Page MenuHomePhabricator
Create Task
Maniphest T291583

[SPIKE] Check that IPInfo-related user properties aren't replicated to publicly accessible databases [8H]
Closed, ResolvedPublicSpike
Actions

Description

We need to make sure that the IPInfo-related user properties (currently, only "ipinfo-enable") isn't replicated to:

Related Objects
Search...

Event Timeline

phuedx created this task.Sep 22 2021, 5:14 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptSep 22 2021, 5:14 PM
phuedx renamed this task from Check that IPInfo-related user properties aren't replicated to Check that IPInfo-related user properties aren't replicated to publicly accessible databases.Sep 22 2021, 5:14 PM
phuedx renamed this task from Check that IPInfo-related user properties aren't replicated to publicly accessible databases to [SPIKE: ] Check that IPInfo-related user properties aren't replicated to publicly accessible databases.
phuedx added a parent task: T291582: Implement condition agreements in Special:Preferences [M].
phuedx added a project: Spike.
Restricted Application changed the subtype of this task from "Task" to "Spike". · View Herald TranscriptSep 22 2021, 5:15 PM
phuedx updated the task description. (Show Details)Sep 22 2021, 5:15 PM
phuedx added a comment.Sep 22 2021, 5:33 PM

The PrefUpdate table via the PrefUpdate instrument

Having linked to the code that defines the instrument, I was reminded that it'd been changed so that only allowlisted properties are logged.

Zabe subscribed.Sep 22 2021, 9:52 PM
Niharika renamed this task from [SPIKE: ] Check that IPInfo-related user properties aren't replicated to publicly accessible databases to [SPIKE] Check that IPInfo-related user properties aren't replicated to publicly accessible databases.Sep 23 2021, 7:15 AM
Niharika moved this task from Untriaged to Triage/To be Estimated on the Anti-Harassment-Team board.
ARamirez_WMF renamed this task from [SPIKE] Check that IPInfo-related user properties aren't replicated to publicly accessible databases to [SPIKE] Check that IPInfo-related user properties aren't replicated to publicly accessible databases [8H].Sep 29 2021, 4:16 PM
ARamirez_WMF moved this task from Triage/To be Estimated to Cards ready for development on the Anti-Harassment-Team board.
phuedx closed this task as Resolved.Oct 7 2021, 10:54 AM
phuedx claimed this task.
phuedx added a subscriber: STran.

I was reminded of this task while combing through the IP Info board today. I think @STran mentioned this elsewhere but

The wiki replicas

Quoting https://wikitech.wikimedia.org/wiki/Help:Toolforge/Database#Redacted_tables:

The majority of the zuser_propertiesz table has been deemed sensitive and removed from the Wiki Replica databases. Only the disableemail, fancysig, gender, and nickname properties are available.

I'm being bold and resolving this task.

Niharika moved this task from Backlog to Closed on the IP Info board.Aug 8 2022, 7:59 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits