https://bugzilla.wikimedia.org/show_bug.cgi?id=55420
Web browser: ---
Bug ID: 55420
Summary: Remove local wiki password hash when CentralAuth has
attached account
Product: MediaWiki extensions
Version: master
Hardware: All
OS: All
Status: NEW
Severity: normal
Priority: Unprioritized
Component: CentralAuth
Assignee: [email protected]
Reporter: [email protected]
CC: [email protected], [email protected],
[email protected]
Classification: Unclassified
Mobile Platform: ---
Having local wikis store password hashes and tokens of accounts that
authenticate against CentralAuth is an unnecessary liability, if that wiki has
their user table made public.
Obviously, if the account is detached, we need the local hash rewritten.
The hash is include under two circumstances:
* When a user attaches an account to CentralAuth, the local wiki's password
hash remains.
* If a user logs into a wiki where they don't have an account (global or
local), using their CentralAuth credentials, the password hash is stored in the
local wiki's database.
We should be able to remove the local hash on login, and could probably provide
a maintenance script too, although preventing a possible race condition with
the account being detached is problematic.
--
You are receiving this mail because:
You are the assignee for the bug.
You are on the CC list for the bug.
_______________________________________________
Wikibugs-l mailing list
[email protected]
https://lists.wikimedia.org/mailman/listinfo/wikibugs-l
