Based on the following discussions:
- http://strategy.wikimedia.org/wiki/Proposal:Implement_OAuth_for_MediaWiki_(and_employ_in_Wikimedia)
- http://www.mediawiki.org/wiki/OAuth
- http://www.mail-archive.com/wikitech-l@lists.wikimedia.org/msg04104.html
this is a request to add Oauth support to Mediawiki. This implementation should provide at a minimum (technical perspective):
- An easy way to keep track of edits made by a particular Oauth service
- As a start, only simple write access, not all the other actions as they are exposed by the API.
- It should be 100% transparent who the editor was who made the edit
- A way for admins to block all edits from a specific tool as easily as they can currently block or revert all edits from a specific user
- Not possible to take dangerous admin-only actions (e.g. editing interface messages)
Community perspective:
- Policies on what kind of Oauth services to accept.
- Policies on whether the Oauth service should be open source.
- Policies on when to revoke an Oauth service access to the Wikipedia websites.
- Wikimedia's privacy policy and Creative Commons license always apply to edits made through an Oauth service.
Please add your comments if I have missed important aspects.
Version: unspecified
Severity: enhancement
See Also:
https://bugzilla.wikimedia.org/show_bug.cgi?id=35199