This doc says bots should use OAuth to login.
But this doc says OATHAuth (and not Oauth), is bundled with MW.
Therefor, what should bots use?
Two extensions:
This doc says bots should use OAuth to login.
But this doc says OATHAuth (and not Oauth), is bundled with MW.
Therefor, what should bots use?
it links to this page, which says "Bots and other non-interactive applications should generally use owner-only OAuth consumers", which in turn links to this page, which says "To use it, the target wiki must have version 1.27 or higher of the OAuth extension installed."
Bots should use OAuth, as you already wrote. I do not understand the "But" in "But this doc says OATHAuth is bundled with MW". How is that related?
Update: because they don't do the same thing?
(still wondering why OAuth isn't bundled)
> it appears that OAuth and OathAuth have overlapping or duplicate functionality.
They don't. OAuth is a method for authorization, OATHAuth is an extension that provides 2nd factor authentication using TOTP (OATH is an industry standard). Their naming indeed is quite confusing.