Page MenuHomePhabricator
Create Task
Maniphest T389640

AbuseFilter protected variables: Customise error messages when user lacks access to specific protected variable
Closed, ResolvedPublic
Actions

Description

Summary

In T387331: Provide a mechanism for other extensions to modify protected variables access requirements, the associated mechanism was added. We should now customise the warning and errors messages in AbuseFilter to ensure that they make sense when a user lacks ability to see a specific set of protected variables

Background

  • T387331 added the ability for other extensions to set additional restrictions for specific protected variables
    • This was done so that CheckUser could define additional restrictions for user_unnamed_ip
  • When implementing this feature, it was decided to split off customising the error messages into a new task to break down the work

Acceptance criteria

  • When a user lacks access to a specific protected variable, the warning or error messages displayed indicate the specific variable and why this is the case

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Customise protected vars access errors for var specific restrictionsmediawiki/extensions/AbuseFiltermaster+298 -77
Customize query in gerrit

Related Objects

Event Timeline

Dreamy_Jazz created this task.Mar 21 2025, 4:42 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptMar 21 2025, 4:42 PM
gerritbot added a comment.Mar 21 2025, 5:04 PM

Change #1130146 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[mediawiki/extensions/AbuseFilter@master] [Very WIP] Customise protected vars access errors for var specific restrictions

https://gerrit.wikimedia.org/r/1130146

gerritbot added a project: Patch-For-Review.Mar 21 2025, 5:04 PM
Dreamy_Jazz mentioned this in T380920: Remove the AbuseFilter protected variables preference gate.Apr 1 2025, 8:07 PM
Dreamy_Jazz merged a task: T391549: Error message related to having the preference "Temporary account IP reveal" disabled could use improvement.Apr 10 2025, 11:51 AM
Dreamy_Jazz added subscribers: Novem_Linguae, 1AmNobody24, Johannnes89, codenamenoreste.
PharyngealImplosive7 subscribed.Apr 11 2025, 3:42 AM
kostajh edited projects, added Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)); removed Trust and Safety Product Sprint (Sprint Chocolate Cake (March 24 - April 11)).Apr 14 2025, 2:54 PM
Dreamy_Jazz mentioned this in T391505: AbuseFilter: Drop the AbuseFilterCanViewProtectedVariableValues hook before 1.44 release.Apr 25 2025, 11:25 AM
Dreamy_Jazz claimed this task.Apr 25 2025, 6:00 PM
Dreamy_Jazz moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)) board.
kostajh edited projects, added Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)); removed Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)).May 5 2025, 6:50 AM
kostajh moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)) board.
Dreamy_Jazz moved this task from In Progress to Needs Review on the Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)) board.May 19 2025, 3:07 PM
gerritbot added a comment.May 19 2025, 5:35 PM

Change #1130146 merged by jenkins-bot:

[mediawiki/extensions/AbuseFilter@master] Customise protected vars access errors for var specific restrictions

https://gerrit.wikimedia.org/r/1130146

ReleaseTaggerBot added a project: MW-1.45-notes (1.45.0-wmf.2; 2025-05-20).May 19 2025, 6:00 PM
Maintenance_bot removed a project: Patch-For-Review.May 19 2025, 6:31 PM
Dreamy_Jazz moved this task from Needs Review to Needs QA on the Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)) board.May 20 2025, 9:22 AM

For QA I would suggest:

  1. Use a wiki with CheckUser installed
  2. Create a filter with user_unnamed_ip as a variable in the conditions
  3. Trigger the filter created in step 2 a few times
  4. Attempt to access the filter and associated logs created in step 3 using accounts that do not have access. Specifically:
    1. An account which has the needed rights but is sitewide blocked
    2. An account which lacks the checkuser-temporary-account right (i.e. has neither the "Temporary account viewer" or "CheckUser" group)
    3. An account whcih has the checkuser-temporary-account right but has not checked the IP reveal preference in Special:Preferences
    4. An account which lacks access to the abusefilter-access-protected-vars right

You should expect to see error messages that indicate why the user lacks access to the protected filter or associated log(s)

kostajh edited projects, added Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)); removed Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)).May 25 2025, 6:52 PM
kostajh moved this task from Priority Backlog to Needs QA on the Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)) board.
dom_walden moved this task from Needs QA to Done on the Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)) board.May 28 2025, 2:16 PM
dom_walden subscribed.
In T389640#10838146, @Dreamy_Jazz wrote:
  1. Attempt to access the filter and associated logs created in step 3 using accounts that do not have access. Specifically:

A. An account which has the needed rights but is sitewide blocked

Looking at the filter: You may not view the details of this filter because it uses protected variables and is hidden from public view.

Looking at a log: You do not have permission to see details of this entry.

B. An account which lacks the checkuser-temporary-account right (i.e. has neither the "Temporary account viewer" or "CheckUser" group)

Filter: You may not view the details of this filter because you do not have permission to view IP addresses used by temporary accounts.

Log: You may not view this log because you do not have permission to view IP addresses used by temporary accounts.

C. An account whcih has the checkuser-temporary-account right but has not checked the IP reveal preference in Special:Preferences

Filter:

You may not view the details of this filter because it uses protected variables and is hidden from public view.

To view IP addresses for temporary accounts, please accept the agreement in your preferences.

Log:

You may not view this log because it uses protected variables and is hidden from public view.

To view IP addresses for temporary accounts, please accept the agreement in your preferences.

D. An account which lacks access to the abusefilter-access-protected-vars right

Filter: You may not view the details of this filter because you do not have permission to view and create filters that use protected variables.

Log: You do not have permission to see details of this entry.

Dreamy_Jazz closed this task as Resolved.May 28 2025, 2:36 PM

Thanks.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits