Page MenuHomePhabricator
Create Task
Maniphest T348852

Remove CentralAuth support for mixed-protocol HTTP/HTTPS wikis
Closed, ResolvedPublic
Actions

Description

CentralAuth login mechanisms have a bunch of code to support mixed-protocol HTTP/HTTPS wikis. We haven't used this configuration for Wikimedia wikis for years, and we don't support third-party users. (Besides, it seems rare for websites to do that these days – either they're on HTTPS or on HTTP only.)

We should only support HTTPS-only and HTTP-only wikis (the latter merely for ease of local developer setup), and simplify our code to avoid future maintenance.

Details

SubjectRepoBranchLines +/-
session: Remove incorrect warningmediawiki/extensions/CentralAuthmaster+0 -1
session: Remove incorrect warningmediawiki/extensions/CentralAuthwmf/1.42.0-wmf.4+0 -1
Remove support for HTTPS-only sessions on HTTP/HTTPS wikismediawiki/extensions/CentralAuthmaster+11 -81
Remove support for HTTPS-only sessions on HTTP/HTTPS wikismediawiki/extensions/CentralAuthwmf/1.42.0-wmf.4+11 -81
Remove 'currentProto'/'finalProto'/'proto' businessmediawiki/extensions/CentralAuthwmf/1.42.0-wmf.1+3 -33
Remove 'currentProto'/'finalProto'/'proto' businessmediawiki/extensions/CentralAuthmaster+3 -33
Replace WikiReference::getFullUrl() with getCanonicalUrl()mediawiki/extensions/CentralAuthmaster+10 -17
SpecialCentralLogin: Remove protocol redirect thingmediawiki/extensions/CentralAuthmaster+1 -29
LoginCompleteHookHandler: Remove support for mixed-protocol wikismediawiki/extensions/CentralAuthmaster+4 -46
Remove success notification when we can't get autologin responsemediawiki/extensions/CentralAuthmaster+1 -18
Customize query in gerrit

Related Objects

Event Timeline

matmarex created this task.Oct 13 2023, 12:02 PM
Restricted Application added a project: MediaWiki-Platform-Team. · View Herald TranscriptOct 13 2023, 12:02 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
taavi awarded a token.Oct 13 2023, 12:04 PM
gerritbot added a comment.Oct 13 2023, 12:16 PM

Change 965729 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@master] Remove success notification when we can't get autologin response

https://gerrit.wikimedia.org/r/965729

gerritbot added a project: Patch-For-Review.Oct 13 2023, 12:16 PM
Mainframe98 subscribed.Oct 13 2023, 1:22 PM
gerritbot added a comment.Oct 13 2023, 7:50 PM

Change 965729 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] Remove success notification when we can't get autologin response

https://gerrit.wikimedia.org/r/965729

ReleaseTaggerBot added a project: MW-1.42-notes (1.42.0-wmf.1; 2023-10-17).Oct 13 2023, 8:00 PM
Maintenance_bot removed a project: Patch-For-Review.Oct 13 2023, 8:10 PM
larissagaulia assigned this task to Batorsz.Oct 16 2023, 2:06 PM
larissagaulia moved this task from Inbox, needs triage to Current Sprint on the MediaWiki-Platform-Team board.
larissagaulia reassigned this task from Batorsz to matmarex.Oct 16 2023, 2:29 PM
larissagaulia added a subscriber: Batorsz.
larissagaulia removed matmarex as the assignee of this task.Oct 16 2023, 2:47 PM
larissagaulia moved this task from Current Sprint to Backlog: non-prioritized on the MediaWiki-Platform-Team board.
matmarex removed a subscriber: Batorsz.Oct 16 2023, 5:41 PM
matmarex added a comment.Oct 16 2023, 5:46 PM

For the record, I'm not planning to find and completely remove all of this code – some of it probably can't be removed, because the same feature exists in core MediaWiki AuthManager, and CentralAuth must go through the motions of supporting it (unless we wanted to remove it there too, which would be a bigger task, and which would at least require earlier deprecation).

However, I've been running into weird protocol-handling code all over the place just as I was trying to learn how CentralAuth works recently, and the best case scenario is that it does nothing – in worse cases, it may be responsible for the various issues we don't understand (the patch above actually closed 3 old bugs). So, I would like to remove things as I run into them, so that I never have to debug them in the future.

gerritbot added a comment.Oct 16 2023, 5:48 PM

Change 966270 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@master] SpecialCentralLogin: Remove protocol redirect thing

https://gerrit.wikimedia.org/r/966270

gerritbot added a project: Patch-For-Review.Oct 16 2023, 5:48 PM
gerritbot added a comment.Oct 18 2023, 5:02 PM

Change 966899 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@master] LoginCompleteHookHandler: Remove support for mixed-protocol wikis

https://gerrit.wikimedia.org/r/966899

gerritbot added a comment.Oct 18 2023, 5:02 PM

Change 966900 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@master] Remove 'currentProto'/'finalProto'/'proto' business

https://gerrit.wikimedia.org/r/966900

gerritbot added a comment.Oct 19 2023, 3:15 PM

Change 967233 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@master] Replace WikiReference::getFullUrl() with getCanonicalUrl()

https://gerrit.wikimedia.org/r/967233

gerritbot added a comment.Oct 19 2023, 8:44 PM

Change 966270 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] SpecialCentralLogin: Remove protocol redirect thing

https://gerrit.wikimedia.org/r/966270

gerritbot added a comment.Oct 19 2023, 8:44 PM

Change 966899 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] LoginCompleteHookHandler: Remove support for mixed-protocol wikis

https://gerrit.wikimedia.org/r/966899

gerritbot added a comment.Oct 19 2023, 8:44 PM

Change 966900 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] Remove 'currentProto'/'finalProto'/'proto' business

https://gerrit.wikimedia.org/r/966900

gerritbot added a comment.Oct 19 2023, 8:44 PM

Change 967233 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] Replace WikiReference::getFullUrl() with getCanonicalUrl()

https://gerrit.wikimedia.org/r/967233

ReleaseTaggerBot edited projects, added MW-1.42-notes (1.42.0-wmf.2; 2023-10-24); removed MW-1.42-notes (1.42.0-wmf.1; 2023-10-17).Oct 19 2023, 9:00 PM
Maintenance_bot removed a project: Patch-For-Review.Oct 19 2023, 9:10 PM
gerritbot added a comment.Oct 20 2023, 12:07 AM

Change 967195 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@wmf/1.42.0-wmf.1] Remove 'currentProto'/'finalProto'/'proto' business

https://gerrit.wikimedia.org/r/967195

gerritbot added a project: Patch-For-Review.Oct 20 2023, 12:07 AM
matmarex added a comment.Oct 20 2023, 1:15 PM

This needs to be backported, because the data it reads and writes is shared among all wikis, and when we have both wmf.1 and wmf.2 in production, there could be some problems with rollbacks or with wikis running different versions talking to each other.

Lucas_Werkmeister_WMDE subscribed.Oct 23 2023, 9:56 AM
In T348852#9268311, @matmarex wrote:

This needs to be backported, because the data it reads and writes is shared among all wikis, and when we have both wmf.1 and wmf.2 in production, there could be some problems with rollbacks or with wikis running different versions talking to each other.

In that case this task should be a train blocker IMHO, to ensure that, if the backport doesn’t happen for whatever reason, the train doesn’t roll forward without it (since the code was already merged into master and will therefore be in wmf.2).

Lucas_Werkmeister_WMDE added a parent task: T348355: 1.42.0-wmf.2 deployment blockers.Oct 23 2023, 9:56 AM
Lucas_Werkmeister_WMDE mentioned this in T348355: 1.42.0-wmf.2 deployment blockers.
gerritbot added a comment.Oct 23 2023, 1:07 PM

Change 967195 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@wmf/1.42.0-wmf.1] Remove 'currentProto'/'finalProto'/'proto' business

https://gerrit.wikimedia.org/r/967195

Maintenance_bot removed a project: Patch-For-Review.Oct 23 2023, 1:10 PM
Stashbot mentioned this in T131183: Remove $wgApiFrameOptions = 'SAMEORIGIN' override for enwiki and zhwiki.Oct 23 2023, 1:17 PM

Mentioned in SAL (#wikimedia-operations) [2023-10-23T13:17:12Z] <urbanecm@deploy2002> Started scap: Backport for [[gerrit:967195|Remove 'currentProto'/'finalProto'/'proto' business (T348852)]], [[gerrit:966915|Remove unused $wgIncludeLegacyJavaScript]], [[gerrit:966919|Remove $wgApiFrameOptions override for enwiki and zhwiki (T131183)]]

Stashbot added a comment.Oct 23 2023, 1:18 PM

Mentioned in SAL (#wikimedia-operations) [2023-10-23T13:18:26Z] <urbanecm@deploy2002> matmarex and urbanecm: Backport for [[gerrit:967195|Remove 'currentProto'/'finalProto'/'proto' business (T348852)]], [[gerrit:966915|Remove unused $wgIncludeLegacyJavaScript]], [[gerrit:966919|Remove $wgApiFrameOptions override for enwiki and zhwiki (T131183)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Stashbot added a comment.Oct 23 2023, 1:29 PM

Mentioned in SAL (#wikimedia-operations) [2023-10-23T13:29:09Z] <urbanecm@deploy2002> Finished scap: Backport for [[gerrit:967195|Remove 'currentProto'/'finalProto'/'proto' business (T348852)]], [[gerrit:966915|Remove unused $wgIncludeLegacyJavaScript]], [[gerrit:966919|Remove $wgApiFrameOptions override for enwiki and zhwiki (T131183)]] (duration: 11m 56s)

ReleaseTaggerBot edited projects, added MW-1.42-notes (1.42.0-wmf.1; 2023-10-17); removed MW-1.42-notes (1.42.0-wmf.2; 2023-10-24).Oct 23 2023, 2:00 PM
Lucas_Werkmeister_WMDE removed a parent task: T348355: 1.42.0-wmf.2 deployment blockers.Oct 23 2023, 2:08 PM
matmarex closed this task as Resolved.Oct 23 2023, 9:27 PM
matmarex claimed this task.

I think this is done, or at least done enough that I don't want to spend more time on it. I think I removed all of the explicit redirects between protocols.

There is some more suspicious code that is probably not all needed: https://codesearch.wmcloud.org/deployed/?q=forcehttps|prefershttps|requireshttps|stickhttps|securecookies|cookiesecure&repos=mediawiki%2Fextensions%2FCentralAuth&i=fosho – however, some of it is needed to support both HTTPS-only and HTTP-only wikis, and some is needed to integrate with MediaWiki's support for mixed-protocol wikis,

Tgr subscribed.Oct 24 2023, 1:09 AM

The CentralAuthPostLoginRedirect hook parameter is not needed I think, but changing hook signatures is way too much effort. Maybe worth adding a comment that it is now deprecated and ignored?

CentralAuthSessionProvider is an extension of core's CookieSessionProvider so while it doesn't really need the HTTPS flags, it inherits a bunch of logic that does use it so removing it might be tricky.

The secureCookies and stickHTTPS flags in LoginCompleteHookHandler/SpecialCentralLogin could be dropped I think, they are only used to set the local session's forceHTTPS flag, and that's a no-op on HTTPS-only sites. it just sets the local session's but it more or less just copies what AuthManager does in the local session.

secureCookies in SpecialCentralAutoLogin is the same, only used for the forceHTTPS flag.

matmarex reopened this task as Open.Oct 26 2023, 6:56 PM

Hmm, alright, I'm convinced, let's delete some more.

gerritbot added a comment.Oct 26 2023, 6:57 PM

Change 969189 had a related patch set uploaded (by Bartosz Dziewoński; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@master] Remove support for HTTPS-only sessions on HTTP/HTTPS wikis

https://gerrit.wikimedia.org/r/969189

gerritbot added a project: Patch-For-Review.Oct 26 2023, 6:57 PM
matmarex moved this task from Backlog: non-prioritized to Current Sprint on the MediaWiki-Platform-Team board.Oct 26 2023, 6:57 PM
gerritbot added a comment.Nov 13 2023, 10:11 PM

Change 969189 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] Remove support for HTTPS-only sessions on HTTP/HTTPS wikis

https://gerrit.wikimedia.org/r/969189

gerritbot added a comment.Nov 13 2023, 10:13 PM

Change 973800 had a related patch set uploaded (by Gergő Tisza; author: Bartosz Dziewoński):

[mediawiki/extensions/CentralAuth@wmf/1.42.0-wmf.4] Remove support for HTTPS-only sessions on HTTP/HTTPS wikis

https://gerrit.wikimedia.org/r/973800

gerritbot added a comment.Nov 13 2023, 10:18 PM

Change 973800 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@wmf/1.42.0-wmf.4] Remove support for HTTPS-only sessions on HTTP/HTTPS wikis

https://gerrit.wikimedia.org/r/973800

Stashbot added a comment.Nov 13 2023, 10:22 PM

Mentioned in SAL (#wikimedia-operations) [2023-11-13T22:22:57Z] <tgr@deploy2002> Started scap: Backport for [[gerrit:973800|Remove support for HTTPS-only sessions on HTTP/HTTPS wikis (T348852)]]

Stashbot added a comment.Nov 13 2023, 10:24 PM

Mentioned in SAL (#wikimedia-operations) [2023-11-13T22:24:19Z] <tgr@deploy2002> tgr: Backport for [[gerrit:973800|Remove support for HTTPS-only sessions on HTTP/HTTPS wikis (T348852)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Maintenance_bot removed a project: Patch-For-Review.Nov 13 2023, 10:30 PM
gerritbot added a comment.Nov 13 2023, 10:39 PM

Change 973879 had a related patch set uploaded (by Gergő Tisza; author: Gergő Tisza):

[mediawiki/extensions/CentralAuth@master] session: Remove incorrect warning

https://gerrit.wikimedia.org/r/973879

gerritbot added a project: Patch-For-Review.Nov 13 2023, 10:39 PM

Change 973801 had a related patch set uploaded (by Gergő Tisza; author: Gergő Tisza):

[mediawiki/extensions/CentralAuth@wmf/1.42.0-wmf.4] session: Remove incorrect warning

https://gerrit.wikimedia.org/r/973801

Stashbot added a comment.Nov 13 2023, 10:41 PM

Mentioned in SAL (#wikimedia-operations) [2023-11-13T22:41:15Z] <tgr@deploy2002> Finished scap: Backport for [[gerrit:973800|Remove support for HTTPS-only sessions on HTTP/HTTPS wikis (T348852)]] (duration: 18m 17s)

gerritbot added a comment.Nov 13 2023, 10:45 PM

Change 973879 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] session: Remove incorrect warning

https://gerrit.wikimedia.org/r/973879

gerritbot added a comment.Nov 13 2023, 10:46 PM

Change 973801 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@wmf/1.42.0-wmf.4] session: Remove incorrect warning

https://gerrit.wikimedia.org/r/973801

Stashbot added a comment.Nov 13 2023, 10:47 PM

Mentioned in SAL (#wikimedia-operations) [2023-11-13T22:47:07Z] <tgr@deploy2002> Started scap: Backport for [[gerrit:973801|session: Remove incorrect warning (T348852)]]

Stashbot added a comment.Nov 13 2023, 10:48 PM

Mentioned in SAL (#wikimedia-operations) [2023-11-13T22:48:25Z] <tgr@deploy2002> tgr: Backport for [[gerrit:973801|session: Remove incorrect warning (T348852)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Stashbot added a comment.Nov 13 2023, 10:55 PM

Mentioned in SAL (#wikimedia-operations) [2023-11-13T22:55:11Z] <tgr@deploy2002> Finished scap: Backport for [[gerrit:973801|session: Remove incorrect warning (T348852)]] (duration: 08m 03s)

ReleaseTaggerBot edited projects, added MW-1.42-notes (1.42.0-wmf.5; 2023-11-14); removed MW-1.42-notes (1.42.0-wmf.1; 2023-10-17).Nov 13 2023, 11:00 PM
Maintenance_bot removed a project: Patch-For-Review.Nov 13 2023, 11:10 PM
Lucas_Werkmeister_WMDE unsubscribed.Nov 14 2023, 10:05 AM
matmarex closed this task as Resolved.Nov 14 2023, 10:59 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL