Page MenuHomePhabricator
Create Task
Maniphest T389614

Update protected variable view log copy to reflect what protected variable(s) are being viewed
Closed, ResolvedPublic
Actions

Description

From T387329: Investigate: Confirm our logging expectations for AbuseFilter/CheckUser Temporary Accounts logs when using protected variables:

If not too difficult, we should update the log to mention what protected variable is being viewed so that it's explicit that the logs being routed to the temp account logs are due to the user_unnamed_ip variable

As there is currently only one protected variable (user_unnamed_ip), the two are analogous but when more protected variables have been added, it should be clear which one was viewed so that it's explicit that the CU logs only cover user_unnamed_ip views and the rest remain in AF.

Acceptance Critertia:

  • logentry-abusefilter-protected-vars-view-protected-var-value (or an alternative if necessary) shows the protected variable being viewed

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Display names of protected variables accessedmediawiki/extensions/AbuseFiltermaster+254 -16
Display names of protected variables accessedmediawiki/extensions/CheckUsermaster+171 -17
Temporarily comment-out interface implementationmediawiki/extensions/CheckUsermaster+2 -2
Display names of protected variables accessedmediawiki/extensions/CheckUsermaster+101 -10
Customize query in gerrit

Related Objects

Event Timeline

STran created this task.Mar 21 2025, 12:12 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 21 2025, 12:12 PM
STran mentioned this in T387329: Investigate: Confirm our logging expectations for AbuseFilter/CheckUser Temporary Accounts logs when using protected variables.Mar 21 2025, 12:13 PM
STran mentioned this in T390708: Log attempts to access protected variable values even if no actual values were present.Apr 1 2025, 1:04 PM
Dreamy_Jazz added a project: Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)).Apr 29 2025, 9:06 AM
Dreamy_Jazz edited projects, added Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)); removed Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)).Apr 30 2025, 1:40 PM
Dreamy_Jazz moved this task from Inbox to Engineering on the Trust and Safety Product Team board.May 14 2025, 9:00 PM
kostajh edited projects, added Trust and Safety Product Sprint (Sprint Baklava (June 16 - July 4)); removed Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)).Jun 16 2025, 6:14 AM
kostajh edited projects, added Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)); removed Trust and Safety Product Sprint (Sprint Baklava (June 16 - July 4)).Jul 7 2025, 9:47 AM
mszwarc changed the task status from Open to In Progress.Jul 16 2025, 4:31 PM
mszwarc claimed this task.
mszwarc moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)) board.
gerritbot added a comment.Jul 17 2025, 8:37 AM

Change #1170273 had a related patch set uploaded (by Mszwarc; author: Mszwarc):

[mediawiki/extensions/AbuseFilter@master] Display names of protected variables accessed

https://gerrit.wikimedia.org/r/1170273

gerritbot added a project: Patch-For-Review.Jul 17 2025, 8:37 AM
mszwarc mentioned this in T399819: Protected variable access log debouncing should take into account the variable names.Jul 17 2025, 9:00 AM

I've filled a follow-up task for that: T399819: Protected variable access log debouncing should take into account the variable names

mszwarc moved this task from In Progress to Needs Review on the Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)) board.Jul 17 2025, 9:01 AM
mszwarc moved this task from Needs Review to In Progress on the Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)) board.Jul 17 2025, 9:14 AM
mszwarc moved this task from In Progress to Needs Review on the Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)) board.Jul 17 2025, 11:43 AM
gerritbot added a comment.Jul 18 2025, 3:56 PM

Change #1170579 had a related patch set uploaded (by Msz2001; author: Msz2001):

[mediawiki/extensions/CheckUser@master] Display names of protected variables accessed

https://gerrit.wikimedia.org/r/1170579

gerritbot added a comment.Jul 18 2025, 3:59 PM

Change #1170579 abandoned by Mszwarc:

[mediawiki/extensions/CheckUser@master] Display names of protected variables accessed

Reason:

Wrong account, will resubmit

https://gerrit.wikimedia.org/r/1170579

gerritbot added a comment.Jul 18 2025, 3:59 PM

Change #1170580 had a related patch set uploaded (by Mszwarc; author: Msz2001):

[mediawiki/extensions/CheckUser@master] Display names of protected variables accessed

https://gerrit.wikimedia.org/r/1170580

gerritbot added a comment.Jul 24 2025, 8:03 AM

Change #1172256 had a related patch set uploaded (by Mszwarc; author: Mszwarc):

[mediawiki/extensions/CheckUser@master] Temporarily comment-out interface implementation

https://gerrit.wikimedia.org/r/1172256

gerritbot added a comment.Jul 24 2025, 5:37 PM

Change #1172256 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@master] Temporarily comment-out interface implementation

https://gerrit.wikimedia.org/r/1172256

gerritbot added a comment.Jul 24 2025, 5:38 PM

Change #1170273 merged by jenkins-bot:

[mediawiki/extensions/AbuseFilter@master] Display names of protected variables accessed

https://gerrit.wikimedia.org/r/1170273

gerritbot added a comment.Jul 24 2025, 5:39 PM

Change #1170580 merged by jenkins-bot:

[mediawiki/extensions/CheckUser@master] Display names of protected variables accessed

https://gerrit.wikimedia.org/r/1170580

ReleaseTaggerBot added a project: MW-1.45-notes (1.45.0-wmf.12; 2025-07-29).Jul 24 2025, 6:00 PM
Maintenance_bot removed a project: Patch-For-Review.Jul 24 2025, 6:30 PM
Tchanders moved this task from Needs Review to Needs QA on the Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)) board.Jul 24 2025, 8:46 PM
Tchanders subscribed.

I think this is a good candidate for QA, since it has a few moving parts, but it's also outside of our QA focus area for the upcoming weeks. I'll move it into QA for now, and when we have a way to mark it as not the main focus, let's do that.

OKryva-WMF edited projects, added Trust and Safety Product Sprint (Sprint Rum baba (July 28 - August 15)); removed Trust and Safety Product Sprint (Sprint Cannoli (July 7 - July 25)).Jul 25 2025, 1:54 PM
OKryva-WMF moved this task from Priority Backlog to Needs QA on the Trust and Safety Product Sprint (Sprint Rum baba (July 28 - August 15)) board.
OKryva-WMF triaged this task as Medium priority.Aug 1 2025, 1:47 PM
Dreamy_Jazz added a project: OKR-Work.Aug 14 2025, 10:30 AM
OKryva-WMF edited projects, added Trust and Safety Product Sprint (Sprint Princess Tarta (August 18 - September 5)); removed Trust and Safety Product Sprint (Sprint Rum baba (July 28 - August 15)).Aug 19 2025, 10:27 AM
OKryva-WMF moved this task from Priority Backlog to Needs QA on the Trust and Safety Product Sprint (Sprint Princess Tarta (August 18 - September 5)) board.
OKryva-WMF edited projects, added Trust and Safety Product Sprint (Sprint Dadar Gulung (September 8 - September 26)); removed Trust and Safety Product Sprint (Sprint Princess Tarta (August 18 - September 5)).Sep 4 2025, 3:13 PM
OKryva-WMF moved this task from Priority Backlog to Needs QA on the Trust and Safety Product Sprint (Sprint Dadar Gulung (September 8 - September 26)) board.
OKryva-WMF edited projects, added Product Safety and Integrity; removed Trust and Safety Product Sprint (Sprint Dadar Gulung (September 8 - September 26)).Sep 26 2025, 12:44 PM
OKryva-WMF edited projects, added Product Safety and Integrity (Sprint Apfel Strudel (Sep 29 - Oct 17)); removed Product Safety and Integrity.Sep 26 2025, 12:48 PM
OKryva-WMF moved this task from Priority backlog to Needs QA on the Product Safety and Integrity (Sprint Apfel Strudel (Sep 29 - Oct 17)) board.Sep 26 2025, 12:48 PM
Dreamy_Jazz closed this task as Resolved.Sep 30 2025, 12:12 PM
Dreamy_Jazz moved this task from Needs QA to Done on the Product Safety and Integrity (Sprint Apfel Strudel (Sep 29 - Oct 17)) board.
Dreamy_Jazz subscribed.

I think this has sat in QA for too long, so moving to done

Dreamy_Jazz updated the task description. (Show Details)Sep 30 2025, 12:13 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits