As mentioned earlier this week, we deployed an initial version of the OAuth extension to the test wikis yesterday. I wanted to follow up with a few more details about the extension that we deployed (although if you're just curious about OAuth in general, I recommend starting at oauth.net, or https://www.mediawiki.org/wiki/Auth_systems/OAuth):
* Use it: https://www.mediawiki.org/wiki/Extension:OAuth#Using_OAuth should get you started towards using OAuth in your application.
* Demo: Anomie setup a excellent initial app (I think counts as our first official, approved consumer) here https://tools.wmflabs.org/oauth-hello-world/. Feel free to try it out, so you can get a feel for the user experience as a user!
* Timeline: We're hoping to get some use this week, and deploy to the rest of the WMF wikis next week if we don't encounter any issues.
* Bugs: Please open bugzilla tickets for any issues you find, or enhancement requests-- https://bugzilla.wikimedia.org/enter_bug.cgi?product=MediaWiki%20extensions&...
And some other details for the curious:
* Yes, you can use this on your own wiki right now! It's meant to be used in a single or shared environment, so the defaults will work on a standalone wiki. Input and patches are welcome, if you have any issues setting this up on your own wiki.
* TLS: Since a few of you seem to care about https... The extension currently implements OAuth 1.0a, which is designed to be used without https (except to deliver the shared secret to the app owner, when the app is registered). So calls to the API don't need to use https.
* Logging: All edits are tagged with the consumer's id (CID), so you can see when OAuth was used to contribute an edit.
Enjoy!