On Thu, Apr 24, 2025 at 2:48 PM Gergo Tisza <gti...@wikimedia.org> wrote: > > Collateral damage isn't really a concern with the Beta Cluster, it's meant > specifically for Wikimedia developers. > > Maybe we could just put the whole thing behind idp.wikimedia.org? I think > that can be done at the Apache level. Making it more different from > production is not great, but having to spend constant human effort on IP > blocks is less great.
I do agree that collateral damage in this testing/proving environment is not as impactful as preventing people from accessing our open knowledge projects. To my knowledge there is no automated authorization workflow for idp.wikimedia.org (or any other deployment of the CAS-SSO service). [0] I don't think it is reasonable at this point to block all automated uses of Beta Cluster. [0]: https://phabricator.wikimedia.org/T377372 Bryan -- Bryan Davis Wikimedia Foundation Principal Software Engineer Boise, ID USA [[m:User:BDavis_(WMF)]] irc: bd808 _______________________________________________ Wikitech-l mailing list -- wikitech-l@lists.wikimedia.org To unsubscribe send an email to wikitech-l-le...@lists.wikimedia.org https://lists.wikimedia.org/postorius/lists/wikitech-l.lists.wikimedia.org/
