https://phabricator.wikimedia.org/T299307 Do you know why this problem seems to be unsolvable. None look after it.
Talk:Phabricator/Help
@Gat lombard Hi, I don't know why you'd think it's "unsolvable"... See Bug management/Development prioritization for general info. Thanks!
I got it, it's may not be a priority issue
'https://phab.wmflabs.org' provide us with message => Unable to load the "Arcanist" library. Put "arcanist/" next to "phabricator/" on disk.
Christian 🇫🇷 FR (talk) 20:29, 3 November 2022 (UTC)
This appears because Arcanist is missing or corrupted on this instance.
Hello! We have our wiki on Miraheze hosting and I wonder how difficult it is to apply our custom skin there. As I understand we need to request to add our custom skin to the list, right? How long will take to have it online? And if we do updates of the skin will we need to trequest every time the update?
Thank you!
Hi, this is Wikimedia Phabricator. I don't know which "the list" you have in mind, and we don't take anything online which is not Wikimedia Phabricator. I think you are in the wrong place and I wonder what made you ask here? :)
Oh, I see, I ended up here somehow from Miraheze site :)
You have to use their own instance and see their help pages.
I have a question related to this project
Where can I best go with this question?
Is this in phabricator? or somewhere else?
That project tag was created by User:Monica Pinedo Bajo (WMDE). I'd probably ask in a Wikidata place: https://www.wikidata.org/wiki/Wikidata:Main_Page/Contact
Thank you, I will send her an email
I bought a new phone and I cannot use the code provided by 2FA app on my new phone to log-in.
Before that, I reset my old phone and now I cannot use the code provided by 2FA app on my old phone either.
My one-time scratch codes don't work somehow.
I'm using the computer at home, the only device that "stay logged in" to post this task.
Please give me advice and help.
Thank you and regards,
Hi, Phabricator does not offer one-time scratch codes so something is not correct about this request. Could you clarify what this is about please?
It is resolved by Trust & Safety. Thanks a lot.
My bot [https://phabricator.wikimedia.org/p/AnoopBot/ account got disabled may i know the reason for disabling it
Hi, see Phabricator/Bots. Bot accounts should be marked as such, basically. :)
Ok, I won't be using that account anyway, earlier I had lost my account access so I had created phab account temporarily, by the way is it possible to request deletion of that account since there is no contribution from that account
Ah, sure! I've deleted the unused Phab account https://phabricator.wikimedia.org/p/AnoopBot/
Hi, I seem to have lost access to my phabricator account. It's asking me to give it a MFA code from my mobile phone app in order to log in, but I don't have any configured for Phab (and it doesn't accept my OKTA or Google MFA code). Â This page says an administrator can help me sort this out - @AKlapper (WMF) can you help? Thanks!
Hi - I am having the same issue, login is also not accepting my OKTA or Google MFA code. Requesting a reset as well. Thank you!
Hi, neither Okta nor Google have ever been involved with Phabricator multi-factor authentication.
2FA codes for the two Phabricator accounts got set up a long time ago according to phab:T318929. I'm not sure what's the best way to verify here; see also T306708.
@CBogen (WMF), @SNowick (WMF) Maybe a quick video call for verification makes most sense? Feel free to set up one or two (I'm in Central Europe) - thanks! (And sorry, need to be pretty strict with 2FA resets...)
Hi, I created a task to report a bug by mistake, it was already solved and I see it very quickly. Is it possible to delete it? More in general, is it possible or not to delete tasks? If yes, how? Thank you
He, we do not delete tasks. You could close them as invalid instead.
Hello i want to request deletion of files which were uploaded previous as profile picture.
Done
@AKlapper (WMF) can reset my 2fa for phabricator account https://phabricator.wikimedia.org/p/Anoop/ , i have added ci at https://en.wikipedia.org/wiki/User:~aanzx , if it's possible for 2FA reset i can mail you text
Hi, the CI was added only yesterday. That is problematic per Phabricator/Help/Two-factor Authentication Resets
Ok i will wait 1 month , thanks for responding
That will not solve the problem. Creating a CI should happen at least a month before losing 2FA access.
Ok, is it possible to remove my Wikimedia account from that account, so that I can create a new phabricator account, since I don't have any other option to recover account
How to have some second verification factor which allows someone else to know that you are in control of your Phabricator and your MediaWiki account? How to prove that you are you? That is what 2FA is for...if you have any ideas, please share them.
https://wikitech.wikimedia.org/wiki/Phabricator#Check_on_a_Phabricator_user is it possible to do email verification for 2fa reset.
I don't really see how that is related to 2FA... what if an attacker has also taken over your email address? As you have an LDAP account attached, maybe uploading a file into your home directory might be an option? But I could not verify this.
"This is the problem with multi-factor authentication. It's nearly worthless if we allow easy resets and completely inconvenient if we don't."
@AKlapper (WMF) , i suggested email verification because , when i uninstalled my authenticator app 2FA on my wikimedia user account through email confirmation, most of other 2FA reset are done through email verifcation or scratch/recovery code only, wouldn't it be more feasible to add additional ways to recover account.
Phabricator does not offers backup codes for multi-factor authentication. If you lose access to your second-factor device, you must have put your user committed identity hash on your wiki user page at least one month before requesting a multi-factor authentication reset.
On Phabricator/Help/Two-factor Authentication Resets it doesn't mention Creating a CI should happen at least a month before losing 2FA access
@AKlapper (WMF) you haven't clarified my above doubt
See my previous comment: What if an attacker has also taken over your email address? How to verify?
Of course it would be great to have additional ways to recover an account, I'd love someone to implement that in upstream Phabricator code. See also Phabricator/Help/Two-factor Authentication Resets for other options, e.g. if a third person comes to your mind for manual verification. See also my comment about LDAP above - do you have shell access to Toolforge to upload a file there, maybe?
(The page does mention, as your paste above comes from that page.)
I'd love to help but I don't know how. Again: "This is the problem with multi-factor authentication. It's nearly worthless if we allow easy resets and completely inconvenient if we don't."
unfortunately, since i have uninstalled my 2fa app without backing up code , i have lost access to all my 2fa codes for wikitech account also , i don't if anyone would to confirm i am the same person as requesting user , i had met THasan (WMF) sometime ago on a editathon would if that user confirms is it enough for 2fa reset
Or only other way is to create new accounts.
Moved to phab:T318172