Page Menu
Home
Phabricator
Search
Configure Global Search
Log In
Create Task
Maniphest
T366833
REST: Request Body Validation (tracking)
Open, In Progress, High
Public
Actions
Edit Task
Edit Related Tasks...
Create Subtask
Edit Parent Tasks
Edit Subtasks
Merge Duplicates In
Close As Duplicate
Edit Related Objects...
Edit Commits
Edit Mocks
Subscribe
Mute Notifications
Protect as security issue
Award Token
Flag For Later
Assigned To
None
Authored By
daniel
Thu, Jun 6, 6:28 PM
2024-06-06 18:28:07 (UTC+0)
Tags
MW-Interfaces-Team
(In Progress)
Epic
MediaWiki-REST-API
(Backlog)
Referenced Files
None
Subscribers
Aklapper
BPirkle
daniel
FJoseph-WMF
Description
Tracking ticket for tasks related to validating request bodies in the REST framework.
Related Objects
Search...
Task Graph
Status
Subtype
Assigned
Task
In Progress
None
T366833
REST: Request Body Validation (tracking)
Open
Atieno
T366349
Refactor ArrayDef::validate and ConfigSchemaAggregator::validateValue
Declined
None
T350053
Create a JsonBodyValidator if getParamSettings() returns body params
Open
None
T357909
Clarify Handler::getValidatedBody error states
In Progress
daniel
T305973
JsonBodyValidator does not validate the parameter types
Resolved
codebug
T358557
Rest router should provide parsed body data to handler.
Resolved
daniel
T358850
Rest: make getValidatedBody return body parameters
Resolved
daniel
T360434
REST: request body validation should fail if unexpected fields are present
In Progress
daniel
T358560
Rest: Deprecate BodyValidator
Resolved
Atieno
T358558
Rest ParamValidator should support validation of fields in the request body
Resolved
Atieno
T357025
Add getParsedBody to RequestInterface in the REST framework
Resolved
codebug
T361995
Remove usage of JsonBodyValidator from extensions
Resolved
codebug
T365526
Remove usage of JsonBodyValidator from CampaignEvents
Resolved
codebug
T365527
Remove usage of JsonBodyValidator from WikimediaCampaignEvents
Resolved
FGoodwin
T365757
Help remove usage of JsonBodyValidator from 3rd party extensions
Resolved
Atieno
T362108
Implement JSON schema validation in ArrayDef
In Progress
Atieno
T366289
Apply default values from the schema if not set
In Progress
Atieno
T367394
REST: Stop using getParamSettings for body parameters
Open
None
T363084
Remove usage of MediaWiki's JsonBodyValidator from Wikibase REST API
Duplicate
None
T367395
Wikibase: stop using JsonBodyValidator in REST handlers
Resolved
daniel
T352742
OpenAPI spec validation test fails for SecurePoll and causes CI failures for other repos
Open
None
T365513
REST: improve CSRF token handling
In Progress
BPirkle
T368131
ArrayDef: add convenience methods for generating schemas
In Progress
FGoodwin
T368132
REST: disallow PARAM_IS_MULTI in JSON
Open
None
T368133
REST: add structure test that checks if param schemas are valid
Event Timeline
daniel
created this task.
Thu, Jun 6, 6:28 PM
2024-06-06 18:28:07 (UTC+0)
Restricted Application
added a subscriber:
Aklapper
.
·
View Herald Transcript
Thu, Jun 6, 6:28 PM
2024-06-06 18:28:08 (UTC+0)
daniel
added a project:
MediaWiki-REST-API
.
Thu, Jun 6, 6:30 PM
2024-06-06 18:30:40 (UTC+0)
daniel
triaged this task as
High
priority.
Thu, Jun 6, 6:54 PM
2024-06-06 18:54:15 (UTC+0)
daniel
added subtasks:
T362108: Implement JSON schema validation in ArrayDef
,
T358560: Rest: Deprecate BodyValidator
,
T366349: Refactor ArrayDef::validate and ConfigSchemaAggregator::validateValue
,
T366289: Apply default values from the schema if not set
.
Thu, Jun 6, 7:01 PM
2024-06-06 19:01:42 (UTC+0)
daniel
added subtasks:
T365757: Help remove usage of JsonBodyValidator from 3rd party extensions
,
T305973: JsonBodyValidator does not validate the parameter types
,
T363084: Remove usage of MediaWiki's JsonBodyValidator from Wikibase REST API
,
T350053: Create a JsonBodyValidator if getParamSettings() returns body params
,
T340185: The MW Rest API does not normalize its string request parameters
,
T357909: Clarify Handler::getValidatedBody error states
,
T352742: OpenAPI spec validation test fails for SecurePoll and causes CI failures for other repos
.
daniel
closed subtask
T350053: Create a JsonBodyValidator if getParamSettings() returns body params
as
Declined
.
Thu, Jun 6, 7:04 PM
2024-06-06 19:04:11 (UTC+0)
daniel
changed the task status from
Open
to
In Progress
.
Thu, Jun 6, 7:08 PM
2024-06-06 19:08:10 (UTC+0)
daniel
moved this task from
Incoming (Needs Triage)
to
In Progress
on the
MW-Interfaces-Team
board.
daniel
added a subtask:
T365513: REST: improve CSRF token handling
.
Thu, Jun 6, 7:22 PM
2024-06-06 19:22:26 (UTC+0)
daniel
added a subtask:
T367394: REST: Stop using getParamSettings for body parameters
.
Thu, Jun 13, 10:33 AM
2024-06-13 10:33:15 (UTC+0)
daniel
added a subtask:
T367395: Wikibase: stop using JsonBodyValidator in REST handlers
.
Thu, Jun 13, 10:39 AM
2024-06-13 10:39:04 (UTC+0)
Atieno
closed subtask
T362108: Implement JSON schema validation in ArrayDef
as
Resolved
.
Thu, Jun 13, 10:48 AM
2024-06-13 10:48:16 (UTC+0)
Atieno
changed the status of subtask
T366289: Apply default values from the schema if not set
from
Open
to
In Progress
.
Thu, Jun 13, 2:59 PM
2024-06-13 14:59:00 (UTC+0)
FJoseph-WMF
changed the status of subtask
T367394: REST: Stop using getParamSettings for body parameters
from
Open
to
In Progress
.
Thu, Jun 13, 3:28 PM
2024-06-13 15:28:56 (UTC+0)
FGoodwin
changed the status of subtask
T365757: Help remove usage of JsonBodyValidator from 3rd party extensions
from
Open
to
In Progress
.
Fri, Jun 14, 3:54 PM
2024-06-14 15:54:48 (UTC+0)
daniel
closed subtask
T352742: OpenAPI spec validation test fails for SecurePoll and causes CI failures for other repos
as
Resolved
.
Thu, Jun 20, 7:48 AM
2024-06-20 07:48:56 (UTC+0)
daniel
removed a subtask:
T340185: The MW Rest API does not normalize its string request parameters
.
Thu, Jun 20, 3:17 PM
2024-06-20 15:17:34 (UTC+0)
FGoodwin
closed subtask
T365757: Help remove usage of JsonBodyValidator from 3rd party extensions
as
Resolved
.
Fri, Jun 21, 7:11 PM
2024-06-21 19:11:23 (UTC+0)
BPirkle
changed the status of subtask
T368131: ArrayDef: add convenience methods for generating schemas
from
Open
to
In Progress
.
Mon, Jun 24, 5:20 PM
2024-06-24 17:20:04 (UTC+0)
BPirkle
changed the status of subtask
T368132: REST: disallow PARAM_IS_MULTI in JSON
from
Open
to
In Progress
.
Thu, Jun 27, 3:18 PM
2024-06-27 15:18:31 (UTC+0)
Log In to Comment