Frank,
Yes, my patch no longer supports 1.3. If you could add it to the CVS
version, that would be good. Also, it would be nice if it was either in a
comment to 814, or linked to from there.
Thanks,
Ryan Lane
Naval Oceanographic Office
> -----Original Message-----
> From: wikitech-l-bounces(a)wikimedia.org
> [SMTP:wikitech-l-bounces@wikimedia.org] On Behalf Of Frank Wales
> Sent: Friday, February 18, 2005 11:37 AM
> To: Wikimedia developers
> Subject: RE: [Wikitech-l] Client certificate-based user login
> mechanism
>
> Ryan,
>
> Thanks for replying.
>
> On Fri, 2005-02-18 at 08:29 -0600, Lane, Ryan wrote:
> > This sounds like a good thing to possibly integrate with my LDAP patch
> > (http://bugzilla.wikipedia.org/show_bug.cgi?id=814).
> > Many organizations are going to smart cards, and use LDAP for
> > authentication. Thomas and I are working on integrating his email
> > notification with my LDAP patch, maybe I'll be able to integrate this as
> > well.
>
> Sure, why not? How should I proceed? Shall I e-mail you a patch
> and some notes on what I've done, and you can quickly give me your
> opinion on the approach, or shall I go ahead and add them as
> a comment to bug 814, which might seem somewhat tangential to
> anyone reading it who doesn't see this exchange? I note that
> the bug includes patches for a version I'm not currently
> using (my patch is against 1.3.9) -- I'm happy to move to
> the latest CVS version on a dev box and redo it, if User.php
> is a lot different since 1.3.9. Let me know, so I don't
> clutter up the bug commentary; thanks.
>
> [I presume just posting stuff on this list would be overly
> noisy for others, so I won't follow up more here. Anyone
> else interested in the details of what I've done should just
> ping me directly.]
> --
> Frank Wales [frank(a)limov.com]
>
> _______________________________________________
> Wikitech-l mailing list
> Wikitech-l(a)wikimedia.org
> http://mail.wikipedia.org/mailman/listinfo/wikitech-l
This sounds like a good thing to possibly integrate with my LDAP patch
(http://bugzilla.wikipedia.org/show_bug.cgi?id=814).
Many organizations are going to smart cards, and use LDAP for
authentication. Thomas and I are working on integrating his email
notification with my LDAP patch, maybe I'll be able to integrate this as
well.
Ryan Lane
Naval Oceanographic Office
> -----Original Message-----
> From: wikitech-l-bounces(a)wikimedia.org
> [SMTP:wikitech-l-bounces@wikimedia.org] On Behalf Of Frank Wales
> Sent: Thursday, February 17, 2005 11:23 PM
> To: Wikimedia developers
> Subject: [Wikitech-l] Client certificate-based user login mechanism
>
> On Wed, 2005-02-16 at 07:20 +0100, Thomas Gries wrote:
> > I have such a patch for loadFromSession() see
> > http://bugzilla.wikimedia.org/show_bug.cgi?id=1360 Auto-login /
> > Auto-account-creation by hostname for intranet MediaWikis. The patch
> > code itself has not yet been uploaded but is rather short.
> >
> > Brion and Marcus: let me know, if you are interested - pls .study for
> > this the text on the bugzilla; then I would revisited my code and upload
>
> > the patch as a diff.
>
> In related news, I've just written a first working version of a patch
> to loadFromSession() which logs you in as the Common Name from a
> client certificate presented by your browser as part of the SSL
> handshake to a secure Apache server. Not very elegant yet, but
> it seems to work okay. In effect, it punts the problem of
> getting the user's credentials up to Apache, but for what we're
> doing, that makes more sense anyway.
>
> My questions are:
>
> 1) anyone interested in the patch (with documentation on how
> to set up Apache to pass in the bits MW needs, etc., once
> I get the time to scribble some down)?
>
> 2) ought I to append it to Thomas's bug #1360 discussion, or
> should this go elsewhere?
>
> Note that I'm still in the middle of tweaking this for production
> use, and since I only started looking at MW's code a few hours
> ago, I probably have some cleaning up to do before it's very
> presentable.
>
> But I'm happy to toss it out with some notes anyway for comment,
> especially if it turns out that I'm doing something majorly wrong.
> --
> Frank Wales [frank(a)limov.com]
>
> _______________________________________________
> Wikitech-l mailing list
> Wikitech-l(a)wikimedia.org
> http://mail.wikipedia.org/mailman/listinfo/wikitech-l
I was prepared to say that I'm against the idea until I tried it.
For me the key is: I can edit other people's posts. This keeps it a
wiki, and this has very important social implications.
I would be opposed to much use of talk pages that allow for
discussions that don't let other people edit.
It is very important as a matter of mutual trust that we *can* edit
comments, even if we almost *never* do, as a matter of custom.
Public restaurants might be much safer if every table was in a
different room with a locked door. That way, no one could hit each
other. But it's good for society that we sit at restuarants
peacefully together. Sure, people *could* hit each other, but they
*don't*. (Usually :-))
I like it.
--Jimbo
Jake Waskett (jake(a)waskett.org) [050219 01:03]:
> The NTL proxy server 62.252.192.12 is blocked again. Could someone unblock?
> It says clearly on that IP's user page that it is a known proxy - why do
> admins persist in blocking anyway?
Because what gets blocked is the username - the IP is then blocked next
time he tries logging in. This is effective against violators on fixed or
dialup IP numbers, but is not so good when the IP is a large ISP proxy. An
exceptions list may be useful for the blocking code ...
cc'd to wikitech-l - is this reasonably easy to implement? Anyone got any
time to do so?
- d.
Hi all,
After my previous e-mail about Wikiforum [1] I got many feedbacks from
users, but only few from developers. I made all requested fix, then,
…nothing. I can't personally force developers to look closely at this
extension likewise I can't force them to install it even if there is no
problem. Hoping a strong mobilization of the French community can do
that, we organized a pool few days ago [2]. The result is limpid: 55
French users are now requesting this extension (0 against and 5 that
prefer "real" forum or Usenet). 55 users for a pool in 2 days is very a
lot for the French community (ie. vote to decide arbitrators' rules have
actually 30 votes in 9 days) and I hope you will respect it by:
- Install this extension "as it" on French Wikipedia.
or:
- Look at the source [3] and give me a list of needed
security/performance fix.
You can still test this extension on Amgine's server [4].
Thanks,
Aoineko
[1] Description:
-- French: http://fr.wikipedia.org/wiki/Wikip%C3%A9dia:Wikiforum
-- English (few information): http://meta.wikimedia.org/wiki/Wikiforum
[2] Pool to implement Wikiforum on French Wikipedia:
http://fr.wikipedia.org/wiki/Wikip%C3%A9dia:Prise_de_d%C3%A9cision/Mise_en_…
[3] Sources are on the CVS repository at "/extensions/wikiforum" (please
don't change the pagination while I'm developing)
[4] Test server: http://test-wikipedia.saewyc.net/index.php/Special:Forum
We are currently using a single sign on system
which sets the HTTP_AUTH variable via an Apache
plugin. I have a requirement to tie this into
the MediaWiki tool. Plus I need to have auto
login, since the users all must be authenticated
before accessing the wiki tool.
After trying unsuccessfully to use the AuthPlugin.php
piece, I came up with a hack which appears to work.
The hack is replacing the IP address piece with the
username.
The change is in the includes/Setup.php file, by
changing the _SERVER["REMOTE_ADDR"] to _SERVER['HTTP_AUTH']
Any reason why this won't work? My test bed everything
seems cool. Also is there a way to do an auto login so
this shows up when they first hit the initial page?
Thanks,
-Marcus
> Is there any hope for stats to be fixed and run again ?
The Wikipedia archives for some major languages have been restructured (*),
in order to reduce database size. The conversion took many weeks, during
which no new dumps were made. About a week ago dumps in the new format
became available. Now the stats scripts need a non-trivial update.
Unfortunately I have been very busy lately. I hope to start working on this
within a week or so.
By the way: I'll probably need to turn away from the dumps towards direct
SQL access after the major database scheme change planned for the next major
MediaWiki release. This will probably mean the stats job should become
restartable and data should be collected incrementally. As I can only work
seriously on that after the databases shuffle has been completed, or a good
test set has become available, expect a similar outage by then.
Erik Zachte
----
(*) 10 article revisions are grouped together, compressed and stored in one
database entry, other 9 entries contain a pointer to this entry.
Brion and Tim talked about this in Berlin, and explained this was critical
to keep database server up and running, as there was only free disk space
left for a week or two and no more open slots to plug in extra disks.
I would like to automatically generate MediaWiki pages based on an external
data source. These pages may link to one another and have associated images.
How can I do this, say from Java or PhP? Thanks.