Page MenuHomePhabricator
Create Task
Maniphest T76123

api.php produces invalid json when 'callback' argument is supplied
Closed, InvalidPublic
Actions

Description

REQUEST:
  http://en.wikipedia.org/w/api.php?action=opensearch&search=JFK&format=json&callback=zzz

RESPONSE:
/**/zzz(
[
  "JFK",
  [
    "JFK",
    "JFK (film)",
    "JFK Olimps",
    "JFK Express",
    "JFK: Reloaded",
    "JFK in Ireland",
    "JFK Expressway",
    "Jfk",
    "JFK (disambiguation)",
    "JFK/UMass (MBTA station)"
  ]
]
)

Invalid part: /**/zzz(

Please note that replacing 'callback' with other invalid argument changes response to contain a warning inside of the valid json.
So the side issue is: Why undocumented 'callback' argument is treated differently compared to other invalid arguments?

Event Timeline

Yuri271 created this task.Nov 27 2014, 5:24 AM
Yuri271 raised the priority of this task from to Needs Triage.
Yuri271 updated the task description. (Show Details)
Yuri271 changed Security from none to None.
Yuri271 subscribed.
Legoktm closed this task as Invalid.Nov 27 2014, 5:27 AM
Legoktm claimed this task.

The callback parameter is documented, see https://www.mediawiki.org/w/api.php?modules=json

It's not meant to be valid JSON, it's supposed to be JSONP, see https://www.mediawiki.org/wiki/API:Cross-site_requests#JSONP_usage and https://www.mediawiki.org/wiki/API:Data_formats#JSON_parameters

Yuri271 updated the task description. (Show Details)Nov 27 2014, 5:28 AM
Qgil added a project: MediaWiki-Action-API.Nov 27 2014, 12:13 PM
Qgil subscribed.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits