Page MenuHomePhabricator

Client Developer uses OAuth 2.0 for authorization
Open, HighPublic

Description

"As a Client Developer, I want to have a single API key that I use across all Wikimedia projects and language versions, so I have one relationship to manage with the organization."

Event Timeline

@hnowlan I don't believe there's anything you have to do for Envoy here. We're going to be using bearer tokens for OAuth 2.0 which come in as HTTP headers. As long as we're not doing something crazy like stripping all HTTP headers (!?!), this should just work.

eprodromou triaged this task as High priority.Fri, Jun 19, 4:17 PM