Deprecate 'GetBlockedStatus' hook and reduce visibility of User::mBlock, User::mBlockedBy and User::mHideName
Closed, ResolvedPublic
Actions

Description

Problem
The GetBlockedStatus hook allows extensions to modify properties on the User object. Since several of the block-related properties are made public it is theoretically possible for extensions to modify these into a state that is not compatible with any block that can actually are made. (Example: an extension could theoretically set User::mBlock to null, but User::mBlockedby to a username and User::mHideName to true.) This makes blocks difficult to reason about - e.g. see T228948.

Proposed Solution
Now that we have a way to enforce multiple blocks, extensions that are only adding a block could do so before the CompositeBlock is constructed in BlockManager::getUserBlock(), so that their block can be added to any other blocks, rather than replacing them.

We could still allow extensions to modify the final block, but rather than allow them to alter the User, we could pass the array of constituent blocks, just before constructing the CompositeBlock.

It seems the use cases for setting these User properties are related to the GetBlockedStatus hook, so we could reduce their visibility if we make these changes.

Deprecate GetBlockedStatus
Deprecate mBlock, mBlockedby and mHideName as public properties on User

Details

Subject	Repo	Branch	Lines +/-
Deprecate public User properties related to blocks	mediawiki/core	master	+21 -3
Deprecate the GetBlockedStatus hook	mediawiki/core	master	+5 -2
Ensure block hooks keep user state consistent with realistic blocks	mediawiki/core	master	+33 -18

Customize query in gerrit

Related Objects
Search...

Status	Assigned	Task
Open	None	T225011 Clean up code related to blocking
Resolved	None	T266409 Use UserIdentity and Authority rather than User in block-related classes
Open	None	T221067 Move block-related methods on User to the BlockManager
Resolved	Tchanders	T229035 Deprecate 'GetBlockedStatus' hook and reduce visibility of User::mBlock, User::mBlockedBy and User::mHideName
Resolved	Tchanders	T229692 Use GetUserBlockComplete hook instead of GetBlockedStatus in TorBlock extension
Resolved	Tchanders	T228948 PermissionManager::isBlockedFrom() can return true even if the user does not have a block

Event Timeline

Tchanders created this task.Jul 25 2019, 5:48 PM

dbarratt updated the task description. (Show Details)Jul 25 2019, 6:28 PM

dbarratt mentioned this in T228948: PermissionManager::isBlockedFrom() can return true even if the user does not have a block.Jul 25 2019, 6:41 PM

Change 525305 had a related patch set uploaded (by Tchanders; owner: Tchanders):
[mediawiki/core@master] Ensure block hooks keep user state consistent with realistic blocks

https://gerrit.wikimedia.org/r/525305

gerritbot added a project: Patch-For-Review.Jul 25 2019, 8:00 PM

Change 525665 had a related patch set uploaded (by Tchanders; owner: Tchanders):
[mediawiki/extensions/TorBlock@master] Use ModifyBlock hook instead of deprecated GetBlockedStatus

https://gerrit.wikimedia.org/r/525665

Tchanders mentioned this in T229692: Use GetUserBlockComplete hook instead of GetBlockedStatus in TorBlock extension.Aug 2 2019, 7:41 PM

JJMC89 moved this task from Backlog to User blocking on the MediaWiki-User-management board.Aug 13 2019, 4:57 PM

Change 525305 merged by jenkins-bot:
[mediawiki/core@master] Ensure block hooks keep user state consistent with realistic blocks

https://gerrit.wikimedia.org/r/525305

ReleaseTaggerBot added a project: MW-1.34-notes (1.34.0-wmf.20; 2019-08-27).Aug 21 2019, 7:00 PM

dbarratt closed subtask T229692: Use GetUserBlockComplete hook instead of GetBlockedStatus in TorBlock extension as Resolved.Sep 5 2019, 5:24 PM

Tchanders added a project: Anti-Harassment.Sep 5 2019, 6:00 PM

Tchanders moved this task from Untriaged to Triage/To be Estimated on the Anti-Harassment board.

Change 534793 had a related patch set uploaded (by Tchanders; owner: Tchanders):
[mediawiki/core@master] Deprecate GetBlockedStatus hook

https://gerrit.wikimedia.org/r/534793

Tchanders claimed this task.Sep 6 2019, 12:30 PM

Tchanders updated the task description. (Show Details)

Tchanders moved this task from Triage/To be Estimated to The Letter Song on the Anti-Harassment board.

Tchanders edited projects, added Anti-Harassment (The Letter Song); removed Anti-Harassment.

Tchanders moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.

Tchanders updated the task description. (Show Details)Sep 6 2019, 2:59 PM

Change 534793 merged by jenkins-bot:
[mediawiki/core@master] Deprecate the GetBlockedStatus hook

https://gerrit.wikimedia.org/r/534793

Tchanders updated the task description. (Show Details)Sep 10 2019, 6:24 PM

ReleaseTaggerBot edited projects, added MW-1.34-notes (1.34.0-wmf.23; 2019-09-17); removed MW-1.34-notes (1.34.0-wmf.20; 2019-08-27).Sep 10 2019, 7:00 PM

dbarratt moved this task from Code Review 🔍 to In Progress 💪 on the Anti-Harassment (The Letter Song) board.Sep 11 2019, 3:32 PM

Change 542771 had a related patch set uploaded (by Tchanders; owner: Tchanders):
[mediawiki/core@master] Deprecate public User properties related to blocks

https://gerrit.wikimedia.org/r/542771

Tchanders mentioned this in T236058: Use GetUserBlock hook instead of deprecated GetBlockedStatus.Oct 21 2019, 12:10 PM

Tchanders moved this task from In Progress 💪 to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.Oct 22 2019, 7:12 PM

Change 542771 merged by jenkins-bot:
[mediawiki/core@master] Deprecate public User properties related to blocks

https://gerrit.wikimedia.org/r/542771

Tchanders closed this task as Resolved.Oct 23 2019, 3:48 PM

Tchanders updated the task description. (Show Details)

Tchanders moved this task from Code Review 🔍 to Done (2019-20: Q2) on the Anti-Harassment (The Letter Song) board.

ReleaseTaggerBot added a project: MW-1.35-notes (1.35.0-wmf.4; 2019-10-29).Oct 23 2019, 8:00 PM