Page MenuHomePhabricator
Create Task
Maniphest T311221

🟦️ Use the newly created `PermissionChecker` in the AddItemStatement use case
Closed, ResolvedPublic
Actions

Description

  • use PermissionChecker (T311154) in the use case after calling the revisionMetadataRetriever
  • return error response if not allowed
  • add e2e test with protected item

Respond with the same kind of error that the MediaWiki framework responds with when then route handler's needsWriteAccess check fails.

Details

SubjectRepoBranchLines +/-
REST: Use PermissionChecker in AddItemStatementmediawiki/extensions/Wikibasemaster+117 -12
REST: Use null username instead of anonymous flagmediawiki/extensions/Wikibasemaster+22 -15
Customize query in gerrit

Related Objects
Search...

Event Timeline

Ollie.Shotton_WMDE created this task.Jun 23 2022, 10:45 AM
Jakob_WMDE renamed this task from 🟦️ Implement `PermissionChecker` to check if the user can edit the item to 🟦️ Use the newly created `PermissionChecker` in the AddItemStatement use case.Jun 23 2022, 2:05 PM
Silvan_WMDE claimed this task.Jun 29 2022, 6:31 AM
Silvan_WMDE moved this task from To Do to Doing on the Wikibase Product Platform (v1) (Sprint 9) board.
gerritbot added a comment.Jun 30 2022, 10:16 AM

Change 809929 had a related patch set uploaded (by Silvan Heintze; author: Silvan Heintze):

[mediawiki/extensions/Wikibase@master] REST: Use null username instead of anonymous flag

https://gerrit.wikimedia.org/r/809929

gerritbot added a project: Patch-For-Review.Jun 30 2022, 10:16 AM

Change 809930 had a related patch set uploaded (by Silvan Heintze; author: Silvan Heintze):

[mediawiki/extensions/Wikibase@master] REST: Use PermissionChecker in AddItemStatement

https://gerrit.wikimedia.org/r/809930

Silvan_WMDE moved this task from Doing to Peer Review on the Wikibase Product Platform (v1) (Sprint 9) board.Jun 30 2022, 11:06 AM
gerritbot added a comment.Jun 30 2022, 12:41 PM

Change 809929 merged by jenkins-bot:

[mediawiki/extensions/Wikibase@master] REST: Use null username instead of anonymous flag

https://gerrit.wikimedia.org/r/809929

gerritbot added a comment.Jul 1 2022, 1:19 PM

Change 809930 merged by jenkins-bot:

[mediawiki/extensions/Wikibase@master] REST: Use PermissionChecker in AddItemStatement

https://gerrit.wikimedia.org/r/809930

Silvan_WMDE moved this task from Peer Review to Done on the Wikibase Product Platform (v1) (Sprint 9) board.Jul 1 2022, 1:30 PM
Maintenance_bot removed a project: Patch-For-Review.Jul 1 2022, 1:30 PM
WMDE-leszek closed this task as Resolved.Jul 11 2022, 9:18 AM
ReleaseTaggerBot added a project: MW-1.39-notes (1.39.0-wmf.21; 2022-07-18).Jul 11 2022, 10:01 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL