Endurance Coalition

Help:Permissions: Difference between revisions

← Older edit
VisualWikitext
No edit summary
 
(32 intermediate revisions by the same user not shown)
Line 1: Line 1:
This wiki has a variety of account permissions that have been created to assist in it's administration. If a particular permission does not have usage guidelines, it is either because it is anticipated a limited set of users will ever have it, or because usage does not necessarily require written rules.
{{Ambox|image=[[File:Authenticator.jpg|40px|link=]]|text=[[wikipedia:Multi-factor authentication|'''Multi-factor authentication''']] is required by the software to make use of any permission listed on this page.}}


Anyone with an account may ask any bureaucrat for any permission listed on this page. Whether or not it is granted is solely at the discretion of the reviewing bureaucrat.
This wiki has different account permissions to assist in it's administration. Any person with an account may request any permission. Granting of permissions is at EDC leadership and bureaucrat discretion.


== Bureaucrat ==
== Bureaucrat ==
The only people capable of granting and revoking any permissions listed below are '''bureaucrats'''. Such individuals may grant and revoke at their sole discretion. They can also perform an enhanced version of revision deletion called ''suppression'', which allows hiding deleted information from even administrators, reserved for getting rid of ''personally identifiable'' information.
A '''bureaucrat''' can tie IP addresses to wiki accounts and vice versa, delete material on the wiki in such a manner to where even ''administrators'' cannot see it, and can grant and revoke any permission listed on this page.  
 
This permission is strictly controlled, not due to a lack of trust, but due to a lack of need for many people to have it. A bureaucrat account being compromised could cause substantial damage which may not be reversible, and so limited granting is also in the interest of site security. While anyone is permitted to ask to become a bureaucrat, odds are greater than normal that it'll be denied.  


The following individuals in the Endurance Coalition are bureaucrats.
The following individuals in the Endurance Coalition are bureaucrats.
Line 13: Line 11:


== Administrator ==
== Administrator ==
{{Ambox|type=delete|image=[[File:Icons8 flat privacy.svg|50px]]|text=Administrators are to use their revision deletion tools to remove unwanted information from being public. If there is '''personally identifiable information''', a bureaucrat ''must'' be notified even after deletion. If there is any doubt if it's identifiable, default to notifying a bureaucrat anyway. If the administrator is confused on how to delete revisions properly, they should '''just delete the page itself'''. A bureaucrat will restore and delete the revisions properly later.}}
{{Ambox|type=delete|image=[[File:Icons8 flat privacy.svg|50px|link=]]|text=Administrators are to use their revision deletion tools to remove unwanted information from being public. If there is '''personally identifiable information''', a bureaucrat ''must'' be notified even after deletion. If there is any doubt if it's identifiable, default to notifying a bureaucrat anyway. If the administrator is confused on how to delete revisions properly, they should '''just delete the page itself'''. A bureaucrat will restore and delete the revisions properly later.}}


: ''List of administrators available [[Special:ListUsers/sysop|here]]''.
: ''List of administrators available [[Special:ListUsers/sysop|here]]''.


An '''administrator''' is a functional janitor for the wiki. They are able to block user accounts (which restrict all editing and usage of any advanced permissions), protect pages from editing (and subsequently edit any protected page<ref>Not ''strictly'' true. Certain pages are protected by an [[Special:AbuseFilter|abuse filter]] and interface pages require being an interface administrator to edit.</ref>),  and are able to delete and restore pages and revisions. This makes it considerably easier to control the wiki's organization than a regular user is capable of doing.  
An '''administrator''' is a janitor. They are able to block user accounts (which restrict all editing and use of advanced permissions), protect pages from editing (and thus edit any protected page<ref>Not ''strictly'' true. Certain pages are protected by an [[Special:AbuseFilter|abuse filter]] and interface pages require being an interface administrator to edit.</ref>),  and are able to delete pages and revisions. This makes it much easier to control the wiki's organization.  


Usage of the page protection and deletion tools are at administrator discretion (with an expectation of working in tandem with fellow administrators and other wiki-enthusiasts). The actual use of the tools are explained at [[mw:Manual:Administrators|Manual:Administrators]] (though note not all permissions the page states administrators have are actually available on this wiki). Administrators should be aware that deletion is not permanent, and accidental or ignorant deletion is not something to fear. All pages can be [[mw:Help:Deletion and undeletion|undeleted]]. To delete specific revisions, see [[mediawikiwiki:Help:RevisionDelete|Help:RevisionDelete]].
Usage of the above tools are at administrator discretion (with an expectation of working nicely with others). The actual use of the tools are explained at [[mw:Manual:Administrators|Manual:Administrators]].<ref>The linked page makes assumptions about the permissions administrators have. Some permissions may not be available on this wiki for a variety of reasons.</ref> Administrators should be aware that deletion is not permanent. All pages and files<ref>In the interest of keeping the wiki's overall file size low, sometimes deleted images are pruned on the backend and thus cannot be recovered, so technically not ''all'' images are ''always'' recoverable. But '''pages''' ''are'' always recoverable.</ref> can be [[mw:Help:Deletion and undeletion|undeleted]]. To delete specific revisions, see [[mediawikiwiki:Help:RevisionDelete|Help:RevisionDelete]].


=== Usage guidelines ===
=== Blocking guidelines ===
Administrators should never block to punish, but as a means of stopping disruption from an account {{Emdash}} usually in response to an account compromise, an account holder being inebriated and editing improperly, the account holder lashing out emotionally, or the account holder acting abusively in response to some kind of falling out {{Emdash}} as but a few examples. Blocking is performed at [[Special:Block]].
An administrator is ''not'' a moderator; they do not exist to punish. A ''punitive'' block is prohibited unless asked of by EDC leadership (which should be clearly documented in the block reason). Usage of administrator tools are purely to protect and enrich the wiki. In this regard, blocking a wiki account should be because without the block the account will continually be disruptive. The account holder may be drunk, having an emotional episode, lashing out in response to some kind of falling out, or the account may be compromised. In such situations, EDC leadership should be notified and the account blocked. Block length is at the administrator's discretion, though doing so indefinitely until hearing back from EDC leadership is always an option.
 
When blocking, as best practice, please ensure the following.


* Blocks should always be marked as <code>Sitewide</code>.
* Blocks should always be marked as <code>Sitewide</code>.
* The box <code>Editing their own talk page</code> should always be ticked.
* The box <code>Editing their own talk page</code> should always be ticked.
* Blocks should always be given a legible reason.
* Blocks should always be given a legible reason.
* Expiration is at administrator discretion. Generally speaking, most of the examples above would warrant an indefinite block (an inebriated editor perhaps a day or two, someone emotional perhaps a week; these are recommendations, not rules).
The remaining fields on the block page are not relevant.


== Interface administrator ==
== Interface administrator ==
: ''List of interface administrators available [[Special:ListUsers/interface-admin|here]]''.
: ''List of interface administrators available [[Special:ListUsers/interface-admin|here]]''.
An '''interface administrator''' has no correlation with a regular administrator. They are simply editors who can edit pages in the <code>Module:</code> and <code>MediaWiki:</code> [[mw:Help:Namespaces|namespaces]] and import directly from other MediaWiki instances. The <code>Module:</code> namespace contains JavaScript necessary for some templates to function. The <code>MediaWiki:</code> namespace mainly contains text which changes the look and text on the interface itself (e.g [[MediaWiki:Upload-summary]] which displays the warning at the top of [[Special:Upload]]).
An '''interface administrator''' can edit pages in the <code>Module:</code> and <code>MediaWiki:</code> [[mw:Help:Namespaces|namespaces]] and import pages from other wikis. The <code>Module:</code> namespace contains JavaScript necessary for certain templates to function. The <code>MediaWiki:</code> namespace contains text which changes the look of the interface (e.g [[MediaWiki:Upload-summary]] which displays the warning at the top of [[Special:Upload]]).


== Edit filter manager ==
== Edit filter manager ==
: ''List of edit filter managers available [[Special:ListUsers/edit-filter-manager|here]]''.
: ''List of edit filter managers available [[Special:ListUsers/edit-filter-manager|here]]''.
An '''edit filter manager''' is able to create and edit abuse filters at [[Special:AbuseFilter]]. They can also view and edit the private filters. The abuse filter is a set of [[wikipedia:Regular expression|regular expression]] patterns that perform defined actions when triggered. This wiki uses a limited number of filters to try and stop particular behaviors which may case harm. Filters are marked private by edit filter managers at their discretion, and it tends to be based on vibes, or whether the ability to see the regex will result in easy bypassing.
An '''edit filter manager''' is able to create and edit filters at [[Special:AbuseFilter]]. They can also view and edit the private filters. The abuse filter is a set of [[wikipedia:Regular expression|regular expression]] (sometimes called "regex) patterns that perform certain actions when triggered. This wiki uses filters to prevent certain behaviors which may cause harm. Filters are marked private by edit filter managers at their discretion. This permission is not bundled into another permission due to the technical knowledge needed to create, edit, and interpret regex.


== Account specialist ==
== Account specialist ==
: ''List of account specialists available [[Special:ListUsers/account-specialist|here]]. Note that [[Special:ListUsers/bureaucrat|bureaucrats]] are functionally also account specialists.''
: ''List of account specialists available [[Special:ListUsers/account-specialist|here]]. Note that [[Special:ListUsers/bureaucrat|bureaucrats]] are functionally also account specialists.''
An '''account specialist''' is able to create accounts for users and edit accounts so as to assist with account recovery. Account creation is done through [[Special:CreateAccount]] and editing is done through [[Special:EditAccount]]. The latter interface does not permit editing of account permissions, which is reserved to bureaucrats. All permissions available to account specialists are bundled into the bureaucrat permission. This permission is particularly easy to ask for due to it's limited scope.
An '''account specialist''' can create accounts for users and edit accounts to assist with recovery. Account creation is done through [[Special:CreateAccount]] and editing is done through [[Special:EditAccount]]. All permissions account specialists have bureaucrats also have, and so they are ''also'' account specialists.


=== Creating an account ===
=== Creating an account ===
The act of creating the account is simple. Follow the interface at [[Special:CreateAccount]]. Leave the email and real name fields blank. After the account physically exists, there is one more step which is slightly more complicated, which is giving the account their '''<nowiki>{{</nowiki>[[Template:Account verified|Account verified]]<nowiki>}}</nowiki>''' template. This is a requirement to ensure that there is a clear recorded correlation between a wiki account and a Discord account.
Creating the account is simple. Follow the interface at [[Special:CreateAccount]]. Leave the email and real name fields blank. Write a quick reason. Click <code>Create account</code>. That's it.
 
==== Verification template ====
After the account physically exists, there is one more step which is ''slightly'' more complicated, which is giving the account their '''<nowiki>{{</nowiki>[[Template:Account verified|Account verified]]<nowiki>}}</nowiki>''' template. Since emails are not stored for privacy reasons<ref>Also because to send emails and not be immediately received by most providers as spam requires ''way'' more effort than is worth it to do.</ref>, there is no easy way  {{Emdash}} aside from word of mouth {{Emdash}} to connect a wiki account to a particular person. The '''<nowiki>{{</nowiki>[[Template:Account verified|Account verified]]<nowiki>}}</nowiki>''' template fixes this. The downside is it requires some effort.


To begin, go to the new account's user page. This is <code>User:</code> followed by the exact name you gave them at [[Special:CreateAccount]], with the first letter capitalized. For example, Sirdog's user page is <code>User:Sirdog</code>. You will be told the page doesn't exist since you just created the account. Create the page.
To begin, go to the new account's user page. This is <code>User:</code> followed by the '''exact''' name you gave them at [[Special:CreateAccount]]. For example, Sirdog's user page is <code>User:Sirdog</code>. You will be told the page doesn't exist since you just created the account. Create the page.


At the top of the page, copy and paste the following:
At the '''top''' of the page, copy and paste the following:
<pre>
<pre>
{{Account verified|name=|id=}}
{{Account verified|id=}}
</pre>
</pre>


After <code>name=</code> but before the pipe (<code>|</code>), just write their common username. If creating an account for Fleff, you'd just write <code>Fleff</code>. After <code>id=</code> but before the curly brackets (<code>}}</code>), you'll give their Discord ID.<ref>Why do we use Discord IDs? Simple. Usernames can be changed. IDs cannot.</ref> To get a Discord ID, you will need to enable developer mode on Discord (Settings > Advanced > Developer mode), right click the account's name on any message they've sent, and click the button <code>Copy User ID</code>. You will paste this after <code>id=</code>. It should just be a long number. For example, Sirdog's Discord ID is <code>281589411962028034</code>.
After <code>id=</code> but before the curly brackets (<code>}}</code>), you'll write in their Discord ID.<ref>While usernames are unique to the user, they are changeable. Discord IDs are not.</ref>
 
{{Note|If you want to double check that what you have copied is a Discord ID, you can put it into a website such as [https://discord.id/ Discord Lookup] and see if it gives you the user in question.|type=reminder}}
 
To get a Discord ID, you need to [https://discord.com/developers/docs/activities/building-an-activity#step-0-enable-developer-mode enable developer mode] on Discord (Settings > Advanced > Developer mode), right click the account's ''name'' on any message they've sent, and click the button <code>Copy User ID</code>. You will paste this after <code>id=</code>. It should be a long number. For example, Sirdog's Discord ID is <code>281589411962028034</code>.


The following is an example of a properly filled out template.
The following is an example of a properly filled out template.
<pre>
<pre>
{{Account verified|name=Sirdog|id=281589411962028034}}
{{Account verified|id=281589411962028034}}
</pre>
</pre>


After you've done this, save the page. You are done. Thank you!
After you've done this, save the page. Double check the template doesn't look wonky, then, you are done. Thank you!<ref>Curious minds may wonder why this is enough if anyone can edit user pages. An edit filter stops editors without the bureaucrat or account specialist permissions from messing with the template.</ref>


=== Usage guidelines ===
=== Guidelines ===


* Accounts should only be made for people currently in the Endurance Coalition Discord. If they aren't, the person must be redirected to a bureaucrat for an answer.
* Accounts should only be made for people currently in the Endurance Coalition Discord. Those who aren't are ineligible.
* Never click <code>Close account</code> in the [[Special:EditAccount]] interface.<ref>This just scrambles the person's password and email. It doesn't do anything crazy or irreversible. However, if a user needs to not edit the wiki due to disruption, an administrator needs to handle it (via [[Special:Block]]), ''not'' an account specialist.</ref>
* To help recover an account, simply use [[Special:EditAccount]] to change the person's password to something random and give it to them. '''Instruct them to change it immediately'''.
* To help recover an account, simply use [[Special:EditAccount]] to change the person's password to something random and give it to them. '''Instruct them to change it immediately'''.
** Make sure, if there is even a sliver of doubt, to double check the account verified template on the user's page to ensure the correct Discord user is getting their account back.
** Most of the time, account verification is simple since the Discord account for most users are well known. But if there is even a ''sliver'' of doubt, use '''<nowiki>{{</nowiki>[[Template:Account verified|Account verified]]<nowiki>}}</nowiki>''' to be sure.
** Never click <code>Close account</code> in the [[Special:EditAccount]] interface.
** If there is even a ''sliver'' of doubt that a '''Discord account''' requesting recovery is compromised, forward the matter to EDC leadership, and do not do anything to the relevant wiki account.
** If part of account recovery is that the individual has lost access to their 2FA and their recovery codes an EDC <code>@SYS:OP</code> will need to assist them.<ref>This is because a backend maintenance script has to be run to remove someone's 2FA.</ref>


== Footnotes ==
== Footnotes ==
Retrieved from "https://wiki.edcgaming.org/Help:Permissions"