Page MenuHomePhabricator
Create Task
Maniphest T413997

[UI/UX] Programmatically enforce restrictions on updating grants for auth-only accepted consumers
Open, Needs TriagePublic
Actions

Description

This caused T413947 and T409901, so we should probably find a way to restrict users from updating grants for auth-only OAuth2 consumers.

At the moment, a user can force access to the "manage grants" page even when it's not displayed when viewing the connected apps list. See sample images below;

Screenshot 2026-01-07 at 7.00.47 PM.png (1×3 px, 483 KB)
Screenshot 2026-01-07 at 6.59.51 PM.png (1×3 px, 432 KB)

Related Objects

Event Timeline

DAlangi_WMF created this task.Jan 7 2026, 4:04 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJan 7 2026, 4:04 PM
DAlangi_WMF added a subscriber: Tgr.Jan 7 2026, 4:04 PM
OWresch-WMF moved this task from Inbox, needs triage to Q3 Kanban Board on the MediaWiki-Platform-Team board.Mon, Jan 12, 3:56 PM
OWresch-WMF edited projects, added MediaWiki-Platform-Team (Q3 Kanban Board); removed MediaWiki-Platform-Team.
OWresch-WMF moved this task from Essential Work to OKR Work on the MediaWiki-Platform-Team (Q3 Kanban Board) board.
matmarex subscribed.Tue, Jan 13, 12:09 AM
Tgr added a comment.Fri, Jan 16, 10:11 AM

OTOH without access to that screen, they can't even see what grants the application has. I think the link should be unconditional, and then maybe there shouldn't be an update button if no meaningful changes can be made.

DAlangi_WMF added a comment.Fri, Jan 16, 11:55 AM
In T413997#11528098, @Tgr wrote:

OTOH without access to that screen, they can't even see what grants the application has. I think the link should be unconditional, and then maybe there shouldn't be an update button if no meaningful changes can be made.

Yes, this makes sense. I think this should also extend to non-authonly consumers that have only basic rights as well?

There seems to be an overlap between "authonly" consumers (authonly and authonlyprivate) and "non-authonly" consumers with only basic rights (useoauth). The overlap is that these are the default rights applied, and I'm wondering if it would make sense to also not have access to the "Update grants" button in the latter case. So I'm thinking of unifying the experience of these management workflows.

But for consumers who have more grants (outside the defaults), we can display the "Update grants" button for grant management. Let me know what you think.

DAlangi_WMF moved this task from Uncategorized to UI/UX on the MediaWiki-extensions-OAuth board.Wed, Jan 21, 10:36 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits