Page MenuHomePhabricator
Create Task
Maniphest T384717

Investigate external API call error on Special:GlobalContributions
Closed, ResolvedPublic
Actions

Assigned To
mszabo
Authored By
STran
Jan 24 2025, 3:29 PM
Tags
Referenced Files
F58413778: image.png
Feb 17 2025, 10:06 PM
F58367344: image.png
Feb 6 2025, 11:59 AM
F58266862: image.png
Jan 24 2025, 3:29 PM
F58266829: image.png
Jan 24 2025, 3:29 PM
Subscribers
A_smart_kitten
Aklapper
AntiCompositeNumber
dom_walden
KColeman-WMF
kostajh
mszabo
View All 11 Subscribers

Description

Account support has been deployed for Special:GlobalContributions and it seems like this unresolvable error is showing up on search results:

image.png (286×1 px, 44 KB)

This error occurs when an external permission check fails. We should investigate and see if all calls are failing or if only some calls are. It looks like external revisions can be seen (see screenshot), but I'm not sure if any hidden ones the user may have access to are available at the moment:

image.png (894×374 px, 108 KB)

Acceptance Criteria:

  • Log a warning when this error is hit. It should probably detail the request and the call results (user/wiki if that's not already included too perhaps, so it can be replicated or checked against if necessary)
  • The error no longer shows up as frequently (the frequency seems to be "always" at the moment)

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
GlobalContributions: Use unique CentralAuth tokens per requestmediawiki/extensions/CheckUserwmf/1.44.0-wmf.20+45 -30
GlobalContributions: Use unique CentralAuth tokens per requestmediawiki/extensions/CheckUsermaster+45 -30
http: ensure curl message queue is emptied in MultiHttpClientmediawiki/coremaster+11 -10
http: add happy-path test for MultiHttpClientmediawiki/coremaster+77 -3
http: Promote MultiHttpClient warnings to errorsmediawiki/corewmf/1.44.0-wmf.20+45 -10
http: Promote MultiHttpClient warnings to errorsmediawiki/coremaster+45 -10
GlobalContributions: Log unexpected 200 responsesmediawiki/extensions/CheckUsermaster+1 -1
http: remove outdated workaround for PHP bug 63411mediawiki/coremaster+4 -3
http: report curl_multi_exec() errors in MultiHttpClientmediawiki/coremaster+18 -12
Customize query in gerrit

Related Objects

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
Tchanders added a project: Temporary accounts (Major pilot wiki deployment).Feb 3 2025, 2:13 PM
kostajh merged a task: T385754: globalcontributions always returns error checkuser-global-contributions-api-lookup-error.Feb 6 2025, 9:20 AM
kostajh added a subscriber: Xaosflux.
Tchanders claimed this task.Feb 6 2025, 11:16 AM
Tchanders moved this task from Backlog to In progress on the Temporary accounts (Major pilot wiki deployment) board.
Tchanders moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Tuba (Jan 20 - Feb 7)) board.Feb 6 2025, 11:20 AM
Tchanders updated the task description. (Show Details)Feb 6 2025, 11:53 AM
Tchanders added a comment.Feb 6 2025, 11:59 AM
  • Log a warning when this error is hit. It should probably detail the request and the call results (user/wiki if that's not already included too perhaps, so it can be replicated or checked against if necessary)

We do log this already, from CheckUserApiRequestAggregator.

The CheckUserApiRequestAggregator is based on Echo's ForeignWikiRequest, which logs a similar error when lookups fail. Filtering the error logs to the normalized message that they both use, we see thousands in the last week from each: https://logstash.wikimedia.org/goto/e23c2cb3342a3d01864c4ae9c653cebd

image.png (300×908 px, 25 KB)

Tchanders added a comment.EditedFeb 7 2025, 6:53 PM

The contents of the response seem to differ between Echo and CheckUser:

  • Filtering for upstream connect error or disconnect/reset before headers. reset reason: connection failure retains >80% of the Echo logs and <1% of the CheckUser logs.
  • Filtering for (curl error: no status set) retains >98% of the CheckUser logs and <10% of the Echo logs.

Things to note:

  • Other errors are being encountered - these two don't account for 100% of the failures
  • These errors aren't encountered 100% of the time, suggesting something non-deterministic
  • The imbalance might just be to do with timing. Otherwise, could it be something to do with the different types of load that the different extensions add?
  • The timing of Echo errors follows a periodic pattern, whereas the CheckUser errors come in spikes. It could be that GlobalContributions is accessed less frequently, but causes more errors when it is accessed.

Examining the types of request to GlobalContributions further:

  • Many of these errors come from requests where someone is checking GlobalContributions for a registered user account that has edited many wikis. I checked this by visiting https://logstash.wikimedia.org/goto/e23c2cb3342a3d01864c4ae9c653cebd, choosing a random sample of spikes (large and small), and filtering out errors by URL until there were none left. All spikes I examined were caused by a single-digits number of requests to Special:GlobalContributions for named accounts, often causing many API lookups per single GlobalContributions request. E.g. one looked-up named user had edited >80 wikis.
  • Plenty of visits to Special:GlobalContributions aren't encountering this error. I checked this by filtering error logs where the URL contained Special:GlobalContributions, and there was a steady stream of other types of error.

Note also that the example given in T384717#10516298 is a GlobalContributions request with a wide IP range, that has edited 45 wiki according to XTools.

kostajh edited projects, added Trust and Safety Product Sprint (Sprint Hurdy-Gurdy (Feb 10 - Feb 28)); removed Trust and Safety Product Sprint (Sprint Tuba (Jan 20 - Feb 7)).Feb 10 2025, 10:01 AM
kostajh moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Hurdy-Gurdy (Feb 10 - Feb 28)) board.
Tchanders added a subscriber: KColeman-WMF.Feb 10 2025, 12:14 PM

Summary

The spikes in this error seem to be caused by something to do with overloading connections when making too many API calls to different wikis, when looking up targets who have edited many wikis.

Recommendations

Don't do permission checks up-front when looking up a named user

  • The API calls check the IP reveal permissions and the permissions to see hidden users/revisions. For named users, we don't need to check IP reveal permissions, and in most cases the permissions to see hidden information won't change the results.
  • We could therefore remove the API calls entirely, and assume the user does not have the rights to see hidden users/revisions.
  • We could offer a way for users who do have those rights to manually trigger a permissions look-up, and add a warning that if the user has edited many wikis, they may not see complete results. @KColeman-WMF perhaps we could discuss this and come up with a workflow for this situation?

If the target is a wide IP range when the error is encountered, advise narrowing the range

  • The error message currently says: Error loading data from some wikis. These results are incomplete. It may help to try again. Trying again may not help if the user has edited many wikis. E.g. the error is consistently encountered when trying the example from T384717#10516298.
  • We can't remove the permissions API calls for IP ranges, because we need to know if the user can reveal IPs at a given wiki before showing any results from that wiki.
  • Instead, we can explain the the error is due to making API calls to external wikis, and suggest that they narrow the range.

Update the error message always to explain that the problem is due to looking up permissions at other wikis

  • Having a more informative error might help the user decide what else to try.

Other ideas

I considered these ideas, but wouldn't recommend them right now:

  • If a user has global IP reveal rights, don't check the permissions at each wiki. We do need to check whether the user is blocked at each wiki, so we still need to check this.
  • If a user has global IP reveal rights, show them a rough summary at the top of the page, pre-permissions check. Perhaps we trust a user with global IP reveal rights enough to let them know some basic information, like which wikis were edited by an IP, even if they don't have full reveal rights at some wiki because they are blocked. In this case we could show all users with global rights some basic information even when we encounter the permissions API error. However, this would require further discussion and possibly a change to the access policy.
Tchanders moved this task from In Progress to Needs Review on the Trust and Safety Product Sprint (Sprint Hurdy-Gurdy (Feb 10 - Feb 28)) board.Feb 10 2025, 12:17 PM
Tchanders mentioned this in T375465: Link to Special:GlobalContributions page from IP Info.Feb 11 2025, 3:31 PM
STran mentioned this in T386186: Add global contributions count to IPInfo infobox.Feb 12 2025, 11:32 AM
Tchanders added a comment.Feb 17 2025, 1:08 PM

Update the error message always to explain that the problem is due to looking up permissions at other wikis

Does something like this communicate everything we need to? Error verifying permissions from some wikis. Contributions from these wikis may not be shown.

Xaosflux added a comment.Feb 17 2025, 5:13 PM

That error isn't very useful to the user. What wiki's had a problem?

Workflow:
a) Try to use this utility
b) Get that error
c) ???

I suppose it would be "open a bug report" (as the standard workflow should result in no errors). In which case this should include all the necessary information needed to open a bug report such that whomever is going to respond to that report has enough information to be able to remedy the problem.

KColeman-WMF added a comment.EditedFeb 17 2025, 10:06 PM

Don't do permission checks up-front when looking up a named user

  • The API calls check the IP reveal permissions and the permissions to see hidden users/revisions. For named users, we don't need to check IP reveal permissions, and in most cases the permissions to see hidden information won't change the results.
  • We could therefore remove the API calls entirely, and assume the user does not have the rights to see hidden users/revisions.
  • We could offer a way for users who do have those rights to manually trigger a permissions look-up, and add a warning that if the user has edited many wikis, they may not see complete results. @KColeman-WMF perhaps we could discuss this and come up with a workflow for this situation?

I suggest we include a checkbox for users who wish to also see deleted revisions, which would trigger a permission lookup if the user selects the checkbox. We can include a warning in the description for users who do not have permissions.

image.png (758×1 px, 93 KB)

Sidenote: What terminology is best? The other checkboxes say latest revisions, minor edits and revision deleted. Should we be using edit or revision? Should it be revision deleted or deleted revisions?

Tchanders added a comment.Feb 19 2025, 6:53 PM
In T384717#10557529, @Xaosflux wrote:

That error isn't very useful to the user. What wiki's had a problem?

Workflow:
a) Try to use this utility
b) Get that error
c) ???

I suppose it would be "open a bug report" (as the standard workflow should result in no errors). In which case this should include all the necessary information needed to open a bug report such that whomever is going to respond to that report has enough information to be able to remedy the problem.

The main problem here is that it's a known error that we can't currently do much about. There isn't an elegant way of looking up permissions at other wikis without making API requests (T380867), and if we have to do too many, they may fail.

We can't reveal which wikis the user has edited at until we know whether the user has the permission to know that, so if the API fails we can't reveal which wiki it failed from.

Unfortunately there isn't much a user can do, except narrow an IP range or narrow the date range (or check another tool, if the target is not an IP address).

kostajh subscribed.Feb 19 2025, 7:17 PM

Can we cache the permission lookup requests? And when building the cache, support multiple attempts at the API requests until the cache is fully populated?

Xaosflux added a comment.Feb 19 2025, 7:19 PM
In T384717#10565222, @Tchanders wrote:
In T384717#10557529, @Xaosflux wrote:

That error isn't very useful to the user. What wiki's had a problem?

Workflow:
a) Try to use this utility
b) Get that error
c) ???

I suppose it would be "open a bug report" (as the standard workflow should result in no errors). In which case this should include all the necessary information needed to open a bug report such that whomever is going to respond to that report has enough information to be able to remedy the problem.

The main problem here is that it's a known error that we can't currently do much about. There isn't an elegant way of looking up permissions at other wikis without making API requests (T380867), and if we have to do too many, they may fail.

We can't reveal which wikis the user has edited at until we know whether the user has the permission to know that, so if the API fails we can't reveal which wiki it failed from.

Unfortunately there isn't much a user can do, except narrow an IP range or narrow the date range (or check another tool, if the target is not an IP address).

If the caller has global-temporary-account-viewer bundled access, are the hundreds of API calls still needed?

Tchanders added a comment.Feb 24 2025, 11:30 AM

If the caller has global-temporary-account-viewer bundled access, are the hundreds of API calls still needed?

The tricky part is that a user is not allowed to see IP addresses if blocked from the wiki, according to the policy. So for a user with global access, we're mainly looking up whether they are blocked.

Tchanders added a comment.Feb 24 2025, 11:37 AM
In T384717#10565353, @kostajh wrote:

Can we cache the permission lookup requests? And when building the cache, support multiple attempts at the API requests until the cache is fully populated?

We'd probably need to check this with legal. Normally when looking up permissions to actually perform an action we need up-to-date info in case the permissions were changed.

Perhaps we might be allowed a short TTL, in which case this could allow a user to keep refreshing the page in one sitting, but if they came back later, they'd need to do the same again.

Tchanders mentioned this in T380903: Display wiki-specific namespaces in external article links on Special:GlobalContributions.Feb 24 2025, 1:16 PM
Dreamy_Jazz merged a task: T385150: Failed to fetch API response from {wiki}. Error: {error}.Feb 25 2025, 1:11 PM
Dreamy_Jazz added a subscriber: dom_walden.
Tchanders added a comment.Feb 25 2025, 4:23 PM
In T384717#10574851, @Tchanders wrote:
In T384717#10565353, @kostajh wrote:

Can we cache the permission lookup requests? And when building the cache, support multiple attempts at the API requests until the cache is fully populated?

We'd probably need to check this with legal. Normally when looking up permissions to actually perform an action we need up-to-date info in case the permissions were changed.

Perhaps we might be allowed a short TTL, in which case this could allow a user to keep refreshing the page in one sitting, but if they came back later, they'd need to do the same again.

After some discussion, we're fairly confident the permissions are only updated by means that we could hook into to invalidate the cache, so this may be feasible after all. Let's explore this as a solution.

Tchanders added a comment.EditedFeb 27 2025, 4:26 PM
In T384717#10557982, @KColeman-WMF wrote:

Don't do permission checks up-front when looking up a named user

  • The API calls check the IP reveal permissions and the permissions to see hidden users/revisions. For named users, we don't need to check IP reveal permissions, and in most cases the permissions to see hidden information won't change the results.
  • We could therefore remove the API calls entirely, and assume the user does not have the rights to see hidden users/revisions.
  • We could offer a way for users who do have those rights to manually trigger a permissions look-up, and add a warning that if the user has edited many wikis, they may not see complete results. @KColeman-WMF perhaps we could discuss this and come up with a workflow for this situation?

I suggest we include a checkbox for users who wish to also see deleted revisions, which would trigger a permission lookup if the user selects the checkbox. We can include a warning in the description for users who do not have permissions.

image.png (758×1 px, 93 KB)

Sidenote: What terminology is best? The other checkboxes say latest revisions, minor edits and revision deleted. Should we be using edit or revision? Should it be revision deleted or deleted revisions?

The way it looks in the screenshot looks fine to me. "Deleted revisions" might be confused with revision to a since-deleted article (i.e. what shows up on Special:DeletedContributions), where as "revision deleted" more clearly refers to the specific revision.

I think since the other checkbox says "Only show revision deleted", it makes sense for this one to say "Show revision deleted" since they refer to the same thing.

gerritbot added a comment.Feb 28 2025, 3:58 PM

Change #1123674 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/core@master] http: report curl_multi_exec() errors in MultiHttpClient

https://gerrit.wikimedia.org/r/1123674

gerritbot added a project: Patch-For-Review.Feb 28 2025, 3:58 PM
gerritbot added a comment.Feb 28 2025, 4:53 PM

Change #1123687 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/core@master] http: remove outdated workaround for PHP bug 63411

https://gerrit.wikimedia.org/r/1123687

gerritbot added a comment.Feb 28 2025, 5:55 PM

Change #1123674 merged by jenkins-bot:

[mediawiki/core@master] http: report curl_multi_exec() errors in MultiHttpClient

https://gerrit.wikimedia.org/r/1123674

ReleaseTaggerBot added a project: MW-1.44-notes (1.44.0-wmf.19; 2025-03-04).Feb 28 2025, 6:00 PM
gerritbot added a comment.Feb 28 2025, 6:28 PM

Change #1123687 merged by jenkins-bot:

[mediawiki/core@master] http: remove outdated workaround for PHP bug 63411

https://gerrit.wikimedia.org/r/1123687

Maintenance_bot removed a project: Patch-For-Review.Feb 28 2025, 6:30 PM
Dreamy_Jazz moved this task from Sprint Hurdy-Gurdy (Feb 10 - Feb 28) to Sprint Lemon Meringue (March 3 - 21) on the Trust and Safety Product Sprint board.Mar 3 2025, 3:46 PM
Dreamy_Jazz edited projects, added Trust and Safety Product Sprint (Sprint Lemon Meringue (March 3 - 21)); removed Trust and Safety Product Sprint (Sprint Hurdy-Gurdy (Feb 10 - Feb 28)).
Dreamy_Jazz moved this task from Priority Backlog to Needs Review on the Trust and Safety Product Sprint (Sprint Lemon Meringue (March 3 - 21)) board.
A_smart_kitten mentioned this in T387923: Update Special:GlobalContributions to indicate that it does not support displaying edits made by bot users.Mar 4 2025, 8:51 PM
gerritbot added a comment.Mar 5 2025, 12:42 PM

Change #1124771 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/extensions/CheckUser@master] GlobalContributions: Log unexpected 200 responses

https://gerrit.wikimedia.org/r/1124771

gerritbot added a project: Patch-For-Review.Mar 5 2025, 12:42 PM
gerritbot added a comment.Mar 5 2025, 5:36 PM

Change #1124771 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@master] GlobalContributions: Log unexpected 200 responses

https://gerrit.wikimedia.org/r/1124771

Maintenance_bot removed a project: Patch-For-Review.Mar 5 2025, 6:30 PM
ReleaseTaggerBot edited projects, added MW-1.44-notes (1.44.0-wmf.20; 2025-03-11); removed MW-1.44-notes (1.44.0-wmf.19; 2025-03-04).Mar 5 2025, 8:00 PM
gerritbot added a comment.Mar 10 2025, 11:05 AM

Change #1125992 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/core@master] http: Promote MultiHttpClient warnings to errors

https://gerrit.wikimedia.org/r/1125992

gerritbot added a project: Patch-For-Review.Mar 10 2025, 11:05 AM
gerritbot added a comment.Mar 12 2025, 12:30 PM

Change #1125992 merged by jenkins-bot:

[mediawiki/core@master] http: Promote MultiHttpClient warnings to errors

https://gerrit.wikimedia.org/r/1125992

Maintenance_bot removed a project: Patch-For-Review.Mar 12 2025, 12:30 PM
gerritbot added a comment.Mar 12 2025, 12:37 PM

Change #1126982 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/core@wmf/1.44.0-wmf.20] http: Promote MultiHttpClient warnings to errors

https://gerrit.wikimedia.org/r/1126982

gerritbot added a project: Patch-For-Review.Mar 12 2025, 12:37 PM
ReleaseTaggerBot edited projects, added MW-1.44-notes (1.44.0-wmf.21; 2025-03-18); removed MW-1.44-notes (1.44.0-wmf.20; 2025-03-11).Mar 12 2025, 1:01 PM
gerritbot added a comment.Mar 12 2025, 3:18 PM

Change #1126982 merged by jenkins-bot:

[mediawiki/core@wmf/1.44.0-wmf.20] http: Promote MultiHttpClient warnings to errors

https://gerrit.wikimedia.org/r/1126982

Stashbot mentioned this in T388125: TempAccounts: A temporary account continued to make edits after expiration.Mar 12 2025, 3:18 PM

Mentioned in SAL (#wikimedia-operations) [2025-03-12T15:18:31Z] <mszabo@deploy2002> Started scap sync-world: Backport for [[gerrit:1126979|GlobalUserSelectQueryBuilder: Ignore unattached local users (T388125)]], [[gerrit:1126982|http: Promote MultiHttpClient warnings to errors (T384717)]]

Stashbot added a comment.Mar 12 2025, 3:22 PM

Mentioned in SAL (#wikimedia-operations) [2025-03-12T15:22:21Z] <mszabo@deploy2002> mszabo: Backport for [[gerrit:1126979|GlobalUserSelectQueryBuilder: Ignore unattached local users (T388125)]], [[gerrit:1126982|http: Promote MultiHttpClient warnings to errors (T384717)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Stashbot added a comment.Mar 12 2025, 3:30 PM

Mentioned in SAL (#wikimedia-operations) [2025-03-12T15:30:33Z] <mszabo@deploy2002> Finished scap sync-world: Backport for [[gerrit:1126979|GlobalUserSelectQueryBuilder: Ignore unattached local users (T388125)]], [[gerrit:1126982|http: Promote MultiHttpClient warnings to errors (T384717)]] (duration: 12m 01s)

Maintenance_bot removed a project: Patch-For-Review.Mar 12 2025, 3:30 PM
ReleaseTaggerBot edited projects, added MW-1.44-notes (1.44.0-wmf.20; 2025-03-11); removed MW-1.44-notes (1.44.0-wmf.21; 2025-03-18).Mar 12 2025, 4:00 PM
gerritbot added a comment.Mar 12 2025, 8:40 PM

Change #1127145 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/core@master] http: add happy-path test for MultiHttpClient

https://gerrit.wikimedia.org/r/1127145

gerritbot added a project: Patch-For-Review.Mar 12 2025, 8:40 PM

Change #1127146 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/core@master] http: ensure curl message queue is emptied in MultiHttpClient

https://gerrit.wikimedia.org/r/1127146

gerritbot added a comment.Mar 13 2025, 5:25 PM

Change #1127145 merged by jenkins-bot:

[mediawiki/core@master] http: add happy-path test for MultiHttpClient

https://gerrit.wikimedia.org/r/1127145

gerritbot added a comment.Mar 13 2025, 5:26 PM

Change #1127146 merged by jenkins-bot:

[mediawiki/core@master] http: ensure curl message queue is emptied in MultiHttpClient

https://gerrit.wikimedia.org/r/1127146

Maintenance_bot removed a project: Patch-For-Review.Mar 13 2025, 5:32 PM
Tchanders reassigned this task from Tchanders to mszabo.Mar 14 2025, 1:06 PM
Tchanders added subscribers: mszabo, Tchanders.

Reassigning to @mszabo, who has picked up the work on this recently.

kostajh mentioned this in T384848: GlobalContributions: Bad performance when target has edited a high number of wikis.Mar 14 2025, 1:19 PM
Tchanders moved this task from Backlog to Triaged on the CheckUser-GlobalContributions board.Mar 14 2025, 1:32 PM
gerritbot added a comment.Mar 17 2025, 12:03 PM

Change #1128387 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/extensions/CheckUser@master] GlobalContributions: Use unique CentralAuth tokens per wiki

https://gerrit.wikimedia.org/r/1128387

gerritbot added a project: Patch-For-Review.Mar 17 2025, 12:03 PM
gerritbot added a comment.Mar 17 2025, 3:00 PM

Change #1128387 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@master] GlobalContributions: Use unique CentralAuth tokens per request

https://gerrit.wikimedia.org/r/1128387

Maintenance_bot removed a project: Patch-For-Review.Mar 17 2025, 3:31 PM
ReleaseTaggerBot edited projects, added MW-1.44-notes (1.44.0-wmf.21; 2025-03-18); removed MW-1.44-notes (1.44.0-wmf.20; 2025-03-11).Mar 17 2025, 4:00 PM
Dreamy_Jazz mentioned this in T380867: Allow looking up permissions directly across multiple wikis.Mar 17 2025, 5:16 PM
gerritbot added a comment.Mar 17 2025, 6:23 PM

Change #1128493 had a related patch set uploaded (by Máté Szabó; author: Máté Szabó):

[mediawiki/extensions/CheckUser@wmf/1.44.0-wmf.20] GlobalContributions: Use unique CentralAuth tokens per request

https://gerrit.wikimedia.org/r/1128493

gerritbot added a project: Patch-For-Review.Mar 17 2025, 6:23 PM
gerritbot added a comment.Mar 17 2025, 8:38 PM

Change #1128493 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@wmf/1.44.0-wmf.20] GlobalContributions: Use unique CentralAuth tokens per request

https://gerrit.wikimedia.org/r/1128493

Stashbot added a comment.Mar 17 2025, 8:39 PM

Mentioned in SAL (#wikimedia-operations) [2025-03-17T20:39:49Z] <tgr@deploy2002> Started scap sync-world: Backport for [[gerrit:1128493|GlobalContributions: Use unique CentralAuth tokens per request (T384717)]]

Stashbot added a comment.Mar 17 2025, 8:43 PM

Mentioned in SAL (#wikimedia-operations) [2025-03-17T20:43:41Z] <tgr@deploy2002> tgr, mszabo: Backport for [[gerrit:1128493|GlobalContributions: Use unique CentralAuth tokens per request (T384717)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Stashbot added a comment.Mar 17 2025, 8:57 PM

Mentioned in SAL (#wikimedia-operations) [2025-03-17T20:57:49Z] <tgr@deploy2002> Finished scap sync-world: Backport for [[gerrit:1128493|GlobalContributions: Use unique CentralAuth tokens per request (T384717)]] (duration: 18m 00s)

ReleaseTaggerBot edited projects, added MW-1.44-notes (1.44.0-wmf.20; 2025-03-11); removed MW-1.44-notes (1.44.0-wmf.21; 2025-03-18).Mar 17 2025, 9:00 PM
Maintenance_bot removed a project: Patch-For-Review.Mar 17 2025, 9:30 PM
kostajh added a comment.Mar 20 2025, 12:54 PM

I think this is done, and follow-up work is captured in tasks linked from here. @mszabo sounds ok?

kostajh added a comment.Mar 21 2025, 10:39 AM

T389187: GlobalContributions: Make displaying deleted revisions optional is also follow-up from this task.

Tchanders edited projects, added Trust and Safety Product Sprint (Sprint Chocolate Cake (March 24 - April 11)); removed Trust and Safety Product Sprint (Sprint Lemon Meringue (March 3 - 21)).Mar 24 2025, 2:21 PM
Tchanders moved this task from Priority Backlog to Needs Review on the Trust and Safety Product Sprint (Sprint Chocolate Cake (March 24 - April 11)) board.
mszabo closed this task as Resolved.Mar 24 2025, 3:46 PM
mszabo moved this task from Needs Review to Done on the Trust and Safety Product Sprint (Sprint Chocolate Cake (March 24 - April 11)) board.
In T384717#10656915, @kostajh wrote:

I think this is done, and follow-up work is captured in tasks linked from here. @mszabo sounds ok?

Yeah, I think we can close this now.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits