Author: puhelin09
Description:
I submitted the attached report to the [http://www.mediawiki.org/wiki/Project:Support_desk/Sections/Extension#Problem_with_sysop.2Fbureaucrat_permissions_after_creating_account_with_UserLoadFromSession_hook Support Desk] as an Extension problem - perhaps not totally accurate, but it appeared to be the most appropriate classification. However, the only update has been by myself.
I've since delved a bit deeper but am not so gradually getting out of my depth and seriously suspect that a bug might be involved as this hook was only introduced in 1.13.0 - although I realise that there are a few extensions using it. I thought that bug 14914 might have been helpful, but it appears not.
Since the report below, I have dug down through SpecialPage:getUsablePages, userCanExecute in the same script and isAllowed in User.php, but would appreciate some help on this, as it (and a problem with export/import) is holding up implementation of the new version of the wiki.
Here is a sample of debug output from SpecialPage.php[getUsablePages] and User.php[isAllowed] from my accessing the Special Pages page - as shown below, Userlist shows me as sysop and breaucrat:
TGST: action is mergehistory
TGST: Right: createaccount
TGST: Right: read
TGST: Right: edit
TGST: Right: createpage
TGST: Right: createtalk
TGST: Right: writeapi
TGST: Right: move
TGST: Right: move-subpages
TGST: Right: read
TGST: Right: edit
TGST: Right: createpage
TGST: Right: createtalk
TGST: Right: writeapi
TGST: Right: upload
TGST: Right: reupload
TGST: Right: reupload-shared
TGST: Right: minoredit
TGST: Right: purge
TGST: Right: autoconfirmed
TGST: Page MergeHistory User: Sam.Sexton CAN NOT see page.
This is logically consistent as far as it goes, but inconsistent with my being both sysop and bureaucrat. For a long time I suspected that I'd missed a step from creating the user account, but now I'm not so sure and would appreciate a much more experienced opinion on the problem.
Many thanks in advance.
Version: 1.13.x
Severity: major
OS: Solaris
URL: http://(internal)