Page MenuHomePhabricator
Create Task
Maniphest T31954

Add API method for TitleBlacklist
Closed, ResolvedPublic
Actions

Description

Author: neilk

Description:
Create an API method so uploading applications like Extension:UploadWizard can check if a title is going to fail the blacklist.

The minimal implementation would add an API method just to this extension.

(The best possible implementation would check the same hooks that extensions *like* TitleBlacklist use to block files, so it would be compatible with any similar extension; in which case it's not really a bug on TitleBlacklist. But, it might be better to start smaller)

Version: unspecified
Severity: enhancement

Details

Reference
bz29954

Event Timeline

bzimport raised the priority of this task from to Needs Triage.Nov 21 2014, 11:34 PM
bzimport added a project: TitleBlacklist.
bzimport set Reference to bz29954.
bzimport created this task.Jul 18 2011, 5:35 PM
brion added a comment.Jul 19 2011, 12:11 AM

I think we want a sort of 'if I try to create a page named like this, would it be ok?' call, sorta like a pre-flight check before you actually go issue your edit or upload. :)

This can then cover:

  • basic title validity
  • upload filename checks
  • TitleBlacklist title checks
  • possibly a subset of AbuseFilter rules?

and this could return you a fairly sensible error message, possibly a nice localized one (so we can give sane output about custom blacklist rules for instance, rather than a generic message).

Reedy added a comment.Jul 19 2011, 1:08 AM

Ideally it's kept as generic as possible (and probably core api), and "emulate" it going through all possible validation methods as much as we possibly can...

bzimport added a comment.Jul 19 2011, 6:15 AM

neilk wrote:

I agree a generic preflight check thing would be nice, but TitleBlacklist is a good place to start.

One could make an omnibus method that looked for common extensions like TitleBlacklist and AbuseFilter, but If you're going to do this generically you need to directly invoke the hooks associated with page creation (instead of waiting for page creation to call those hooks). But it's not easy to tease apart which might be simple checks for titles and which might have side effects.

bzimport added a comment.Jul 19 2011, 6:01 PM

ibaker wrote:

Yeah, invoking page creation hooks without creating a page sounds clever, but also fragile. Like, if it works now, there's no guarantee that a future extension won't break it by using those hooks to invoke DML.

I'd be into the notion of making a generic API that, if existing validation classes are present, will call them all and aggregate the results. It would require new code for each validation extension, but it'd allow us to at least centralize that, rather than having each new consumer of the data implement all of them separately.

At the moment, though, I think I'm going to build a TitleBlacklist API. We can move that very same code into a more generic API when/if we need to add support for a second validation extension.

Reedy added a comment.Jul 19 2011, 6:14 PM

Having a hook, or some relevant global, would allow things to be able to grab into the validation logic, rather than into our somewhat convoluted methods that end up into the extensions as is.

Something to look at later definitely

bzimport added a comment.Aug 25 2011, 8:05 PM

ibaker wrote:

API built and deployed. We'll hopefully start using it this week.

Liuxinyu970226 removed a parent task: T25855: [ABANDONED TRACKING TASK] Non Core API issues.Mar 22 2019, 1:47 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL