Page MenuHomePhabricator
Create Task
Maniphest T62434

Do not require login on Special:Confirmemail to confirm the email
Closed, ResolvedPublic
Actions

Description

Before gerrit 94406 it was possible to confirm a email code without the need of login to (any) user account. This was changed and produced bug 60433.

In my opinion the old behaviour should be restored.

If not, the logged in user should be checked against the user which gets confirmed, because that can differ at the moment.

Version: 1.23.0
Severity: normal

Details

Reference
bz60434
SubjectRepoBranchLines +/-
Do not require login on Special:Confirmemail to confirm the emailmediawiki/coremaster+1 -2
Customize query in gerrit

Related Objects

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 3:02 AM
bzimport added a project: MediaWiki-Email.
bzimport set Reference to bz60434.
Umherirrender created this task.Jan 25 2014, 9:56 PM
matmarex added a comment.Jan 27 2014, 5:44 PM

I'm okay with doing this either way.

gerritbot added a comment.Jul 11 2014, 5:52 AM

Change 145511 had a related patch set uploaded by Rohan013:
Login check in Special:Confirmemail was removed

https://gerrit.wikimedia.org/r/145511

gerritbot subscribed.May 18 2015, 5:48 PM

Change 145511 had a related patch set uploaded (by Umherirrender):
Do not require login on Special:Confirmemail to confirm the email

https://gerrit.wikimedia.org/r/145511

MZMcBride subscribed.Aug 13 2015, 4:37 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 13 2015, 4:37 AM
MZMcBride added a project: good first task.Aug 13 2015, 4:38 AM
MZMcBride set Security to None.
matmarex unsubscribed.Aug 13 2015, 1:48 PM
01tonythomas mentioned this in T15303: Implement HTML e-mail support in MediaWiki.Apr 2 2016, 5:34 PM
TerraCodes subscribed.Apr 3 2016, 7:31 PM
Galorefitz claimed this task.Apr 5 2016, 1:20 PM
Galorefitz mentioned this in T130490: GSoC/Outreachy proposal for Implementing HTML E-Mail support in MediaWiki.Apr 5 2016, 2:41 PM
matmarex closed this task as Resolved.Apr 5 2016, 5:09 PM
matmarex removed a project: Patch-For-Review.
gerritbot added a comment.Apr 5 2016, 5:16 PM

Change 145511 merged by jenkins-bot:
Do not require login on Special:Confirmemail to confirm the email

https://gerrit.wikimedia.org/r/145511

ReleaseTaggerBot added projects: MW-1.27-release-notes, MW-1.27-release (WMF-deploy-2016-04-05_(1.27.0-wmf.20)).Apr 5 2016, 6:00 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL