Page MenuHomePhabricator

Most extensions which add a user right should also add or extend a grant
Open, NormalPublic

Description

OAuth and bot passwords (and maybe other things, now that grants are in core) rely on $wgGrantPermissions to expose access to privileged functionality, but most extensions don't support it. Any extensions that defines a user right which can in some way influence use of the API should also create a grant for that right, or add it to some existing grant.

Event Timeline

Tgr created this task.Aug 6 2016, 8:36 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 6 2016, 8:36 PM
Udo_T added a subscriber: Udo_T.Aug 8 2016, 2:08 PM

What's the difference between a grant and a user group?

Tgr added a comment.Sep 12 2016, 6:09 AM

User groups are assigned to users. Grants are assigned to tools. When a tool acts through a user account, it will only have those rights which are available both through the user's groups and the tool's grants.

Tgr triaged this task as Normal priority.Mar 7 2017, 3:38 AM
Restricted Application added a subscriber: TerraCodes. · View Herald TranscriptMar 7 2017, 4:00 AM