Page MenuHomePhabricator
Create Task
Maniphest T202856

Update e-mail for staff accounts at wikimedia.se
Closed, ResolvedPublic
Actions

Description

It was discovered that many staff accounts are set up with the non-staff e-mail (e.g. where password reset requests go). We should do an inventory of current staff and board accounts and ensure they all point to @wikimedia.se addresses.

This is also a good opportunity to remove/restrict any old accounts that still have access.

This should not happen before T202420: Follow up on possible server failure/intrusion is resolved as that will likely involve reverting the database.

Result
Email addresses changed to *@wikimedia.se for three accounts. Roles have been removed from all accounts except those we agreed should keep theirs. It turned out that some of the accounts that we decided should keep their roles, did not have any roles assigned. This has not been changed.

Related Objects

Event Timeline

Lokal_Profil created this task.Aug 27 2018, 8:16 AM

This is true for at least me and Axel so likely everyone (from our generation at least) is affected.

@Evelina-Bang-WMSE Can I ask you to do this? (once T202420 is resolved)

Lokal_Profil updated the task description. (Show Details)Aug 27 2018, 8:17 AM
Lokal_Profil added a project: User-LokalProfil.
Lokal_Profil moved this task from 📥 Backlog to 👁 Watching on the User-LokalProfil board.
Evelina-Bang-WMSE moved this task from Backlog to Evelina on the User-Evelina-Bang-WMSE board.Aug 30 2018, 6:27 AM
Evelina-Bang-WMSE added a comment.Sep 6 2018, 2:15 PM

There are 45 accounts, 30 which has a role assigned to them allowing various kinds of editing. Suggestion right now is to remove roles from all except current employees, admin accounts and chairman.

Of those proposed to be kept, three needs updated e-mail addresses. Can we change the addresses without affecting login?

Lokal_Profil added a comment.Sep 6 2018, 7:52 PM
In T202856#4562932, @Evelina-Bang-WMSE wrote:

Of those proposed to be kept, three needs updated e-mail addresses. Can we change the addresses without affecting login?

Email should only be used for password reset so should be fine to change without affecting the existing user login.

Evelina-Bang-WMSE added a comment.Sep 11 2018, 12:32 PM

Email addresses changed to *@wikimedia.se for three accounts. Roles have been removed from all accounts except those we agreed should keep theirs. It turned out that some of the accounts that we decided should keep their roles, did not have any roles assigned. This has not been changed.

Evelina-Bang-WMSE moved this task from Evelina to Done on the User-Evelina-Bang-WMSE board.Sep 11 2018, 12:33 PM
Evelina-Bang-WMSE updated the task description. (Show Details)Sep 15 2018, 11:41 AM
Lokal_Profil closed this task as Resolved.Oct 11 2018, 4:55 PM
Lokal_Profil claimed this task.

Thanks

Lokal_Profil moved this task from 👁 Watching to ☑️ Done on the User-LokalProfil board.Jan 22 2020, 8:30 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL