Allow SUL to work with more strict 3rd-party cookie policies
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	• csteipp
	Apr 4 2013, 8:14 PM

Description

Both mobile and desktop versions of Safari, and Firefox 22 have more strict policies for setting cookies from 3rd-party websites on a page.

CentralAuth's SUL function has used a set of images that contact the other websites in $wgCentralAuthAutoLoginWikis, which set a 3rd-party cookie for that site in case the user later visited.

The SUL mechanism needs to be updated to accommodate this. Planning and design for the rework are documented at http://www.mediawiki.org/wiki/Auth_systems/SUL2

Version: master
Severity: normal

Details

Reference: bz46901

Related Objects
Search...

Status	Assigned	Task
Resolved	• csteipp	T48901 Allow SUL to work with more strict 3rd-party cookie policies
Resolved	• csteipp	T48904 On wikis that allow SUL, check if anonymous users should be logged in
Resolved	aaron	T48903 After login, securely redirect user through a central domain to establish a central session
Resolved	Reedy	T48902 Setup central login domain
Resolved	Anomie	T48905 Add an api to each wiki that will issue a token used for authentication on another wiki
Resolved	Anomie	T56808 Clean up config flags from SUL2 migration