Silvan_WMDE created this task. Silvan_WMDE added projects: Wikidata, Mismatch Finder (Mismatch Finder - sprint 1).
TASK DESCRIPTION Upon upload of a mismatch file, the system should check against an allow list that the uploading user has the "file upload" privilege. Uploads from users without that privilege should be rejected as "403 Forbidden". Management of the allow list by an admin user can be done via custom commands in Laravel's artisan console <https://laravel.com/docs/8.x/artisan#writing-commands> for now. It should include at least two mechanisms: - to display the current allow list and - to update it by providing a new list. This way, the upload privilege can be stored using Laravel Sanctum's token abilities <https://laravel.com/docs/8.x/sanctum#token-abilities>. Mechanisms to manage the allow list via an "admin API" or an "admin web UI" can be added later. TASK DETAIL https://phabricator.wikimedia.org/T286024 EMAIL PREFERENCES https://phabricator.wikimedia.org/settings/panel/emailpreferences/ To: Silvan_WMDE Cc: ItamarWMDE, Aklapper, Lydia_Pintscher, guergana.tzatchkova, Silvan_WMDE, karapayneWMDE, Invadibot, maantietaja, Akuckartz, Nandana, Lahi, Gq86, GoranSMilovanovic, QZanden, Esc3300, LawExplorer, _jensen, rosalieper, Scott_WUaS, Wikidata-bugs, aude, Mbch331
_______________________________________________ Wikidata-bugs mailing list -- [email protected] To unsubscribe send an email to [email protected]
