+
+ // @todo: These are deprecated, and should be removed at some
+ // point (1.28 at the earliest, and see T121527). They were ok
+ // when the core cookie-based login was the only thing, but
+ // CentralAuth broke that a while back and
+ // SessionManager/AuthManager *really* break it.
+ $result['lgtoken'] = $user->getToken();
+ $result['cookieprefix'] = $this->getConfig()->get( 'CookiePrefix' );
+ $result['sessionid'] = $session->getId();