On Fri, Apr 23, 2021 at 4:07 PM Denny Vrandečić dvrandecic@wikimedia.org wrote:
The settings in 10-WSOAuth.php end as follows:
$wgOAuthAuthProvider = "mediawiki";
$wgOAuthClientId = "[token]";
$wgOAuthClientSecret = "[secret]";
$wgOAuthRedirectUri = "http://annotation.wmcloud.org/w/index.php?title=Special:PluggableAuthLogin";
$wgOAuthUri = "https://meta.wikimedia.org/w/index.php?title=Special:OAuth";
and the OAuth settings on meta are as follows:
OAuth "callback URL"https://annotation.wmcloud.org/w/index.php?title=Special:PluggableAuthLoginA... consumer to specify a callback in requests and use "callback" URL above as a required prefix.NoApplicable grantsUser identity verification only, no ability to read pages or act on a user's behalf. I can see that meta states the callback URL with https and the settings without. Changing it in the settings doesn't seem to make a difference. I don't know if I can change it on Meta, or if I need to make a new application, but it doesn't look like the right solution anyway.
Your `$wgOAuthRedirectUri` should use the https protocol, but I don't think this is you root problem. https://annotation.wmcloud.org/w/index.php?title=Special:PluggableAuthLogin says "No such special page" and https://annotation.wmcloud.org/wiki/Special:Version shows no extensions at all installed. Did you maybe miss the step of running `vagrant provision` after you setup the roles and hiera config?
Bryan