In T15080#1970, @speck wrote:Unfortunately this type of issue is in an area that's beyond my network/configuration experience. Is CloudFlare our NS provider?
- Queries
- All Stories
- Search
- Advanced Search
- Transactions
- Transaction Logs
Feed All Stories
All Stories
All Stories
Mar 29 2022
Mar 29 2022
Mar 25 2022
Mar 25 2022
golyalpha updated the task description for T15080: Intermittent DNS issues when attempting to visit we.phorge.it.
What you're talking about is more like mTLS (mutual TLS), that's not actually how WebAuthn works. (Though supporting mTLS for sign-ins might also be something worth looking into)
20after4 added a comment to T15081: Figure out if there are patches from Wikimedia's fork that are desirable to upstream in Phorge.
- e95157e39bf5 Show matching context from the document body in ferret search results
- This is not perfect but it generally works - display a snippet from the matched document and highlight the matched words - kind standard and expected from any full-text search engine. Probably not my best work as far as code quality / it's a bit hacky and performance may not be stellar, however, it's been in use at wikimedia for quite some time without any major issues that I'm aware of.
- bba62cf52435 Hide the "hidden" fields on custom form previews.
- This is a single line change to css that makes things a lot cleaner when you have a lot of custom forms with a lot of custom fields.
- submitted as D25037
- 9191d4838278 Make "task type" and date-type custom fields work in herald.
- 3d33d1cceac7 Implement Atom/RSS discovery on Phame blog pages
- ebfe30890b52 Add column sequence to the conduit api results for column.search
- This seems like an obvious omission from the conduit api for columns and the change is straightforward.
- submitted as D25038
- 893664bd44b8 EditEngine: 'Duplicate Form' action to create new forms from existing config.
- This makes it much easier to clutter up your custom forms with 100 variations of your forms. It also makes it much easier to make a new form vs. starting from scratch every time. It's sort of a hack and the custom form management UI needs a lot of improvement generally, this was just the minimum change I could implement to make life slightly easier for myself and fellow Wikimedia phab admins. Not sure it's a good idea in the upstream without further changes to go with it.
- 44a94dc04b3f Fix validation of "column" transaction type in "maniphest.edit"
fwiw, this is how I handled it in the wikimedia fork:
Ah interesting. My own preference would be updating PhabricatoPeopleProfileController as I would associate this more as a view-level change but looking again at how this is structured I don't think it would cause any issues and I don't feel too strongly about changing it.
In D25035#1059, @speck wrote:Real quick before landing -- should this change be made here in PhabricatorUser or would it be sufficient in PhabricatorPeopleProfileController? Placing it here affects the profile at the data model source which would likely cause the same blurb-scrub in any other location it might render, but it might also cause problems in areas which need to access the profile data for other reasons other than rendering, e.g. if a profile gets copied/cloned in memory then this might result in losing the profile data altogether. Updating only PhabricatoPeopleProfileController to call cleanupProfile() instead of within PhabricatorUser would only scrub it at the time it's being rendered (to the profile page at least).
Real quick before landing -- should this change be made here in PhabricatorUser or would it be sufficient in PhabricatorPeopleProfileController? Placing it here affects the profile at the data model source which would likely cause the same blurb-scrub in any other location it might render, but it might also cause problems in areas which need to access the profile data for other reasons other than rendering, e.g. if a profile gets copied/cloned in memory then this might result in losing the profile data altogether. Updating only PhabricatoPeopleProfileController to call cleanupProfile() instead of within PhabricatorUser would only scrub it at the time it's being rendered (to the profile page at least).
In D25035#1051, @speck wrote:I'm having trouble landing this, I keep getting 403 errors. I suspect it's a local configuration issue, though...
All that should be required to land is being in Blessed Committers I think, which you are a member of
Address code review comments
In T15080#1970, @speck wrote:Unfortunately this type of issue is in an area that's beyond my network/configuration experience. Is CloudFlare our NS provider?
I've only looked at the new auth frameworks briefly (WebAuthn, is there another standard too?). My basic understanding is that the browser provides the client with its own certificate which HTTP requests are able to include with it, as a means of providing authentication for the user. This seems like a reasonable thing to allow though I'd also be interested in learning more about the tech in general.
Unfortunately this type of issue is in an area that's beyond my network/configuration experience. Is CloudFlare our NS provider?
I'm having trouble landing this, I keep getting 403 errors. I suspect it's a local configuration issue, though...
Mar 24 2022
Mar 24 2022
Thank you for the review, @avivey !
Matthew triaged T15080: Intermittent DNS issues when attempting to visit we.phorge.it as High priority.
Matthew added a task to D25035: Hide the blurb of a user when that user is disabled: Unknown Object (Maniphest Task).
We should definitely focus on implementing WebAuthn, as that allows us to support almost every standard hardware key solution out there.
The upstream discussion is at https://secure.phabricator.com/T8787
Mar 23 2022
Mar 23 2022
Mar 22 2022
Mar 22 2022
dcog awarded T15076: Expand Calendar recurring events a Love token.
Mar 21 2022
Mar 21 2022
Closing this task now, to prevent it from turning into a perpetual task.
The choice to not allow administrators to edit profiles is a strange one... at the very least, we should probably upstream Mukunda's patch.
Another one popped up: https://we.phorge.it/p/seo-auckland/
Mar 20 2022
Mar 20 2022
Interestingly accessing /status on secure.phabricator.com seems to return a json object instead of ALIVE.
Mar 19 2022
Mar 19 2022
avivey awarded T15073: /status should be always allowed in anonymous mode a Like token.
Mar 17 2022
Mar 17 2022
Mar 16 2022
Mar 16 2022
I had experience with emails from my self-hosted mailserver not reaching Microsoft-hosted mailboxes. As far as I remember, their SMTP replies to "suspicious" mail servers with a message that includes a link to some sort of a form which the mail admin should fill out. That worked for me - might need to dig through the server logs to see the link though.
Might be worth it having the linter classes inherit from a language-specific class that would handle things like environment initialization and dependency installation.
I also created a Jitsi meeting and put that in the description of {E1}.
I turned on prototypes and created {E1}, adding everyone currently (individually) cc'd on this task as an invitee.
Yeah, I think we'd like to try and update arcanist to account for this with a general solution if possible and not making updates for each individual linter which might necessitate this. There's probably some general restructuring that needs to happen to account for the same odd scenario with Java and so forth.
Mar 15 2022
Mar 15 2022
In T15071#1840, @speck wrote:should we enable prototypes on this install to try and use the calendar application for organizing this event?
Checking the source in Arcanist repo, it seems like none of the python linters are actually configured to use an interpreter. (If I attempt to specify one for Pylint anyway, it fails with Got unexpected parameters: interpreter)
I think that's roughly what I ended up doing in https://secure.phabricator.com/D14632 for launching separate Java linters, where java had to be configured as the "interpreter" and checkstyle.jar (or whatever) configured as the "binary" (https://secure.phabricator.com/D15067 added the ability to pass flags to the "interpreter").
Phabricator has a Calendar application but is prototype. I believe it's mostly functional -- should we enable prototypes on this install to try and use the calendar application for organizing this event?
Mar 14 2022
Mar 14 2022
4pm-8pm GMT (6-10pm GMT+2) sounds good to me - I can even go up to ~midnight and looks like I'm the east-most.
Modern(ish) linters support a separate "interpreter" config - if that's set, they run $interpreter $binary $args rather then just $binary $args. Can this be utilized?
@20after4 per commits like https://secure.phabricator.com/D9202 the changes were abandoned - there is no MediaWiki auth provider in core
@MacFan4000 the mediawiki auth is in core afaik. There is some custom stuff for the wikimedia ldap setup but the oauth part was merged upstream ages ago.
Yeah admittedly what I did was just a hack because I didn't want to implement storage and UI for a new "hidden" boolean flag.
Mar 13 2022
Mar 13 2022
Right now,arc lint doesn't really allow for the activation of a virtual env. That's okay when I'm just running arc lint locally, because I can just activate the environment myself and run it in that environment.
Would be a very good way to use a break during the week, and totally flexible for weekends here in that timeframe.. not sure if many are 9-5'ers Mon-Fri
Based on the entries so far it seems like possible window of time for meeting would be 4pm-8pm GMT? That would mean 9am-1pm for GMT-6 and 6pm-10pm for GMT+2. If that time window seems reasonable would any day of the week be better than others?
For Google, you can sign up for a Cloud Identity Free tenant and then set up the Oauth app inside Google Cloud. The Cloud Identity free system is basically Google Workspace/GSuite's user management system only.
Should this be the responsibility of the linter/tester and not part of Arcanist itself? Updating arcanist to handle the many different environment-dependent systems for languages would mean accounting for nearly every language like Javascript/npm, Ruby/rubyenv, etc. right?
That would be useful, though we might not want all disabled accounts to have their profiles description hidden for accounts disabled which aren't spam.
On Wikipedia’s phabricator instance I implemented a patch that hides the profile text on disabled accounts which helps (slightly) to disincentivize spammers.
Mar 12 2022
Mar 12 2022
Mar 11 2022
Mar 11 2022
Mar 7 2022
Mar 7 2022
Content licensed under Creative Commons Attribution-ShareAlike 4.0 (CC-BY-SA) unless otherwise noted; code licensed under Apache 2.0 or other open source licenses. · CC BY-SA 4.0 · Apache 2.0