Page MenuHomePhabricator
Create Task
Maniphest T36856

Since 1.17, you can't override page permission errors by a hook
Open, LowPublic
Actions

Description

In 1.16 you could set a getUserPermissionErrors or userCan hook, return 'false' from it and allow the access to an otherwise protected page.
We used it to allow users customising MediaWiki:Edittools on a personal base, i.e. MediaWiki:Edittools@UserName.
In 1.17 these parts of code were refactored and now, 'false' from these hooks doesn't mean "stop processing rights", but does mean only "stop processing right hooks". And you can't allow some action on an otherwise protected page anymore.
This is not convenient :(

Version: 1.20.x
Severity: normal
See Also: T32821: Title::checkPermissionHooks docs for "return true" with "$result = false" state that user should not be allowed to proceed

Details

Reference
bz34856

Related Objects

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 12:15 AM
bzimport added a project: MediaWiki-General.
bzimport set Reference to bz34856.
bzimport added a subscriber: Unknown Object (MLST).
VitaliyFilippov created this task.Mar 1 2012, 4:42 PM
Nemo_bis edited projects, added MediaWiki-Core-AuthManager; removed MediaWiki-General.Jul 18 2015, 6:47 PM
Nemo_bis set Security to None.
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptJul 18 2015, 6:47 PM
DannyS712 subscribed.Dec 5 2019, 4:11 AM

T43838: Make it possible for users without the editinterface right to edit the AbuseFilter messages involves adding a hook to bypass namespace protection - that should solve the issue

Aklapper lowered the priority of this task from Medium to Low.Dec 13 2019, 10:21 AM
Aklapper updated the task description. (Show Details)
Aklapper removed a subscriber: wikibugs-l-list.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL