Page MenuHomePhabricator
Create Task
Maniphest T390942

Allow IP viewer temporary account group to be manually granted on all projects
Closed, ResolvedPublic
Actions

Description

Motivation

As discussed in the team meeting, we want to enable the temporary account viewer group on all projects to prepare for upcoming deployments. This will enable projects to prepare ahead for upcoming deployments and proactively grant the group to users who are deemed eligible.

Acceptance criteria
  • Temporary account viewer group can be granted on all projects

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
Temp accounts: Remove temporary-account-viewer from labs configoperations/mediawiki-configmaster+8 -0
Temp accounts: Allow sysop to grant and revoke IP revealoperations/mediawiki-configmaster+8 -2
Enable temporary-account-viewer group on all WMF production wikisoperations/mediawiki-configmaster+3 -17
Customize query in gerrit

Related Objects
Search...

Event Timeline

Niharika created this task.Apr 3 2025, 10:14 AM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptApr 3 2025, 10:14 AM
Niharika updated the task description. (Show Details)Apr 3 2025, 10:15 AM
Niharika added a project: Trust and Safety Product Team.
Dreamy_Jazz moved this task from Inbox to Engineering on the Trust and Safety Product Team board.Apr 3 2025, 11:18 AM
Dreamy_Jazz renamed this task from Enable IP viewer temporary account right on all projects to Enable IP viewer temporary account group on all projects.Apr 23 2025, 3:53 PM
Dreamy_Jazz claimed this task.
Dreamy_Jazz updated the task description. (Show Details)
Dreamy_Jazz added a project: Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)).
Dreamy_Jazz moved this task from Priority Backlog to In Progress on the Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)) board.
gerritbot added a comment.Apr 23 2025, 4:01 PM

Change #1138403 had a related patch set uploaded (by Dreamy Jazz; author: Dreamy Jazz):

[operations/mediawiki-config@master] Enable temporary-account-viewer group on all WMF production wikis

https://gerrit.wikimedia.org/r/1138403

gerritbot added a project: Patch-For-Review.Apr 23 2025, 4:01 PM
gerritbot added a comment.Apr 23 2025, 4:06 PM

Change #1138403 merged by jenkins-bot:

[operations/mediawiki-config@master] Enable temporary-account-viewer group on all WMF production wikis

https://gerrit.wikimedia.org/r/1138403

Stashbot mentioned this in T387205: IP reveal groups: Rename 'checkuser-temporary-account-viewer' to not include the phrase 'checkuser'.Apr 23 2025, 4:07 PM

Mentioned in SAL (#wikimedia-operations) [2025-04-23T16:06:59Z] <dreamyjazz@deploy1003> Started scap sync-world: Backport for [[gerrit:1138403|Enable temporary-account-viewer group on all WMF production wikis (T390942 T387205)]]

Stashbot added a comment.Apr 23 2025, 4:10 PM

Mentioned in SAL (#wikimedia-operations) [2025-04-23T16:10:41Z] <dreamyjazz@deploy1003> dreamyjazz: Backport for [[gerrit:1138403|Enable temporary-account-viewer group on all WMF production wikis (T390942 T387205)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Stashbot added a comment.Apr 23 2025, 4:16 PM

Mentioned in SAL (#wikimedia-operations) [2025-04-23T16:16:38Z] <dreamyjazz@deploy1003> Started scap sync-world: Backport for [[gerrit:1138403|Enable temporary-account-viewer group on all WMF production wikis (T390942 T387205)]]

Stashbot added a comment.Apr 23 2025, 4:21 PM

Mentioned in SAL (#wikimedia-operations) [2025-04-23T16:21:07Z] <dreamyjazz@deploy1003> dreamyjazz: Backport for [[gerrit:1138403|Enable temporary-account-viewer group on all WMF production wikis (T390942 T387205)]] synced to the testservers (https://wikitech.wikimedia.org/wiki/Mwdebug)

Stashbot added a comment.Apr 23 2025, 4:27 PM

Mentioned in SAL (#wikimedia-operations) [2025-04-23T16:27:49Z] <dreamyjazz@deploy1003> Finished scap sync-world: Backport for [[gerrit:1138403|Enable temporary-account-viewer group on all WMF production wikis (T390942 T387205)]] (duration: 11m 11s)

Dreamy_Jazz moved this task from In Progress to Needs QA on the Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)) board.Apr 23 2025, 4:29 PM
Maintenance_bot removed a project: Patch-For-Review.Apr 23 2025, 4:29 PM
Dreamy_Jazz moved this task from Needs QA to Priority Backlog on the Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)) board.Apr 23 2025, 5:02 PM

We need to wait for https://foundation.wikimedia.org/wiki/Policy:Wikimedia_Access_to_Temporary_Account_IP_Addresses_Policy#Patrollers_and_other_users to be updated to specify which users can grant the temporary-account-viewer group. I've done the first step which is to enable the group on all wikis, but we still use the automatic promotion mechanism so can't let it be manually granted just yet.

Dreamy_Jazz changed the task status from Open to Stalled.Apr 23 2025, 5:02 PM
Dreamy_Jazz removed a project: Trust and Safety Product Sprint (Sprint Cozonac (April 14 - May 2)).
Dreamy_Jazz renamed this task from Enable IP viewer temporary account group on all projects to Allow IP viewer temporary account group to be manually granted on all projects.Apr 23 2025, 5:04 PM
Dreamy_Jazz added a parent task: T325451: [Epic] Users with right privileges are able to view IP addresses.
Tchanders moved this task from Backlog to Planned on the Temporary accounts (Major pilot wiki deployment) board.Apr 30 2025, 4:21 PM
Tchanders added a project: Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)).Apr 30 2025, 5:17 PM
kostajh subscribed.May 5 2025, 6:46 AM
In T390942#10761965, @Dreamy_Jazz wrote:

We need to wait for https://foundation.wikimedia.org/wiki/Policy:Wikimedia_Access_to_Temporary_Account_IP_Addresses_Policy#Patrollers_and_other_users to be updated to specify which users can grant the temporary-account-viewer group.

The policy has been updated ("local administrators and Stewards")

kostajh changed the task status from Stalled to Open.May 5 2025, 6:46 AM
kostajh moved this task from Priority Backlog to Ready on the Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)) board.
LD subscribed.May 5 2025, 9:02 PM
LD mentioned this in T393420: Examine: bureaucrats and temporary-account-viewer group.May 5 2025, 10:52 PM
Bugreporter subscribed.May 6 2025, 12:12 AM

Strictly, what is required:

  • Sysops can not assign ineligible user ip viewer right
  • Stewards can assign ineligible user ip viewer right

where eligible means 6 months + 300 edits.

Bugreporter added a comment.May 7 2025, 5:45 PM
In T390942#10794331, @Bugreporter wrote:

Strictly, what is required:

  • Sysops can not assign ineligible user ip viewer right
  • Stewards can assign ineligible user ip viewer right

where eligible means 6 months + 300 edits.

Also something to be considered is if a user is vanished or blocked as sock, local sysop probably should be able to remove user from ip viewer group, even if such user is otherwise ineligible to get such group by sysops (i.e. does not meet 6 month+300 edits so ip viewer can only be granted by stewards).

Dreamy_Jazz removed Dreamy_Jazz as the assignee of this task.May 21 2025, 6:47 PM
Dreamy_Jazz subscribed.
LD closed subtask T393420: Examine: bureaucrats and temporary-account-viewer group as Resolved.May 21 2025, 8:03 PM
Tchanders subscribed.EditedMay 23 2025, 4:00 PM
In T390942#10801699, @Bugreporter wrote:
In T390942#10794331, @Bugreporter wrote:

Strictly, what is required:

  • Sysops can not assign ineligible user ip viewer right
  • Stewards can assign ineligible user ip viewer right

where eligible means 6 months + 300 edits.

Also something to be considered is if a user is vanished or blocked as sock, local sysop probably should be able to remove user from ip viewer group, even if such user is otherwise ineligible to get such group by sysops (i.e. does not meet 6 month+300 edits so ip viewer can only be granted by stewards).

This should be handled in T393615.

For this task, we can allow sysops and stewards to grant and remove the temporary-account-viewer group - @Niharika Could you confirm this is correct?

T393615 will prevent sysops from adding the group to particular users who don't meet the criteria, but will allow them to remove it.

gerritbot added a comment.May 23 2025, 4:27 PM

Change #1149699 had a related patch set uploaded (by Tchanders; author: Tchanders):

[operations/mediawiki-config@master] Temp accounts: Allow sysop/steward to grant and revoke IP reveal

https://gerrit.wikimedia.org/r/1149699

gerritbot added a project: Patch-For-Review.May 23 2025, 4:27 PM
Tchanders mentioned this in T393615: Impose technical restrictions on granting the `temporary-account-viewer` group.May 23 2025, 4:28 PM
kostajh edited projects, added Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)); removed Trust and Safety Product Sprint (Sprint Key Lime Pie (May 5 - May 23)).May 25 2025, 6:59 PM
kostajh moved this task from Priority Backlog to Ready on the Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)) board.
gerritbot added a comment.May 27 2025, 2:04 PM

Change #1149699 merged by jenkins-bot:

[operations/mediawiki-config@master] Temp accounts: Allow sysop to grant and revoke IP reveal

https://gerrit.wikimedia.org/r/1149699

Stashbot added a comment.May 27 2025, 2:05 PM

Mentioned in SAL (#wikimedia-operations) [2025-05-27T14:05:20Z] <mszabo@deploy1003> Started scap sync-world: Backport for [[gerrit:1149699|Temp accounts: Allow sysop to grant and revoke IP reveal (T390942)]]

gerritbot added a comment.May 27 2025, 2:06 PM

Change #1151220 had a related patch set uploaded (by Tchanders; author: Tchanders):

[operations/mediawiki-config@master] Temp accounts: Remove temporary-account-viewer from labs config

https://gerrit.wikimedia.org/r/1151220

Stashbot added a comment.May 27 2025, 2:07 PM

Mentioned in SAL (#wikimedia-operations) [2025-05-27T14:07:32Z] <mszabo@deploy1003> mszabo, tchanders: Backport for [[gerrit:1149699|Temp accounts: Allow sysop to grant and revoke IP reveal (T390942)]] synced to the testservers (see https://wikitech.wikimedia.org/wiki/Mwdebug). Changes can now be verified there.

Stashbot added a comment.May 27 2025, 2:17 PM

Mentioned in SAL (#wikimedia-operations) [2025-05-27T14:17:21Z] <mszabo@deploy1003> Finished scap sync-world: Backport for [[gerrit:1149699|Temp accounts: Allow sysop to grant and revoke IP reveal (T390942)]] (duration: 12m 00s)

gerritbot added a comment.May 29 2025, 11:23 AM

Change #1151220 abandoned by Tchanders:

[operations/mediawiki-config@master] Temp accounts: Remove temporary-account-viewer from labs config

Reason:

No needed (see e.g. https://en.wikipedia.beta.wmflabs.org/wiki/Special:ListGroupRights)

https://gerrit.wikimedia.org/r/1151220

Tchanders moved this task from Ready to Needs QA on the Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)) board.May 29 2025, 11:23 AM
Maintenance_bot removed a project: Patch-For-Review.May 29 2025, 11:30 AM
Dreamy_Jazz assigned this task to Tchanders.May 29 2025, 11:35 AM
Tchanders moved this task from Planned to In progress on the Temporary accounts (Major pilot wiki deployment) board.May 29 2025, 1:02 PM
Tchanders closed subtask T393615: Impose technical restrictions on granting the `temporary-account-viewer` group as Resolved.May 31 2025, 7:07 AM
Tchanders closed this task as Resolved.Jun 3 2025, 3:02 PM
Tchanders moved this task from Needs QA to Done on the Trust and Safety Product Sprint (Sprint Carrot Cake (May 26 - June 13)) board.

I think we can consider this done - the engineers checked that:

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits