Last modified: 2012-01-12 09:38:48 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T31896, the corresponding Phabricator task for complete and up-to-date bug report information.
Bug 29896 - Set $wgSecureLogin = true for arbcom_dewiki
Set $wgSecureLogin = true for arbcom_dewiki
Status: RESOLVED LATER
Product: Wikimedia
Classification: Unclassified
Site requests (Other open bugs)
unspecified
All All
: Normal enhancement (vote)
: ---
Assigned To: Nobody - You can work on this!
: shell
Depends on: 20643 31335
Blocks:
  Show dependency treegraph
 
Reported: 2011-07-14 16:07 UTC by Raimond Spekking
Modified: 2012-01-12 09:38 UTC (History)
5 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---


Attachments

Description Raimond Spekking 2011-07-14 16:07:41 UTC
Per request of the German arbcom please set $wgSecureLogin = true for arbcom_dewiki.
Comment 1 Brion Vibber 2011-07-14 18:07:17 UTC
Note that this setting won't be useful until bug 20643 (serving HTTPS from the same hostname & URL path structure) is done, as this feature simply replaces 'http' with 'https' in the link.

This is still a work in progress, and has not yet been deployed for https://arbcom.de.wikipedia.org.

Actually, depending on the settings it might still not work; the current code assumes that $wgServer starts with 'http://' on the http view, which it may not if it's just '//hostname' for protocol-relative links.
Comment 2 p858snake 2011-07-15 12:09:49 UTC
(In reply to comment #0)
> Per request of the German arbcom please set $wgSecureLogin = true for
> arbcom_dewiki.

WONTFIXing this, our cluster isn't currently setup for this and wouldn't work (from my understanding of how we have all the different parts mashed together)). 

Continue to log in via the secure server.

This may one day be possible with ryan's and roan's work on improving the secure access but that will be rolled out for everything when its ready so a separate bug isn't really that required.

(CCing Ryan and Roan on)
Comment 3 Raimond Spekking 2011-10-03 19:40:08 UTC
Reopening because full https support works now: https://arbcom.de.wikipedia.org/
Comment 4 Ryan Lane 2011-10-03 20:03:22 UTC
Ugh. Wikis with subdomain names like this are seriously problematic. If you notice, HTTPS works, but there's a certificate error since it doesn't match *.wikipedia.org.

We should actually look at moving sub-subdomains like this to some other name. arbcom-de maybe?
Comment 5 Brion Vibber 2011-10-03 20:13:00 UTC
Arrrrrrrggggggggh!

I assume this would also affect en.m.wikipedia.org etc?
Comment 6 Ryan Lane 2011-10-03 20:16:23 UTC
Sure does. Thankfully, it seems mobile won't be using a different URL at some point in the future, so that won't be a problem.
Comment 7 Sam Reed (reedy) 2011-10-04 17:07:04 UTC
Barring the certificate error, is it ok to set wgSecureLogin?
Comment 8 Ryan Lane 2011-10-04 17:25:22 UTC
I think we should set it as default, and disable it on any wikis with a certificate error. We definitely should *not* enable it on wikis with certificate errors.
Comment 9 Roan Kattouw 2011-10-04 17:27:35 UTC
(In reply to comment #8)
> I think we should set it as default, and disable it on any wikis with a
> certificate error. We definitely should *not* enable it on wikis with
> certificate errors.
Can we hold off on that until I familiarize myself with what $wgSecureLogin actually does, and whether that'll work with our setup?
Comment 10 krd 2011-11-21 10:05:23 UTC
There will be new arbcom-de members next week, so I like to bring up this case again. Can you please give us an update on this issue? Thank you.
Comment 11 Ryan Lane 2011-11-21 18:05:10 UTC
We need to rename this wiki (and all wikis like it) to something like arbcom-de.wikipedia.org, if it would like to have HTTPS support.
Comment 12 krd 2011-11-21 18:09:59 UTC
For the current arbcom.de.wikipedia.org I'm speaking with community concensus, and we like to use https only and disable http completely, or have a permanent redirect to the https login, if possible.
If renaming is neccessary, please go ahead.
Thank you.
Comment 13 krd 2012-01-12 09:38:48 UTC
Is there any update?

Note You need to log in before you can comment on or make changes to this bug.


Navigation
Links