Thread:Extension talk:LDAP Authentication/Mediawiki CSRF (CVE-2010-1150) and LdapAuth plugin?/reply (2)

Further looking at the bug, I don't see how this could affect authentication extensions. Core is handling this, not the authentication extensions. If your bot/client application is written to handle the change, everything should just work. In fact, the web form was already doing this.