Topic on Extension talk:VisualEditor

Question about Pasoid and HTTPS

Spas.Z.Spasov (talkcontribs)

I have the following configuration, that is working like a charm:

  • wiki/LocalSettings.php
$wgServer = "";


## Parsoid ----
wfLoadExtension( 'ParsoidBatchAPI' );

$wgVirtualRestConfig['modules']['parsoid'] = array(
                'url' => '',

        $wgSessionsInObjectCache = true;
        $wgVirtualRestConfig['modules']['parsoid']['forwardCookies'] = true;
  • /etc/mediawiki/parsoid/config.yaml
worker_heartbeat_timeout: 300000

    level: info
  - module: ../src/lib/index.js
    entrypoint: apiServiceWorker
        #localsettings: /etc/mediawiki/parsoid/settings.js
        - uri: ''
        #- uri: ''
        serverPort: 8142
        serverInterface: ''

I'm confused of then next sentence from the section Parsoid over HTTPS:

Setting up such a configuration allows you to avoid the security implications of transmitting parsoid cookies in cleartext.

So my question is:

Is the above configuration secure enough while only ports 80 and 443 are open into the firewall? And if the answer is "yes" - could we add a clarification note like the follow into the bottom of the section Parsoid over HTTPS?

You do not need to setup stunnel4 when the Parsoid service is on the same server as the MediaWiki instance.
Reply to "Question about Pasoid and HTTPS"