Tasks By Project

Project: MediaWiki-extensions-CentralAuth

Switch to Active Tasks 81 Phabricator task(s).

Phabricator Link	Wiki Link	Status	Priority	Projects	Subtasks	Parent Tasks
T108253	T108253: Make sure CentralAuth login tokens work with two datacenters	resolved	Medium (orange)	Epic Patch-For-Review MediaWiki-extensions-CentralAuth (Done) Sustainability (Tag) WMF-deploy-2015-09-08_(1.26wmf22) (Backlog) WMF-deploy-2015-09-01_(1.26wmf21) (Backlog)	T111575: Make $wgSessionCacheType and $wgMainStash caches multi-DC ready	T88445: MediaWiki active/active datacenter investigation and work (tracking)
T111789	T111789: Disallow renaming own accounts with Special:GlobalRenameQueue	resolved	Lowest (sky)	GlobalRename (Review requested) User-Majavah (Pending review) Platform Team Workboards (External Code Reviews) (External Code Review Needed) MediaWiki-extensions-CentralAuth (GlobalRename) MW-1.36-notes (1.36.0-wmf.9; 2020-09-15)
T112730	T112730: Failure to OAuth after login on mobile	open	Medium (orange)	MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-User-login-and-signup (Backlog) Mobile (Triaged)		T156847: Core should be aware of the domain it is running on and render mobile domains where necessary
T120484	T120484: Create password-authentication service for use by CentralAuth	open	Medium (orange)	MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-Authentication-and-authorization (Backlog)	T88811: Develop use-cases & user stories for authnz service	T140813: Protect sensitive user-related information with a UserData / auth / session service
T134842	T134842: SpecialCentralAutoLogin calls User::saveSettings() on HTTP GET presend	open	Medium (orange)	Sustainability (Tag) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-Authentication-and-authorization (Backlog)		T92357: Fix database master queries from HTTP GET/HEAD before active-active multi-dc
T145545	T145545: "No active login attempt is in progress for your session." when trying to log in on wikisource.org	open	Medium (orange)	MediaWiki-extensions-CentralAuth (Incoming)		T156847: Core should be aware of the domain it is running on and render mobile domains where necessary
T150506	T150506: Avoid lazyImportLocalNames() master writes on GET requests (Run a script to backfill them once for all)	resolved	Medium (orange)	Sustainability (MediaWiki-MultiDC) (Discuss next) MW-1.36-notes (1.36.0-wmf.36; 2021-03-23) MediaWiki-extensions-CentralAuth (Incoming) User-Majavah (Done) Patch-For-Review Performance-Team (Radar) (Watching) MW-1.37-notes (1.37.0-wmf.4; 2021-05-04) Platform Team Workboards (Clinic Duty Team) (Waiting for Review)		T154552: ApiLogin should not open master connection to centralauth DB
T153815	T153815: Allow global groups to be assigned temporarily (expire)	open	Medium (orange)	Patch-For-Review Stewards-and-global-tools (Temporary-UserRights) (Backlog) MW-1.38-notes (1.38.0-wmf.17; 2022-01-10) Platform Team Workboards (External Code Reviews) (External Code Review Needed) Schema-change (Add / Create) MediaWiki-extensions-CentralAuth (Incoming)	T245413: Prepare CentralAuth db for global groups expiration
T154552	T154552: ApiLogin should not open master connection to centralauth DB	stalled	Medium (orange)	MediaWiki-Authentication-and-authorization (Backlog) MediaWiki-extensions-CentralAuth (Incoming) Sustainability (MediaWiki-MultiDC) (Later)	T150506: Avoid lazyImportLocalNames() master writes on GET requests (Run a script to backfill them once for all)
T154775	T154775: Add guiuserid for meta=globaluserinfo	open	Medium (orange)	MediaWiki-API (Non-core-API stuff) MediaWiki-extensions-CentralAuth (Incoming)		T21195: Make user IDs more readily available with the API
T158365	T158365: Session "{session}": Metadata merge failed: {exception}	open	Medium (orange)	Platform Engineering (Icebox) MediaWiki-Authentication-and-authorization (Backlog) MediaWiki-extensions-CentralAuth (Incoming) Wikimedia-production-error (Older)
T167163	T167163: API error response for list=user&usprops=cancreate with similar username has '$1' instead of real error code.	open	Needs Triage (violet)	MediaWiki-API (Non-core-API stuff) AntiSpoof (Backlog) MediaWiki-extensions-CentralAuth (Incoming)
T180858	T180858: CentralAuth API list=globalallusers should capitalize the first letter	open	Needs Triage (violet)	InteractionTimeline (Defects) MediaWiki-API (Needs details or plan) Patch-For-Review MediaWiki-extensions-CentralAuth (Incoming)
T181869	T181869: Error "Session {session}: Metadata has an anonymous user, but a non-anon user was provided"	open	Medium (orange)	Platform Team Workboards (Clinic Duty Team) (Later) MediaWiki-Authentication-and-authorization (Backlog) Wikimedia-production-error (Older) MediaWiki-extensions-CentralAuth (Incoming)
T193254	T193254: Global renames get stuck at metawiki	resolved	High (red)	Wikimedia-Site-requests (Working on) Event-Platform (Backlog) GlobalRename (Closed) MediaWiki-Core-JobQueue Wikimedia-production-error (Untriaged) Analytics (Analytics-Radar) (Radar - Watching) Services (done) MediaWiki-extensions-CentralAuth (Incoming) SRE (Backlog)		T190327: FY17/18 Q4 Program 8 Services Goal: Complete the JobQueue transition to EventBus
T193671	T193671: Allow searching global rename log by old username via API	open	Needs Triage (violet)	MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-API (Needs Code) GlobalRename (Backlog)
T200938	T200938: Special:CentralAuth should provide the same blocking information as Special:BlockList does	resolved	Medium (orange)	MW-1.35-notes (1.35.0-wmf.5; 2019-11-05) Patch-For-Review MediaWiki-User-management (User blocking) Anti-Harassment (The Letter Song) (Done (2019-20: Q2)) Platform Team Workboards (Clinic Duty Team) (External Code Review Completed) MediaWiki-extensions-CentralAuth (Feature requests) Stewards-and-global-tools (Untriaged)	T226657: Add a mechanism to determine if a namespace is a default MW namespace T229613: CentralAuth tests are broken
T200988	T200988: Edit count in Special:CentralAuth not equals entry count in Special:Contributions	resolved	Needs Triage (violet)	MediaWiki-extensions-CentralAuth (Incoming)		T195550: Increment edit count for all page moves, not just Special:MovePage moves
T202095	T202095: Require that CentralAuth's global groups all use lowercase internal identifiers	resolved	Needs Triage (violet)	MW-1.36-notes (1.36.0-wmf.28; 2021-01-26) User-Majavah (Pending review) MediaWiki-extensions-CentralAuth (Incoming) Platform Team Initiatives (Decoupling (CDP2)) (Backlog)		T202094: Deprecate Title::getUserCaseDBKey()
T203283	T203283: Special:CreateAccount causes ApiValidatePassword to log a DBPerformance warning from CentralAuth	resolved	Needs Triage (violet)	Platform Engineering (Inbox) MediaWiki-API (Non-core-API stuff) MediaWiki-extensions-CentralAuth (Incoming) Performance-Team (Radar) (Watching)
T204145	T204145: PHP Warning: session_id(): Cannot change session id when headers already sent	declined	Needs Triage (violet)	Platform Team Workboards (Done with CPT) MediaWiki-Authentication-and-authorization (Backlog) PHP 7.2 support (MediaWiki core) MediaWiki-extensions-CentralAuth (Incoming) Platform Engineering (PHP7 (TEC4))
T205992	T205992: Allusers query auprop=rights does not include global rights (and is possibly wrong in other ways)	open	Needs Triage (violet)	MediaWiki-extensions-CentralAuth (Internal bugs) MediaWiki-API (Needs Code)
T212082	T212082: Do not block page moves with AbuseFilter on LocalRenameJob page moves	resolved	High (red)	User-Daimona (Done) Stewards-and-global-tools (Untriaged) MediaWiki-extensions-CentralAuth (Incoming) AbuseFilter (Backlog) GlobalRename (Closed) MW-1.34-notes (1.34.0-wmf.23; 2019-09-17) Platform Team Workboards (Clinic Duty Team) (External Code Review Needed)
T212284	T212284: Fatal db error "Could not select database 'centralauth'" (sometimes also 'metawiki')	resolved	Medium (orange)	Platform Team Workboards (Clinic Duty Team) (EM Sign Off) MediaWiki-extensions-CentralAuth (Incoming) Wikimedia-Rdbms (Rdbms library) Wikimedia-production-error (Resolved) MW-1.34-notes (1.34.0-wmf.10; 2019-06-18) Services (next) Platform Engineering (Needs Cleaning - Security, stability, performance, and scalability (TEC1)) Performance-Team (Radar) (Watching)
T224607	T224607: CentralAuth, MassMessage and WikibaseLexeme build failures	resolved	High (red)	Wikimedia-production-error (ARCHIVED -- Shared Build Failure) (Resolved) MassMessage (Backlog) Platform Engineering (Decoupling (CDP2)) MW-1.34-notes (1.34.0-wmf.13; 2019-07-09) Platform Team Workboards (Done with CPT) Wikidata (in progress) Wikidata Lexicographical data (incoming) MediaWiki-extensions-CentralAuth (Incoming)
T226840	T226840: Consistent HTTP 503 Error on some urls for some logged-in users (CentralAuth Set-Cookie storm)	open	Medium (orange)	Patch-For-Review SRE (Backlog) MediaWiki-extensions-CentralAuth (Incoming) Performance-Team (Radar) (Watching) MW-1.34-notes (1.34.0-wmf.13; 2019-07-09) TimedMediaHandler (To sort) Sustainability (Incident Followup) Platform Engineering (Tracking/Watching) Traffic-Icebox (Backlog)
T227772	T227772: Fix or remove capability to override user rights for the current request	resolved	Unbreak Now! (pink)	ArticleFeedbackv5 (Backlog) Platform Engineering (Inbox) MediaWiki-extensions-CentralAuth (Incoming) GraphViz (Backlog) MW-1.34-notes (1.34.0-wmf.14; 2019-07-16) Stewards-and-global-tools (Untriaged)
T229155	T229155: globaluserinfo should show global blocks	open	Needs Triage (violet)	GlobalBlocking MediaWiki-API (Non-core-API stuff) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-Blocks (Backlog)
T229610	T229610: "View the status" link in "Your account is currently being renamed or merged" message links to Special:GlobalRenameProgress/$1	resolved	Medium (orange)	GlobalRename (Closed) User-Urbanecm (Waiting on review) Platform Team Workboards (Clinic Duty Team) (External Code Review In Progress) MW-1.35-notes (1.35.0-wmf.1; 2019-10-08) MediaWiki-extensions-CentralAuth (Incoming)
T229613	T229613: CentralAuth tests are broken	resolved	High (red)	ci-test-error (Backlog) Anti-Harassment (The Letter Song) (Done (2019-20: Q2)) MediaWiki-extensions-CentralAuth (Incoming)		T200938: Special:CentralAuth should provide the same blocking information as Special:BlockList does
T230153	T230153: WebResponse: Cannot modify header information - headers already sent by SpecialCentralAutoLogin.php	duplicate	Medium (orange)	Platform Team Workboards (Clinic Duty Team) (Backlog) Commons (Incoming) Wikimedia-production-error (Aug2019/1.34.wmf.17+) MediaWiki-extensions-CentralAuth (Incoming)
T237505	T237505: Globaluserinfo API module should allow getting data for more than one user at once	open	Medium (orange)	Anti-Harassment (Tracking work by others) Platform Team Workboards (External Code Reviews) (External Code Review Needed) User-Urbanecm (Waiting on review) Patch-For-Review MediaWiki-extensions-CentralAuth (Incoming)
T239523	T239523: Discrepancy between local and global email status	resolved	Needs Triage (violet)	MediaWiki-extensions-OAuth (Backlog) Discourse (Backlog) MediaWiki-extensions-CentralAuth (Incoming) Platform Team Workboards (Clinic Duty Team) (Done) MW-1.36-notes (1.36.0-wmf.27; 2021-01-19)
T241940	T241940: No option to continue querying for more results in globalallusers API	open	Medium (orange)	Platform Engineering (Icebox) MediaWiki-API (Non-core-API stuff) MediaWiki-extensions-CentralAuth (Incoming)
T242994	T242994: CentralAuth needs uses of global $wgUser removed	stalled	Medium (orange)	MW-1.35-notes (1.35.0-wmf.37; 2020-06-16) MW-1.36-notes (1.36.0-wmf.11; 2020-09-29) MediaWiki-extensions-CentralAuth (Incoming) User-DannyS712 (Later) Technical-Debt (Unsorted)	T291515: PHP Deprecated: $wgUser reassignment detected &#91 Called from MediaWiki\Extension\CentralAuth\Special\SpecialCentralLogin::execute&#93	T245959: WMF deployed extensions need uses of global $wgUser removed [tracking]
T243123	T243123: Login to at least en.wikipedia.beta.wmflabs.org and commons.wikimedia.beta.wmflabs.org sometimes fails with `There seems to be a problem with your login session`	resolved	Medium (orange)	MediaWiki-extensions-CentralAuth (Incoming) Beta-Cluster-Infrastructure (To Triage) MediaWiki-Core-Tests (Selenium) Quality-and-Test-Engineering-Team (QTE) (Inbox) Platform Team Workboards (Clinic Duty Team) (Done) MediaWiki-User-login-and-signup (Backlog) User-zeljkofilipin (Waiting... 🐢)
T243652	T243652: Calls to LogPage::addEntry should pass a user	resolved	Needs Triage (violet)	MediaWiki-extensions-StalkerLog GlobalBlocking MediaWiki-extensions-Interwiki (Backlog) MW-1.35-notes (1.35.0-wmf.21; 2020-02-25) MediaWiki-extensions-Farmer MediaWiki-General MediaWiki-extensions-LiquidThreads MediaWiki-extensions-BlockAndNuke MediaWiki-extensions-Cargo (Doing) MediaWiki-extensions-RevisionCommentSupplement MediaWiki-extensions-AutoProxyBlock MediaWiki-extensions-Other MediaWiki-extensions-Sudo Technical-Debt (Unsorted) User-DannyS712 (Resolved (deprecation)) MediaWiki-extensions-CloseWikis SocialProfile (Backlog) Social-Tools (Backlog) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-extensions-Approved-Revs (Backlog)		T242935: Deprecate core fallbacks to $wgUser
T244899	T244899: CentralAuth should work with postgres	stalled	Needs Triage (violet)	MediaWiki-extensions-CentralAuth (Incoming) PostgreSQL (Backlog)	T259376: Migrate CentralAuth to Abstract Schema
T245413	T245413: Prepare CentralAuth db for global groups expiration	resolved	Medium (orange)	MW-1.35-notes (1.35.0-wmf.21; 2020-02-25) Patch-For-Review Schema-change (Add / Create) MediaWiki-extensions-CentralAuth (Incoming) Stewards-and-global-tools (Temporary-UserRights) (Backlog)		T153815: Allow global groups to be assigned temporarily (expire)
T246943	T246943: Login failed/disappeared during 2FA	open	Medium (orange)	MediaWiki-Authentication-and-authorization (Backlog) Platform Team Workboards (Clinic Duty Team) (Later) MediaWiki-extensions-OATHAuth (Backlog) MediaWiki-extensions-CentralAuth (Incoming)
T249859	T249859: Unable to merge CentralAuth patches (master does not satisfy mwext-php72-phan-seccheck-docker in CI)	resolved	High (red)	MediaWiki-extensions-CentralAuth (Incoming) ci-test-error (Backlog) MW-1.35-notes (1.35.0-wmf.30; 2020-04-28) phan-taint-check-plugin (Backlog) Platform Team Workboards (Clinic Duty Team) (Ready (WIP:5))
T252934	T252934: Hard deprecate manually constructing MovePage objects	resolved	Needs Triage (violet)	Wikidata (incoming) Growth-Team (Inbox) MediaWiki-extensions-CentralAuth (Done) MediaWiki-extensions-Translate (maintenance and operational issues) PageCuration (Backlog) MW-1.37-notes (1.37.0-wmf.19; 2021-08-16) MediaWiki-Page-rename Growth-Team-Filtering MediaWiki-extensions-Renameuser (Backlog) StructuredDiscussions (Backlog) Cognate (Backlog) Technical-Debt (Deprecation process) (2019) Platform Team Workboards (MW Expedition) (On the train) User-DannyS712 (In progress) Patch-For-Review MediaWiki-extensions-WikibaseRepository (Backlog)
T254822	T254822: CentralAuth's group membership is not reliable	resolved	Unbreak Now! (pink)	MW-1.35-notes (1.35.0-wmf.36; 2020-06-09) User-Urbanecm (Waiting on review) MediaWiki-User-management (Backlog) MediaWiki-extensions-CentralAuth (Incoming)		T234921: Factor group membership management out of User class
T255309	T255309: Remove UserRightsProxy and replace it's usages with UserGroupManager	open	Needs Triage (violet)	MW-1.37-notes (1.37.0-wmf.23; 2021-09-13) Platform Team Initiatives (Decoupling (CDP2)) (Backlog) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-User-management (User rights) Platform Team Workboards (MW Expedition) (UserStore pile)		T234921: Factor group membership management out of User class T275148: Prepare User group methods for hard deprecation
T258718	T258718: ConfigException: HashConfig::get: undefined option: 'CookieSameSite'	resolved	High (red)	ci-test-error (Backlog) MW-1.34-release (Blocker) Platform Engineering (Inbox) MediaWiki-extensions-CentralAuth (Incoming)
T259376	T259376: Migrate CentralAuth to Abstract Schema	open	Needs Triage (violet)	MediaWiki-extensions-CentralAuth (Incoming)		T244899: CentralAuth should work with postgres T261912: Convert WMF Deployed Extensions to Abstract Schema
T260485	T260485: CentralAuth uses wrong actor ID when locally suppressing the user (CVE-2020-25869)	resolved	High (red)	Security-Team (Watching) MediaWiki-User-management (Backlog) MediaWiki-extensions-CentralAuth (Incoming) MW-1.35-release (Not a blocker) Platform Engineering (Tracking/Watching) MW-1.36-notes (1.36.0-wmf.18; 2020-11-17) Anti-Harassment (Untriaged) User-Urbanecm (Analytics/Under discussion) MW-1.35-notes MW-1.34-notes MW-1.31-release-notes MediaWiki-Blocks (Backlog) Security	T261143: Fix misattribution of block due to bad values in the ipblocks ipb_by_actor field T261325: Fix rows in ipblocks that point to a non-existing user in ipb_by_actor field, due to T260485
T261034	T261034: CentralAuth calls "UserInvalidateEmailComplete" hook which doesn't exist, but "InvalidateEmailComplete" exists	resolved	Medium (orange)	Platform Engineering (Inbox) MW-1.36-notes (1.36.0-wmf.6; 2020-08-25) MediaWiki-extensions-CentralAuth (Incoming)
T261143	T261143: Fix misattribution of block due to bad values in the ipblocks ipb_by_actor field	resolved	Medium (orange)	Platform Team Workboards (Clinic Duty Team) (Done) Wikimedia-Site-requests (Backlog) Security MediaWiki-extensions-CentralAuth (Incoming) Anti-Harassment (Untriaged)		T260485: CentralAuth uses wrong actor ID when locally suppressing the user (CVE-2020-25869)
T261325	T261325: Fix rows in ipblocks that point to a non-existing user in ipb_by_actor field, due to T260485	declined	High (red)	Platform Team Workboards (Clinic Duty Team) (Ready (WIP:5)) Security MW-1.36-notes (1.36.0-wmf.11; 2020-09-29) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-Blocks (Backlog) User-Urbanecm (Reviewing) Anti-Harassment (Untriaged)		T260485: CentralAuth uses wrong actor ID when locally suppressing the user (CVE-2020-25869)
T261752	T261752: API: Make list=users display status of globally locked users	open	Needs Triage (violet)	MediaWiki-API (Non-core-API stuff) MediaWiki-extensions-CentralAuth (Incoming) Platform Engineering (Feature Requests to Review)
T263207	T263207: The `UserrightsPage` class is not safe to extend	open	Medium (orange)	Platform Team Workboards (MW Expedition) (UserStore pile) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-extensions-Other MediaWiki-User-management (User rights) User-DannyS712 (Reports) Patch-For-Review
T263530	T263530: Table 'metawiki.globaluser' doesn't exist on query	duplicate	High (red)	Platform Team Workboards (Clinic Duty Team) (Later) MediaWiki-extensions-CentralAuth (Incoming) Wikimedia-production-error (Untriaged) MediaWiki-General
T264798	T264798: CentralAuth should not emit central cookies when creating a local session	open	Low (yellow)	Security-Team (Watching) MediaWiki-extensions-CentralAuth (Incoming) SecTeam-Processed (Completed) Platform Engineering (Icebox)
T267273	T267273: [arwiki] Submitting a POST on a form redirected to immediately after account creation sometimes logs user out	open	High (red)	MW-1.38-notes (1.38.0-wmf.13; 2021-12-13) GrowthExperiments (Backlog) Growth-Team (Current Sprint) (In Progress) MediaWiki-extensions-CentralAuth (Incoming) Patch-For-Review Platform Engineering (Inbox)
T268617	T268617: Create a variation of the CentralAuthTokenSessionProvider based on an Authorization header	resolved	High (red)	MediaWiki-extensions-WikimediaApiPortalOAuth MediaWiki-extensions-CentralAuth (Incoming) Platform Team Workboards (Green) (Done) MW-1.36-notes (1.36.0-wmf.21; 2020-12-08)		T264637: API Portal login doesn't automatically log in to Meta
T269680	T269680: MediaWiki logging indexing conflict on 'session' for 'session-ip' channel	resolved	Medium (orange)	Platform Team Workboards (Clinic Duty Team) (Later) MediaWiki-Authentication-and-authorization (Backlog) MediaWiki-extensions-CentralAuth (Incoming) MW-1.35-notes MediaWiki-Debug-Logger MW-1.36-notes (1.36.0-wmf.31; 2021-02-16) observability (Radar) Patch-For-Review
T270846	T270846: Update CentralAuth to use the new HookContainer/HookRunner system	open	Needs Triage (violet)	Platform Team Initiatives (New Hook System) User-Majavah (Working on) MediaWiki-extensions-CentralAuth (Incoming) MW-1.38-notes (1.38.0-wmf.12; 2021-12-06)		T263353: Update all Wikimedia production extensions to use the new HookContainer/HookRunner system
T273511	T273511: Convert CentralAuthUtilityService to Authority instead of PermissionManager	resolved	Medium (orange)	MediaWiki-extensions-CentralAuth (Incoming) Platform Team Workboards (MW Expedition) (On the train) MW-1.36-notes (1.36.0-wmf.33; 2021-03-02)		T254838: Move User::changeableGroups and User::changeableByGroup to UserGroupManager
T274817	T274817: Convert DatabaseBlock and AbstractBlock to UserIdentity, and make them cross-wiki aware.	open	High (red)	MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-Blocks (Backlog) Patch-For-Review User-Zabe (Backlog) Platform Team Workboards (MW Expedition) (UserStore pile) MW-1.38-notes (1.38.0-wmf.12; 2021-12-06)		T281972: ActorStore::checkDatabaseDomain: InvalidArgumentException: DB connection domain does not match when suppressing via Special:CentralAuth (CVE-2021-36128) T291849: Create a DatabaseBlockStoreFactory in order to make DatabaseBlockStore a proper cross-wiki store T291994: Properly support cross-wiki blocking
T275030	T275030: Avoid using User ::isUsableName, ::isCreatableName, ::getCanonicalName	resolved	Medium (orange)	RegexBlock (Backlog) MediaWiki-extensions-FlaggedRevs (Backlog) BlueSpice (Backlog) ConfirmEdit (CAPTCHA extension) (Backlog) MediaWiki-extensions-OpenStackManager (Backlog) MediaWiki-extensions-Auth_remoteuser (Backlog) Patch-For-Review Growth-Team (Inbox) MediaWiki-extensions-Approved-Revs (Backlog) Growth-Team-Filtering AbuseFilter (Backlog) Platform Team Workboards (MW Expedition) (On the train) MediaWiki-extensions-Other Notifications (Backlog) MediaWiki-extensions-CentralAuth (Incoming) MW-1.37-notes (1.37.0-wmf.5; 2021-05-11) Technical-Debt (Deprecation process) (Untriaged) MW-1.36-notes (1.36.0-wmf.33; 2021-03-02) MediaWiki-extensions-LdapAuthentication (Backlog) MediaWiki-extensions-Translate (maintenance and operational issues)		T274211: Hard-deprecate soft-deprecated User methods
T275960	T275960: Partially failed user suppression left revisions visible, with rev_deleted=0	open	Low (yellow)	Platform Team Workboards (Clinic Duty Team) (Later) MediaWiki-Logevents (Backlog) MediaWiki-User-management (Backlog) MediaWiki-Revision-deletion MediaWiki-extensions-CentralAuth (Incoming)
T276035	T276035: Avoid using User ::getDefaultOptions, ::getDefaultOption	resolved	Medium (orange)	MediaViewer (Backlog) MW-1.37-notes (1.37.0-wmf.3; 2021-04-27) MediaWiki-extensions-Scribunto (Backlog) MediaWiki-extensions-WikimediaEvents MediaWiki-extensions-PdfHandler (Backlog) Platform Team Workboards (MW Expedition) (On the train) MediaWiki-extensions-LiquidThreads Technical-Debt (Deprecation process) (Untriaged) Patch-For-Review MediaWiki-extensions-CentralAuth (Incoming) MW-1.36-notes (1.36.0-wmf.36; 2021-03-23)	T278257: PreferencesList extension: Pass the UserOptionsLookup service to the DefaultPreferencesFactory in PreferencesListUtils class	T274211: Hard-deprecate soft-deprecated User methods
T276094	T276094: Avoid using User ::addGroup, ::removeGroup, ::getAllGroups, ::clearNotification	duplicate	Needs Triage (violet)	Technical-Debt (Deprecation process) (Untriaged) Patch-For-Review MediaWiki-extensions-CentralAuth (Incoming) Platform Team Workboards (MW Expedition) (On the train) Wikibase (3rd party installations) (Backlog) MediaWiki-extensions-Translate (Backlog) StructuredDiscussions (Backlog) MW-1.37-notes (1.37.0-wmf.9; 2021-06-07) MassMessage (Backlog) BetaFeatures (Backlog) GlobalCssJs (Backlog) Growth-Team (Inbox) Notifications (Backlog) MediaWiki-extensions-LdapAuthentication (Backlog) AbuseFilter (Backlog) MW-1.36-notes (1.36.0-wmf.36; 2021-03-23) MediaWiki-extensions-UserMerge (Backlog)		T274211: Hard-deprecate soft-deprecated User methods
T276316	T276316: Argument 1 passed to MediaWiki\User\UserNameUtils::getCanonical() must be of the type string, null given, called in /srv/mediawiki/php-1.36.0-wmf.33/extensions/CentralAuth/includes/CentralAuthGroupMembershipProxy.php on line 48	resolved	High (red)	Security MediaWiki-extensions-CentralAuth (Incoming) Wikimedia-production-error (Mar 2021) Platform Team Workboards (MW Expedition) (On the train) Patch-For-Review MW-1.36-notes (1.36.0-wmf.34; 2021-03-09)
T276739	T276739: Get Wikimedia added to disconnect.me entity list	declined	Low (yellow)	Browser-Support-Firefox (Tag) MediaWiki-extensions-CentralAuth (Incoming) Platform Team Workboards (Clinic Duty Team) (Later)
T277074	T277074: Convert CentralIdLookup to UserIdentity and Authority [hard]	resolved	Medium (orange)	MediaWiki-User-management (Backlog) MediaWiki-extensions-CentralAuth (Incoming) Platform Team Workboards (MW Expedition) (Authority pile)
T277687	T277687: Deprecated cross-wiki access to User. Expected: 'eswiki', Actual: the local wiki. Pass expected $wikiId. [Called from User::getId]	duplicate	Needs Triage (violet)	User-brennen (Logs/Train) MediaWiki-extensions-CentralAuth (Incoming) MW-1.36-notes (1.36.0-wmf.36; 2021-03-23) Patch-For-Review Security-Team (Incoming) Platform Team Workboards (MW Expedition) (Unsorted pile) Wikimedia-production-error (Mar 2021) Security
T278392	T278392: Storage solution for cross-datacenter tokens	open	Medium (orange)	Patch-For-Review MediaWiki-extensions-OAuth (Backlog) Performance-Team (Next: Goal / Oct-Dec '21) MediaWiki-extensions-CentralAuth (Incoming) ConfirmEdit (CAPTCHA extension) (Backlog) Sustainability (MediaWiki-MultiDC) (Later)		T267270: Determine multi-dc strategy for CentralAuth
T281837	T281837: extensions/CentralAuth - Use UserGroupManager instead of User group methods	resolved	Medium (orange)	Platform Team Workboards (MW Expedition) (On the train) MW-1.37-notes (1.37.0-wmf.12; 2021-06-28) MediaWiki-extensions-CentralAuth (Incoming) MW-1.36-notes (1.36.0-wmf.37; 2021-03-30)		T275148: Prepare User group methods for hard deprecation
T281972	T281972: ActorStore::checkDatabaseDomain: InvalidArgumentException: DB connection domain does not match when suppressing via Special:CentralAuth (CVE-2021-36128)	resolved	Lowest (sky)	SecTeam-Processed (Completed) MediaWiki-extensions-CentralAuth (Incoming) Security-Team (Our Part Is Done) Security Wikimedia-production-error (May 2021) Patch-For-Review Platform Team Workboards (MW Expedition) (UserStore pile) MW-1.36-notes (Backlog) MediaWiki-User-management (Backlog) MW-1.38-notes (1.38.0-wmf.9; 2021-11-16) MW-1.36-release (Not a blocker) MW-1.37-notes Stewards-and-global-tools (Untriaged)	T274817: Convert DatabaseBlock and AbstractBlock to UserIdentity, and make them cross-wiki aware.
T281990	T281990: extensions/CentralAuth - use SessionProvider ::init, ::postInitSetup instead of the setters of SessionProvider	resolved	Medium (orange)	Platform Team Workboards (MW Expedition) (Unsorted pile) MediaWiki-extensions-CentralAuth (Incoming) MW-1.37-notes (1.37.0-wmf.5; 2021-05-11) Technical-Debt (Deprecation process) (Untriaged)
T283365	T283365: CentralAuthUser is sometimes loaded from the primary database on GET requests	duplicate	Needs Triage (violet)	Wikimedia-Rdbms (Untriaged) Performance-Team (Radar) (Limbo) MediaWiki-extensions-CentralAuth (Incoming) Platform Engineering (Inbox)
T283736	T283736: extensions / CentralAuth - use SessionProviderTestTrait::initProvider instead of SessionProvider::init in tests	resolved	Medium (orange)	MediaWiki-extensions-CentralAuth (Incoming) MW-1.37-notes (1.37.0-wmf.9; 2021-06-07) Platform Team Workboards (MW Expedition) (Waiting for Review) Patch-For-Review		T283709: Create SessionProviderTestTrait to facilitate testing of an SessionProvider
T286490	T286490: PHP Deprecated: Deprecated cross-wiki access to MediaWiki\User\UserIdentityValue. Expected: the local wiki, Actual: 'enwiki'. Pass expected $wikiId. [Called from MediaWiki\User\UserIdentityValue::getId]	resolved	Medium (orange)	Platform Team Workboards (MW Expedition) (On the train) MediaWiki-extensions-CentralAuth (Incoming) MW-1.37-notes (1.37.0-wmf.16; 2021-07-26) Wikimedia-production-error (July 2021)
T291515	T291515: PHP Deprecated: $wgUser reassignment detected [Called from MediaWiki\Extension\CentralAuth\Special\SpecialCentralLogin::execute]	resolved	High (red)	Wikimedia-production-error (Sep 2021) User-DannyS712 (Awaiting review and deployment) MW-1.38-notes (1.38.0-wmf.1; 2021-09-21) Platform Engineering (Inbox) MediaWiki-extensions-CentralAuth (Incoming)		T242994: CentralAuth needs uses of global $wgUser removed
T291983	T291983: Create a BlockRestrictionStoreFactory in order to make BlockRestrictionStore a proper cross-wiki store	open	High (red)	Anti-Harassment (MediaWiki-Blocks) User-Zabe (Backlog) MediaWiki-Blocks (Backlog) MediaWiki-extensions-CentralAuth (Incoming) Patch-For-Review Platform Engineering (Inbox)		T291994: Properly support cross-wiki blocking
T291994	T291994: Properly support cross-wiki blocking	open	High (red)	Anti-Harassment (MediaWiki-Blocks) Platform Engineering (Inbox) MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-Blocks (Backlog) User-Zabe (Backlog)	T274817: Convert DatabaseBlock and AbstractBlock to UserIdentity, and make them cross-wiki aware. T291849: Create a DatabaseBlockStoreFactory in order to make DatabaseBlockStore a proper cross-wiki store T291983: Create a BlockRestrictionStoreFactory in order to make BlockRestrictionStore a proper cross-wiki store T292375: Figure out how to force-logout users cross-wiki
T298223	T298223: Global suppressions throw 'Deprecated cross-wiki access' warnings	open	Needs Triage (violet)	Wikimedia-production-error (Dec 2021) Platform Engineering (Inbox) MediaWiki-extensions-CentralAuth (Incoming)
T37220	T37220: Allow per-session log out	open	Low (yellow)	MediaWiki-extensions-CentralAuth (Incoming) MediaWiki-User-login-and-signup (Backlog) MediaWiki-Authentication-and-authorization (Backlog)		T58212: Add a feature to track and terminate specific login sessions
T87889	T87889: Convert CentralAuth to use extension registration	resolved	Needs Triage (violet)	MediaWiki-extensions-CentralAuth (Done)		T87875: Convert all Wikimedia-deployed extensions and skins to use extension registration