Page MenuHomePhabricator
Create Task
Maniphest T246268

API Developer uses OAuth 2.0 for authentication and authorization
Closed, ResolvedPublic
Actions

Description

"As an API Developer, I want to support OAuth 2.0 authentication regardless of whether my API is implemented within MediaWiki or in a microservice, so that I can use the best tool for my job."

Optional, since the first API mounted (MW REST) is built inside MediaWiki and has direct access to OAuth through session management. It's likely that microservice-based APIs will be coming soon. At the very least, we should not prevent this user story from coming later. MediaWiki OAuth 2.0 access tokens are JWTs, so it should be possible for microservices to validate tokens directly by checking the signature.

Related Objects
Search...

Event Timeline

eprodromou created this task.Feb 26 2020, 7:22 PM
eprodromou edited parent tasks, added: T255034: Wikimedia API Gateway Long-term Use; removed: T246266: Wikimedia API Gateway keys.Jun 10 2020, 3:44 PM

I think that we can launch the gateway with just MediaWiki REST API (has OAuth 2.0 built in) and Wikifeeds (read-only, no OAuth aspect). This is important for integrating and building read-write APIs, but it can wait until after the first launch.

apaskulin closed this task as Resolved.Jan 8 2021, 12:34 AM
apaskulin subscribed.

All API Gateway endpoints currently support OAuth 2.0 for authentication and authorization

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL