See upstream bug https://secure.phabricator.com/T4589
For our purposes I am going to try to implement a sane default policy for files and do so with minimal patching to upstream code.
Description
Description
Details
Details
- Reference
- fl477
| Status | Subtype | Assigned | Task | ||
|---|---|---|---|---|---|
| Resolved | Qgil | T553 Engineering Community team goals for October 2014 | |||
| Resolved | Qgil | T174 Launch Wikimedia Phabricator Day 1 | |||
| Resolved | Qgil | T15 Migrate Bugzilla to Phabricator | |||
| Resolved | • chasemp | T259 Bugzilla to Maniphest import script (tracking) | |||
| Resolved | • chasemp | T44 Migrate Bugzilla attachments to Phabricator | |||
| Resolved | mmodell | T298 Enforce Security Policies on Files / attachments |
Event Timeline
Comment Actions
mmodell wrote on 2014-07-22 11:49:07 (UTC)
The Patch: https://gerrit.wikimedia.org/r/#/c/148360/
Comment Actions
aklapper wrote on 2014-07-22 18:05:57 (UTC)
Does this additionally require fixing https://secure.phabricator.com/T5685 ?
Comment Actions
mmodell wrote on 2014-07-23 18:26:17 (UTC)
@Aklapper: To fix it properly, yes. I'm going to attempt to develop a patch for https://secure.phabricator.com/T5685 and get it submitted for review upstream.
Comment Actions
mmodell wrote on 2014-07-25 16:47:33 (UTC)
Work in progress: https://secure.phabricator.com/D10054
Comment Actions
aklapper wrote on 2014-08-05 23:06:59 (UTC)
Status: https://gerrit.wikimedia.org/r/#/c/148360/ merged on our side and to be "updated" once https://secure.phabricator.com/T5685 sorted out (canCDN flag to be set).
Comment Actions
mmodell wrote on 2014-08-11 17:39:28 (UTC)
All done upstream: https://secure.phabricator.com/T5685