Remove "viewmywatchlist" user right from anonymous users
Closed, DeclinedPublic
Actions

Description

I don't see the point of setting
https://github.com/wikimedia/mediawiki-core/blob/c31fbf073e112526236d3afe6ef4dab3d5cd8e6f/includes/DefaultSettings.php#L4459

$wgGroupPermissions['*']['viewmywatchlist'] = true;

if we also have this:
https://github.com/wikimedia/mediawiki-core/blob/1ea16c08d70152062ba7feef62de8a69b3d08820/includes/specials/SpecialWatchlist.php#L41-L42

// Anons don't get a watchlist
$this->requireLogin( 'watchlistanontext' );

Shouldn't

$wgGroupPermissions['*']['viewmywatchlist'] = true;

be replaced by

$wgGroupPermissions['user']['viewmywatchlist'] = true;

Details

Reference: bz69301

Project	Branch	Lines +/-	Subject
mediawiki/core	master	+2 -2	Remove 'viewmywatchlist' and 'editmywatchlist' from anons
mediawiki/core	master	+1 -1	Remove "viewmywatchlist" user right from anonymous users
mediawiki/core	master	+1 -1	Remove "viewmywatchlist" user right from anonymous users

Customize query in gerrit

Revisions and Commits

rMW MediaWiki
	rMW2b1c610c4834 Modified the user right of editmywishlist from anonymous users as anonymous…
	rMW8b1f30d45c2f Remove "viewmywatchlist" user right from anonymous users

Related Objects
Search...

		Status	Subtype	Assigned	Task
		Open		None	T52039 Proposed changes to default settings (DefaultSettings.php) (tracking)
		Declined		None	T71301 Remove "viewmywatchlist" user right from anonymous users

Event Timeline

• bzimport raised the priority of this task from to Low.Nov 22 2014, 3:31 AM

• bzimport added projects: MediaWiki-Watchlist, good first task.

• bzimport set Reference to bz69301.

• bzimport added a subscriber: Unknown Object (MLST).

He7d3r created this task.Aug 8 2014, 4:06 PM

There seems to be other permissions in the same situation: editmywatchlist, editmyusercss, editmyuserjs, editmyoptions (T22151?).

True, these have no effect for anonymous users. But it does allow the possibility of using User::isEveryoneAllowed() in situations where that's advantageous, since it's very likely that outside of OAuth requests all relevant users really will have these permissions.

For context, here is where I noticed removing the permission from would be relevant:
https://en.wikipedia.org/w/index.php?title=MediaWiki_talk:Gadgets-definition#GeoNotice
The gadget in question modifies [[Special:Watchlist]] but it is intended only for users with access to that page (currently, logged in users), and the Gadgets extension is based on "rights" not "groups" (per T14211#159041).

The ['*'] implies these are catch-all rights.

But instead of dabbling with user rights, I'd like to be able to specify user groups when defining a gadget module, so we can target user classes.

Restricted Application added a subscriber: • Aklapper. · View Herald TranscriptJan 19 2016, 12:06 PM

He7d3r updated the task description. (Show Details)Jan 19 2016, 12:08 PM

He7d3r set Security to None.

xSavitar added a project: Africa-Wikimedia-Developers.Jul 2 2017, 2:14 PM

Restricted Application added a subscriber: TerraCodes. · View Herald TranscriptJul 2 2017, 2:14 PM

xSavitar moved this task from Backlog to New Contributor's Tasks (Incoming) on the Africa-Wikimedia-Developers board.Jul 2 2017, 2:15 PM

Great discussion made so far @He7d3r. Is this still open for a fix? This is so i can do that ASAP. Thanks

Change 365509 had a related patch set uploaded (by Eugene233; owner: Eugene233):
[mediawiki/core@master] Remove "viewmywatchlist" user right from anonymous users

https://gerrit.wikimedia.org/r/365509

gerritbot added a project: Patch-For-Review.Jul 16 2017, 2:14 AM

Eugene233 claimed this task.Jul 16 2017, 2:18 AM

matmarex removed a subscriber: matmarex.Jul 17 2017, 4:50 PM

xSavitar moved this task from New Contributor's Tasks (Incoming) to Tasks in progress (Doing) on the Africa-Wikimedia-Developers board.Jul 18 2017, 1:45 AM

TerraCodes added a commit: rMW8b1f30d45c2f: Remove "viewmywatchlist" user right from anonymous users.Aug 5 2017, 4:28 PM

TerraCodes added a commit: rMW2b1c610c4834: Modified the user right of editmywishlist from anonymous users as anonymous….

Change 365524 had a related patch set uploaded (by TerraCodes; owner: Eugene233):
[mediawiki/core@master] Remove "editmywatchlist" user right from anonymous users

https://gerrit.wikimedia.org/r/365524

@Eugene233 could you please take a look at the comments left on your patch?

Framawiki moved this task from Backlog to Doing on the good first task board.Dec 2 2017, 1:38 PM

Framawiki added a subscriber: Framawiki.Dec 2 2017, 2:09 PM

Change 365509 abandoned by Eugene233:
Remove "viewmywatchlist" user right from anonymous users

Reason:
Abandoned in favor of https://gerrit.wikimedia.org/r/#/c/365524/3/includes/DefaultSettings.php

https://gerrit.wikimedia.org/r/365509

• Phabricator_maintenance moved this task from Doing to Backlog on the good first task board.Sep 24 2018, 9:51 AM

Restricted Application added a project: Growth-Team. · View Herald TranscriptSep 24 2018, 9:51 AM

Eugene233 removed Eugene233 as the assignee of this task.Mar 18 2020, 7:35 PM

Change 581552 had a related patch set uploaded (by QEDK; owner: QEDK):
[mediawiki/core@master] Remove 'viewmywatchlist' and 'editmywatchlist' from anons

https://gerrit.wikimedia.org/r/581552

MediaWiki grants most (or all) rights that are not restricted to *. Some features require a login, or maybe limited to certain namespaces, or may be unavailable if blocked. That is business logic specific to the feature.

If we want to change this, I would recommend that we not try to mimic the business logic by moving these around ad-hoc for individual cases, but rather decide more generally what we want to do here. Otherwise, we will have some features do it one way, and other features do it another way. Right now, they do it the same way. This has some benefits and some downsides. But at least it has benefits. If we change some of them but not others, we will loose those benefits as generic code will no longer be able to make any assumptions about what the rights mean.

Tagging CPT for input. Feel free to tag TechCom if you'd like more input or help in making a decision.

Change 365524 abandoned by Matěj Suchánek:
Remove "viewmywatchlist" user right from anonymous users

Reason:
See Ibe7ad1000c90a8b5dd40377a8bce196ef545ae8d

https://gerrit.wikimedia.org/r/365524

In T71301#5988602, @Krinkle wrote:

MediaWiki grants most (or all) rights that are not restricted to *. Some features require a login, or maybe limited to certain namespaces, or may be unavailable if blocked. That is business logic specific to the feature.

If we want to change this, I would recommend that we not try to mimic the business logic by moving these around ad-hoc for individual cases, but rather decide more generally what we want to do here. Otherwise, we will have some features do it one way, and other features do it another way. Right now, they do it the same way. This has some benefits and some downsides. But at least it has benefits. If we change some of them but not others, we will loose those benefits as generic code will no longer be able to make any assumptions about what the rights mean.

Tagging CPT for input. Feel free to tag TechCom if you'd like more input or help in making a decision.

In this specific case, and my input is only about this case since well, that's what my commit was for. This particular change is not business logic but a technical improbability, if something like this is to be implemented, then every watchlist would be accompanied with its key (i.e. anyone can create watchlists) and each user should be able to have multiple watchlists accessible via different keys, instead of the one-per-user facility we have now; because IPs cannot have an account-attached watchlist since not all IPs are static and ownership changes occur between IP addresses. That leaves the solution of ephemeral watchlists that IPs (non-persistent watchlists for non-logged-in users) can generate for a time period but I doubt its efficacy and need, hence making any alternatives to this change (essentially housekeeping) very unlikely.

QEDK added a project: TechCom.Mar 22 2020, 11:44 AM

If we're doing this, should we also change editmyprivateinfo and editmyoptions and viewmyprivateinfo too?

Anomie moved this task from Inbox to Triage Meeting Inbox on the Platform Engineering board.Mar 23 2020, 2:46 PM

We're going to untag Platform Engineering in favor of the questions here being decided at TechCom. In general, we agree with what @Krinkle wrote in T71301#5988602.

QEDK removed a project: good first task.Mar 25 2020, 1:16 PM

I agree with @Krinkle, I don't think rights should be used in this way. There were no objections to closing this in the TechCom meeting, but I note that we didn't have a quorum, so I'm closing the task on my own authority.

Change 581552 abandoned by QEDK:
Remove 'viewmywatchlist' and 'editmywatchlist' from anons

https://gerrit.wikimedia.org/r/581552

DannyS712 removed a project: Patch-For-Review.Mar 25 2020, 10:20 PM

QEDK removed a subscriber: QEDK.Mar 27 2020, 9:46 AM

• Aklapper removed subscribers: Anomie, • wikibugs-l-list.Oct 16 2020, 5:29 PM