Page MenuHomePhabricator
Create Task
Maniphest T392342

Allow user to mark certain OAuth application as trusted (auto-authorized)
Closed, DuplicatePublic
Actions

Description

For example If you open a tool that uses OAuth (e.g. https://tabernacle.toolforge.org) and click "log in" link, the link will lead you to Special:OAuth/authorize which presented with a dialog that allow user to authorize an app.

Proposed: I can mark some specific OAuth apps as trusted, so when you click "log in" link the app will be automatically authorized without manual confirmation.

Related Objects

Event Timeline

Bugreporter created this task.Apr 20 2025, 10:49 AM
Restricted Application added a project: MediaWiki-Platform-Team. · View Herald TranscriptApr 20 2025, 10:49 AM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Tgr subscribed.Apr 20 2025, 10:57 AM

See T91801: Support a more user friendly "re-authentication" flow for returning users and the discussion in T71232: Provide "authenticate" endpoint for regular users. I'd decline this; I think the problem is real but the differentiation between "trusted" and "normal" apps doesn't really make sense. We just shouldn't show the authorization dialog if the user has already previously authorized all the grants in that dialog.

Pppery closed this task as a duplicate of T91801: Support a more user friendly "re-authentication" flow for returning users.Apr 20 2025, 1:51 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits