Page MenuHomePhabricator
Create Task
Maniphest T390000

Migrate OAuth 2 refresh tokens from MainStash to a more approriate storage
Open, Needs TriagePublic
Actions

Description

OAuth 2 refresh tokens are stored in MainStash. This is bad:

  • it's a key-value store so there is no way to find all the valid refresh tokens a user has, which seems problematic e.g. for investigating security incidents
  • mass invalidation can only be done in hacky ways
  • MainStash doesn't really guarantee permanence. This will get a lot worse after T383327: Re-architecture mainstash (x2) to allow easier maintenance .

It needs to be moved to a more appropriate storage (probably a dedicated DB table?).

Related Objects

Event Timeline

Tgr created this task.Mar 25 2025, 9:17 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 25 2025, 9:17 PM
Ladsgroup subscribed.Mar 26 2025, 11:30 AM

MainStash doesn't really guarantee permanence. This will get a lot worse after T383327: Re-architecture mainstash (x2) to allow easier maintenance .

As long as it's not setting TTL to infinity, it actually should get better. Previous main stash infra was redis that was actively evicting keys. This one puts it on two db hosts and they will be lost if both hosts get depooled at the same time which is much lower chance of happening than x2 having issues or redis evicting keys.

larissagaulia moved this task from Inbox, needs triage to Not planned (Patches welcome!) on the MediaWiki-Platform-Team board.Mar 31 2025, 2:00 PM
Tgr mentioned this in T407987: Define best practice for single-user apps which need a high MediaWiki API rate limit.Dec 3 2025, 9:18 PM
OWresch-WMF moved this task from Not planned (Patches welcome!) to Not planned / Patches welcome on the MediaWiki-Platform-Team board.Jan 20 2026, 12:21 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits