[MediaWiki-commits] [Gerrit] Make CentralAuth explicitly say which cookies need to be ext... - change (mediawiki...CentralAuth)

Mattflaschen (Code Review) Wed, 22 Jun 2016 09:47:52 -0700

Mattflaschen has uploaded a new change for review.

  https://gerrit.wikimedia.org/r/295553


Change subject: Make CentralAuth explicitly say which cookies need to be 
extended
......................................................................

Make CentralAuth explicitly say which cookies need to be extended

We don't want to rely on a $wg config variable for this (users
shouldn't need to understand cookie implementation details), so change
it to use a code-defined list instead.  This just uses the list
from CookieSessionProvider in core, and adds 'User'.

Bug: T68699
Change-Id: I229dbc9f097bb0efc5e3e45c6a3b98ffcf9527e2
Depends-On: Ia3259846433980408f79d44f665e17e15670e8ee
---
M includes/session/CentralAuthSessionProvider.php
M tests/phpunit/CentralAuthSessionProviderTest.php
2 files changed, 6 insertions(+), 9 deletions(-)


  git pull ssh://gerrit.wikimedia.org:29418/mediawiki/extensions/CentralAuth 
refs/changes/53/295553/1

diff --git a/includes/session/CentralAuthSessionProvider.php 
b/includes/session/CentralAuthSessionProvider.php
index 13edb07..8a1fbfb 100644
--- a/includes/session/CentralAuthSessionProvider.php
+++ b/includes/session/CentralAuthSessionProvider.php
@@ -478,6 +478,12 @@
                return $this->centralCookieOptions['domain'];
        }
 
+       protected function getExtendedLoginCookies() {
+               $cookies = parent::getExtendedLoginCookies();
+               $cookies[] = 'User';
+               return $cookies;
+       }
+
        public function getRememberUserDuration() {
                // CentralAuth needs User and Token cookies to remember the 
user. The fallback to
                // sessions needs UserID as well, so if that one has shorter 
expiration, the remember
diff --git a/tests/phpunit/CentralAuthSessionProviderTest.php 
b/tests/phpunit/CentralAuthSessionProviderTest.php
index a9d4ee9..ff328a4 100644
--- a/tests/phpunit/CentralAuthSessionProviderTest.php
+++ b/tests/phpunit/CentralAuthSessionProviderTest.php
@@ -34,7 +34,6 @@
                $config = new HashConfig( [
                        'CookieExpiration' => 100,
                        'ExtendedLoginCookieExpiration' => 200,
-                       'ExtendedLoginCookies' => [ 'User', 'UserID', 'Token' ],
                        // these are needed by CookieSessionProvider::getConfig
                        'SessionName' => null,
                        'CookiePrefix' => '',
@@ -47,13 +46,5 @@
                $provider->setConfig( $config );
 
                $this->assertSame( 200, $provider->getRememberUserDuration() );
-
-               $config->set( 'ExtendedLoginCookies', [ 'UserID', 'Token' ] );
-
-               $this->assertSame( 100, $provider->getRememberUserDuration() );
-
-               $config->set( 'ExtendedLoginCookies', [ 'User', 'Token' ] );
-
-               $this->assertSame( 100, $provider->getRememberUserDuration() );
        }
 }

-- 
To view, visit https://gerrit.wikimedia.org/r/295553
To unsubscribe, visit https://gerrit.wikimedia.org/r/settings

Gerrit-MessageType: newchange
Gerrit-Change-Id: I229dbc9f097bb0efc5e3e45c6a3b98ffcf9527e2
Gerrit-PatchSet: 1
Gerrit-Project: mediawiki/extensions/CentralAuth
Gerrit-Branch: master
Gerrit-Owner: Mattflaschen <mflasc...@wikimedia.org>

_______________________________________________
MediaWiki-commits mailing list
MediaWiki-commits@lists.wikimedia.org
https://lists.wikimedia.org/mailman/listinfo/mediawiki-commits

[MediaWiki-commits] [Gerrit] Make CentralAuth explicitly say which cookies need to be ext... - change (mediawiki...CentralAuth)

Reply via email to