Change Details

## Summary We can add a few of the proposed #IPReputation AbuseFilter variables now limited use for editors who are logged out and using their IP address. ## Background - Now that we have merged patches for T380920, we can create the following AbuseFilter IPReputation variables -- `ip_reputation_tunnel_operators` - A list of tunnel operators associated with the IP -- `ip_reputation_risk_types` - The list of risks associated with the IP -- `ip_reputation_client_proxies` - The list of proxies associated with the IP -- `ip_reputation_client_behaviors` - The list of behaviours associated with the IP -- `ip_reputation_client_count` - The number of clients detected on an IP -- `ip_reputation_ipoid_known` - Whether the IP is known to IPoid - These variables listed above can already be got from the IPoid data obtained by the #mediawiki-extensions-ipreputation IPoid data service - These variables need to be limited initially just to IP addresses. -- This is because we want to expire the IP reputation data when the associated IP address is expired, which will be worked on in {T390873} -- We will expand these variables to work for account creation and temporary accounts in another task when T390873 is resolved ## Acceptance criteria - [ ] #mediawiki-extensions-ipreputation variables specified above exist and are usable for actions performed while using their IP address (i.e. logged out and not a temporary account) - [ ] These variables are always considered protected variables and require the `abusefilter-access-protected-vars` right to view their values or filters they are used in - [ ] The value of these variables is taken from the associated data points in an #ipoid-service API response

## Summary We can add a few of the proposed #IPReputation AbuseFilter variables now limited use for editors who are logged out and using their IP address. ## Background - Now that we have merged patches for T380920, we can create the following AbuseFilter IPReputation variables -- `ip_reputation_tunnel_operators` - A list of tunnel operators associated with the IP -- `ip_reputation_risk_types` - The list of risks associated with the IP -- `ip_reputation_client_proxies` - The list of proxies associated with the IP -- `ip_reputation_client_behaviors` - The list of behaviours associated with the IP -- `ip_reputation_client_count` - The number of clients detected on an IP -- `ip_reputation_ipoid_known` - Whether the IP is known to #ipoid-service - These variables listed above can already be got from the IPoid data obtained by the #mediawiki-extensions-ipreputation IPoid data service - These variables need to be limited initially just to IP addresses. -- This is because we want to expire the IP reputation data when the associated IP address is expired, which will be worked on in {T390873} -- We will expand these variables to work for account creation and temporary accounts in another task when T390873 is resolved ## Acceptance criteria - [ ] #mediawiki-extensions-ipreputation variables specified above exist and are usable for actions performed while using their IP address (i.e. logged out and not a temporary account) - [ ] These variables are always considered protected variables and require the `abusefilter-access-protected-vars` right to view their values or filters they are used in - [ ] The value of these variables is taken from the associated data points in an #ipoid-service API response

## Summary We can add a few of the proposed #IPReputation AbuseFilter variables now limited use for editors who are logged out and using their IP address. ## Background - Now that we have merged patches for T380920, we can create the following AbuseFilter IPReputation variables -- `ip_reputation_tunnel_operators` - A list of tunnel operators associated with the IP -- `ip_reputation_risk_types` - The list of risks associated with the IP -- `ip_reputation_client_proxies` - The list of proxies associated with the IP -- `ip_reputation_client_behaviors` - The list of behaviours associated with the IP -- `ip_reputation_client_count` - The number of clients detected on an IP -- `ip_reputation_ipoid_known` - Whether the IP is known to IPoid#ipoid-service - These variables listed above can already be got from the IPoid data obtained by the #mediawiki-extensions-ipreputation IPoid data service - These variables need to be limited initially just to IP addresses. -- This is because we want to expire the IP reputation data when the associated IP address is expired, which will be worked on in {T390873} -- We will expand these variables to work for account creation and temporary accounts in another task when T390873 is resolved ## Acceptance criteria - [ ] #mediawiki-extensions-ipreputation variables specified above exist and are usable for actions performed while using their IP address (i.e. logged out and not a temporary account) - [ ] These variables are always considered protected variables and require the `abusefilter-access-protected-vars` right to view their values or filters they are used in - [ ] The value of these variables is taken from the associated data points in an #ipoid-service API response