Extension:CentralAuth/API

Tokens

CentralAuth introduces three new tokens:

centralauthtoken
setglobalaccountstatus
deleteglobalaccount

centralauthtoken

CentralAuth allows your code to authenticate on the foreign wiki as the user currently logged in on the local wiki using a central authentication token (centralauthtoken). Using those, one can make API calls to any wiki participating in the same single sign-on system, guaranteeing that the same associated account will be used for actions on both wikis even if the user is not logged in on the foreign wiki (doesn't have a session cookie for that domain).

First, acquire a token using action=centralauthtoken request to the local wiki. A token is only valid for a single request, and will become invalid after 10 seconds.

api.php?action=centralauthtoken [try in ApiSandbox]

Result
{ "centralauthtoken": { "centralauthtoken": "138aa2df87605832076ac89c207f37ed1c3b01b" } }

Then, pass the token to any CORS request to the foreign wiki via the centralauthtoken parameter. When making a POST CORS request, the parameter must be part of the preflight request and thus it must be in the URL, not the POST data. You can use the mediawiki.ForeignApi ResourceLoader module to handle this for you.

api.php?action=query&meta=userinfo&centralauthtoken=138aa2df87605832076ac89c207f37ed1c3b01b [try in ApiSandbox]

setglobalaccountstatus

The preferred method to obtain a setglobalaccountstatus token depends on the MediaWiki version:

Versions 1.24 and later: action=query&meta=tokens
Versions 1.20-1.23: action=tokens

deleteglobalaccount

The preferred method to obtain a deleteglobalaccount token depends on the MediaWiki version:

Versions 1.24 and later: action=query&meta=tokens
Versions 1.20-1.23: action=tokens

The following documentation is the output of Special:ApiHelp/query+globalallusers, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/query+globalallusers

The following documentation is the output of Special:ApiHelp/query+globalgroups, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/query+globalgroups

The following documentation is the output of Special:ApiHelp/query+globaluserinfo, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/query+globaluserinfo

The following documentation is the output of Special:ApiHelp/centralauthtoken, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/centralauthtoken

The following documentation is the output of Special:ApiHelp/deleteglobalaccount, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/deleteglobalaccount

The following documentation is the output of Special:ApiHelp/setglobalaccountstatus, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/setglobalaccountstatus

The following documentation is the output of Special:ApiHelp/globaluserrights, automatically generated by the pre-release version of MediaWiki that is running on this site (MediaWiki.org).

Special:ApiHelp/globaluserrights

This article is issued from Mediawiki. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.