Page MenuHomePhabricator
Create Task
Maniphest T229539

AbuseFilter and SpamBlacklist return a "successful" action=edit API response when they prevent edits
Closed, ResolvedPublic
Actions

Description

AbuseFilter and SpamBlacklist return a "successful" action=edit API response when they prevent edits. Here's an example for AbuseFilter:

{
    "edit": {
        "code": "abusefilter-disallowed",
        "message": {
            "key": "abusefilter-disallowed",
            "params": [ ... ]
        },
        "abusefilter": { ... },
        "info": "Hit AbuseFilter: Test filter disallow",
        "warning": "This action has been automatically identified ...",
        "result": "Failure"
    }
}

Other than being annoyingly inconsistent, this output doesn't support the errorformat parameter.

This is because they use 'apiHookResult' property to define the error message, and they should instead use ApiMessage.

For comparison, a 'readonly' error generated by MediaWiki (with errorformat=html):

{
    "errors": [
        {
            "code": "readonly",
            "data": {
                "readonlyreason": "foo bar"
            },
            "module": "main",
            "*": "The wiki is currently in read-only mode."
        }
    ],
    "*": "See http://localhost:3080/w/api.php for API usage. ..."
}

For another comparison, an error generated by TitleBlacklist (with errorformat=html):

{
    "errors": [
        {
            "code": "titleblacklist-forbidden",
            "data": {
                "message": {
                    "key": "titleblacklist-forbidden-edit",
                    "params": [ ...]
                },
                "line": ...,
                "info": "TitleBlacklist prevents this title from being created"
            },
            "module": "edit",
            "*": "The title ..."
        }
    ],
    "*": "See http://localhost:3080/w/api.php for API usage. ..."
}

Details

SubjectRepoBranchLines +/-
Actually return errors for action=edit APImediawiki/extensions/SpamBlacklistmaster+12 -10
Actually return errors for action=edit APImediawiki/extensions/AbuseFiltermaster+38 -54
Customize query in gerrit

Related Objects
Search...

Event Timeline

matmarex created this task.Aug 1 2019, 3:20 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptAug 1 2019, 3:20 AM
gerritbot added a comment.Aug 1 2019, 3:21 AM

Change 526828 had a related patch set uploaded (by Bartosz Dziewoński; owner: Bartosz Dziewoński):
[mediawiki/extensions/AbuseFilter@master] [WIP] Actually return errors for action=edit API

https://gerrit.wikimedia.org/r/526828

gerritbot added a project: Patch-For-Review.Aug 1 2019, 3:21 AM

Change 526829 had a related patch set uploaded (by Bartosz Dziewoński; owner: Bartosz Dziewoński):
[mediawiki/extensions/SpamBlacklist@master] [WIP] Actually return errors for action=edit API

https://gerrit.wikimedia.org/r/526829

matmarex added a parent task: T229532: VisualEditor should use errorformat=html and maybe drop some of our custom error messages in favor of default ones.Aug 1 2019, 3:22 AM
matmarex added a project: MediaWiki-Action-API.Aug 1 2019, 3:34 AM
Restricted Application added a project: Platform Engineering. · View Herald TranscriptAug 1 2019, 3:34 AM
WDoranWMF edited projects, added Platform Team Workboards (Clinic Duty Team); removed Platform Engineering.Aug 1 2019, 1:13 PM
WDoranWMF moved this task from Inbox to External Code Review Needed on the Platform Team Workboards (Clinic Duty Team) board.
mobrovac moved this task from External Code Review Needed to Backlog on the Platform Team Workboards (Clinic Duty Team) board.Aug 9 2019, 10:34 AM
Anomie moved this task from Unsorted to Non-core-API stuff on the MediaWiki-Action-API board.Aug 13 2019, 4:35 PM
WDoranWMF moved this task from Backlog to Inbox on the Platform Team Workboards (Clinic Duty Team) board.Aug 13 2019, 6:22 PM
WDoranWMF moved this task from Inbox to External Code Review Needed on the Platform Team Workboards (Clinic Duty Team) board.
mobrovac moved this task from External Code Review Needed to Backlog on the Platform Team Workboards (Clinic Duty Team) board.Aug 14 2019, 9:44 AM
mobrovac subscribed.

Moving back to CPT's backlog since the PS' are WIPs. @matmarex feel free to ping us when you feel the patches are ready to be reviewed.

WDoranWMF triaged this task as Medium priority.Aug 14 2019, 1:58 PM
matmarex added a comment.Aug 20 2019, 7:48 PM

@mobrovac Turns out that we need to make some changes in VE first, since it depends on the current API output. However, I would already appreciate review on two smaller commits that are dependencies for this work: https://gerrit.wikimedia.org/r/c/mediawiki/extensions/SpamBlacklist/+/531302 https://gerrit.wikimedia.org/r/c/mediawiki/extensions/SpamBlacklist/+/526816

mobrovac moved this task from Backlog to External Code Review Needed on the Platform Team Workboards (Clinic Duty Team) board.Aug 21 2019, 9:24 AM
matmarex removed a parent task: T229532: VisualEditor should use errorformat=html and maybe drop some of our custom error messages in favor of default ones.Aug 22 2019, 12:39 AM
matmarex added a subtask: T229532: VisualEditor should use errorformat=html and maybe drop some of our custom error messages in favor of default ones.

(This depends on T229532, not the other way round. To fix this bug, we must fix T229532 first, otherwise VE will not be able to display pretty error messages for these extensions.)

matmarex added a parent task: T211443: Remove SpamBlacklist error handling from ApiVisualEditorEdit.php.Aug 22 2019, 12:47 AM
Krinkle awarded a token.Aug 23 2019, 8:50 PM
matmarex mentioned this in T231253: API action=edit with errorformat=html returns a redundant 'hookaborted' error even when an error message is set.Aug 26 2019, 9:24 PM
matmarex added a comment.Aug 26 2019, 9:59 PM

@mobrovac All patches here are ready for review. Thanks!

While working on them, I also discovered an existing bug in MW core, with another patch that needs review: T231253.

matmarex claimed this task.Aug 26 2019, 9:59 PM
matmarex added a project: VisualEditor (Current work).
matmarex moved this task from Incoming to Code review on the VisualEditor (Current work) board.
Anomie moved this task from External Code Review Needed to External Code Review Completed on the Platform Team Workboards (Clinic Duty Team) board.Sep 3 2019, 3:10 PM
gerritbot added a comment.Sep 10 2019, 7:59 PM

Change 526828 merged by jenkins-bot:
[mediawiki/extensions/AbuseFilter@master] Actually return errors for action=edit API

https://gerrit.wikimedia.org/r/526828

ReleaseTaggerBot added a project: MW-1.34-notes (1.34.0-wmf.23; 2019-09-17).Sep 10 2019, 8:00 PM
gerritbot added a comment.Sep 10 2019, 10:18 PM

Change 526829 merged by jenkins-bot:
[mediawiki/extensions/SpamBlacklist@master] Actually return errors for action=edit API

https://gerrit.wikimedia.org/r/526829

Anomie mentioned this in rESPB5ddc45b62cf1: Actually return errors for action=edit API.Sep 10 2019, 10:32 PM
Maintenance_bot removed a project: Patch-For-Review.Sep 10 2019, 11:10 PM
matmarex added a subscriber: Anomie.Sep 11 2019, 4:48 PM

Thank you for the help, @Anomie!

Announcement of API breaking change: https://lists.wikimedia.org/pipermail/mediawiki-api-announce/2019-September/000148.html

matmarex moved this task from Code review to Product owner review on the VisualEditor (Current work) board.Sep 11 2019, 4:49 PM
matmarex added a project: Skipped QA.

(QA from VisualEditor's perspective is covered by T229532)

Amorymeltzer subscribed.Sep 11 2019, 8:46 PM
matmarex mentioned this in T232682: Update WMF-deployed extensions for changes in AbuseFilter and SpamBlacklist API error responses.Sep 11 2019, 10:40 PM
matmarex mentioned this in T232683: Update ContentTranslation for changes in AbuseFilter and SpamBlacklist API error responses.Sep 11 2019, 10:43 PM
matmarex mentioned this in T232684: Update Jade for changes in AbuseFilter and SpamBlacklist API error responses.
matmarex mentioned this in T232685: Update MobileFrontend for changes in AbuseFilter and SpamBlacklist API error responses.
matmarex mentioned this in T232686: Update Translate for changes in AbuseFilter and SpamBlacklist API error responses.
matmarex mentioned this in T232687: Update WikiEditor for changes in AbuseFilter and SpamBlacklist API error responses.
ppelberg closed this task as Resolved.Oct 22 2019, 12:44 AM
ppelberg closed subtask T229532: VisualEditor should use errorformat=html and maybe drop some of our custom error messages in favor of default ones as Resolved.Oct 23 2019, 1:07 AM
Aklapper removed a subscriber: Anomie.Oct 16 2020, 5:41 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL