Page MenuHomePhabricator
Create Task
Maniphest T129108

Revisionundelete role should be created
Open, Needs TriagePublic
Actions

Description

Just like the page deletion where the "delete" and "undelete" rights are separated, a separate role should be created called "revisionundelete". When a user attempts to change the visibility of a page in such a away that any component that was formerly hidden (text, summary or user/IP) will become visible, this right should be verified.

For those changes that only change visibility from visible to invisible (e.g. hiding the username of an edit the summary of which was formerly hidden), only the revisiondelete right should suffice.

Related Objects
Search...

Event Timeline

Huji created this task.Mar 7 2016, 6:45 PM
Restricted Application added subscribers: JEumerus, Aklapper. · View Herald TranscriptMar 7 2016, 6:45 PM
Huji added a subtask: T128914: deleterevision alone does not provide any effective permission to the users.Mar 7 2016, 6:46 PM
Aklapper triaged this task as Low priority.Mar 8 2016, 1:24 PM
lfaraone lowered the priority of this task from Low to Lowest.Mar 11 2016, 2:43 AM
lfaraone subscribed.

I imagine for most purposes the auditability of the deletion log prevents abuse here. The amount of work involved to implement this request correctly makes me sceptical that it's worthwhile.

Florian closed subtask T128914: deleterevision alone does not provide any effective permission to the users as Resolved.Oct 14 2016, 2:13 PM
Vogone reopened subtask T128914: deleterevision alone does not provide any effective permission to the users as Open.Jun 10 2017, 4:11 PM
lfaraone closed subtask T128914: deleterevision alone does not provide any effective permission to the users as Resolved.Jul 4 2017, 9:30 PM
MGChecker subscribed.Feb 2 2018, 10:16 PM
Ammarpad merged a task: T235600: Separate 'deleterevision' and 'undeleterevision' rights.Apr 18 2020, 7:11 AM
Ammarpad added subscribers: Strainu, Ammarpad, Jrogers-WMF.
Ammarpad unsubscribed.
DannyS712 subscribed.Apr 18 2020, 7:22 AM

See also T234051: Patroller right changes to ro.wp

Strainu raised the priority of this task from Lowest to Needs Triage.Apr 18 2020, 9:55 AM
In T129108#2110864, @lfaraone wrote:

I imagine for most purposes the auditability of the deletion log prevents abuse here. The amount of work involved to implement this request correctly makes me sceptical that it's worthwhile.

Aș you can see from T234051 there are valid use cases here that warrant this change. While there are on-wiki solutions, it's better to solve the problem in MediaWiki.

Amorymeltzer subscribed.Apr 18 2020, 10:04 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL