Page MenuHomePhabricator
Create Task
Maniphest T366833

REST: Request Body Validation (tracking)
Open, In Progress, HighPublic
Actions

Description

Tracking ticket for tasks related to validating request bodies in the REST framework.

Related Objects
Search...

StatusSubtypeAssignedTask
 In ProgressNoneT366833 REST: Request Body Validation (tracking)
 OpenAtienoT366349 Refactor ArrayDef::validate and ConfigSchemaAggregator::validateValue
 DeclinedNoneT350053 Create a JsonBodyValidator if getParamSettings() returns body params
 OpenNoneT357909 Clarify Handler::getValidatedBody error states
 In ProgressdanielT305973 JsonBodyValidator does not validate the parameter types
 ResolvedcodebugT358557 Rest router should provide parsed body data to handler.
 ResolveddanielT358850 Rest: make getValidatedBody return body parameters
 ResolveddanielT360434 REST: request body validation should fail if unexpected fields are present
 In ProgressdanielT358560 Rest: Deprecate BodyValidator
ResolvedAtienoT358558 Rest ParamValidator should support validation of fields in the request body
 ResolvedAtienoT357025 Add getParsedBody to RequestInterface in the REST framework
 ResolvedcodebugT361995 Remove usage of JsonBodyValidator from extensions
 ResolvedcodebugT365526 Remove usage of JsonBodyValidator from CampaignEvents
 ResolvedcodebugT365527 Remove usage of JsonBodyValidator from WikimediaCampaignEvents
 ResolvedFGoodwinT365757 Help remove usage of JsonBodyValidator from 3rd party extensions
 ResolvedAtienoT362108 Implement JSON schema validation in ArrayDef
 In ProgressAtienoT366289 Apply default values from the schema if not set
 In ProgressAtienoT367394 REST: Stop using getParamSettings for body parameters
 OpenNoneT363084 Remove usage of MediaWiki's JsonBodyValidator from Wikibase REST API
 DuplicateNoneT367395 Wikibase: stop using JsonBodyValidator in REST handlers
 ResolveddanielT352742 OpenAPI spec validation test fails for SecurePoll and causes CI failures for other repos
 OpenNoneT365513 REST: improve CSRF token handling
 In ProgressBPirkleT368131 ArrayDef: add convenience methods for generating schemas
 In ProgressFGoodwinT368132 REST: disallow PARAM_IS_MULTI in JSON
 OpenNoneT368133 REST: add structure test that checks if param schemas are valid

Event Timeline

daniel created this task.Thu, Jun 6, 6:28 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptThu, Jun 6, 6:28 PM
daniel added a project: MediaWiki-REST-API.Thu, Jun 6, 6:30 PM
daniel triaged this task as High priority.Thu, Jun 6, 6:54 PM
daniel added subtasks: T362108: Implement JSON schema validation in ArrayDef, T358560: Rest: Deprecate BodyValidator , T366349: Refactor ArrayDef::validate and ConfigSchemaAggregator::validateValue, T366289: Apply default values from the schema if not set.Thu, Jun 6, 7:01 PM
daniel added subtasks: T365757: Help remove usage of JsonBodyValidator from 3rd party extensions, T305973: JsonBodyValidator does not validate the parameter types, T363084: Remove usage of MediaWiki's JsonBodyValidator from Wikibase REST API, T350053: Create a JsonBodyValidator if getParamSettings() returns body params, T340185: The MW Rest API does not normalize its string request parameters, T357909: Clarify Handler::getValidatedBody error states, T352742: OpenAPI spec validation test fails for SecurePoll and causes CI failures for other repos.
daniel closed subtask T350053: Create a JsonBodyValidator if getParamSettings() returns body params as Declined.Thu, Jun 6, 7:04 PM
daniel changed the task status from Open to In Progress.Thu, Jun 6, 7:08 PM
daniel moved this task from Incoming (Needs Triage) to In Progress on the MW-Interfaces-Team board.
daniel added a subtask: T365513: REST: improve CSRF token handling.Thu, Jun 6, 7:22 PM
daniel added a subtask: T367394: REST: Stop using getParamSettings for body parameters.Thu, Jun 13, 10:33 AM
daniel added a subtask: T367395: Wikibase: stop using JsonBodyValidator in REST handlers.Thu, Jun 13, 10:39 AM
Atieno closed subtask T362108: Implement JSON schema validation in ArrayDef as Resolved.Thu, Jun 13, 10:48 AM
Atieno changed the status of subtask T366289: Apply default values from the schema if not set from Open to In Progress.Thu, Jun 13, 2:59 PM
FJoseph-WMF changed the status of subtask T367394: REST: Stop using getParamSettings for body parameters from Open to In Progress.Thu, Jun 13, 3:28 PM
FGoodwin changed the status of subtask T365757: Help remove usage of JsonBodyValidator from 3rd party extensions from Open to In Progress.Fri, Jun 14, 3:54 PM
daniel closed subtask T352742: OpenAPI spec validation test fails for SecurePoll and causes CI failures for other repos as Resolved.Thu, Jun 20, 7:48 AM
daniel removed a subtask: T340185: The MW Rest API does not normalize its string request parameters.Thu, Jun 20, 3:17 PM
FGoodwin closed subtask T365757: Help remove usage of JsonBodyValidator from 3rd party extensions as Resolved.Fri, Jun 21, 7:11 PM
BPirkle changed the status of subtask T368131: ArrayDef: add convenience methods for generating schemas from Open to In Progress.Mon, Jun 24, 5:20 PM
BPirkle changed the status of subtask T368132: REST: disallow PARAM_IS_MULTI in JSON from Open to In Progress.Thu, Jun 27, 3:18 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits