User rights: Difference between revisions

1. User rights

User rights are a fundamental aspect of managing any wiki built on the MediaWiki software, including Wikipedia, Wikibooks, and countless other collaborative platforms. They define what actions a user is permitted to perform on a wiki, controlling everything from simple editing to complex administrative tasks. Understanding user rights is crucial for both users wanting to contribute and administrators maintaining the integrity and security of the wiki. This article provides a comprehensive overview of user rights in MediaWiki 1.40, aimed at beginners.

== What are User Rights?

At its core, a user right is a permission that allows a user to perform a specific action. Without the necessary rights, a user will be unable to perform that action, and the wiki software will typically present an error message or disable the relevant functionality. These rights are assigned to users by administrators or those with the appropriate permissions to manage user accounts.

The MediaWiki software uses a system of named rights, each corresponding to a specific capability. These rights are grouped and combined to create different user levels with varying degrees of access. Think of it like building blocks; a user’s overall permission level is built up by assigning them individual rights.

== Standard User Rights

Most wikis have a default set of user rights that are automatically assigned to new, registered users. These rights typically allow basic participation in the community. Here's a breakdown of common standard rights:

• **read:** This is the most basic right. It allows a user to view wiki pages. Almost all users, even anonymous ones, have this right.
• **edit:** This right grants a user the ability to edit existing wiki pages. This is the cornerstone of collaborative editing.
• **create:** Allows a user to create new wiki pages. Often coupled with 'edit', this enables users to contribute new content.
• **revisions:** Allows a user to view the history of a page, examining previous revisions.
• **move:** Allows a user to rename pages. This is a powerful right that requires careful consideration.
• **upload:** Allows a user to upload files (images, documents, etc.) to the wiki. Often subject to restrictions regarding file types and size.
• **anonedit:** This is a special right, usually *not* granted to registered users. It allows anonymous users (those not logged in) to edit pages. Most wikis disable this for registered users to encourage accountability.
• **createaccount:** This allows a user to create new accounts. Often disabled or restricted to prevent spam account creation.
• **sendemail:** Allows a user to send emails to other users through the wiki’s email system. Requires proper email configuration on the server.
• **patrol:** Allows a user to mark edits as patrolled, indicating that they have been reviewed and are acceptable. Important for maintaining quality.

These rights form the basis for a typical contributor’s experience. However, more advanced rights are required for managing the wiki and ensuring its smooth operation.

== Advanced User Rights

These rights are typically reserved for trusted users and administrators. They carry significant responsibility and should be granted cautiously.

• **delete:** Allows a user to delete wiki pages. This is a very powerful right and should only be granted to experienced administrators. Deleted pages can sometimes be recovered, but it’s best to avoid unnecessary deletions.
• **undelete:** Allows a user to restore previously deleted pages. Often paired with ‘delete’ for administrators.
• **protect:** Allows a user to protect pages, preventing others from editing them. Used to safeguard important or frequently vandalized pages. There are different levels of protection (full protection, semi-protection, etc.). See Help:Protecting pages for more details.
• **unprotect:** Allows a user to remove protection from pages.
• **block:** Allows a user to block other users, preventing them from editing the wiki. Used to combat vandalism and disruptive behavior.
• **unblock:** Allows a user to remove a block from another user.
• **browsearchange:** Allows a user to view changes made by other users, even if they don't have direct access to those pages. Useful for monitoring activity.
• **hideuser:** Allows a user to hide another user’s identity from the public. This is a sensitive right used in specific situations, such as dealing with harassment. Requires careful justification.
• **autopatrol:** Automatically marks a user's edits as patrolled. Given to trusted users who consistently make high-quality contributions. Related to Special:Patrol.
• **autoreview:** Automatically marks a user's edits as reviewed, bypassing the need for manual review. Similar to 'autopatrol' but applies to new pages as well.
• **nocreateaccount:** Prevents a user from creating new accounts. Useful for administrators to combat spam.
• **noratelimit:** Exempts a user from rate limits, allowing them to perform actions more frequently. Used for bots and trusted users.
• **skipcaptcha:** Allows a user to bypass CAPTCHAs. Useful for bots and trusted users.
• **grouprights:** Allows a user to manage user groups and their associated rights. This is a powerful administrative right. See Help:User groups for more information.

These rights are not exhaustive, and wikis can define custom rights depending on their specific needs.

== User Groups

MediaWiki utilizes the concept of user groups to simplify the management of user rights. Instead of assigning individual rights to each user, users are assigned to groups, and the rights are assigned to the groups. This makes administration much more efficient.

Common user groups include:

• **Users:** The default group for registered users. Typically has the standard user rights described above.
• **Sysops (Administrators):** The highest level of access. Typically has all advanced rights, allowing full control over the wiki.
• **Bureaucrats:** Have the ability to manage user groups and assign/remove administrative rights. Often have access to advanced configuration settings.
• **Rollbackers:** A specialized group with the ability to quickly revert vandalism.
• **Patrollers:** Users designated to review edits and mark them as patrolled.

Administrators can create custom user groups to meet the specific requirements of their wiki.

== Managing User Rights

User rights are managed through the Special:UserRights page. Only users with the ‘userrights’ right can access this page. From there, administrators can:

• **Assign rights to individual users:** Select a user and check the boxes next to the rights you want to grant them.
• **Assign rights to user groups:** Modify the rights associated with a specific user group. Changes to a user group will automatically apply to all users in that group.
• **Revoke rights from users or groups:** Uncheck the boxes next to the rights you want to remove.

It's crucial to document *why* a user was granted a particular right. This provides a clear audit trail and helps with future decisions.

== Best Practices for Managing User Rights

• **Principle of Least Privilege:** Grant users only the rights they absolutely need to perform their tasks. Avoid giving unnecessary permissions.
• **Regular Audits:** Periodically review user rights to ensure they are still appropriate. Users may no longer need certain rights if their role has changed.
• **Documentation:** Maintain clear documentation of why users have been granted specific rights.
• **Transparency:** Communicate changes to user rights to the community.
• **Caution with Powerful Rights:** Be extremely careful when granting rights like ‘delete’, ‘block’, and ‘hideuser’.
• **Use User Groups:** Leverage user groups to simplify administration and maintain consistency.
• **Consider a Rights Request System:** Implement a system where users can request specific rights, providing a justification for their request.

== Troubleshooting Common Issues

• **User Can't Edit:** Verify the user is logged in and has the ‘edit’ right. Check if the page is protected.
• **User Can't Upload Files:** Verify the user has the ‘upload’ right and that the file type is allowed. Check the upload size limits.
• **User Can't Create Accounts:** Verify the ‘createaccount’ right is enabled and not restricted.
• **User Complaints About Missing Rights:** Review the user’s rights and grant the necessary permissions if appropriate.

== Further Resources

• Help:User rights - Official MediaWiki documentation on user rights.
• Help:User groups - Official MediaWiki documentation on user groups.
• Manual:Configuring email - Information on configuring email for sending emails through the wiki.
• Special:UserRights - The page for managing user rights.
• Special:ListUserRights - Lists the user rights assigned to a specific user.
• User Rights Configuration Settings – Deep dive into the configuration options.
• Rights Management Extension – An extension to improve user rights management.
• UserMerge Extension – For merging user accounts, useful when rights need to be consolidated.
• OAuth2 Extension – For external authentication, impacting user rights based on external provider.
• CentralAuth Extension – For centralized account management across multiple wikis.
• ConfirmEdit Extension – Requires confirmed users to edit, impacting edit rights.
• Spam Protection Extension – Reduces spam account creation, related to ‘createaccount’ rights.
• AbuseFilter Extension – Helps prevent vandalism and abuse, related to editing and creation rights.
• TitleBlacklist Extension – Prevents the creation of pages with specific titles, related to ‘create’ rights.
• WikiLove Extension – Encourages positive interactions, indirectly related to user behavior and rights.
• VisualDiff Extension – Helps review edits, related to ‘patrol’ and ‘autoreview’ rights.
• Semantic MediaWiki – Adds semantic data to pages, potentially requiring specific rights for data manipulation.
• Gadgets Extension – Allows users to add custom scripts, potentially requiring specific rights for script deployment.
• ParserFunctions Extension – Adds more powerful parsing capabilities, potentially requiring specific rights for complex expressions.
• Variables Extension – Allows the definition of variables, potentially requiring specific rights for variable management.
• CategoryTree Extension – Improves category navigation, related to page organization and access.
• Interwiki Extension – Allows linking to other wikis, potentially impacting access control.
• LiquidThreads Extension – A discussion system, related to user interaction and permissions.
• UniversalTagging Extension – Adds tagging functionality, potentially requiring specific rights for tag management.
• Translate Extension – For managing translations, potentially requiring specific rights for translation editing.
• WatchlistExtended Extension – Enhances the watchlist functionality, related to monitoring changes.
• ConfirmAccount Extension – Requires account confirmation before editing, impacting edit rights.
• Authentication OATH Authentication Extension – Multi-factor authentication, increasing security and potentially impacting user access.

Special:MyUserRights lets you see your own rights. Remember to always exercise caution and responsibility when managing user rights.

Start Trading Now

Sign up at IQ Option (Minimum deposit $10) Open an account at Pocket Option (Minimum deposit $5)

Join Our Community

Subscribe to our Telegram channel @strategybin to receive: ✓ Daily trading signals ✓ Exclusive strategy analysis ✓ Market trend alerts ✓ Educational materials for beginners