Page MenuHomePhabricator

Add 'interface-editors' to the list of users who can enable OATHAuth on WMF wikis
Closed, ResolvedPublic


Those holding 'interface-editor' rights have access to the sensitive 'editinterface' permission among others which allows to edit the site MediaWiki files. They should be allowed to turn on OATHAuth.

Event Timeline

Change 321797 had a related patch set uploaded (by MarcoAurelio):
Allow 'interface-editor' users to use OATHAuth

MarcoAurelio raised the priority of this task from Lowest to Needs Triage.
MarcoAurelio moved this task from Backlog / Other to Patch pending review on the acl*security board.
MarcoAurelio moved this task from Backlog to Working on on the Wikimedia-Site-requests board.

Not much avalaible these days for SWAT windows.

I'll take care to schedule this at the next SWAT window.

Thank you @Dereckson but I think I'll be able to do the next SWAT window in an hour or so. I'll try, at least. If I'm not around, I ask to deploy the change nonetheless.

Change 321797 merged by jenkins-bot:
Allow 'interface-editor' & 'engineer' users to use OATHAuth

Mentioned in SAL (#wikimedia-operations) [2016-11-16T00:25:05Z] <dereckson@tin> Synchronized wmf-config/CommonSettings.php: Allow interface-editor & engineer users to use OATHAuth (T150807) (duration: 00m 59s)

Arseny1992 moved this task from To deploy to Done on the Wikimedia-Site-requests board.