Page MenuHomePhabricator
Create Task
Maniphest T217774

Structured Discussions exposes user’s IP address if logged out in other browser window/tab
Closed, ResolvedPublic
Actions

Description

If I send a Structured Discussions comment and my session became invalid in the meantime, e. g. because I logged out in another browser window or tab, then the edit will be made under my IP address, with no warning whatsoever that it would be permanently recorded in the page history. The Flow extension should use assert=user with its API calls to avoid this. (See T124451 for a similar issue in Wikibase/Wikidata.)

Details

ProjectBranchLines +/-Subject
mediawiki/extensions/Flowmaster+1 -1[WIP] Assert that the user has not been logged out in flow-api.js
mediawiki/extensions/Flowmaster+26 -21Assert the current user during all write operations
Customize query in gerrit

Related Objects

Event Timeline

Lucas_Werkmeister_WMDE created this task.Mar 6 2019, 2:57 PM
Restricted Application added a project: Growth-Team. · View Herald TranscriptMar 6 2019, 2:57 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
Lucas_Werkmeister_WMDE added a comment.Mar 6 2019, 3:00 PM

Example topic: https://www.mediawiki.org/wiki/Topic:Uvemb1qb2aqcig8k – in this case it’s okay that the IP got exposed, it’s just the WMDE office, but still

Krenair added a subscriber: Krenair.Mar 6 2019, 11:22 PM
Peachey88 added a subscriber: Peachey88.Mar 8 2019, 9:28 PM
Tgr edited projects, added Growth-Team (Current Sprint); removed Growth-Team.Feb 19 2020, 11:02 PM
Tgr moved this task from Incoming to Ready for Development on the Growth-Team (Current Sprint) board.
Tgr claimed this task.Feb 22 2020, 5:39 AM
Tgr moved this task from Ready for Development to In Progress on the Growth-Team (Current Sprint) board.
gerritbot added a comment.Feb 29 2020, 9:21 AM

Change 575673 had a related patch set uploaded (by Gergő Tisza; owner: Gergő Tisza):
[mediawiki/extensions/Flow@master] Assert the current user during all write operations

https://gerrit.wikimedia.org/r/575673

gerritbot added a project: Patch-For-Review.Feb 29 2020, 9:21 AM
kostajh moved this task from In Progress to Code Review on the Growth-Team (Current Sprint) board.Mar 2 2020, 10:54 AM
gerritbot added a comment.Mar 3 2020, 8:38 AM

Change 575673 merged by jenkins-bot:
[mediawiki/extensions/Flow@master] Assert the current user during all write operations

https://gerrit.wikimedia.org/r/575673

ReleaseTaggerBot added a project: MW-1.35-notes (1.35.0-wmf.22; 2020-03-03).Mar 3 2020, 9:00 AM
Maintenance_bot removed a project: Patch-For-Review.Mar 3 2020, 9:10 AM
kostajh moved this task from Code Review to QA on the Growth-Team (Current Sprint) board.Mar 3 2020, 12:36 PM
Tgr mentioned this in T60696: Flow: It's too easy to accidentally edit when logged-out.Mar 4 2020, 3:18 AM
Tgr added a comment.Mar 4 2020, 3:23 AM

Possible follow-ups:

  • cover the template-based code paths (as per the code review comment)
  • decent error handling on resolve/unresolve (c575674)
  • make the error message easier to understand for the user (could replace the API error with something custom in getApiErrorMessage)
gerritbot added a comment.Mar 4 2020, 3:27 AM

Change 576515 had a related patch set uploaded (by Gergő Tisza; owner: Gergő Tisza):
[mediawiki/extensions/Flow@master] [WIP] Assert that the user has not been logged out in flow-api.js

https://gerrit.wikimedia.org/r/576515

gerritbot added a project: Patch-For-Review.Mar 4 2020, 3:27 AM
Etonkovidova mentioned this in T246956: SD - create better error message for logged out users attempting to edit.Mar 4 2020, 11:24 PM
Etonkovidova closed this task as Resolved.Mar 4 2020, 11:27 PM
Etonkovidova added a subscriber: Etonkovidova.

The objective of the fix "Assert that the user has not been logged out in flow-api.js" is successfully implemented - a logged out user (a user who logs out from another tab/window) will have a warning before publishing edits on Structured discussions.

However, the warning message is too technical and doesn't provide users with clear instructions of what to do (not like VE/wikitext editing). Based on the testing and on the @Tgr comment below, I filed T246956: SD - create better error message for logged out users attempting to edit .

In T217774#5939958, @Tgr wrote:

Possible follow-ups:

  • cover the template-based code paths (as per the code review comment)
  • decent error handling on resolve/unresolve (c575674)
  • make the error message easier to understand for the user (could replace the API error with something custom in getApiErrorMessage)

I filed a phab task

Content licensed under Creative Commons Attribution-ShareAlike 3.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL