Page MenuHomePhabricator
Create Task
Maniphest T292842

Log when the user's access level changes
Closed, ResolvedPublic3 Estimated Story Points
Actions

Description

Background

In order to satisfy the access logging, reporting, and revoking requirements detailed in T292755: Epic: IP Info access, we need to log when certain events occur to the logging table.

AC

  • When the following events occur, we should log a line to the logging table:

From T263756#7405169:

  • user enables their own access
  • user disable their own access

Notes

  1. Originally, the first AC also included the following events:
  • user gains "basic" access
  • user gains "full" access
  • user has (all? some?) access revoked
  • user has (all? some?) access re-enabled (?)

From T263756#7407907:

  • User is granted the right to enable the tool - the ipinfo right
  • User has the right to enable the tool revoked

However, these will fall out of the work done in T296085: Create a group that grants basic ipinfo* rights, T296184: Automatically promote users to the group that grants basic rights, and T296499: Grant certain groups the ipinfo-view-full right as a user being added to/removed from a groups is logged to the user rights log, e.g. https://en.wikipedia.org/wiki/Special:Log?type=rights

Details

ProjectBranchLines +/-Subject
mediawiki/extensions/IPInfomaster+136 -9Log whenever a user's access changes
Customize query in gerrit

Related Objects
Search...

Event Timeline

phuedx created this task.Oct 8 2021, 1:30 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 8 2021, 1:30 PM
phuedx added a subtask: T263756: Create a table to store which users have access to IPInfo, and the timestamp when access was granted [L].Oct 8 2021, 1:31 PM
phuedx added a project: Anti-Harassment.Oct 13 2021, 3:14 PM
phuedx moved this task from Untriaged to Triage/To be Estimated on the Anti-Harassment board.
phuedx removed a project: Epic.Nov 2 2021, 1:58 PM
gerritbot added a comment.Nov 2 2021, 3:20 PM

Change 736267 had a related patch set uploaded (by Phuedx; author: Phuedx):

[mediawiki/extensions/IPInfo@master] WIP: Add IPInfo log to Special:Log

https://gerrit.wikimedia.org/r/736267

gerritbot added a project: Patch-For-Review.Nov 2 2021, 3:20 PM
phuedx updated the task description. (Show Details)Nov 2 2021, 3:41 PM
phuedx added a subtask: T294680: IP Info: Create a logger function to be used in both the popup and accordion presenters [M].Nov 4 2021, 9:47 AM
phuedx mentioned this in T295017: Display ipinfo log lines on Special:Log.Nov 4 2021, 10:21 AM
phuedx updated the task description. (Show Details)Nov 4 2021, 10:42 AM
phuedx removed a project: Patch-For-Review.
Niharika closed subtask T263756: Create a table to store which users have access to IPInfo, and the timestamp when access was granted [L] as Resolved.Nov 11 2021, 8:54 PM
phuedx mentioned this in T294680: IP Info: Create a logger function to be used in both the popup and accordion presenters [M].Dec 10 2021, 1:53 PM
phuedx updated the task description. (Show Details)Dec 15 2021, 2:38 PM
wikitrent set the point value for this task to 3.Jan 24 2022, 6:45 PM
wikitrent moved this task from Triage/To be Estimated to The Letter Song on the Anti-Harassment board.
wikitrent edited projects, added Anti-Harassment (The Letter Song); removed Anti-Harassment.
STran claimed this task.Feb 4 2022, 12:38 AM
STran moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to In Progress 💪 on the Anti-Harassment (The Letter Song) board.
gerritbot added a comment.Feb 16 2022, 1:48 AM

Change 762971 had a related patch set uploaded (by STran; author: STran):

[mediawiki/extensions/IPInfo@master] Log whenever a user's access changes

https://gerrit.wikimedia.org/r/762971

gerritbot added a project: Patch-For-Review.Feb 16 2022, 1:48 AM
STran added a subscriber: Niharika.Feb 16 2022, 1:50 AM

@Niharika I may have gotten a bit ahead of myself and implemented displaying the log lines as well. Is this okay? And if so, is this copy okay?

image.png (69×557 px, 20 KB)

STran moved this task from In Progress 💪 to Code Review 🔍 on the Anti-Harassment (The Letter Song) board.Feb 16 2022, 2:17 AM
Niharika added a comment.Feb 16 2022, 9:41 PM
In T292842#7713520, @STran wrote:

@Niharika I may have gotten a bit ahead of myself and implemented displaying the log lines as well. Is this okay? And if so, is this copy okay?

image.png (69×557 px, 20 KB)

Should this log also expose which level of access they got or is that captured elsewhere?

Niharika closed subtask T294680: IP Info: Create a logger function to be used in both the popup and accordion presenters [M] as Resolved.Feb 17 2022, 1:48 AM
Tchanders added a subscriber: Tchanders.Feb 17 2022, 10:24 AM
In T292842#7716484, @Niharika wrote:
In T292842#7713520, @STran wrote:

@Niharika I may have gotten a bit ahead of myself and implemented displaying the log lines as well. Is this okay? And if so, is this copy okay?

image.png (69×557 px, 20 KB)

Should this log also expose which level of access they got or is that captured elsewhere?

There's another log line for when they view the data, which exposes their level of access (see T300773). Is that enough?

Tchanders mentioned this in T302000: Fix messages for Special:Log/ipinfo log lines.Feb 17 2022, 4:17 PM

@Niharika @STran Here's a new task for deciding on the log line copy: T302000

ARamirez_WMF edited projects, added Anti-Harassment (AHaT Sprint 2: The Pork Pie); removed Patch-For-Review, Anti-Harassment (The Letter Song), IP Info.Feb 17 2022, 8:47 PM
ARamirez_WMF moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to Code Review 🔍 on the Anti-Harassment (AHaT Sprint 2: The Pork Pie) board.Feb 17 2022, 8:52 PM
Tchanders updated the task description. (Show Details)Feb 22 2022, 2:23 PM
Tchanders updated the task description. (Show Details)
gerritbot added a comment.Mar 1 2022, 2:44 PM

Change 762971 merged by jenkins-bot:

[mediawiki/extensions/IPInfo@master] Log whenever a user's access changes

https://gerrit.wikimedia.org/r/762971

Tchanders moved this task from Code Review 🔍 to QA/Testing 🐞 on the Anti-Harassment (AHaT Sprint 2: The Pork Pie) board.Mar 1 2022, 2:59 PM
ReleaseTaggerBot added a project: MW-1.38-notes (1.38.0-wmf.25; 2022-03-07).Mar 1 2022, 3:00 PM
imaigwilo added a subscriber: imaigwilo.Mar 2 2022, 7:45 PM

logger table view of user access changes:

Screen Shot 2022-03-02 at 12.50.33 PM.png (154×2 px, 75 KB)

imaigwilo moved this task from QA/Testing 🐞 to Done Q3 2022 on the Anti-Harassment (AHaT Sprint 2: The Pork Pie) board.Mar 2 2022, 8:14 PM
Tchanders mentioned this in T303065: Access level changes are being logged spuriously.Mar 4 2022, 5:06 PM
ARamirez_WMF edited projects, added Anti-Harassment (AHaT Sprint 3: Lady Dimitrescu); removed Anti-Harassment (AHaT Sprint 2: The Pork Pie).Mar 7 2022, 7:35 PM
ARamirez_WMF moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to Done Q3 2022 on the Anti-Harassment (AHaT Sprint 3: Lady Dimitrescu) board.Mar 7 2022, 7:39 PM
ARamirez_WMF edited projects, added Anti-Harassment (AHaT Sprint 2: The Pork Pie); removed Anti-Harassment (AHaT Sprint 3: Lady Dimitrescu).Mar 7 2022, 8:05 PM
Niharika closed this task as Resolved.Mar 8 2022, 12:29 AM
Content licensed under Creative Commons Attribution-ShareAlike 4.0 (CC-BY-SA) unless otherwise noted; code licensed under GNU General Public License (GPL) or other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL