On Monday, March 2nd, 2026 at 5:25 PM, Jonathan Tweed via
[email protected]:
> If tools are running on WMCS, this will exempt you from the limits
> even when using OAuth 1.0.
>
> For tools outside WMCS, OAuth 1.0 consumers will work as long as you
> also send cookies as this will include a JWT cookie in the request
> that we can validate in place of an OAuth 2.0 access token.
[Wikimedia APIs/Rate
limits#Caveats](https://www.mediawiki.org/wiki/Wikimedia_APIs/Rate_limits#Caveats)
says however that "OAuth 1 access tokens are not supported by the rate limit
infrastructure. Requests using OAuth 1 tokens will be treated as
unauthenticated with respect to rate limiting." Which is what's going to happen?
>
_______________________________________________
Wikitech-l mailing list -- [email protected]
To unsubscribe send an email to [email protected]
https://lists.wikimedia.org/postorius/lists/wikitech-l.lists.wikimedia.org/
