Page MenuHomePhabricator
Create Task
Maniphest T268948

Add editprotected permission for interface-admin
Closed, DeclinedPublic
Actions

Description

It would be useful to edit protected pages for interface admins (including main page and templates). At least some of them are what I would call part of the interface.

Most of the pages like that are technically complicated and some use HTML. Many times they require technical knowledge to edit (HTML, CSS etc). So interface admin seem like a natural person to edit such pages. This would be especially important when doing larger refactor (when you e.g. need to coordinate changing structure and CSS or structure and JS).

Also note that having interface-admin permission I can effectively change every page. Having rights to global JS allows doing almost anything with content. Obviously that would probably not be seen as a good contribution 😉, but still.

Event Timeline

Nux created this task.Nov 29 2020, 6:05 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptNov 29 2020, 6:05 PM
Nux updated the task description. (Show Details)Nov 29 2020, 6:05 PM
Krenair added a project: Wikimedia-Site-requests.Nov 29 2020, 6:10 PM
Urbanecm edited projects, added MediaWiki-General; removed Wikimedia-Site-requests.Nov 29 2020, 6:11 PM
Urbanecm added subscribers: Krenair, Urbanecm.

@Krenair Re-tagging with MediaWiki-General, since the group is part of mediawiki-core, and the request is probably to add the permission on all-instances rather than just Wikimedia-hosted ones.

Nux updated the task description. (Show Details)Nov 29 2020, 6:13 PM
Urbanecm renamed this task from Add editprotected permission for interface-admin on Wikipedias to Add editprotected permission for interface-admin.Nov 29 2020, 6:14 PM
Urbanecm added subscribers: Ladsgroup, Tgr.Nov 29 2020, 6:19 PM

So...this reminds me of https://meta.wikimedia.org/wiki/Limits_to_configuration_changes, which says that "Grant Interface admins other permissions" is forbidden. Adding editprotected sounds like a harmless idea, however, it could make wikis grant interface admins "just to make users able to edit protected pages", which shouldn't happen - no one who doesn't need to edit JS/CSS should ever be in that group.

@Ladsgroup @Tgr Any opinions on this?

Ladsgroup added a comment.Nov 30 2020, 3:00 AM

It sounds slightly weird to me, IMO being admin should be a prerequisite to being interface-admin and a wiki should not give that right so easily that non-admins can get it... I think it defies the whole point of having interface-admin in the first place (which we had to do because of attacks carried out on admins)

Krenair added a comment.EditedNov 30 2020, 3:48 AM

@Urbanecm: I can see it being interpreted either way - at the time this task was named for Wikipedias :) But I don't mind

In T268948#6654563, @Ladsgroup wrote:

It sounds slightly weird to me, IMO being admin should be a prerequisite to being interface-admin and a wiki should not give that right so easily that non-admins can get it... I think it defies the whole point of having interface-admin in the first place (which we had to do because of attacks carried out on admins)

I think there's a distinction between people having to hold admin vs. people being trusted to the level that they could be given admin if they had a use for it. The majority of people who hold GIE do not hold GS but probably could. Having said that I agree it's still a bit weird. I also can also kind of understand why and don't think it's particularly high risk.

This task reminds me of the distinction between template editor and interface editor that exists on enwiki.

I think overall I agree with Ladsgroup that this is crossing the line at which the individual who needs to do this should probably get traditional administrator rights - though I recognise that on some wikis this may be too specific a reason to justify the process involved

JEumerus subscribed.Nov 30 2020, 9:13 AM

Tough one. Many people in the various admin-appointment processes have criteria beyond trust - such as knowing policies in areas like deletion that have little to do with security - and I would not categorically assume that folks trusted to hold IE will also be trusted to hold full admin rights.

Is there an use case for IE to have protected page editing? The js and css and similar pages that IE is about are by default protected by the software and don't need/have manual protection on top of it.

Nux added a comment.EditedNov 30 2020, 8:57 PM

Don't know about other wikis, but on Polish Wikipedia the ui admin is someone with technical knowledge and technical abilities. Sysop is someone doing moderator work. Which has some requirements of being active etc. We actually had a long debate befor ui admin that this should be something available for technical people that don't need to or don't have time to sit on RC etc.

So that separation is a fact for Polish Wikipedia. And I am an ex-sysop, currently just ui admin.

Tgr closed this task as Declined.Nov 30 2020, 9:06 PM

Giving admin-level privileges to people who are not admins would significantly affect the governance structure of the wikis, would require consulting with the affected communities, which costs a significant amount of developer and editor time. I'd rather not do that for a fairly arbitrary request like this.

Individual wikis should of course feel free to request more rights for that specific wiki if there's community consensus for it.

hubaishan awarded a token.Sep 9 2023, 4:28 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL