Page MenuHomePhabricator
Create Task
Maniphest T285330

Authenticate API consumers against Wikidata + Access List
Closed, ResolvedPublic
Actions

Description

Depends on T285327: Authorize API consumers against Wikidata

Ensure that we are able to authenticate Requests to our API using Authentication credentials that are sent with requests.

There is still some research required on how to achieve this. See the following resources for some Ideas:

Hints:

  • Potential authentication Flow:

    User Requests resource with authentication credentials (Token/Cookie/Other) → Decode / verify credentials → Send request to Wikidata to identify user (Using MW access tokens) → Check identity (username string) against allow list
  • HOT TIP: The allow-list would most probably be specified in the .env file on toolforge.

Related Objects
Search...

Event Timeline

ItamarWMDE created this task.Jun 22 2021, 4:48 PM
ItamarWMDE moved this task from To Do to Doing on the Mismatch Finder (Mismatch Finder - sprint 1) board.Jun 23 2021, 7:28 AM
ItamarWMDE moved this task from Doing to To Do on the Mismatch Finder (Mismatch Finder - sprint 1) board.
Silvan_WMDE moved this task from To Do to Doing on the Mismatch Finder (Mismatch Finder - sprint 1) board.Jun 24 2021, 7:57 AM
guergana.tzatchkova subscribed.Jun 24 2021, 8:03 AM

We will go with Sanctum for now.

Silvan_WMDE claimed this task.Jun 25 2021, 8:05 AM
Silvan_WMDE moved this task from Doing to Peer Review on the Mismatch Finder (Mismatch Finder - sprint 1) board.Jun 30 2021, 1:04 PM
Silvan_WMDE moved this task from Peer Review to Test (Verification) on the Mismatch Finder (Mismatch Finder - sprint 1) board.Jun 30 2021, 5:03 PM
Silvan_WMDE moved this task from Test (Verification) to Done on the Mismatch Finder (Mismatch Finder - sprint 1) board.Jul 1 2021, 8:04 AM
Silvan_WMDE moved this task from Done to Test (Verification) on the Mismatch Finder (Mismatch Finder - sprint 1) board.
karapayneWMDE closed this task as Resolved.Jul 6 2021, 9:12 AM
karapayneWMDE subscribed.

Everyone happy with Sanctum; manages token giving/revocation correctly

karapayneWMDE added a comment.Jul 6 2021, 9:13 AM

Relevant github PR : https://github.com/wmde/wikidata-mismatch-finder/pull/7

karapayneWMDE moved this task from Test (Verification) to Done on the Mismatch Finder (Mismatch Finder - sprint 1) board.Jul 6 2021, 9:13 AM
karapayneWMDE closed subtask T286024: Implement allow list for uploading mismatch files as Resolved.Jul 20 2021, 9:08 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL