Commit graph

442 commits

Author SHA1 Message Date
MarcoAurelio 628af8fad4 Replace references to mobile apps to more generic 'authentication device'
Desktop programs for TOTP authentication also exist, so lets replace
'mobile app' to more generic 'authentication device' to cover all of
them. Improvements on the wording are welcome.

Change-Id: Id19ac30dc7ac36616b8e00b1b4c9e95eec8afc06
2016-12-07 14:28:28 +00:00
L10n-bot b8e146c4b2 Merge "Localisation updates from https://translatewiki.net." 2016-12-06 21:49:51 +00:00
jenkins-bot 9f2600331e Merge "Typo fix" 2016-12-06 21:49:08 +00:00
Translation updater bot 9e5b1563cb Localisation updates from https://translatewiki.net.
Change-Id: I2273265e7da610d5cdbb393073d5490003e0fe88
2016-12-06 22:45:54 +01:00
Translation updater bot 18b85f70b7 Localisation updates from https://translatewiki.net.
Change-Id: I2c89802a838cc3bced29fc244f9d6d19979d0281
2016-12-05 22:50:36 +01:00
Translation updater bot 432f5fac0e Localisation updates from https://translatewiki.net.
Change-Id: Iaaf1d7fea076ac09fcf3d85e27d3450d584f6879
2016-12-04 22:38:44 +01:00
Derk-Jan Hartman 622b79f312 OAuth -> OATH for used tokens memcache
Bug: T151536
Change-Id: Ib059cef70a86c6f0430719a799ce20c1b869d316
2016-12-04 13:20:41 +00:00
MarcoAurelio a7ee83ece6 Typo fix
Change-Id: Idb28f4d1963ba7fa75496444d864a9e199e9b86e
2016-12-03 17:27:26 +00:00
Translation updater bot e3091e4b98 Localisation updates from https://translatewiki.net.
Change-Id: I6fa16004100d4b146191dd0f11e5e90085f9f937
2016-12-02 22:18:43 +01:00
Justin Du ddd8d93867 Update Maintenance scripts to use $this->requireExtension()
Bug: T152139
Change-Id: I5d8979c297db95beec4c5df439beaa2b58f266cf
2016-12-01 15:19:13 -06:00
Translation updater bot e67a635e5c Localisation updates from https://translatewiki.net.
Change-Id: I64444bc217693e07dfff23637e8ece7a5f5fc6f4
2016-11-30 22:20:26 +01:00
Translation updater bot 7374d6740f Localisation updates from https://translatewiki.net.
Change-Id: I201e7deb6ae9df3e211be01af071295f0a47a8bf
2016-11-29 22:23:25 +01:00
Translation updater bot bc24aa63a3 Localisation updates from https://translatewiki.net.
Change-Id: I4261e2ad85dde546e78dd59a8be76631836d92f6
2016-11-28 22:30:22 +01:00
Translation updater bot e92097d375 Localisation updates from https://translatewiki.net.
Change-Id: I855db4b2d62c50d701673067045f92039f4bfdbe
2016-11-27 22:30:42 +01:00
jenkins-bot c4b7bcff1e Merge "Disable page was using the OAuth throttler instead of OATH" 2016-11-26 21:14:15 +00:00
Translation updater bot e0d8b84e2e Localisation updates from https://translatewiki.net.
Change-Id: I83c0bbe57cb4898f0f7e0528fbf0320fee90bf30
2016-11-25 22:52:16 +01:00
Translation updater bot fc87866530 Localisation updates from https://translatewiki.net.
Change-Id: I1c5b9698a22b45897bb76187eb881dd58fc0c19d
2016-11-24 22:21:14 +01:00
Derk-Jan Hartman 721e76883d Disable page was using the OAuth throttler instead of OATH
Follow-up to: Icbe5cdf
Bug: T151536
Change-Id: Id25eaa86f31aab20b1e597c0711b71ad109fbf77
2016-11-24 10:17:11 +00:00
Derk-Jan Hartman 333d7fe532 Improve legibility of secret and tokens
- add space char seperators and create groups of 4 chars
- use monospace font
- increase the size of the codes slightly

Bug: T150907
Change-Id: Idb99f48b2d9eae6acacca80be61203ca6404782c
2016-11-23 20:39:41 +01:00
Translation updater bot 4500b4a257 Localisation updates from https://translatewiki.net.
Change-Id: Idc34e1e770203b719661b74e3b103c8aca5a064e
2016-11-22 23:25:43 +01:00
jenkins-bot 4fe71849a9 Merge "Rename Special:OATH to Special:Two-factor authentication" 2016-11-22 21:44:34 +00:00
jenkins-bot 1fc19d6cc4 Merge "Trim surrounding whitespace and seperators from tokens" 2016-11-21 21:59:07 +00:00
L10n-bot c2092ee37c Merge "Localisation updates from https://translatewiki.net." 2016-11-21 21:43:37 +00:00
Translation updater bot a25bd92061 Localisation updates from https://translatewiki.net.
Change-Id: I2f9a19c619f6495090dfabc2698828355ae4ee2b
2016-11-21 22:41:00 +01:00
jenkins-bot fb9f5da66e Merge "Put initial focus on token field" 2016-11-21 21:38:56 +00:00
Translation updater bot d538555366 Localisation updates from https://translatewiki.net.
Change-Id: Id06612a31df71c502d000e87317a48a645ee1897
2016-11-20 22:20:00 +01:00
Translation updater bot a2811f3cd8 Localisation updates from https://translatewiki.net.
Change-Id: I31df306260cb8b3faf2e5016a13eb5f636804a32
2016-11-19 22:07:35 +01:00
Translation updater bot 7dea978967 Localisation updates from https://translatewiki.net.
Change-Id: Id9398a726b88c0e52e20a2434fca5cae67eb6114
2016-11-18 22:15:50 +01:00
jenkins-bot 8fdbebc9d3 Merge "Disable autocompletion of one-time tokens" 2016-11-18 18:41:24 +00:00
Translation updater bot 29a310f5eb Localisation updates from https://translatewiki.net.
Change-Id: I654a945028f7673735c4df29e486ca279ead40b0
2016-11-17 22:54:29 +01:00
Gergő Tisza 48d83e3d9c Disable autocompletion of one-time tokens
Bug: T141735
Change-Id: Ib75b078cf9b844fcde21758fcbf7ab6a1cd36187
Depends-On: Ic0539d5a61d9862e670d10686adc1e41f65d908e
2016-11-17 16:12:17 -05:00
Derk-Jan Hartman 372ef401b6 Trim surrounding whitespace and seperators from tokens
Google authenticator uses a space character as a group seperator.
We can thus expect users to enter such a separator and we should not
fail on that. Might as well trim whitespace too, as that is another
oft occuring user input mistake, that should not affect functionality.

Bug: T150603
Change-Id: I7334ed5dfaf933e61831438e2f86aa979cf9f51b
2016-11-17 16:30:49 +01:00
MarcoAurelio 0ac5c0fb71 Make OATHAuth messages use consistent "two-factor authentication" wording
Bug: T150597
Change-Id: I0fed5a9b3fd747b6f2f71834c0bfe9dc88bbefb8
2016-11-17 11:19:11 +01:00
Reedy 8e70c98ed7 Rename openstackmanager- to oathauth-
Change-Id: If0378e0c0a3fc08de410be0d0e39273df1002391
2016-11-16 22:49:31 +00:00
Derk-Jan Hartman dbee859adc Put initial focus on token field
It's not like people are going to do anything else here, so
autofocussing is allowed in this case (no accessibility problem)
and speeds up interaction.

Bug: T150861
Change-Id: I6b41cc763156b48d8e35fb6829f70f0eb01e5511
2016-11-16 22:18:42 +00:00
Derk-Jan Hartman bb4a4c6c37 Rename Special:OATH to Special:Two-factor authentication
A link names OATH is based because:
1: It's an abbreviation
2: It's too technical
3: It looks too similar to the more well know abb. OAuth

Bug: T150602
Change-Id: Id687d4089d03135061de716231b84b83bd4c0d84
2016-11-16 22:16:19 +01:00
jenkins-bot f49444400f Merge "Provide a stable method for checking whether a user has enabled OATH" 2016-11-16 03:41:39 +00:00
jenkins-bot 29d13e4431 Merge "Hide empty square for QR code with CSS for no-JS users" 2016-11-16 00:27:01 +00:00
jenkins-bot bf60bcd3ae Merge "Get rid of separate ext.oathauth module" 2016-11-16 00:23:46 +00:00
Gergő Tisza 160daf2c05 Provide a stable method for checking whether a user has enabled OATH
This makes it possible to check from another extension whether the
user has strong login security, without depending on internals
which can change at any time.

(The TwoFactorEnabled hook was intended for something like this
but it operates on $wgUser which makes it useless for logins.)

Change-Id: Ie15c45c9b29de0a0f926c2467808ca144f05e866
2016-11-15 23:13:59 +00:00
Translation updater bot 49a7f75244 Localisation updates from https://translatewiki.net.
Change-Id: I5097d595eda9f16b5ee69d9377af1e50fd3263f7
2016-11-15 22:57:09 +01:00
Kunal Mehta a6810b041d Hide empty square for QR code with CSS for no-JS users
Change-Id: Id557bce14a623d894e0b23123c8ef037ddd3cc53
2016-11-14 18:23:53 -08:00
Kunal Mehta bf4637200a Get rid of separate ext.oathauth module
It's only used as a dependency for one module, so it doesn't really make
sense to have it as a separate module.

Change-Id: I0936073358e98d236ce9440d92873a2ea3851e60
2016-11-14 18:23:53 -08:00
Translation updater bot 044d469af2 Localisation updates from https://translatewiki.net.
Change-Id: I23b091e822c4a3b27383b4591b33626009e3f1eb
2016-11-14 22:57:29 +01:00
Translation updater bot 0e0a6c95d8 Localisation updates from https://translatewiki.net.
Change-Id: I5c8e5e443d8f12e8822b2f4c6d8b5816c718cc0e
2016-11-13 22:50:13 +01:00
Hydriz 0b460de458 Declare issuer name in QR code when setting up 2FA
The issuer name is an optional but important feature that allows
the user to differentiate between different accounts used in the
same authenticator app. While we currently use a prefix in the
user account name, declaring an issuer makes it easier for the
user to differentiate.

Bug: T150596
Change-Id: I741dd671e79e0326dfe97bdaaf63b3997960d115
2016-11-13 07:11:03 +00:00
Kunal Mehta e317bf4610 Show preferences link if user has a key set, but no userright
If the user has a key set but not the oathauth-enable userright, still
show the link to Special:OATH so they can manage it.

This can occur when only restricted groups are allowed to use OATHAuth,
but the user database is shared across multiple wikis.

Bug: T150584
Change-Id: I2db8b47051b0857538e668d233f5cb8586c328a1
2016-11-12 16:25:03 -08:00
Translation updater bot dffa6b689f Localisation updates from https://translatewiki.net.
Change-Id: Id51db40cfe516ca52e84ce9cdc655dafd36c8d82
2016-11-12 22:55:22 +01:00
jenkins-bot cd72757e4d Merge "Allow override of Site prefix without changing sitename" 2016-11-07 19:40:05 +00:00
Translation updater bot e785a0f891 Localisation updates from https://translatewiki.net.
Change-Id: I2cd8706e96f2c2bfc5b49380300f6a072c8424b1
2016-11-03 23:32:06 +01:00