Difference between revisions of "MediaWiki"
(→Legacy functions and roles) |
|||
Line 22: | Line 22: | ||
!Reading | !Reading | ||
|valign="top"|read | |valign="top"|read | ||
− | |When set to false, override for specific pages with | + | |When set to false, override for specific pages with WhitelistRead |
| *, user | | *, user | ||
|- | |- | ||
Line 31: | Line 31: | ||
|- | |- | ||
|createpage | |createpage | ||
− | |createpage - requires the | + | |createpage - requires the edit right |
|*, user | |*, user | ||
|- | |- | ||
|createtalk | |createtalk | ||
− | |createtalk - requires the | + | |createtalk - requires the edit right |
|*, user | |*, user | ||
|- | |- | ||
Line 89: | Line 89: | ||
!Reading | !Reading | ||
|read | |read | ||
− | |When set to false, override for specific pages with | + | |When set to false, override for specific pages with WhitelistRead |
| *, user | | *, user | ||
|- | |- | ||
Line 98: | Line 98: | ||
|- | |- | ||
|createpage | |createpage | ||
− | |createpage - requires the | + | |createpage - requires the edit right |
|*, user | |*, user | ||
|- | |- | ||
|createtalk | |createtalk | ||
− | |createtalk - requires the | + | |createtalk - requires the edit right |
|*, user | |*, user | ||
|- | |- | ||
Line 110: | Line 110: | ||
|- | |- | ||
|upload | |upload | ||
− | |upload - 73 | + | |upload - 73 requires the edit right |
|user, sysop | |user, sysop | ||
|- | |- | ||
|reupload | |reupload | ||
− | |reupload - 74 | + | |reupload - 74 requires the upload right |
|user, sysop | |user, sysop | ||
|- | |- | ||
|reupload-shared | |reupload-shared | ||
− | |reupload-shared - 76 | + | |reupload-shared - 76 (if one is set up) with local files 211 (requires the upload right) |
|user, sysop | |user, sysop | ||
|- | |- | ||
Line 127: | Line 127: | ||
!rowspan="2"|Management | !rowspan="2"|Management | ||
|changetags | |changetags | ||
− | |changetags - | + | |changetags - currently unused by extensions |
|user | |user | ||
|- | |- | ||
Line 140: | Line 140: | ||
|- | |- | ||
|purge | |purge | ||
− | |purge - | + | |purge - URL parameter |
|user | |user | ||
|- | |- | ||
Line 160: | Line 160: | ||
!Editing | !Editing | ||
|editsemiprotected | |editsemiprotected | ||
− | |editsemiprotected - | + | |editsemiprotected - without cascading protection |
|autoconfirmed, sysop | |autoconfirmed, sysop | ||
|- | |- | ||
!Technical | !Technical | ||
|autoconfirmed | |autoconfirmed | ||
− | |autoconfirmed - | + | |autoconfirmed - used for the 'autoconfirmed' group, see the other table below for more information |
|autoconfirmed, bot, sysop | |autoconfirmed, bot, sysop | ||
|} | |} | ||
Line 182: | Line 182: | ||
!Administration | !Administration | ||
|autopatrol | |autopatrol | ||
− | |autopatrol - | + | |autopatrol - $wgUseRCPatrol must be ''true'' |
|bot, sysop | |bot, sysop | ||
|- | |- | ||
Line 191: | Line 191: | ||
|- | |- | ||
|autoconfirmed | |autoconfirmed | ||
− | |autoconfirmed - | + | |autoconfirmed - used for the 'autoconfirmed' group, see the other table below for more information |
|autoconfirmed, bot, sysop | |autoconfirmed, bot, sysop | ||
|- | |- | ||
|bot | |bot | ||
− | |bot - | + | |bot - can optionally be viewed |
|bot | |bot | ||
|- | |- | ||
|nominornewtalk | |nominornewtalk | ||
− | |nominornewtalk - | + | |nominornewtalk - requires ''minor edit'' right |
|bot | |bot | ||
|- | |- | ||
Line 223: | Line 223: | ||
!rowspan="12"|Editing | !rowspan="12"|Editing | ||
|editprotected | |editprotected | ||
− | |editprotected - | + | |editprotected - without cascading protection |
|sysop | |sysop | ||
|- | |- | ||
|editsemiprotected | |editsemiprotected | ||
− | |editsemiprotected - | + | |editsemiprotected - without cascading protection |
|autoconfirmed, sysop | |autoconfirmed, sysop | ||
|- | |- | ||
Line 235: | Line 235: | ||
|- | |- | ||
|move | |move | ||
− | |move - 68 | + | |move - 68 requires the edit right |
|user | |user | ||
|- | |- | ||
|move-categorypages | |move-categorypages | ||
− | |move-categorypages - | + | |move-categorypages - requires the move right |
|user | |user | ||
|- | |- | ||
|move-rootuserpages | |move-rootuserpages | ||
− | |move-rootuserpages - | + | |move-rootuserpages - requires the move right |
|user | |user | ||
|- | |- | ||
|move-subpages | |move-subpages | ||
− | |move-subpages - | + | |move-subpages - requires the move right |
|user | |user | ||
|- | |- | ||
|movefile | |movefile | ||
− | |movefile - | + | |movefile - requires the move right and $wgAllowImageMoving to be true |
|user | |user | ||
|- | |- | ||
|upload | |upload | ||
− | |upload - | + | |upload - requires the edit right |
|user, sysop | |user, sysop | ||
|- | |- | ||
|upload_by_url | |upload_by_url | ||
− | |upload_by_url - | + | |upload_by_url - requires the upload right |
|sysop | |sysop | ||
|- | |- | ||
|reupload | |reupload | ||
− | |reupload - | + | |reupload - requires the upload right |
|user, sysop | |user, sysop | ||
|- | |- | ||
|reupload-shared | |reupload-shared | ||
− | |reupload-shared - | + | |reupload-shared - (if one is set up) with local files 211 (requires the upload right) |
|user, sysop | |user, sysop | ||
|- | |- | ||
Line 276: | Line 276: | ||
|- | |- | ||
|block | |block | ||
− | |block - | + | |block - Block options include preventing editing and registering new accounts, and autoblocking other users on the same IP address |
|sysop | |sysop | ||
|- | |- | ||
|blockemail | |blockemail | ||
− | |blockemail - | + | |blockemail - allows preventing use of the [[Special:Emailuser]] interface when blocking |
|sysop | |sysop | ||
|- | |- | ||
|browsearchive | |browsearchive | ||
− | |browsearchive - | + | |browsearchive - through [[Special:Undelete]] |
|sysop | |sysop | ||
|- | |- | ||
|delete | |delete | ||
− | | | + | |allows the deletion or undeletion of pages. For undeletions, there is now the 'undelete' right, see below |
|sysop | |sysop | ||
|- | |- | ||
Line 300: | Line 300: | ||
|- | |- | ||
|editinterface | |editinterface | ||
− | |editinterface - | + | |editinterface - contains [[<tvar|man>Special:MyLanguage/Manual:Interface</>|interface messages]] |
|sysop, interface-admin | |sysop, interface-admin | ||
|- | |- | ||
|markbotedits | |markbotedits | ||
− | |markbotedits - | + | |markbotedits - see [[<tvar|man>Special:MyLanguage/Manual:Administrators#Rollback</>|Manual:Administrators#Rollback]] |
|sysop | |sysop | ||
|- | |- | ||
Line 312: | Line 312: | ||
|- | |- | ||
|patrol | |patrol | ||
− | |patrol - | + | |patrol - $wgUseRCPatrol must be ''true'' |
|sysop | |sysop | ||
|- | |- | ||
Line 324: | Line 324: | ||
|- | |- | ||
|unblockself | |unblockself | ||
− | |unblockself - 96 | + | |unblockself - 96 Without it, an administrator that has the capability to block cannot unblock themselves if blocked by another administrator |
|sysop | |sysop | ||
|- | |- | ||
Line 341: | Line 341: | ||
!rowspan="5"|Administration | !rowspan="5"|Administration | ||
|autopatrol | |autopatrol | ||
− | |autopatrol - 141 | + | |autopatrol - 141 <tvar|UseRCPatrol>{{ll|Manual:$wgUseRCPatrol|$wgUseRCPatrol</> must be ''true'' |
|bot, sysop | |bot, sysop | ||
|- | |- | ||
|import | |import | ||
− | |import - 126 | + | |import - 126 “transwiki” |
|sysop | |sysop | ||
|- | |- | ||
|importupload | |importupload | ||
− | |importupload - 128 | + | |importupload - 128 This right was called 'importraw' in and before version 1.5 |
|sysop | |sysop | ||
|- | |- | ||
|managechangetags | |managechangetags | ||
− | |managechangetags - 132 | + | |managechangetags - 132 currently unused by extensions |
|sysop | |sysop | ||
|- | |- | ||
|unwatchedpages | |unwatchedpages | ||
− | |unwatchedpages - 131 | + | |unwatchedpages - 131 lists pages that no user has watchlisted |
|sysop | |sysop | ||
|- | |- | ||
Line 366: | Line 366: | ||
|- | |- | ||
|autoconfirmed | |autoconfirmed | ||
− | |autoconfirmed - 145 | + | |autoconfirmed - 145 used for the 'autoconfirmed' group, see the other table below for more information |
|autoconfirmed, bot, sysop | |autoconfirmed, bot, sysop | ||
|- | |- | ||
Line 374: | Line 374: | ||
|- | |- | ||
|noratelimit | |noratelimit | ||
− | |noratelimit - 138 | + | |noratelimit - 138 not affected by [[<tvar|man>Special:MyLanguage/Manual:$wgRateLimits</>|rate limits]] (''prior to the introduction of this right, the configuration variable <tvar|RateLimitsExcludedGroups>{{ll|Manual:$wgRateLimitsExcludedGroups|$wgRateLimitsExcludedGroups</> was used for this purpose'') |
|sysop, bureaucrat | |sysop, bureaucrat | ||
|- | |- | ||
Line 413: | Line 413: | ||
!rowspan="2"|'''Editing''' | !rowspan="2"|'''Editing''' | ||
|autocreateaccount | |autocreateaccount | ||
− | |autocreateaccount - 210 | + | |autocreateaccount - 210 a more limited version of ''createaccount'' |
|- | |- | ||
|reupload-own | |reupload-own | ||
− | |reupload-own - 75 | + | |reupload-own - 75 requires the upload right (note that this is not needed if the group already has the <tvar|reupload>''reupload right) |
|- | |- | ||
!rowspan="13"|Management''' | !rowspan="13"|Management''' | ||
|deletelogentry | |deletelogentry | ||
− | |deletelogentry - 121 | + | |deletelogentry - 121 allows deleting/undeleting information (action text, summary, user who made the action) of specific log entries (''not available by default'') |
|- | |- | ||
|deleterevision | |deleterevision | ||
− | |deleterevision - 122 | + | |deleterevision - 122 allows deleting/undeleting information (revision text, edit summary, user who made the edit) of specific revisions 123 '''Split into deleterevision and deletelogentry in 1.20''' (''not available by default'') |
|- | |- | ||
|editcontentmodel | |editcontentmodel | ||
Line 429: | Line 429: | ||
|- | |- | ||
|editinterface | |editinterface | ||
− | |editinterface - 106 | + | |editinterface - 106 contains [[<tvar|man>Special:MyLanguage/Manual:Interface</>|interface messages]] |
|sysop, interface-admin | |sysop, interface-admin | ||
|- | |- | ||
Line 441: | Line 441: | ||
|- | |- | ||
|hideuser | |hideuser | ||
− | |hideuser - (''not available by default'') Only users with 1000 edits or less can be suppressed by default. 213 | + | |hideuser - (''not available by default'') Only users with 1000 edits or less can be suppressed by default. 213 Use <tvar|HideUserContribLimit>{{wg|HideUserContribLimit</> to disable. |
|- | |- | ||
|pagelang | |pagelang | ||
− | |pagelang - 214 | + | |pagelang - 214 <tvar|PageLanguageUseDB>{{ll|Manual:$wgPageLanguageUseDB|$wgPageLanguageUseDB</> must be ''true'' |
|- | |- | ||
|patrolmarks | |patrolmarks | ||
Line 453: | Line 453: | ||
|- | |- | ||
|suppressrevision | |suppressrevision | ||
− | |suppressrevision - 119 | + | |suppressrevision - 119 '''Prior to [[rev:35303|1.13]] this right was named hiderevision''' (''not available by default'') |
|- | |- | ||
|userrights-interwiki | |userrights-interwiki | ||
Line 459: | Line 459: | ||
|- | |- | ||
|viewsuppressed | |viewsuppressed | ||
− | |viewsuppressed - 120 | + | |viewsuppressed - 120 i.e. a more narrow alternative to "suppressrevision" (''not available by default'') |
|- | |- | ||
!Administration | !Administration | ||
|siteadmin | |siteadmin | ||
− | |siteadmin - 124 | + | |siteadmin - 124 which blocks all interactions with the web site except viewing. 125 Disabled by default |
|} | |} | ||
Revision as of 00:16, 3 October 2018
MediaWiki (hereinafter, the Software) is a free and open-source wiki software. The Software was originally developed for Wikipedia, but now the Software runs on many websites and has become the dominant software in its category. The Software is written in the PHP programming language and stores the contents into a set of databases.
The software is optimized to efficiently handle large projects, which can have terabytes of content and hundreds of thousands of hits per second. According to MediaWiki, achieving scalability through multiple layers of caching and database replication has been a major concern for developers. The software has more than 900 configuration settings and more than 1,900 extensions available for enabling various features to be added or changed.
On Wikipedia alone, more than 1000 automated and semi-automated bots and other tools have been developed to assist in editing. It has also been deployed by some companies as an internal knowledge management system, and some educators have assigned students to use the Software for collaborative group projects.
Contents
Permitted user roles
Permitted user roles are specific access and ability permissions that can be assigned to customizable user groups.
Any user
- Any user (including anonymous) is permitted to use the following functions in the version of the Software that is used for CNM Wikiware.
Category Right Description User groups that have this right Reading read When set to false, override for specific pages with WhitelistRead *, user Editing createaccount createaccount - register / registration *, sysop createpage createpage - requires the edit right *, user createtalk createtalk - requires the edit right *, user edit edit *, user Management editmyoptions editmyoptions * editmyprivateinfo editmyprivateinfo * editmyusercss editmyusercss * editmyuserjs editmyuserjs * editmywatchlist editmywatchlist * viewmyprivateinfo viewmyprivateinfo * viewmywatchlist viewmywatchlist * Technical writeapi writeapi *, user, bot
Registered user
- Any user with his or her registered account, when he or she is identified, is permitted to use the following functions in the version of the Software that is used for CNM Wikiware.
Category Right Description User groups that have this right Reading read When set to false, override for specific pages with WhitelistRead *, user Editing applychangetags applychangetags user createpage createpage - requires the edit right *, user createtalk createtalk - requires the edit right *, user edit edit *, user upload upload - 73 requires the edit right user, sysop reupload reupload - 74 requires the upload right user, sysop reupload-shared reupload-shared - 76 (if one is set up) with local files 211 (requires the upload right) user, sysop sendemail sendemail user Management changetags changetags - currently unused by extensions user editmyuserjson editmyuserjson user Technical minoredit minoredit user purge purge - URL parameter user writeapi writeapi *, user, bot
Autoconfirmed
- Any user with his or her registered account, when he or she is identified, (1) confirmed that his or her age confirms requirements established by the Software and has at least as many edits as established by the Software, is permitted to use the following functions in the version of the Software that is used for CNM Wikiware.
Category Right Description User groups that have this right Editing editsemiprotected editsemiprotected - without cascading protection autoconfirmed, sysop Technical autoconfirmed autoconfirmed - used for the 'autoconfirmed' group, see the other table below for more information autoconfirmed, bot, sysop
Bot
accounts with the bot right (intended for automated scripts). |autoconfirmed, autopatrol, apihighlimits, bot, editsemiprotected, nominornewtalk, suppressredirect, writeapi
Category Right Description User groups that have this right Administration autopatrol autopatrol - $wgUseRCPatrol must be true bot, sysop Technical apihighlimits apihighlimits bot, sysop autoconfirmed autoconfirmed - used for the 'autoconfirmed' group, see the other table below for more information autoconfirmed, bot, sysop bot bot - can optionally be viewed bot nominornewtalk nominornewtalk - requires minor edit right bot suppressredirect suppressredirect bot, sysop writeapi writeapi *, user, bot
Sysop
users who by default can delete and restore pages, block and unblock users, et cetera.
Category Right Description User groups that have this right Editing editprotected editprotected - without cascading protection sysop editsemiprotected editsemiprotected - without cascading protection autoconfirmed, sysop createaccount createaccount - register / registration *, sysop move move - 68 requires the edit right user move-categorypages move-categorypages - requires the move right user move-rootuserpages move-rootuserpages - requires the move right user move-subpages move-subpages - requires the move right user movefile movefile - requires the move right and $wgAllowImageMoving to be true user upload upload - requires the edit right user, sysop upload_by_url upload_by_url - requires the upload right sysop reupload reupload - requires the upload right user, sysop reupload-shared reupload-shared - (if one is set up) with local files 211 (requires the upload right) user, sysop Management bigdelete bigdelete sysop block block - Block options include preventing editing and registering new accounts, and autoblocking other users on the same IP address sysop blockemail blockemail - allows preventing use of the Special:Emailuser interface when blocking sysop browsearchive browsearchive - through Special:Undelete sysop delete allows the deletion or undeletion of pages. For undeletions, there is now the 'undelete' right, see below sysop deletedhistory deletedhistory sysop deletedtext deletedtext sysop editinterface editinterface - contains [[<tvar|man>Special:MyLanguage/Manual:Interface</>|interface messages]] sysop, interface-admin markbotedits markbotedits - see [[<tvar|man>Special:MyLanguage/Manual:Administrators#Rollback</>|Manual:Administrators#Rollback]] sysop mergehistory mergehistory sysop patrol patrol - $wgUseRCPatrol must be true sysop protect protect sysop rollback rollback sysop unblockself unblockself - 96 Without it, an administrator that has the capability to block cannot unblock themselves if blocked by another administrator sysop undelete undelete sysop editsitecss editsitecss sysop editsitejs editsitejs sysop Administration autopatrol UseRCPatrol>{{ll|Manual:$wgUseRCPatrol|$wgUseRCPatrol</> must be true bot, sysop import import - 126 “transwiki” sysop importupload importupload - 128 This right was called 'importraw' in and before version 1.5 sysop managechangetags managechangetags - 132 currently unused by extensions sysop unwatchedpages unwatchedpages - 131 lists pages that no user has watchlisted sysop Technical apihighlimits apihighlimits bot, sysop autoconfirmed autoconfirmed - 145 used for the 'autoconfirmed' group, see the other table below for more information autoconfirmed, bot, sysop ipblock-exempt ipblock-exempt sysop noratelimit noratelimit - 138 not affected by [[<tvar|man>Special:MyLanguage/Manual:$wgRateLimits</>|rate limits]] (prior to the introduction of this right, the configuration variable <tvar|RateLimitsExcludedGroups>{{ll|Manual:$wgRateLimitsExcludedGroups|$wgRateLimitsExcludedGroups</> was used for this purpose) sysop, bureaucrat suppressredirect suppressredirect bot, sysop
Bureaucrat
Users who by default can change other users' rights.
Category Right Description User groups that have this right Management userrights AddGroups>{{ll|Manual:$wgAddGroups|$wgAddGroups</> and <tvar|RemoveGroups>{{ll|Manual:$wgRemoveGroups|$wgRemoveGroups</> you can set the possibility to add/remove certain groups instead of all bureaucrat Administration noratelimit Not affected by [[<tvar|man>Special:MyLanguage/Manual:$wgRateLimits</>|rate limits]] (prior to the introduction of this right, the configuration variable <tvar|RateLimitsExcludedGroups>{{ll|Manual:$wgRateLimitsExcludedGroups|$wgRateLimitsExcludedGroups</> was used for this purpose) sysop, bureaucrat
Legacy functions and roles
Category Right Description User groups that have this right Editing autocreateaccount autocreateaccount - 210 a more limited version of createaccount reupload-own reupload>reupload right) Management deletelogentry deletelogentry - 121 allows deleting/undeleting information (action text, summary, user who made the action) of specific log entries (not available by default) deleterevision deleterevision - 122 allows deleting/undeleting information (revision text, edit summary, user who made the edit) of specific revisions 123 Split into deleterevision and deletelogentry in 1.20 (not available by default) editcontentmodel editcontentmodel editinterface editinterface - 106 contains [[<tvar|man>Special:MyLanguage/Manual:Interface</>|interface messages]] sysop, interface-admin editsitejson editsitejson interface-admin edituserjson edituserjson interface-admin hideuser HideUserContribLimit>{{wg|HideUserContribLimit</> to disable. pagelang PageLanguageUseDB>{{ll|Manual:$wgPageLanguageUseDB|$wgPageLanguageUseDB</> must be true patrolmarks patrolmarks suppressionlog suppressionlog suppressrevision suppressrevision - 119 Prior to 1.13 this right was named hiderevision (not available by default) userrights-interwiki userrights-interwiki viewsuppressed viewsuppressed - 120 i.e. a more narrow alternative to "suppressrevision" (not available by default) Administration siteadmin siteadmin - 124 which blocks all interactions with the web site except viewing. 125 Disabled by default
Security
As any open-source software, the Wiki is vulnerable to external attacks:
- https://www.mediawiki.org/wiki/Manual:Security
- https://www.mediawiki.org/wiki/Security_for_developers