ItamarWMDE created this task.
ItamarWMDE added projects: Wikidata, Mismatch Finder (Mismatch Finder - sprint
1).
TASK DESCRIPTION
Ensure that Wikidata users are able to authorize our app against Wikidata's
OAuth service by redirecting them to an authorization page from a login
endpoint. Users should also be able to "deauthorize" our app by using a logout
endpoint with some identifier (Either session cookie or token).
**Hints:**
- A log in flow might look something like this:
Request Login → Redirect → |(On Wikidata) Authorize → (Handled by Plugin or
Client) MW Access Tokens (per user) | → Callback → Respond with Authentication
Credentials (Username + JWT/Cookie)
- A log out flow might look something like this:
Request Logout with Authentication credentials → Clear MW Access Tokens →
Invalidate Authentication credentials
- In order to facilitate the authorization workflow, either one of the
following libraries may be used:
- Laravel Socialite +
https://github.com/supertassu/laravel-socialite-mediawiki
- https://github.com/wikimedia/mediawiki-oauthclient-php
TASK DETAIL
https://phabricator.wikimedia.org/T285327
EMAIL PREFERENCES
https://phabricator.wikimedia.org/settings/panel/emailpreferences/
To: ItamarWMDE
Cc: Lydia_Pintscher, Aklapper, ItamarWMDE, karapayneWMDE, Invadibot,
maantietaja, Akuckartz, Nandana, Lahi, Gq86, GoranSMilovanovic, QZanden,
Esc3300, LawExplorer, _jensen, rosalieper, Scott_WUaS, Wikidata-bugs, aude,
Mbch331
_______________________________________________
Wikidata-bugs mailing list -- [email protected]
To unsubscribe send an email to [email protected]
