Page MenuHomePhabricator
Create Task
Maniphest T28597

Allow toggling of persistent cookies ("remember me") in API action=login
Closed, ResolvedPublic
Actions

Description

Currently, the cookies set when logging in via the API are always persistent. It would be nice if ApiLogin.php took an optional boolean parameter to control this behavior and passed it along to LoginForm (via the wpRemember parameter).

This should be pretty easy to implement, I just don't feel like doing it just now and I'm not that familiar with the API internals anyway. I might do it sometime later if no-one else does it first.

Sort of related to bug 26538, but not really the same thing.

Version: 1.18.x
Severity: enhancement

Details

Reference
bz26597
SubjectRepoBranchLines +/-
API changes for AuthManagermediawiki/coreREL1_27+1 K -207
API changes for AuthManagermediawiki/coremaster+1 K -207
Customize query in gerrit

Related Objects

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 21 2014, 11:14 PM
bzimport added a project: MediaWiki-Action-API.
bzimport set Reference to bz26597.
bzimport added a subscriber: Unknown Object (MLST).
Ilmari_Karonen created this task.Jan 6 2011, 1:44 AM
Reedy added a comment.Jun 5 2011, 9:51 PM

r89537

brion added a comment.Jun 6 2011, 7:19 PM

Reopening; r89537 caused test breakage and may not be correct.

Reedy added a comment.Jun 6 2011, 7:27 PM

Reverted in r89537 pending a better fix

bzimport added a comment.Jul 8 2011, 6:40 PM

Bryan.TongMinh wrote:

You can add an inverted boolean like nonpersistent=1 to fix this.

Krinkle added a comment.Jul 8 2011, 6:48 PM

Perhaps something like

rememberme && rememberme =='0'

(or rememberme !== '0' ), depending on how overwriting/appending is done.

Anomie moved this task from Unsorted to Needs Code on the MediaWiki-Action-API board.Feb 20 2015, 7:19 PM
gerritbot subscribed.Jan 20 2016, 3:17 AM

Change 265201 had a related patch set uploaded (by Anomie):
WIP: API changes for AuthManager

https://gerrit.wikimedia.org/r/265201

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJan 20 2016, 3:17 AM
gerritbot added a project: Patch-For-Review.Jan 20 2016, 3:18 AM
Anomie moved this task from Needs Code to In Dev on the MediaWiki-Action-API board.Feb 18 2016, 6:04 PM
gerritbot added a comment.May 16 2016, 7:01 PM

Change 265201 merged by jenkins-bot:
API changes for AuthManager

https://gerrit.wikimedia.org/r/265201

Anomie subscribed.May 16 2016, 7:22 PM

This is resolved now with the introduction of AuthManager, and specifically API action=clientlogin which uses the same backend code that the new SpecialUserLogin uses to do authentication.

There's no timeframe for when this will be available on WMF wikis, though, beyond "soon". The next step will be to resolve T110282, then a gradual deploy while watching for things to break.

Anomie closed this task as Resolved.May 16 2016, 7:22 PM
Anomie claimed this task.
gerritbot added a comment.May 17 2016, 1:14 AM

Change 289122 had a related patch set uploaded (by Gergő Tisza):
API changes for AuthManager

https://gerrit.wikimedia.org/r/289122

gerritbot added a comment.May 17 2016, 1:42 AM

Change 289122 merged by jenkins-bot:
API changes for AuthManager

https://gerrit.wikimedia.org/r/289122

Aklapper removed subscribers: Anomie, wikibugs-l-list.Oct 16 2020, 5:43 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL