[go: up one dir, main page]
More Web Proxy on the site http://driver.im/
Page MenuHomePhabricator
Create Task
Maniphest T194232

Restrict Global actions to specified wikis
Open, LowPublicFeature
Actions

Description

For improve transparency and auditability, we should be restrict global action to specific wikis only.

Details

SubjectRepoBranchLines +/-
Hide acc. management interface at wikis that are supposed to be view-onlymediawiki/extensions/CentralAuthmaster+87 -8
Customize query in gerrit

Related Objects
Search...

Event Timeline

Rxy created this task.May 9 2018, 3:57 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMay 9 2018, 3:57 AM
Rxy added a subtask: T31435: CentralAuth's Special:GlobalGroupMembership setup catch-22.May 9 2018, 3:58 AM
Rxy triaged this task as High priority.May 9 2018, 4:09 AM
Rxy moved this task from Backlog to Feature requests on the MediaWiki-extensions-CentralAuth board.
Rxy moved this task from Untriaged to High priority on the Stewards-and-global-tools board.
Legoktm subscribed.May 9 2018, 4:16 AM

Sounds like a good idea to me. IIRC there used to be a few bugs that required making rights changes on local wikis in case of weird user rights, but all of those should be fixed by now.

Ideally we'd also do the same treatment to global blocking as well.

MarcoAurelio subscribed.EditedMay 9 2018, 8:25 AM

From time to time, when a new extension is added to some but not all wikis (ie Newsletter or FlaggedRevs) I've been adding the rights to CommonSettings so we're able to manage those on GlobalGroupMembership via Meta, otherwise it is imposible for us to do so: https://gerrit.wikimedia.org/r/#/c/377274/

For Wikimedia wikis I agree global- actions should happen at Meta always, and also globalblocking indeed.

gerritbot subscribed.May 9 2018, 9:00 AM

Change 432048 had a related patch set uploaded (by Rxy; owner: Rxy):
[mediawiki/extensions/CentralAuth@master] Restrict global actions to specified wikis

https://gerrit.wikimedia.org/r/432048

gerritbot added a project: Patch-For-Review.May 9 2018, 9:00 AM
alaa subscribed.Jun 17 2018, 2:13 AM
Vvjjkkii renamed this task from [WIP] Restrict Global actions to specified wikis to zbdaaaaaaa.Jul 1 2018, 1:11 AM
Vvjjkkii removed Rxy as the assignee of this task.
Vvjjkkii added projects: CheckUser, Connected-Open-Heritage-Batch-uploads (RAÄ-KMB_1_2017-02), Tamil-Sites, Gamepress, Hashtags, Jade, KartoEditor, Language-2018-Apr-June, New-Editor-Experiences, Mail, TCB-Team (now WMDE-TechWish).
Vvjjkkii updated the task description. (Show Details)
Vvjjkkii removed subscribers: gerritbot, MarcoAurelio, Aklapper.
Rxy renamed this task from zbdaaaaaaa to [WIP] Restrict Global actions to specified wikis.Jul 1 2018, 8:40 AM
Rxy claimed this task.
Rxy updated the task description. (Show Details)
Rxy removed projects: TCB-Team (now WMDE-TechWish), Mail, New-Editor-Experiences, Language-2018-Apr-June, KartoEditor, Jade, Hashtags, Gamepress, Tamil-Sites, Connected-Open-Heritage-Batch-uploads (RAÄ-KMB_1_2017-02), CheckUser.
Rxy added a project: User-Rxy.Aug 6 2018, 7:54 PM
Rxy moved this task from Backlog to In progress - Development on the User-Rxy board.
Rxy renamed this task from [WIP] Restrict Global actions to specified wikis to Restrict Global actions to specified wikis.Sep 14 2018, 7:32 AM
Rxy added a subscriber: hoo.
Rxy closed subtask T31435: CentralAuth's Special:GlobalGroupMembership setup catch-22 as Resolved.Oct 16 2018, 6:29 PM
DannyS712 subscribed.Aug 23 2020, 1:29 AM
Aklapper edited projects, added Patch-Needs-Improvement; removed Patch-For-Review.Oct 14 2020, 8:41 PM
Rxy removed Rxy as the assignee of this task.Dec 13 2020, 10:03 AM
taavi merged a task: T272785: Disallow management of global account from outside of metawiki.Jan 23 2021, 7:38 PM
taavi added subscribers: Urbanecm, Aklapper.
gerritbot added a comment.Jan 23 2021, 7:59 PM

Change 432048 had a related patch set uploaded (by Urbanecm; owner: Rxy):
[mediawiki/extensions/CentralAuth@master] Restrict global actions to specified wikis

https://gerrit.wikimedia.org/r/432048

gerritbot added a project: Patch-For-Review.Jan 23 2021, 7:59 PM
Restricted Application removed a project: Patch-Needs-Improvement. · View Herald TranscriptJan 23 2021, 7:59 PM
CptViraj subscribed.Jan 25 2021, 12:33 PM
Zabe subscribed.May 8 2021, 1:53 PM
Urbanecm lowered the priority of this task from High to Low.Nov 19 2021, 11:30 PM

Being realistic about the prio here.

Zabe added a comment.Feb 26 2022, 11:57 PM

Is this still desired after T207531 and T208035?

Aklapper changed the subtype of this task from "Task" to "Feature Request".Nov 21 2022, 2:52 PM
Aklapper moved this task from Feature requests to Backlog on the MediaWiki-extensions-CentralAuth board.Nov 21 2022, 2:52 PM
Pppery edited projects, added Patch-Needs-Improvement; removed Patch-For-Review.Apr 2 2023, 11:51 PM
gerritbot added a comment.May 4 2024, 7:55 PM

Change #432048 abandoned by Zabe:

[mediawiki/extensions/CentralAuth@master] Hide acc. management interface at wikis that are supposed to be view-only

Reason:

very outdated

https://gerrit.wikimedia.org/r/432048

Pppery removed a project: Patch-Needs-Improvement.May 10 2024, 3:40 AM
Pppery awarded a token.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits