Page MenuHomePhabricator
Create Task
Maniphest T39227

Handle loss of session data
Closed, ResolvedPublic
Actions

Description

The user can be logged out due to several reasons and then the token will be illegal and use of it will lead to a session failure. In ApiSetItem this is reported as a no-token -error which is wrong. When this happens the error message should be intercepted and the user logged in again. Preferably without the user loosing any on-going changes.

A guess is that a small popup window asking for user credentials should be sufficient, and after logging in the user through the ordinary API the Wikibase API can be queried for new token(s).

Version: unspecified
Severity: normal

Details

Reference
bz37227

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 12:30 AM
bzimport added projects: MediaWiki-extensions-WikibaseRepository, patch-welcome.
bzimport set Reference to bz37227.
bzimport added a subscriber: Unknown Object (MLST).
jeblad created this task.May 30 2012, 5:50 PM
Denny added a comment.Jun 21 2012, 1:17 PM

API needs to return new token on session loss. AJAX calls should recognize that error, replace the token, and let the editor retry (could even automatically retry).

Denny added a comment.Jun 21 2012, 1:20 PM

A new session might be needed as well.

Pppery removed a project: patch-welcome.Dec 12 2019, 8:39 PM
Restricted Application added a project: Wikidata. · View Herald TranscriptDec 12 2019, 8:39 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL