Last modified: 2014-01-08 18:55:25 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T56468, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 54468 - Using the secure API is breaking the Flickr upload (using HTTPSEverywhere)
Using the secure API is breaking the Flickr upload (using HTTPSEverywhere)
Status: RESOLVED INVALID
Product: MediaWiki extensions
Classification: Unclassified
UploadWizard (Other open bugs)
unspecified
All All
: Normal normal (vote)
: ---
Assigned To: Nobody - You can work on this!
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-09-23 15:03 UTC by Strainu
Modified: 2014-01-08 18:55 UTC (History)
8 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Strainu 2013-09-23 15:03:41 UTC 
This could be an upstream bug, either in HTTPSEverywhere or Flickr API, but I'm not sure.

When making a request for a flickr image such as https://secure.flickr.com/photos/sludgeulper/7447549052/in/photostream/ from UploadWizard while having HTTPSEverywhere  active, the API request to secure.flickr.com returns an empty result. When not having the extension active, the result is made to api.flickr.com and works as expected.
Comment 1 Strainu 2013-09-23 15:04:16 UTC 
A related improvement would be to use the secure API endpoint when the user is using https on the mediawiki site.
Comment 2 MZMcBride 2013-09-24 04:33:34 UTC 
(In reply to comment #1)
> A related improvement would be to use the secure API endpoint when the user
> is using https on the mediawiki site.

Only if it works. ;-)
Comment 3 Rob Lanphier 2013-10-10 17:41:31 UTC 

*** This bug has been marked as a duplicate of bug 42468 ***
Comment 4 Bryan Davis 2013-10-15 23:35:22 UTC 
The bug that we decided this duplicated seemed similar at the time, but it is actually very different.
Comment 5 Bryan Davis 2013-11-20 18:42:31 UTC 
I think that this is problem in the UploadWizard javascript triggered by HTTPSEverywhere plugin. https://api.flickr.com redirects to https://secure.flickr.com which causes the XHR request to hang/fail. This fix for this may be as easy as changing 'flickrApiUrl' in UploadWizard.config.php from '//api.flickr.com/services/rest/?' to ''https://secure.flickr.com/services/rest/?' making the request SSL/TLS protected for all users.
Comment 6 Tisza Gergő 2014-01-07 01:54:44 UTC 
Can't reproduce this. It seems Flickr changed how they handle HTTPS and there is no redirect now.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links