Page MenuHomePhabricator
Create Task
Maniphest T254537

UserGroupManager/PermissionManager cyclic dependency
Closed, ResolvedPublic
Actions

Description

After Autopromote logic is moved into UserGroupManager, it would require PermissionManager in order to find out if the user is a bot. PermissionManager would depend on UserGroupManager for getting user groups for permission verification.

I propose to split group permission methods into GroupPermissionLookup service, separate from PermissionManager. That would allow to break the circular dependency.

Details

SubjectRepoBranchLines +/-
Enhance GroupPermissionsLookup and use it.mediawiki/coremaster+271 -108
Introduce GroupPermissionsLookupmediawiki/coremaster+309 -36
Add todo comment about UserGroupManager/PermissionManager dependencymediawiki/coremaster+2 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

Pchelolo created this task.Jun 4 2020, 11:45 PM
DannyS712 added a comment.Jun 5 2020, 12:24 AM

UserGroupManager also needs access to PermissionManager's cache reset method, which is currently passed as a callback to avoid such a dependency, but that should be handled separately (eg with a dedicated central caching service)

Pchelolo moved this task from Inbox to Doing(WIP:5) on the Platform Team Workboards (Clinic Duty Team) board.Jun 5 2020, 11:52 PM
Pchelolo moved this task from Doing(WIP:5) to Ready (WIP:5) on the Platform Team Workboards (Clinic Duty Team) board.Jun 10 2020, 5:46 PM
Pchelolo triaged this task as Medium priority.Jun 15 2020, 3:40 PM
Pchelolo moved this task from Ready (WIP:5) to Later on the Platform Team Workboards (Clinic Duty Team) board.
DannyS712 moved this task from Unsorted to Others on the User-DannyS712 board.Jul 1 2020, 7:05 AM
gerritbot added a comment.Nov 3 2020, 6:34 PM

Change 638637 had a related patch set uploaded (by Umherirrender; owner: Umherirrender):
[mediawiki/core@master] Add todo comment about UserGroupManager/PermissionManager dependency

https://gerrit.wikimedia.org/r/638637

gerritbot added a project: Patch-For-Review.Nov 3 2020, 6:34 PM
gerritbot added a comment.Nov 3 2020, 6:58 PM

Change 638637 merged by jenkins-bot:
[mediawiki/core@master] Add todo comment about UserGroupManager/PermissionManager dependency

https://gerrit.wikimedia.org/r/638637

ReleaseTaggerBot added a project: MW-1.36-notes (1.36.0-wmf.18; 2020-11-17).Nov 3 2020, 7:00 PM
Umherirrender removed projects: MW-1.36-notes (1.36.0-wmf.18; 2020-11-17), Patch-For-Review.Nov 3 2020, 7:09 PM
Daimona subscribed.Jan 4 2021, 2:20 PM
gerritbot added a comment.Jan 5 2021, 11:09 PM

Change 654528 had a related patch set uploaded (by Ppchelko; owner: Ppchelko):
[mediawiki/core@master] Introduce GroupPermissionsLookup

https://gerrit.wikimedia.org/r/654528

gerritbot added a project: Patch-For-Review.Jan 5 2021, 11:09 PM
Daimona awarded a token.Jan 6 2021, 11:02 AM
Pchelolo edited projects, added Platform Team Workboards (MW Expedition); removed Platform Team Workboards (Clinic Duty Team).Jan 6 2021, 10:17 PM
Pchelolo moved this task from Unsorted pile to Waiting for Review on the Platform Team Workboards (MW Expedition) board.
gerritbot added a comment.Jan 7 2021, 9:39 PM

Change 654931 had a related patch set uploaded (by Ppchelko; owner: Ppchelko):
[mediawiki/core@master] Use GroupPermissionsLookup in various places

https://gerrit.wikimedia.org/r/654931

gerritbot added a comment.Jan 8 2021, 5:47 PM

Change 654528 merged by jenkins-bot:
[mediawiki/core@master] Introduce GroupPermissionsLookup

https://gerrit.wikimedia.org/r/654528

ReleaseTaggerBot added a project: MW-1.36-notes (1.36.0-wmf.26; 2021-01-12).Jan 8 2021, 6:00 PM
gerritbot added a comment.Jan 11 2021, 10:00 PM

Change 654931 merged by jenkins-bot:
[mediawiki/core@master] Enhance GroupPermissionsLookup and use it.

https://gerrit.wikimedia.org/r/654931

Maintenance_bot removed a project: Patch-For-Review.Jan 11 2021, 10:10 PM
Pchelolo moved this task from Waiting for Review to Blocked on the Platform Team Workboards (MW Expedition) board.Jan 15 2021, 3:59 PM
Pchelolo closed subtask T271596: Migrate relevant User method usages to GroupPermissionsLookup and hard-deprecate User methods. as Resolved.Feb 1 2021, 6:38 PM
Pchelolo closed subtask T271593: Replace specific PermissionManager calls with GroupPermissionsLookup calls in all deployed extensions as Resolved.
Pchelolo moved this task from Blocked to Waiting for Review on the Platform Team Workboards (MW Expedition) board.May 25 2021, 2:12 PM
Pchelolo closed this task as Resolved.Jun 17 2021, 9:18 PM
DannyS712 added a comment.Jun 18 2021, 12:11 AM

@Pchelolo in ServiceWiring the UserGroupManager is still passed a closure that invokes PermissionManager::invalidateUsersRightsCache(), and PermissionManager is still created with UserGroupManager injected - why is this resolved? They still depend on each other, right?

Pchelolo added a comment.Jun 18 2021, 12:20 AM

PermissionManager depending on UserGroupManager is fine, it's how the dependency is supposed to go.
UserGroupManager lazy dependency on PermissionManager for invalidating the user rights cache is fine as well - we don't have events yet, so we don't have a better mechanism for invalidation callbacks like this.
The task was about direct dependency on permission manager for figuring out whether the user is bot or not. That's now solved.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL