Page MenuHomePhabricator
Create Task
Maniphest T338836

How should blocks treat temporary users?
Closed, ResolvedPublic
Actions

Description

From T326759#8653302:

Blocks (AHT)

  • Should blocked IPs defined in DnsBlacklistUrls and SoftBlockRanges apply to temporary account users?

Yes - T343704: Ensure temporary users are blocked by configured IP blocks

  • Should it be possible to suppress a temporary account user? (It's not possible to suppress an IP user.)

No - T343705: Ensure temporary accounts cannot be suppressed via "hideuser"

  • How should autoblocks work for temporary accounts? (Blocked on community consultation as commented here: T300294#8476287)

This is working as desired - see T332231: [Investigate] Autoblocks behavior for temporary accounts

  • If the "Apply block to logged-in users from this IP address" is unchecked, should it block temporary account users?

Yes - T343714: Soft blocks against an IP address should block temporary accounts using that IP address

  • Should BlockDisablesLogin prevent a user from making a temporary account?

N/A - see T338836#9073827

Note that GlobalBlocking recognizes "anon only" blocks too.

Related Objects
Search...

Event Timeline

Tchanders created this task.Jun 12 2023, 8:13 PM
Tchanders updated the task description. (Show Details)Jun 12 2023, 8:17 PM
Tchanders mentioned this in T337103: Decide a standard approach for classifying temporary, IP and registered users.Jun 12 2023, 8:24 PM
Tchanders mentioned this in T326759: Investigate: Which WMF deployed code might be affected by IP Masking?.
JJMC89 added a project: MediaWiki-Blocks.Jun 12 2023, 8:44 PM
Umherirrender subscribed.Jun 13 2023, 4:53 PM

(It's not possible to suppress an IP user.)

It is possible to suppress the ip of a revision on a single page. It seems this comments referes to the "hideuser" feature on Special:Block (want just note about the right naming here)

Tchanders added a comment.Jun 13 2023, 4:55 PM
In T338836#8928439, @Umherirrender wrote:

(It's not possible to suppress an IP user.)

It is possible to suppress the ip of a revision on a single page. It seems this comments referes to the "hideuser" feature on Special:Block (want just note about the right naming here)

Ah thanks for clarifying! Yes, it just means hideuser here.

Tchanders mentioned this in T339947: IP Masking- Special:Block w/ Different Browsers; Partial Site.Jun 26 2023, 3:20 PM
Tchanders added a subtask: T339947: IP Masking- Special:Block w/ Different Browsers; Partial Site.
Snaevar subscribed.Jun 27 2023, 11:39 AM
Tchanders mentioned this in T341228: Update action API to handle temporary users.Jul 6 2023, 1:44 PM
Umherirrender unsubscribed.Jul 12 2023, 8:07 PM
Niharika added a comment.EditedJul 20 2023, 1:35 AM
  • Should blocked IPs defined in DnsBlacklistUrls and SoftBlockRanges apply to temporary account users?

If they apply to unregistered editors at present then they should also apply to temporary accounts.

  • Should it be possible to suppress a temporary account user? (It's not possible to suppress an IP user.)

We want to keep the temp accounts experience consistent with current experience for unregistered users so we should disallow hideuser for temp accounts if it is disallowed for IPs currently.

  • How should autoblocks work for temporary accounts? (Blocked on community consultation as commented here: T300294#8476287)

We have since discussed this and the expected behavior is in place: T332231: [Investigate] Autoblocks behavior for temporary accounts

  • If the "Apply block to logged-in users from this IP address" is unchecked, should it block temporary account users?

Yes. Temporary accounts should not be treated the same as “logged-in users”.

  • Should BlockDisablesLogin prevent a user from making a temporary account?

No. Temporary accounts are not proper accounts so it makes sense to not disable them. Is this a config option that can be customized on a per-wiki basis in case a wiki wants to change it?

JJMC89 subscribed.Jul 20 2023, 5:45 AM
In T338836#9030178, @Niharika wrote:
  • Should it be possible to suppress a temporary account user? (It's not possible to suppress an IP user.)

We want to keep the temp accounts experience consistent with current experience for unregistered users so we should disallow hideuser for temp accounts if it is disallowed for IPs currently.

Besides consistency, temporary users should never need to be hidden since their username is automatically generated.

  • Should BlockDisablesLogin prevent a user from making a temporary account?

No. Temporary accounts are not proper accounts so it makes sense to not disable them. Is this a config option that can be customized on a per-wiki basis in case a wiki wants to change it?

If $wgBlockDisablesLogin is set to true, blocked users will be signed out and future attempts to sign in will fail.

This setting only makes sense for wikis that require an account to edit (or even read). Such wikis should not have temporary accounts.

WMF's config only enables this setting for private wikis plus votewiki and labswiki. I would not expect that to expand.

Tchanders claimed this task.Jul 26 2023, 2:01 PM
Tchanders edited projects, added Anti-Harassment-Team (AHaT Sprint 32 - Baseball Cap); removed Anti-Harassment-Team.
Tchanders moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to In Progress 💪 on the Anti-Harassment-Team (AHaT Sprint 32 - Baseball Cap) board.Jul 26 2023, 4:18 PM
Tchanders mentioned this in T342885: Improve BlockManagerTest coverage.Jul 27 2023, 1:57 PM
Tchanders mentioned this in T343704: Ensure temporary users are blocked by configured IP blocks.Aug 7 2023, 11:36 AM
Tchanders mentioned this in T343705: Ensure temporary accounts cannot be suppressed via "hideuser".Aug 7 2023, 11:48 AM
Tchanders added a comment.Aug 7 2023, 1:21 PM
  • Should BlockDisablesLogin prevent a user from making a temporary account?

No. Temporary accounts are not proper accounts so it makes sense to not disable them. Is this a config option that can be customized on a per-wiki basis in case a wiki wants to change it?

If $wgBlockDisablesLogin is set to true, blocked users will be signed out and future attempts to sign in will fail.

This setting only makes sense for wikis that require an account to edit (or even read). Such wikis should not have temporary accounts.

WMF's config only enables this setting for private wikis plus votewiki and labswiki. I would not expect that to expand.

This makes sense to me. BlockDisablesLogin should not be set to true on wikis where temporary accounts are enabled. Therefore we don't need to implement any special handling of BlockDisablesLogin for temporary users, so there's nothing to do here.

Tchanders mentioned this in T343714: Soft blocks against an IP address should block temporary accounts using that IP address.Aug 7 2023, 1:24 PM
Tchanders updated the task description. (Show Details)Aug 7 2023, 1:27 PM
Tchanders edited projects, added Anti-Harassment-Team; removed Anti-Harassment-Team (AHaT Sprint 32 - Baseball Cap).

Moving this task to the backlog since the work is captured in subtasks, which are in progress.

Tchanders moved this task from Untriaged to MediaWiki-Blocks on the Anti-Harassment-Team board.Aug 7 2023, 1:29 PM
Niharika closed subtask T343714: Soft blocks against an IP address should block temporary accounts using that IP address as Resolved.Nov 6 2023, 10:00 PM
Dreamy_Jazz closed subtask T343705: Ensure temporary accounts cannot be suppressed via "hideuser" as Declined.Jan 22 2024, 6:16 PM
kostajh subscribed.Jan 24 2024, 6:47 PM
Tchanders closed subtask T343704: Ensure temporary users are blocked by configured IP blocks as Resolved.Feb 6 2024, 1:54 PM
Bugreporter subscribed.Feb 20 2024, 3:15 AM

Blocks of expired temporary accounts make no sense (but admins may tend to use indefinite block for VOA) and they will inflate the database and confuse users. So some proposed ideas:

  • Prevent blocks of temporary accounts for more than the lifetime (one year in Wikimedia wikis)
  • Prevent blocks of already expired temporary accounts
  • Automatically purge blocks of temporary accounts upon expiration
Dreamy_Jazz closed subtask T339947: IP Masking- Special:Block w/ Different Browsers; Partial Site as Resolved.Feb 23 2024, 11:19 AM
Snaevar unsubscribed.Mar 8 2024, 7:27 PM
TAdeleye_WMF edited projects, added Trust and Safety Product Team; removed Anti-Harassment-Team.May 14 2024, 4:18 PM
Niharika added a comment.Sep 2 2024, 4:28 AM
In T338836#9556620, @Bugreporter wrote:

Blocks of expired temporary accounts make no sense (but admins may tend to use indefinite block for VOA) and they will inflate the database and confuse users. So some proposed ideas:

@Bugreporter What do you mean by "indefinite block for VOA"? Do you think there is a high likelihood of expired temp accounts being blocked?

Bugreporter added a comment.Sep 2 2024, 5:06 AM

Traditionally admins will issue indef blocks for vandalism-only users. It is probably not a good practice to do so on temporary users, since they will expire and become unusable.

Bugreporter added a comment.EditedSep 2 2024, 5:30 AM

However, rMW7440b2c22e3294d7b173202e3250c0e2c7982ebb described a different use case for indefinite blocks: if someone accidently logged out and make edit we may use hideuser to hide the temporary account, which must be blocked with an indefinite block. So indefinite blocks of temp accounts and blocks of expired temporary accounts has its use case. But admins should be able to know whether a temporary account is expired before blocking anyway.

Pppery subscribed.Sep 2 2024, 5:32 AM

Nothing should be done re blocks - the block will have no effect once the account expires, but it should still persist in the database, and allow the community to declare any new temporary accounts to be block-evading sockpuppets of the original temporary accounts for example.

Niharika added a comment.Sep 2 2024, 5:12 PM
In T338836#10109209, @Bugreporter wrote:

However, rMW7440b2c22e3294d7b173202e3250c0e2c7982ebb described a different use case for indefinite blocks: if someone accidently logged out and make edit we may use hideuser to hide the temporary account, which must be blocked with an indefinite block. So indefinite blocks of temp accounts and blocks of expired temporary accounts has its use case. But admins should be able to know whether a temporary account is expired before blocking anyway.

There will be a visual indicator to see if a temporary account is expired - see T358469: Display expired temporary account names differently.

I will close this task since all outstanding sub-tasks are now closed. Please reopen if we missed something.

kostajh closed this task as Resolved.Sep 8 2024, 7:31 PM
In T338836#10111059, @Niharika wrote:
In T338836#10109209, @Bugreporter wrote:

However, rMW7440b2c22e3294d7b173202e3250c0e2c7982ebb described a different use case for indefinite blocks: if someone accidently logged out and make edit we may use hideuser to hide the temporary account, which must be blocked with an indefinite block. So indefinite blocks of temp accounts and blocks of expired temporary accounts has its use case. But admins should be able to know whether a temporary account is expired before blocking anyway.

There will be a visual indicator to see if a temporary account is expired - see T358469: Display expired temporary account names differently.

I will close this task since all outstanding sub-tasks are now closed. Please reopen if we missed something.

Closing per above message.

Izno mentioned this in T405497: Don't allow admins to block temporary accounts for more than 3 months.Sep 24 2025, 5:24 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits