Page MenuHomePhabricator
Create Task
Maniphest T340457

In UserGroupManager::getUserImplicitGroups, add temporary users to a 'temp' group instead of the 'user' group
Closed, ResolvedPublic
Actions

Description

This is for T330816: [Epic] Temporary users should not be assigned to user groups. See also T330816#8958447.

Currently, temp users are added to the 'user' group, along with users who create an account. Users who create an account are also added to a 'named' group. If we kept the status quo, then communities would have to actively remove rights from the 'user' group if they didn't want temp users to have them, and give those rights to the 'named' group instead.

We're instead going to introduce a 'temp' user group. Temporary users will be added to the 'temp' group instead of the 'user' group, meaning that if communities do nothing (change no configuration), temp users will not have any more rights than are assigned to the '*' group. Communities must actively give them rights by assigning rights to the 'temp' group.

(We still keep the 'named' group, in case a future product decision is taken to assign temporary users to the 'user' group.)

Details

SubjectRepoBranchLines +/-
Add temporary users to a 'temp' group, and stop adding them to 'user'mediawiki/coremaster+13 -3
Assign 'edit' right to the 'temp' group in dewikioperations/mediawiki-configmaster+1 -0
Customize query in gerrit

Related Objects
Search...

StatusSubtypeAssignedTask
 In ProgressNiharikaT324492 Temporary accounts - MVP
 OpenNoneT326816 Update features for temporary accounts
 OpenTchandersT326869 Update TSP-owned products that may be affected by IP Masking
 OpenNoneT307060 [Epic] Temporary account AbuseFilter support
 ResolvedSTranT331653 Investigate: Update AbuseFilter for IP Masking
 ResolvedUmherirrenderT328311 Special:AbuseLog is missing the `mw-tempuserlink` class from temporary account user links
 Resolved AGueyteT335062 Update AbuseFilter with the right user verification
 Duplicate AGueyteT335064 Investigate AbuseFilter Hook with CheckUser
 OpenNoneT289954 AbuseFilter's Throttle consequence's user mode should treat separate IPs separately
 OpenSTranT334623 How do we log unsuccessful first edits for temporary users?
 OpenNoneT357682 Investigate: Is AbuseFilter in accordance with the IP address reveal policy
 ResolvedDreamy_JazzT357615 Create filters to distinguish anonymous/temporary/registered users
 OpenNoneT234155 Create CheckUser-level abuse filters
 OpenSTranT357772 Investigate: How will `ip_in_range` and `ip_in_ranges` function when temporary accounts are enabled
 OpenSTranT364833 Add `user_ip` variable
 OpenSTranT363906 Ensure filters that use PII-sensitive variables are protected
 OpenSTranT364465 Display changes to protected status and flags on AbuseFilter history and diff pages
 OpenSTranT364485 Alert a filter editor that a filter must be protected if it is saved with a protected variable
 OpenNoneT365049 Investigate what to do about the AbuseFilter log revealing someone's IP address via historical logs
 OpenNoneT364834 Ensure testing tools that use `user_ip` don't reveal it to users without the view right
 OpenNoneT357774 Investigate: What to do with existing filters that temporary accounts will break
 ResolvedBUG REPORTDreamy_JazzT358632 CannotCreateActorException when creating a temporary account on an edit which causes an abuse filter log
 Resolved TThoabalaT331718 Undeploy SimilarEditors from Beta
 Resolved TThoabalaT331749 Investigate: Update AntiSpoof for IP Masking
 Resolved TThoabalaT336196 Don't store temporary user names in AntiSpoof's spoofuser table
 Resolved AGueyteT331750 Investigate: Update SecurePoll for IP Masking
 ResolvedBUG REPORT AGueyteT334421 BUG FIX: Display of SecurePoll logs
 ResolvedBUG REPORT AGueyteT334490 SecurePoll Vote Details returns SQL Error
 Resolved AGueyteT334597 Update User access to polls on SecurePoll
 Resolved AGueyteT331751 Investigate: Update GlobalBlocking for IP Masking
 ResolvedCyndymediawiksimT331752 Investigate: Update CheckUser for IP Masking
 DuplicateNoneT332821 Should temporary users be treated as possible initiators of a check for the CheckUserLog
 OpenNoneT331637 Update features in MediaWiki core for IP Masking
 ResolvedTchandersT330816 [Epic] Temporary users should not be assigned to user groups
 ResolvedTchandersT340457 In UserGroupManager::getUserImplicitGroups, add temporary users to a 'temp' group instead of the 'user' group

Event Timeline

Tchanders created this task.Jun 26 2023, 4:21 PM
JJMC89 added a project: MediaWiki-User-management.Jun 26 2023, 5:15 PM
Tchanders added a comment.Jun 27 2023, 2:48 PM

Note that temporary users will no longer be able to edit if the site has the following configuration:

$wgGroupPermissions['*']['edit'] = false;
$wgGroupPermissions['user']['edit'] = true;

without also setting:

$wgGroupPermissions['temp']['edit'] = true;
gerritbot added a comment.Jun 27 2023, 2:55 PM

Change 932292 had a related patch set uploaded (by Tchanders; author: Tchanders):

[mediawiki/core@master] Add temporary users to a 'temp' group, and stop adding them to 'user'

https://gerrit.wikimedia.org/r/932292

gerritbot added a project: Patch-For-Review.Jun 27 2023, 2:55 PM
Tchanders moved this task from Ready 🎬 (ONLY IF YOU HAVE NO MORE CODE TO REVIEW) to In Progress 💪 on the Anti-Harassment (AHaT Sprint 32 - Baseball Cap) board.Jun 27 2023, 2:56 PM
Tchanders moved this task from In Progress 💪 to Code Review 🔍 on the Anti-Harassment (AHaT Sprint 32 - Baseball Cap) board.Jun 28 2023, 4:00 PM
Tchanders added a comment.Jun 28 2023, 4:28 PM
Testing steps

Note the following:

In T340457#8968482, @Tchanders wrote:

Note that temporary users will no longer be able to edit if the site has the following configuration:

$wgGroupPermissions['*']['edit'] = false;
$wgGroupPermissions['user']['edit'] = true;

without also setting:

$wgGroupPermissions['temp']['edit'] = true;

Therefore merging this patch depends on merging this config change, so that temporary users can still edit on German beta: https://gerrit.wikimedia.org/r/c/operations/mediawiki-config/+/933974

Test rights locally

(There's no need to test every one of these permissions.)

Test rights on beta dewiki

Similar to the above, but the precise rights depend on which groups are given which rights in the configuration. These are summarised here: https://de.wikipedia.beta.wmflabs.org/wiki/Spezial:Gruppenrechte (Again though, no need to test them all.)

Checking group membership

It might be worth checking the group membership of some users, using something along these lines in the dev tools console:

mw.user.getGroups( function ( groups ) {
    console.log(groups);
} );
  • anon users should have *
  • temp users should have * and temp
  • fully-registered users who haven't been added to any additional groups should have *, user and named
AGueyte moved this task from Code Review 🔍 to QA/Testing 🐞 on the Anti-Harassment (AHaT Sprint 32 - Baseball Cap) board.Jun 29 2023, 4:42 PM
Tchanders moved this task from QA/Testing 🐞 to Blocked/Stalled 🚧 on the Anti-Harassment (AHaT Sprint 32 - Baseball Cap) board.Jul 3 2023, 12:48 PM

Blocked on deploying the config change on de beta

gerritbot added a comment.Jul 3 2023, 2:32 PM

Change 933974 had a related patch set uploaded (by Tchanders; author: Tchanders):

[operations/mediawiki-config@master] Assign 'edit' right to the 'temp' group in dewiki

https://gerrit.wikimedia.org/r/933974

gerritbot added a comment.Jul 3 2023, 4:42 PM

Change 933974 merged by jenkins-bot:

[operations/mediawiki-config@master] Assign 'edit' right to the 'temp' group in dewiki

https://gerrit.wikimedia.org/r/933974

gerritbot added a comment.Jul 3 2023, 5:05 PM

Change 932292 merged by jenkins-bot:

[mediawiki/core@master] Add temporary users to a 'temp' group, and stop adding them to 'user'

https://gerrit.wikimedia.org/r/932292

Maintenance_bot removed a project: Patch-For-Review.Jul 3 2023, 5:10 PM
Tchanders moved this task from Blocked/Stalled 🚧 to QA/Testing 🐞 on the Anti-Harassment (AHaT Sprint 32 - Baseball Cap) board.Jul 3 2023, 5:39 PM

This is merged now. I confirmed that I can still edit and create a temporary user on German beta. Also that I now get an error when visiting https://de.m.wikipedia.beta.wmflabs.org/wiki/Special:Upload

ReleaseTaggerBot added a project: MW-1.41-notes (1.41.0-wmf.16; 2023-07-04).Jul 3 2023, 6:00 PM
dom_walden moved this task from QA/Testing 🐞 to Done Q1 2023-2024 on the Anti-Harassment (AHaT Sprint 32 - Baseball Cap) board.Jul 4 2023, 10:08 AM
dom_walden subscribed.
In T340457#8974083, @Tchanders wrote:
  • anon users should have *

I don't know if I can check the user groups of an IP (I couldn't via the API). But (as pointed out in T340457#8986418) as an anon user I could create a new page which created a temporary account.

  • temp users should have * and temp

Yep, for both pre-existing temp users and temp users created since this change was merged. For example, via the API:

{
    "userid": 16943,
    "name": "*Unregistered 4649",
    "editcount": 1,
    "registration": "2023-07-04T09:56:25Z",
    "groups": [
        "*",
        "temp"
    ],
    "groupmemberships": [],
    "implicitgroups": [
        "*",
        "temp"
    ],
    "rights": [
        "patrolmarks",
        "createaccount",
        "read",
        "edit",
        "createpage",
        "createtalk",
        "writeapi",
        "viewmywatchlist",
        "editmywatchlist",
        "viewmyprivateinfo",
        "editmyprivateinfo",
        "editmyoptions",
        "urlshortener-create-url",
        "centralauth-merge",
        "abusefilter-view",
        "abusefilter-log",
        "vipsscaler-test",
        "flow-hide",
        "flow-edit-title"
    ],
    "emailable": false,
    "gender": "unknown",
    "centralids": {
        "CentralAuth": 225309,
        "local": 16943
    },
    "attachedlocal": {
        "CentralAuth": true,
        "local": true
    }
}
  • fully-registered users who haven't been added to any additional groups should have *, user and named

Yep.

Test environment: https://de.wikipedia.beta.wmflabs.org MediaWiki 1.41.0-alpha (b284103) 11:33, 4 July 2023.

Tchanders mentioned this in T331653: Investigate: Update AbuseFilter for IP Masking.Jul 26 2023, 11:01 AM
Tchanders closed this task as Resolved.Aug 14 2023, 10:28 AM
Bugreporter mentioned this in T355741: 'named' user group is pointless.Jan 24 2024, 8:35 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL