkle claimed this task.
Schnark mentioned this in T235248: mw.user.tokens.get('editToken') returns null.Oct 11 2019, 8:05 AM
Framawiki mentioned this in T235300: Replace 'editToken' from mw.user.tokens by 'csrfToken' in on-wiki gadgets.Oct 11 2019, 7:49 PM
DannyS712 closed subtask T235300: Replace 'editToken' from mw.user.tokens by 'csrfToken' in on-wiki gadgets as Invalid.Oct 11 2019, 8:35 PM
Krinkle changed the status of subtask T235300: Replace 'editToken' from mw.user.tokens by 'csrfToken' in on-wiki gadgets from Invalid to Resolved.Oct 11 2019, 9:43 PM
Jony subscribed.Jan 16 2020, 2:54 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL