Page MenuHomePhabricator
Create Task
Maniphest T42024

$wgAuth->getCanonicalName() is evil and should die in a fire
Closed, ResolvedPublic
Actions

Description

$wgAuth->getCanonicalName() is meant to allow authentication plugins to munge a user name from the login name to a mediawiki name. Unfortunately, getCanonicalName is also used for a million other things, like page titles, and checking the validity of user names.

Overloading this function for munging names in auth plugins and for checking validity of usernames and page titles causes an incredible number of bugs. We really need some better method of handling this.

Version: 1.21.x
Severity: normal

Details

Reference
bz40024

Related Objects
Search...

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 1:06 AM
bzimport added a project: MediaWiki-User-login-and-signup.
bzimport set Reference to bz40024.
bzimport added a subscriber: Unknown Object (MLST).
RyanLane created this task.Sep 5 2012, 9:10 PM
Tgr added a subtask: T91699: Create AuthManager framework and core classes.Sep 2 2015, 8:40 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptSep 2 2015, 8:40 PM
Tgr subscribed.Sep 2 2015, 8:40 PM

AuthManager (T91699) replaces AuthPlugin and deprecates this functionality.

Anomie closed subtask T91699: Create AuthManager framework and core classes as Resolved.May 25 2016, 6:51 PM
Tgr closed this task as Resolved.Sep 17 2016, 9:22 PM
Tgr claimed this task.

AuthManager providers can resolve login name to username in arbitrary ways; that functionality is not used or exposed outside the authentication logic.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL