I noticed this while updating IPInfo to show information from IPoid:
A user with basic viewing rights can see almost nothing. Checking this against the codebase:
Basic/Full Access | 'countryNames', |
Full Access Only | 'location', 'asn', 'isp', 'organization', 'behaviors', 'risks', 'connectionTypes', 'tunnelOperators', 'proxies', 'numUsersOnThisIP', 'numDeletedEdits' |
Struck values represent deprecated values that used to be provided by MaxMind and bold values are ones added by IPoid. Since deprecating the MaxMind data in favor of the IPoid data, basic users can only see country-level location data and on-wiki data.
However, checking against tool guidelines, it's possible that some of these should have been allowed for users basic view rights:
Data | Status | Possible updates |
Country | Already available/No change | |
Connection method | Deprecated | Can be replaced by connnectionType |
Connection owner | Deprecated | No 1:1 replacement |
Real IP / Proxy | Deprecated | Can be replaced by proxies and/or tunnelOperators |
Static / Dynamic | Never implemented/Deprecated | |
Number of devices on IP | New from IPoid (numUsersOnThisIP) | |
This would leave behaviors and risks as full-access only values.
We should:
- Determine if this is what we want
- Update the codebase and legal notice to have parity
(As an aside, the legal information is missing the distinction that full-access viewers can see deleted revisions whereas basic-access viewers cannot.)