Page MenuHomePhabricator
Create Task
Maniphest T360719

Add explicit "invalid" user token state for CentralAuthUser
Open, Needs TriagePublic
Actions

Description

Core user tokens have an explicit "invalid" state (User::INVALID_TOKEN), which can be used to detect when a user account is inaccessible (we use it for identifying system users). CentralAuth global user tokens don't have that, invalidating just involves setting a random value. For T358469: Display expired temporary account names differently and similar tasks (T358030, T359064) having a similar mechanism would be valuable.

Related Objects

Event Timeline

Tgr created this task.Mar 21 2024, 9:21 PM
Restricted Application added a project: MediaWiki-Platform-Team. · View Herald TranscriptMar 21 2024, 9:21 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Bugreporter subscribed.Mar 22 2024, 12:39 AM

As I said previously, we may just use NULL instead of a explicit User::INVALID_TOKEN.

larissagaulia moved this task from Inbox, needs triage to Needs refinement on the MediaWiki-Platform-Team board.Mar 26 2024, 3:39 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits