Page MenuHomePhabricator
Create Task
Maniphest T292626

Create and implement IP Info viewing rights [L]
Closed, ResolvedPublic
Actions

Assigned To
STran
Authored By
STran
Oct 6 2021, 10:55 AM
Tags
Referenced Files
F34945690: Screen Shot 2022-02-08 at 11.27.26 AM.png
Feb 8 2022, 4:47 PM
F34945687: Screen Shot 2022-02-08 at 11.02.09 AM.png
Feb 8 2022, 4:47 PM
F34945681: Screen Shot 2022-02-08 at 11.30.04 AM.png
Feb 8 2022, 4:47 PM
F34945683: Screen Shot 2022-02-08 at 11.30.30 AM.png
Feb 8 2022, 4:47 PM
F34925170: Screen Shot 2022-01-20 at 9.46.36 PM.png
Jan 21 2022, 2:48 AM
F34925172: Screen Shot 2022-01-20 at 9.47.38 PM.png
Jan 21 2022, 2:48 AM
F34925161: Screen Shot 2022-01-20 at 8.54.50 PM.png
Jan 21 2022, 2:48 AM
F34923974: Screen Shot 2022-01-20 at 12.25.43 AM.png
Jan 20 2022, 5:27 AM
View All 14 Files
Subscribers
Aklapper
imaigwilo
phuedx
Prtksxna
STei-WMF
STran
Tchanders

Description

Motivation

IP Info presents some information which may cause some level of risk to certain users depending on their location. To mitigate this we want to show the more sensitive information only to trusted user groups.

Spec
  • There is a need for varying levels of access to ip info. Implement ipinfo-view-basic and ipinfo-view-full rights with the following viewing permissions:
  1. basic
    • Country
    • Version
    • Connection method
    • Connection owner
    • Proxy
    • Static / Dynamic
    • Number of users on this IP
    • Block information
    • Contributions information
  1. full
    • All basic information
    • Complete Location
    • ISP/Domain
    • Organization
  • IP Info should check for and gate the information as necessary.
  • If a user only has the "basic" access, they will not be able to see the other information. It will completely disappear from the display. There is no indication to the end user that they are viewing a limited version of the information available.
Who sees what? (MVP version, subject to change in the future)
  • Basic: can be accessed by all registered users
  • Full: accessible to these user-groups: sysop, bureaucrat, checkuser, oversight, steward
Things to note:
  • The rights may be split based on already assigned user groups. see T292624: Investigate and document necessary IP Info viewing rights for more detail.
  • In the post-IP-Masking world, there will be a new user right which will be assigned to certain users which allows them to view IPs. When this right will be given, the ipinfo-view-full right will be also implicitly given to these users.

Details

SubjectRepoBranchLines +/-
Add asn to viewing rightsmediawiki/extensions/IPInfomaster+2 -0
Allow ipinfo-view-full to see ASNmediawiki/extensions/IPInfomaster+3 -0
Add access levels to ip information returnedmediawiki/extensions/IPInfomaster+181 -30
Add getCountry to Infomediawiki/extensions/IPInfomaster+75 -0
Customize query in gerrit

Related Objects
Search...

Event Timeline

There are a very large number of changes, so older changes are hidden. Show Older Changes
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 6 2021, 10:55 AM
STran mentioned this in T292624: Investigate and document necessary IP Info viewing rights.Oct 6 2021, 10:55 AM
phuedx subscribed.Oct 6 2021, 11:01 AM

This is much of a muchness but I would lean toward something like "basic" and "full" because admin is an overloaded term.

STran updated the task description. (Show Details)Oct 6 2021, 11:40 AM
Niharika triaged this task as Medium priority.Oct 6 2021, 3:47 PM
Niharika updated the task description. (Show Details)
Niharika moved this task from Untriaged to Triage/To be Estimated on the Anti-Harassment board.
Niharika updated the task description. (Show Details)Oct 6 2021, 3:50 PM
phuedx mentioned this in T292755: Epic: IP Info access.Oct 7 2021, 3:03 PM
Niharika updated the task description. (Show Details)Oct 7 2021, 9:40 PM
phuedx added a comment.Oct 8 2021, 10:48 AM

At the risk of being prescriptive:

In T286661: Create framework for fetching on-wiki information [L], we introduced the DefaultPresenter class, which took the responsibility of converting domain objects to Plain Ol' PHP Arrays from the RESTful API handler classes. Hiding information based on access level fits neatly into this level, the presentation level. I'd approach this by introducing a new presenter class, e.g. SuppressingPresenter, which uses DefaultPresenter under the hood but deletes information based on the user's rights:

class SuppressingPresenter {
    public function __construct( DefaultPresenter $defaultPresenter, PermissionManager $permissionManager ) { /* ... */ }

    public function present( array $info, UserIdentity $user ) {
        $result = $this->defaultPresenter->present( $info );

        if ( !$this->permissionManager->userHasRight( $user, 'ipinfo-view-full' ) ) {
            unset( $result[ /* ... */ ] );
        }

        return $result;
    }
}
Niharika updated the task description. (Show Details)Oct 8 2021, 10:59 PM
Niharika updated the task description. (Show Details)Oct 19 2021, 5:15 PM
ARamirez_WMF renamed this task from Create IP Info viewing rights to Create and implement IP Info viewing rights.Oct 20 2021, 4:30 PM
Niharika updated the task description. (Show Details)Oct 20 2021, 4:31 PM
ARamirez_WMF renamed this task from Create and implement IP Info viewing rights to Create and implement IP Info viewing rights [L].Oct 20 2021, 4:34 PM
ARamirez_WMF moved this task from Triage/To be Estimated to Cards ready for development on the Anti-Harassment board.
Niharika moved this task from Cards ready for development to The Letter Song on the Anti-Harassment board.Oct 20 2021, 5:53 PM
Niharika edited projects, added Anti-Harassment (The Letter Song); removed Anti-Harassment.
STei-WMF subscribed.Oct 26 2021, 2:44 PM
STei-WMF unsubscribed.
STei-WMF subscribed.
STran claimed this task.Oct 26 2021, 4:29 PM
STran moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to In Progress 💪 on the Anti-Harassment (The Letter Song) board.
gerritbot added a comment.Nov 1 2021, 9:41 AM

Change 735935 had a related patch set uploaded (by STran; author: STran):

[mediawiki/extensions/IPInfo@master] Add getCountry to Info

https://gerrit.wikimedia.org/r/735935

gerritbot added a project: Patch-For-Review.Nov 1 2021, 9:41 AM
gerritbot added a comment.Nov 1 2021, 10:28 AM

Change 735942 had a related patch set uploaded (by STran; author: STran):

[mediawiki/extensions/IPInfo@master] Add access levels to ip information returned

https://gerrit.wikimedia.org/r/735942

STran added a subscriber: Prtksxna.Nov 1 2021, 11:41 AM

@Prtksxna I just wanted to check in to make sure that

There is no indication to the end user that they are viewing a limited version of the information available.

didn't conflict with our current "show all potential information even if the user doesn't have access to it" implementation. Here's what the popup looks like with basic permissions:

image.png (236×344 px, 13 KB)

And with full access:

image.png (211×334 px, 11 KB)

Does this look okay? Did we want to show country and location at the same time?

Additionally, we don't have the following set up and I think these would require additional tickets:
Country*
Version
Connection owner - Is this different than ISP?
Static / Dynamic - not available w/data we currently have
Number of users on this IP - not available w/data we currently have

*I wrote something quick for this with https://gerrit.wikimedia.org/r/c/mediawiki/extensions/IPInfo/+/735935 to test out country vs location since I wasn't sure if we wanted to show both or one over the other

STran moved this task from In Progress 💪 to Needs Design/Product 🎨 on the Anti-Harassment (The Letter Song) board.Nov 1 2021, 11:44 AM
Prtksxna added a comment.Nov 2 2021, 3:01 AM
In T292626#7471546, @STran wrote:

Does this look okay? Did we want to show country and location at the same time?

Yep, just a single Location heading that would either show the full location or just the country.

Additionally, we don't have the following set up and I think these would require additional tickets

Set up in terms of viewing rights or showing them in the box?

Connection owner - Is this different than ISP?

Yep. This is userType (as seen in T264837). We changed the label after people had trouble understanding it in the usability tests. The figma mock, T269304 and T287647 have more details.

Static / Dynamic - not available w/data we currently have
Number of users on this IP - not available w/data we currently have

Does this mean that we won't have the data for the BetaFeatue, or that we just don't have it at the moment?

Tchanders subscribed.EditedNov 2 2021, 6:01 PM

Since country and location are separated out here, do we still need to do T267403?

Ignore me, just seen this:

Did we want to show country and location at the same time?

Yep, just a single Location heading that would either show the full location or just the country.

STran moved this task from Needs Design/Product 🎨 to In Progress 💪 on the Anti-Harassment (The Letter Song) board.Nov 8 2021, 7:07 PM
gerritbot added a comment.Nov 9 2021, 10:56 AM

Change 735935 merged by jenkins-bot:

[mediawiki/extensions/IPInfo@master] Add getCountry to Info

https://gerrit.wikimedia.org/r/735935

STran mentioned this in rEIPI39558326c23c: Add getCountry to Info.Nov 9 2021, 10:56 AM
ReleaseTaggerBot added a project: MW-1.38-notes (1.38.0-wmf.9; 2021-11-16).Nov 9 2021, 11:00 AM
STran moved this task from In Progress 💪 to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.Nov 10 2021, 7:04 AM
phuedx mentioned this in T295902: Infobox and popup should display an error when the user doesn't have viewing rights.Nov 17 2021, 4:20 PM
Tchanders mentioned this in T295912: Grant `ipinfo-view-basic` right on beta [S].Nov 17 2021, 6:08 PM
Tchanders moved this task from Code Review 🔍 to Blocked/Stalled 🚧 on the Anti-Harassment (The Letter Song) board.Nov 18 2021, 4:51 PM
phuedx added a subtask: T295912: Grant `ipinfo-view-basic` right on beta [S].Nov 18 2021, 4:53 PM
Tchanders added a comment.Nov 18 2021, 4:56 PM

This is ready to go, just waiting for T295912: Grant `ipinfo-view-basic` right on beta [S]

phuedx moved this task from Blocked/Stalled 🚧 to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.Nov 22 2021, 7:05 PM
STran moved this task from Code Review 🔍 to QA/Testing 🐞 on the Anti-Harassment (The Letter Song) board.Nov 23 2021, 5:52 AM
gerritbot added a comment.Nov 23 2021, 12:22 PM

Change 735942 merged by jenkins-bot:

[mediawiki/extensions/IPInfo@master] Add access levels to ip information returned

https://gerrit.wikimedia.org/r/735942

phuedx mentioned this in rEIPI07d932fe51a1: Add access levels to ip information returned.Nov 23 2021, 12:23 PM
ReleaseTaggerBot edited projects, added MW-1.38-notes (1.38.0-wmf.12; 2021-12-06); removed MW-1.38-notes (1.38.0-wmf.9; 2021-11-16).Nov 23 2021, 1:00 PM
Maintenance_bot removed a project: Patch-For-Review.Nov 23 2021, 1:11 PM
imaigwilo subscribed.Nov 30 2021, 2:11 AM

@STran ipinfo-view-basic rights has been implemented per current view:

Screen Shot 2021-11-29 at 9.06.40 PM.png (1×2 px, 536 KB)

For ipinfo-view-full rights how can I set that up for my user with that rights, will that be implemented on another ticket? I also do not have documentation on the ticket on how to access/setup these rights.
Also for ipinfo-view-full rights; I did not see it listed in https://en.wikipedia.beta.wmflabs.org/wiki/Special:ListGroupRights
Thanks!

phuedx added a comment.Nov 30 2021, 3:47 PM
In T292626#7536283, @imaigwilo wrote:

For ipinfo-view-full rights how can I set that up for my user with that rights, will that be implemented on another ticket? I also do not have documentation on the ticket on how to access/setup these rights.
Also for ipinfo-view-full rights; I did not see it listed in https://en.wikipedia.beta.wmflabs.org/wiki/Special:ListGroupRights

We're not going to be granting the ipinfo-view-full right on the Beta Cluster (see T270347: Remove 'ipinfo' right from administrators on the Beta Cluster) so this will have to be tested in your local testing environment.

I also do not have documentation on the ticket on how to access/setup these rights.

For a detailed overview see mw:Manual:User_rights. For this ticket, you can add the following to your LocalSettings.php file:

LocalSettings.php
$wgGroupPermissions['sysop']['ipinfo-view-full'] = true;

which will grant the Admin user the right on your local testing environment.

imaigwilo added a comment.Dec 9 2021, 11:51 PM

I was able to confirm user with ipinfo-view-basic and ipinfo-view-full rights:

ipinfo-view-basic on Beta, see screenshot below:

Screen Shot 2021-12-09 at 6.51.20 PM.png (1×2 px, 658 KB)

Via my local environment I was able to test the ipinfo-view-full rights, see below

Screen Shot 2021-12-09 at 5.29.08 PM.png (1×2 px, 836 KB)

imaigwilo moved this task from QA/Testing 🐞 to Done: Q2 2021-22 on the Anti-Harassment (The Letter Song) board.Dec 10 2021, 1:00 AM
gerritbot added a comment.Jan 13 2022, 12:33 PM

Change 753720 had a related patch set uploaded (by STran; author: STran):

[mediawiki/extensions/IPInfo@master] Allow ipinfo-view-full to see ASN

https://gerrit.wikimedia.org/r/753720

gerritbot added a project: Patch-For-Review.Jan 13 2022, 12:33 PM
STran added a comment.Jan 13 2022, 12:34 PM

cc @Prtksxna ASN is in the designs but no one has access to view it atm 😅 I made an assumption but should ipinfo-view-full see ASN? Should ipinfo-view-basic?

STran moved this task from Done: Q2 2021-22 to Needs Design/Product 🎨 on the Anti-Harassment (The Letter Song) board.Jan 13 2022, 12:47 PM
Prtksxna added a comment.Jan 15 2022, 3:57 AM
In T292626#7619369, @STran wrote:

cc @Prtksxna ASN is in the designs but no one has access to view it atm 😅 I made an assumption but should ipinfo-view-full see ASN? Should ipinfo-view-basic?

You're right, since ASN can be used to get a better sense of location it should be in ipinfo-view-full.

STran moved this task from Needs Design/Product 🎨 to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.Jan 17 2022, 11:48 AM
gerritbot added a comment.Jan 19 2022, 1:29 AM

Change 753720 merged by jenkins-bot:

[mediawiki/extensions/IPInfo@master] Allow ipinfo-view-full to see ASN

https://gerrit.wikimedia.org/r/753720

ReleaseTaggerBot edited projects, added MW-1.38-notes (1.38.0-wmf.19; 2022-01-24); removed MW-1.38-notes (1.38.0-wmf.12; 2021-12-06).Jan 19 2022, 2:00 AM
Maintenance_bot removed a project: Patch-For-Review.Jan 19 2022, 2:11 AM
Tchanders moved this task from Code Review 🔍 to QA/Testing 🐞 on the Anti-Harassment (The Letter Song) board.Jan 19 2022, 2:39 AM
imaigwilo added a comment.EditedJan 20 2022, 5:27 AM

Below is view of info view full right. ASN field shows but no data is available. Although there is data for ASN. Is this okay? @STran

Screen Shot 2022-01-20 at 9.46.36 PM.png (1×2 px, 382 KB)

Screen Shot 2022-01-20 at 9.47.38 PM.png (1×2 px, 470 KB)

Below is view of info-view-basic. ASN field is also available in this view, is that expected per the description

Screen Shot 2022-01-20 at 8.54.50 PM.png (1×2 px, 622 KB)

dom_walden mentioned this in T298955: Return different data from IPInfo api based on context [M].Jan 20 2022, 11:14 AM
gerritbot added a comment.Jan 24 2022, 7:24 PM

Change 756653 had a related patch set uploaded (by STran; author: STran):

[mediawiki/extensions/IPInfo@master] Add asn to viewing rights

https://gerrit.wikimedia.org/r/756653

gerritbot added a project: Patch-For-Review.Jan 24 2022, 7:24 PM
imaigwilo moved this task from QA/Testing 🐞 to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.Jan 27 2022, 5:45 PM
Tchanders mentioned this in T295017: Display ipinfo log lines on Special:Log.Feb 3 2022, 5:06 PM
gerritbot added a comment.Feb 4 2022, 3:33 AM

Change 756653 merged by jenkins-bot:

[mediawiki/extensions/IPInfo@master] Add asn to viewing rights

https://gerrit.wikimedia.org/r/756653

Tchanders added a comment.Feb 4 2022, 3:35 AM
In T292626#7635426, @imaigwilo wrote:

Below is view of info view full right. ASN field shows but no data is available. Although there is data for ASN. Is this okay?

The data should be visible - the latest patch should fix this.

Below is view of info-view-basic. ASN field is also available in this view, is that expected per the description

This is correct.

Tchanders moved this task from Code Review 🔍 to QA/Testing 🐞 on the Anti-Harassment (The Letter Song) board.Feb 4 2022, 3:36 AM
ReleaseTaggerBot edited projects, added MW-1.38-notes (1.38.0-wmf.21; 2022-02-07); removed MW-1.38-notes (1.38.0-wmf.19; 2022-01-24).Feb 4 2022, 4:00 AM
Maintenance_bot removed a project: Patch-For-Review.Feb 4 2022, 4:10 AM
imaigwilo added a comment.Feb 8 2022, 4:47 PM

ASN now shows for IP info, see below screen shot:

Screen Shot 2022-02-08 at 11.30.04 AM.png (1×2 px, 353 KB)

Screen Shot 2022-02-08 at 11.30.30 AM.png (1×2 px, 297 KB)

IP info below does not have ASN, and it shows accordingly per screen shot below:

Screen Shot 2022-02-08 at 11.02.09 AM.png (1×2 px, 360 KB)

Screen Shot 2022-02-08 at 11.27.26 AM.png (1×1 px, 242 KB)

imaigwilo moved this task from QA/Testing 🐞 to Done: Q2 2021-22 on the Anti-Harassment (The Letter Song) board.Feb 8 2022, 4:48 PM
Niharika closed this task as Resolved.Feb 17 2022, 1:36 AM
Niharika closed subtask T295912: Grant `ipinfo-view-basic` right on beta [S] as Resolved.Feb 17 2022, 1:47 AM
Niharika moved this task from Backlog to Closed on the IP Info board.Aug 8 2022, 7:59 PM
KColeman-WMF closed subtask T295902: Infobox and popup should display an error when the user doesn't have viewing rights as Declined.Sep 19 2023, 4:31 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL