Page MenuHomePhabricator

Most extensions which add a user right should also add or extend a grant
Open, MediumPublic

Description

OAuth and bot passwords (and maybe other things, now that grants are in core) rely on $wgGrantPermissions to expose access to privileged functionality, but most extensions don't support it. Any extensions that defines a user right which can in some way influence use of the API should also create a grant for that right, or add it to some existing grant.

Related Objects

StatusSubtypeAssignedTask
OpenNone
ResolvedMarcoAurelio
Resolveddemon
Resolvedaude
ResolvedMusikAnimal
ResolvedMusikAnimal
ResolvedAnomie
DeclinedNone
ResolvedJJMC89
ResolvedJJMC89
ResolvedDaimona
OpenNone
InvalidNone
ResolvedJJMC89
OpenNone
ResolvedUrbanecm
OpenNone
ResolvedDannyS712
OpenNone
ResolvedJJMC89
ResolvedJJMC89

Event Timeline

Tgr created this task.Aug 6 2016, 8:36 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 6 2016, 8:36 PM
Udo_T added a subscriber: Udo_T.Aug 8 2016, 2:08 PM

What's the difference between a grant and a user group?

Tgr added a comment.Sep 12 2016, 6:09 AM

User groups are assigned to users. Grants are assigned to tools. When a tool acts through a user account, it will only have those rights which are available both through the user's groups and the tool's grants.

MarcoAurelio added a subscriber: MarcoAurelio.
Tgr triaged this task as Medium priority.Mar 7 2017, 3:38 AM
Restricted Application added a subscriber: TerraCodes. · View Herald TranscriptMar 7 2017, 4:00 AM