Page MenuHomePhabricator

Option for preventing usage of API calls that typically require elevated privileges
Open, LowPublic

Description

Create a function similar to dry mode that will not allow execution of API queries that typically require admin permissions. This will make it possible to use Huggle safely for sysops who don't want to accidentally trigger some admin function.

Original request:

I am not allowed to use my sysop flag for other than special purposes. 
Hence I can't use Huggle until it won't use the flag if it detects it.

Event Timeline

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 21 2016, 8:56 PM

I think this is easy: The user would need to use botpasswords. So he can create pwd with adminrights (if he wants), and one password without granting adminrights. This will prevent usage of administrative rights then,

DatGuy added a subscriber: DatGuy.Dec 27 2016, 3:06 PM

I think Luke gave a pretty good workaround. Either way, I don't think this would be worth the effort. May I close this?

Petrb renamed this task from Option for preventing usage of sysop flag to Option for preventing usage of API calls that typically require elevated privileges.Jan 17 2017, 10:31 PM
Petrb triaged this task as Low priority.
Petrb updated the task description. (Show Details)
Petrb added a subscriber: Petrb.

Request is relevant but given the available workaround I am triaging this as low. Might be implemented sometime in future, meanwhile try the suggested trick.

Petrb moved this task from Backlog to Code / Features on the Huggle board.Oct 10 2018, 6:20 PM