i would like to know how to set my prefrences i looked in my history before and im bloked or i think i am because another ip is sharing my address and i have been thinking someone is using my ip address and email acct to do things i dont even know if this website is going to help me. can anyone give me advice?
Help talk:OAuth
i dont even know how to read your comment im sorry im learning how to use this sight
Are you looking for the place to make unblock requests?
Could help to understand the issue? I am using this endpoint to get an access token https://www.wikidata.org/w/rest.php/oauth2/access_token?client_credentials=client_credentials and providing client id and client secret
{
"error": "access_denied",
"error_description": "The resource owner or authorization server denied the request.",
"hint": "Client 4ab9e80d07a34633cdeab291fd8ead6a is not usable by user with ID 0",
"message": "The resource owner or authorization server denied the request."
}
4ab9e80d07a34633cdeab291fd8ead6a is an owner-only consumer, you should already have an access token for it. If you don't, just reset it via m:Special:OAuthConsumerRegistration/update/4ab9e80d07a34633cdeab291fd8ead6a.
How to my mind connecting Facebook to Wikipedia how to add? --White Gold AJ Gaspar (talk) 12:23, 14 January 2017 (UTC)
I would like to use Oauth to help people login or register on my wiki with sites such as Facebook, Twitter, Google, Microsoft etc. How do I go about that?
Look at the existing user identity extensions such as GoogleLogin, Facebook, TwitterLogin, ULogin...
GoogleLogin is well-maintained, the others probably not so much.
What key is used to sign the JWT (Bearer Token) returned.
$wgOAuth2PrivateKey
(as noted on the extension page).
That is the question I am asking. What is that variable set to by Wikipedia APi.
As the variable name might suggest, it's a private key.
And where can I find the public half of that key?
I don't think we are making it public. You are unlikely to need it, it's used by code that needs to authorize access based on OAuth grants.
In theory it could be made public though - if you have a use case, please file a task to discuss it.
~Is there some clarification on where/why Oauth is disabled for blocked IPs. I'm seeing some failed login attempts for unblocked users operating on schoolblocked IPs and I want to know what the exact check is. thanks.
Hi Adam, users shouldn't (can't) use OAuth to login-- the login api calls are explicitly disabled. Are you seeing failures when potential users are logging in to authorize the Consumer? Or is the Consumer's api calls failing, because it's running from a blocked IP?
@CSteipp (WMF) thanks for the reply and sorry for not noticing it. I'm talking about the latter, (API calls failing). They're logged in or reported as much.
I want to use batch processing in Quickstatements by I have this message : You can't create a new batch, because you are not autoconfirmed
Can someone help me obtain this confirmation. My account was created on november 1 and have made more than 30 contributions
d:Help:QuickStatements is probably a better place to get support for using the Quickstatements tool. I do see there a link to d:Wikidata:Autoconfirmed users which includes the text "Although the precise requirements for autoconfirmed status vary according to circumstances, most Wikidata user accounts that are more than four days old and have more than 50 edits are considered autoconfirmed."
Thank you BDavis
My application would like to know the usernames of Wikipedia users, so that people don't have to sign up for yet another service. It wouldn't actually run any action on Wikipedia. Does it make sense to use OAuth for that, or is there a better alternative?
Hi Dnaber,
You can retrieve a user's username using the API. The query you can use for this is: https://en.wikipedia.org/w/api.php?format=json&action=query&meta=userinfo
That said, I suspect what you're actually asking me is "Can my website somehow use OAuth as an authentication method, so that users can sign in using their Wikipedia credentials?". The answer to that is that you can, but you shouldn't. If it's being used for authentication, the OAuth protocol is susceptible to man-in-the-middle attacks. The use of HTTPS mitigates that somewhat, but the vulnerability is still theoretically there. We'd highly recommend not using OAuth for authentication.
We're exploring the possibility of making Wikimedia wikis an OpenID provider which would allow you to use Wikimedia credentials for authorisation. We don't know if or when we'll start working on that, though.
Please let me know if you need any more information.
This post was posted by Deskana (WMF), but signed as DGarry (WMF).
This post was hidden by Tgr (WMF) (history)
The above answer is now outdated. You can send an OAuth-authorized request to Special:OAuth/identify
which will return user identity in a JWT (signed JSON token). As long as you properly validate the signature, this is safe and does not suffer from the vulnerability mentioned above.
I receive consumer key and secret key from wiki.
I have config consumer key and secret key in phabricator.
and callback url in wiki.
but the phabricator give me a exception :
Unhandled Exception (“Exception”)
Expected ‘oauth_callback_confirmed’ to be ‘true’!
could you give some help?
At a wild guess, poor error handling in your client library, which receives an error and tries to verify it as if it would be a valid token (in which case indeed it should have an oauth_callback_confirmed field).
mediawiki as my wiki provider, phabricator as my consumer,
i use my wiki to try, https://github.com/wikimedia/mediawiki-oauthclient-php , demo directory , as my consumer, success.
and i add print commond, then the return parameter : key,secret, oauth_callback_confirmed .
but the phabricator as the cosumer, the phabricator give me a exception.
so, the wiki is wrong, or the phabricator is wrong?
the library use https://github.com/wikimedia/phabricator-extensions
We use the same setup for Wikimedia's Phabritcator so it can't be that wrong. Again, my best guess is that I think you are getting an error (which can be caused by a lot of things, wrong token configuration, out-of-sync clock, cache problems...) and Phabricator does not show the error because it does not recognize it is an error. willProcessTokenRequestResponse seems to do the right thing so maybe your wiki is returning a fatal error. Check your logs to see if that's the case.
@MModell (WMF) might be able to provide more insight.
thank you very much , i will try
What url do you have set for the callback?
You need to specify the callback url like this:
https://your.phabricator.url/auth/login/mediawiki:/
how do i search for application name with OAuth
You can get a list via Special:OAuthListConsumers. Search capabilities are very limited though.