Page MenuHomePhabricator

Can global sysops have ipinfo-view-full and ipinfo-view-log access?
Open, Stalled, Needs TriagePublic

Description

Asked at T260597: Deploy IP Info extension to all wikis (as a beta feature), making a subtask for tracking.

Can global sysops have ipinfo-view-full and ipinfo-view-log access? Asking per T307164: IP Info log access to staff, stewards, checkusers, ombudsmen, which suggests a legal limitation? This has been requested on-wiki.

Related Objects

StatusSubtypeAssignedTask
OpenNone
OpenNone
OpenNone
ResolvedTchanders
ResolvedNiharika
ResolvedDzahn
OpenBUG REPORTNone
OpenSpikeNiharika
ResolvedNiharika
ResolvedSTran
ResolvedTchanders
ResolvedTchanders
Resolvedsbassett
ResolvedDec 15 2020Tchanders
ResolvedTchanders
ResolvedTchanders
InvalidNone
ResolvedSep 22 2020Tchanders
ResolvedSep 22 2020Tchanders
ResolvedTchanders
Resolveddbarratt
ResolvedTchanders
Resolveddbarratt
ResolvedTchanders
Resolvedsbassett
ResolvedNiharika
InvalidNone
StalledNone

Event Timeline

Hmm, we could start a new task to discuss about Global Rollbackers.

Hang tight, I'm checking with Legal about this!

Hang tight, I'm checking with Legal about this!

Can you please also ask about global rollbackers and other global groups?

Hang tight, I'm checking with Legal about this!

Can you please also ask about global rollbackers and other global groups?

Yes, could you tell me which other global groups would need this access? stewards, staff and ombuds groups already have this access.

Hang tight, I'm checking with Legal about this!

Can you please also ask about global rollbackers and other global groups?

Yes, could you tell me which other global groups would need this access? stewards, staff and ombuds groups already have this access.

I imagine this would also be helpful for abuse filter helpers and maintainers (see the ip address when debugging edit filters that use ips), system administrators, global rollbackers, and maybe global interface editors (since they are trusted with so much more including editing site wide js/css)

Hang tight, I'm checking with Legal about this!

Can you please also ask about global rollbackers and other global groups?

Yes, could you tell me which other global groups would need this access? stewards, staff and ombuds groups already have this access.

I imagine this would also be helpful for abuse filter helpers and maintainers (see the ip address when debugging edit filters that use ips), system administrators, global rollbackers, and maybe global interface editors (since they are trusted with so much more including editing site wide js/css)

Thanks @DannyS712. I've updated my request for the Legal team.

ipinfo-view-log seems limited for those with CU-log access per T307164. Given that global sysops/rollbackers do not sign any NDA, maybe this should not be added unless Legal thinks otherwise. Strike per rOMWC9886463a1fba: Add IPInfo viewing rights for certain groups; sysops have it too but it looks like this is not intended per T307164#7963866.

ipinfo-view-full is probably okay considering that it's a sysop level permission and they have sysop permissions on the several wikis that allow them.

TheresNoTime changed the task status from Open to Stalled.Jun 6 2022, 9:57 AM

Per the resolution of T309928: Remove `ipinfo-view-log` from sysops, ipinfo-view-log is not going to be added (pending Legal's input) — ipinfo-view-full probably can be added as @MarcoAurelio mentions above, but its best we wait for clarification from @Niharika et al

Set task to stalled, awaiting input