Page MenuHomePhabricator
Create Task
Maniphest T342515

EditRightConstraint checking "edit" rights in general instead of for specific page makes it difficult to customize permissions
Closed, ResolvedPublicBUG REPORT
Actions

Description

EditRightsConstraints does the check $this->performer->isAllowed( 'edit' ) which checks if the user has the ability to edit pages in general and not just this specific one. I think this check is too restrictive. It means that if someone writes an extension hooking into userCan to give edit rights for a specific page but not all pages, this won't work. I don't see any benefit to making the check this restrictive.

Looking in git blame, it seems like the check in question was originally added by RobLa in 2005 when the notion of "edit" rights was first created (a2a28a34c1fc / T2996). Presumably that was before we had per-page rights like we do now.

I propose adding the title to the check.

Details

SubjectRepoBranchLines +/-
Change EditPage 'edit' rights check to do per page instead of generalmediawiki/coremaster+183 -161
Change EditPage 'edit' rights check to do per page instead of generalmediawiki/coremaster+89 -15
Customize query in gerrit

Related Objects

Event Timeline

Bawolff created this task.Jul 24 2023, 6:48 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJul 24 2023, 6:48 AM
Bawolff updated the task description. (Show Details)Jul 24 2023, 6:49 AM
gerritbot added a comment.Jul 24 2023, 7:21 AM

Change 940632 had a related patch set uploaded (by Brian Wolff; author: Brian Wolff):

[mediawiki/core@master] Change EditPage 'edit' rights check to do per page instead of general

https://gerrit.wikimedia.org/r/940632

gerritbot added a project: Patch-For-Review.Jul 24 2023, 7:21 AM
Vedmaka awarded a token.Aug 10 2023, 8:03 AM
Vedmaka subscribed.
gerritbot added a comment.Sep 30 2023, 3:43 PM

Change 962130 had a related patch set uploaded (by Pastakhov; author: Brian Wolff):

[mediawiki/core@master] Change EditPage 'edit' rights check to do per page instead of general

https://gerrit.wikimedia.org/r/962130

gerritbot added a comment.Oct 2 2023, 3:48 PM

Change 940632 abandoned by Brian Wolff:

[mediawiki/core@master] Change EditPage 'edit' rights check to do per page instead of general

Reason:

abandoning in favour of https://gerrit.wikimedia.org/r/c/mediawiki/core/+/962130

https://gerrit.wikimedia.org/r/940632

gerritbot added a comment.Nov 10 2023, 1:12 AM

Change 962130 merged by jenkins-bot:

[mediawiki/core@master] Change EditPage 'edit' rights check to do per page instead of general

https://gerrit.wikimedia.org/r/962130

matmarex closed this task as Resolved.Nov 10 2023, 1:25 AM
matmarex assigned this task to Pastakhov.
matmarex subscribed.
Maintenance_bot removed a project: Patch-For-Review.Nov 10 2023, 1:30 AM
ReleaseTaggerBot added a project: MW-1.42-notes (1.42.0-wmf.5; 2023-11-14).Nov 10 2023, 2:00 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits