Page MenuHomePhabricator

Adjust visibility of AbuseLog entries and related items
Closed, ResolvedPublic


This is a task to collect all instances where we could show some AbuseLog or related item to privileged admin, whereas we currently don't. Showing too much information has been the cause of several info leaks in the past (e.g. T207085), so care should be taken.

Event Timeline

r721375 should have fixed this once and for all. (The code can still be improved, e.g. moved to a service, but that wouldn't be a user-facing change).