Page MenuHomePhabricator
Create Task
Maniphest T410271

Wikimedia production MediaWiki extensions should use mediawiki.storage rather than access localStorage/sessionStorage directly
Open, Needs TriagePublic
Actions

Description

Follow-up T401978 and the new lint rule we added in https://github.com/wikimedia/eslint-plugin-mediawiki/issues/119. There's a few WMF-deployed repos that currently violate this new lint rule and should be fixed (or explicitly annotated with rationale, if they handle their own exceptions and must bypass mw.storage for some reason).

Scope

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Use mw.storage for previousLanguage storagemediawiki/extensions/UniversalLanguageSelectormaster+6 -18
Use mw.storage instead of localStorage directlymediawiki/extensions/PageTriagemaster+7 -7
build: Move mediawiki/no-storage disable inline and document reasonmediawiki/extensions/CentralAuthmaster+5 -4
Customize query in gerrit

Related Objects

Event Timeline

Jdforrester-WMF created this task.Nov 17 2025, 1:18 PM
Restricted Application added projects: MediaWiki-Platform-Team, Moderator-Tools-Team. · View Herald TranscriptNov 17 2025, 1:18 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Jdforrester-WMF removed a project: StructuredDiscussions.Nov 17 2025, 1:23 PM
Jdforrester-WMF updated the task description. (Show Details)
Esanders updated the task description. (Show Details)Nov 17 2025, 2:54 PM
Esanders subscribed.

I've removed the VE hits as they were calling ve.init.platform.sessionStorage which is already a wrapper around mw.storage (at least in ve-mw).

Esanders removed a project: VisualEditor.Nov 17 2025, 2:56 PM
JTweed-WMF moved this task from Inbox, needs triage to Next (DO NOT USE) on the MediaWiki-Platform-Team board.Nov 17 2025, 3:45 PM
Krinkle updated the task description. (Show Details)Nov 17 2025, 3:48 PM
Krinkle updated the task description. (Show Details)
Krinkle updated the task description. (Show Details)
Krinkle edited projects, added MediaWiki-Platform-Team (Radar); removed MediaWiki-Platform-Team, MediaWiki-extensions-CentralAuth, MediaWiki-General.Nov 17 2025, 3:50 PM
Krinkle subscribed.

Added background to ease triage in our team. I've marked CentralAuth as completed without a patch, because it already handles exceptions locally, and bypasses the abstraction because it is a raw inline script (bypassing ResourceLoader and thus cannot easily depend on a module).

Tgr subscribed.Nov 17 2025, 4:23 PM

anon-set.js is inline. ext.centralauth.centralautologin.js could in theory use another module (although it only uses localStorage.getItem() which I think isn't supposed to throw exceptions).

Jdforrester-WMF added a comment.Nov 17 2025, 4:27 PM
In T410271#11379411, @Krinkle wrote:

Added background to ease triage in our team. I've marked CentralAuth as completed without a patch, because it already handles exceptions locally, and bypasses the abstraction because it is a raw inline script (bypassing ResourceLoader and thus cannot easily depend on a module).

Per your own edit, there should be a patch that inlines the disables and they should be "explicitly annotated with rationale[s]".

gerritbot added a comment.Nov 17 2025, 5:33 PM

Change #1206426 had a related patch set uploaded (by Krinkle; author: Krinkle):

[mediawiki/extensions/CentralAuth@master] build: Move mediawiki/no-storage disable inline and document reason

https://gerrit.wikimedia.org/r/1206426

gerritbot added a project: Patch-For-Review.Nov 17 2025, 5:33 PM
Krinkle added a comment.Nov 17 2025, 5:35 PM
In T410271#11379654, @Tgr wrote:

anon-set.js is inline. ext.centralauth.centralautologin.js could in theory use another module (although it only uses localStorage.getItem() which I think isn't supposed to throw exceptions).

localStorage.getItem() can throw as well, usually by way of the global localStorage getter (window.localStorage) throwing rather than the individual method. This is the same way that the document.cookie getter cant throw in certain privacy modes.

gerritbot added a comment.Nov 19 2025, 11:11 AM

Change #1206426 merged by jenkins-bot:

[mediawiki/extensions/CentralAuth@master] build: Move mediawiki/no-storage disable inline and document reason

https://gerrit.wikimedia.org/r/1206426

Samwalton9-WMF moved this task from Inbox to Triaged on the Moderator-Tools-Team board.Nov 19 2025, 11:18 AM
Maintenance_bot removed a project: Patch-For-Review.Nov 19 2025, 11:30 AM
ReleaseTaggerBot added a project: MW-1.46-notes (1.46.0-wmf.4; 2025-11-25).Nov 19 2025, 12:00 PM
Krinkle unsubscribed.Nov 19 2025, 1:12 PM
gerritbot added a comment.Dec 18 2025, 10:03 AM

Change #1219539 had a related patch set uploaded (by Esanders; author: Esanders):

[mediawiki/extensions/UniversalLanguageSelector@master] Use mw.storage for previousLanguage storage

https://gerrit.wikimedia.org/r/1219539

gerritbot added a project: Patch-For-Review.Dec 18 2025, 10:03 AM
gerritbot added a comment.Dec 18 2025, 2:31 PM

Change #1219592 had a related patch set uploaded (by Esanders; author: Esanders):

[mediawiki/extensions/PageTriage@master] Use mw.storage instead of localStorage directly

https://gerrit.wikimedia.org/r/1219592

gerritbot added a comment.Dec 19 2025, 7:40 AM

Change #1219592 merged by jenkins-bot:

[mediawiki/extensions/PageTriage@master] Use mw.storage instead of localStorage directly

https://gerrit.wikimedia.org/r/1219592

Novem_Linguae updated the task description. (Show Details)Dec 19 2025, 7:42 AM
Niepodkoloryzowany subscribed.Jan 10 2026, 4:19 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits