Manual dos stewards
Grupos de usuários e ajustes de direitos
Wikis únicas
Stewards podem usar a página Special:UserRights no Meta para ajustar o acesso de usuários em qualquer projeto da Wikimedia, marcando ou desmarcando grupos específicos. A cada grupo é atribuído um conjunto de direitos na configuração do MediaWiki, listado em Special:ListGroupRights em cada wiki.
- Insira o nome de usuário.
- O formato deve ser “Nome de usuário@prefixo do banco de dados” (para usuários em outras wikis) ou “Nome de usuário” (para usuários no Meta).
- A primeira letra do nome deve estar em letra maiúscula (a menos que a wiki seja case sensitive às primeiras letras).
- O prefixo do banco de dados consiste do código de idioma para wikis com subdomínios (substituindo hifens por barras inferiores), seguido pelo prefixo do projeto exibido abaixo.
- Clique em “Edit user groups”. Uma nova caixa aparecerá mostrando a quais grupos o usuário pertence e quais estão disponíveis.
- Reatribua os grupos.
- Para atribuir a um novo grupo, marque o grupo apropriado.
- Para remover de um grupo, desmarque o grupo apropriado.
- Se a atribuição foi por um período limitado de tempo, escolha a duração apropriada do menu em cascata.
- Clique em “Save user groups”.
Prefixos do banco de dados
Os prefixos para os projetos principais são exibidos abaixo. Para outros, veja a lista completa. Note que hifens (-) devem ser substituídos por barras inferiores (_), então, por exemplo, cbk_zamwiki
é o nome do banco de dados para cbk-zam.wikipedia.org.
projeto | prefixo | |
---|---|---|
Wikis multilíngues | ||
Wikimedia Commons | commonswiki | |
Administração da Fundação Wikimedia | foundationwiki | |
Wikifunções | wikifunctionswiki | |
Wikimedia Incubator | incubatorwiki | |
MediaWiki | mediawikiwiki | |
Wikisource multilingue | sourceswiki | |
Wikipédia de Testes | testwiki | |
Wikipédia de Testes 2 | test2wiki | |
Testes Wikidata | testwikidatawiki | |
Wikidata | wikidatawiki | |
Wikispecies | specieswiki | |
Wikis com subdomínios | ||
Wikilivros | codewikibooks | |
Wikinotícias | codewikinews | |
Wikipédia | codewiki | |
Wikiquote | codewikiquote | |
Wikisource | codewikisource | |
Wikiversidade | codewikiversity | |
Wikivoyage | codewikivoyage | |
Wikcionário | codewiktionary |
Exemplos:
Wikipédia em inglês | Billy@enwiki |
Wikiversidade em francês | Billy@frwikiversity |
Wikipédia em chinês literário | Billy@zh_classicalwiki |
Wikisource multilingue | Billy@sourceswiki |
Permissões
Os seguintes grupos podem ser manipulados (entre outros em algumas wikis):
- Não restritos:
- Restritos
- Verificadores – – sujeito à política de verificador de contas e à política de acesso a dados pessoais não públicos . Veja abaixo para detalhes.
- Supervisores – – sujeito à política de supressor e à política de acesso a dados pessoais não públicos . Veja abaixo para detalhes.
- Rigorosamente restritos
- Steward – não manipule a sinalização steward em qualquer wiki que não o Meta, e apenas após uma eleição dos mesmos ou uma resignação.
- Meta:WMF Office IT – não manipule essa sinalização em qualquer usuário, a menos quando a pedido da Fundação Wikimedia.
- Meta:WMF Support and Safety – não manipule essa sinalização em qualquer usuário, a menos quando a pedido da Fundação Wikimedia.
Problemas de codificação
Muitos navegadores têm dificuldade em manipular nomes de usuários em caracteres não latinos. Há duas maneiras de resolver esse problema:
- Inserindo o nome codificado a partir da URL
- Primeiro, obtenha o nome codificado na URL:
- Copie-o da barra de endereço do seu navegador enquanto visualiza a página do usuário; ou
- Digite "
{{urlencode:{{PAGENAME}}}}
" na página do usuário, veja a previsão e copie o texto
- Vá para Special:Userrights, e na barra de endereço, adicione "?user=" seguido do nome codificado. Por exemplo,
http://meta.wikimedia.org/wiki/Special:Userrights?user=Foo+Bar
.
- Primeiro, obtenha o nome codificado na URL:
- Inserindo o ID do usuário (p. ex., "#55@frwiki" p/ o usuário #55 na Wikipédia francófona)
- Peça a um administrador de sistema no #wikimedia-techconectar
- Use a API com um query como este
- Se o usuário ter editado naquela wiki, exporte a última revisão, e procure pelo número dentro de "
<id></id>
" em "<contributor>
" (certifique-se de que esse não é o ID da revisão sob "<revision>
")
Globalmente e wiki sets
Contas globais tem o mesmo nome e senha reservados em todas as wikis públicas da Wikimedia (exceto contas locais desanexadas previamente existentes). À essas contas podem ser atribuídos grupos globais, que concedem ao usuário certos direitos em todas as wikis (dentro de um wikiset específico) onde a conta global pode efetuar login.
Note que um direito é um acesso específico (como "edit-interface"), e não pode ser atribuído a um usuário diretamente; um "grupo" é uma junção abstrata de direitos (como "steward").
Gerenciando grupos
Stewards podem criar, editar ou excluir grupos globais usando Special:GlobalGroupPermissions. O escopo de cada grupo pode ser global (todas as wikis públicas), ou definido em uma lista específica de wikis.
- Editar:
- Na aba "Existing groups", clique em "View and edit permissions" para o grupo que você quer editar.
- Uma lista de possíveis direitos irá aparecer (ver também mw:Help:User rights). Marque os direitos que o grupo deve ter e desmarque aqueles que não deve possuir.
- Se o grupo precisa de acesso em wikis específicas (não globalmente), selecione o wikiset na lista suspensa acima da lista de direitos (ver Managing sets of wikis).
- Insira a razão da mudança na caixa de texto abaixo.
- Clique em "Save changes to group permissions". As mudanças serão aplicadas imediatamente.
- Criar:
- Digite o nome do grupo na caixa de texto "Create a new group".
- Clique em "Assign permissions".
- Marque pelo menos um direito e, se aplicável, selecione o escopo (ver etapa 2 da seção editar acima).
- Crie as páginas necessárias no MediaWiki (ver :mw:Manual:User rights).
- Excluir:
- Desmarque todos os direitos (ver como editar acima).
- O grupo pode ser recriado depois, e todos os membros antigos recuperarão os mesmos direitos.
Gerenciando membros de grupos
Stewards can edit global accounts' membership using Special:GlobalGroupMembership. Placing a global account in global groups will give them all the rights assigned to that group on all public wikis.
- Enter the global account's user name in the textbox.
- Select a wiki where they have a local account from the drop-down menu.
- Click "Edit user groups". A "Edit user groups" box will appear below.
- Check the global groups to assign. (Even if they are similarly named, global and local groups are not necessarily identical!)
- Enter the reason for the change in the textbox.
- Click "Save User Groups".
Managing sets of wikis (for global groups)
Stewards can define "wiki sets" using Special:WikiSets, lists of wikis where global groups can be given access (instead of globally). It's not necessary to create a set of all wikis: that is the default for global groups if no set is selected.
- If you're creating a new set, click "Create a new set". Otherwise, click "view/edit" beside the name of the existing set to edit.
- Enter the set's name in the "name" box. This is for the convenience of stewards, and can be changed any time.
- Select the appropriate type in the "type" box (opt-in or opt-out).
- Enter the database prefixes, one per line, in the "wiki" box.
- Enter the summary or reason for your change, which will appear in the global rights log.
Managing global accounts
Stewards can access unification information about a particular global account, unattach local accounts from the global account, delete the global account (restoring all local accounts), and lock out access to the account using Special:CentralAuth (see logs).
Bug: Special:CentralAuth can only hide the global account (see bug 14476). An option to hide local accounts when using the CentralAuth can be enabled with the gadget in Special:Preferences#mw-prefsection-gadgets.
Global account renaming
Global accounts can be renamed (see the help page). If a user would like a new username, they should use the following process:
- Check availability of the new name with a tool such as CentralAuth. If there are existing accounts with that name that have contributions, especially across multiple projects, the user is encouraged to select a different name, as usurping users with significant contributions is not likely.
- Request a username change on SRUC.
Note that global renames should be done in accordance with the global rename policy.
Global account deletion
Stewards can, via Special:CentralAuth, delete global accounts. This should only be done when there is a compelling reason. Requests such as "I don't want it" are not sufficient to warrant a deletion.
- Requests to delete the global accounts of vandals should not be performed at all, as this would interfere with the ability to lock the account in case of a spread of the abuse.
- Users should be warned that preferences (including passwords and email addresses) will be reset to their pre-merge values and that they will lose any global group membership which they previously had. Local accounts will not be otherwise affected and cannot be deleted.
- Some bot owners may request a deletion of the global account if it interferes with proper functioning of the bot. Of course, non-unified bots are not eligible for the "global bot" flag, and if the bot login password has changed during the time it was unified, that password will be reset to the pre-unification password.
- Warning: Once a global account is deleted, it cannot be reversed by stewards (see also bug T25243).
Unmerging local accounts from the global account
If a local project wishes to rename a vandal account, unmerge only that project from the vandal's global account, even if it's the only project in the global account. If there is a valid reason to not want the global account to be visible after the rename, the global account should be hidden instead of deleted, as deleting it would simply open that account name to recreation.
Global access restriction
IP address blocks
Stewards can block IP addresses and CIDR ranges (up to /16 in size for IPv4, up to /32 for IPv6) on all public Wikimedia wikis using Special:GlobalBlock, and remove a global block using Special:GlobalUnblock (see guidelines at Global blocking). Current global blocks are listed on Special:GlobalBlockList and logged on Special:Log/gblblock.
Globally blocked IPs cannot edit any page on any wiki except MetaWiki (which allows users to appeal on Meta). When a global block conflicts with a local block, the strongest block will apply; for example, a global anonymous-only block will be overridden by a local full block.
Local administrators can unblock a globally-blocked address on single wikis using Special:GlobalBlockWhitelist on those wikis, and customize the error message using MediaWiki:Globalblocking-blocked.
Global account lock (& hide)
See "Managing global accounts" above.
Global abuse filter
Since July 2013, stewards can create abuse filters on MetaWiki (Special:AbuseFilter) and then mark them as global; however, these global filters only apply to some wikis. See "Global AbuseFilter" for the current status of this tool. See here for some proposed guidelines during this phase of Global AbuseFilter deployment.
Guidelines for processing requests
Acesso de usuário
- Check the Steward requests/Permissions page regularly
- Check that the procedure on that page has been followed and that the request does not violate any policies or guidelines (see the following sections for details).
- If the request is valid, fulfill it using Special:Userrights (see above for instructions).
- Mark the request as fulfilled (this is most often done with {{done}}) or rejected ({{not done}}) as appropriate.
- You can optionally tell the user, preferably on his own wiki, that he is now an admin and/or bureaucrat and invite him to join the admin channel by using Template:Invite.
- Leave the request on Steward requests/Permissions to allow follow-up comments and questions. It will be moved into the archive by a bot.
Aviso geral
- Checking facts: If a user claims they already have a certain right, you can verify this by checking Special:Listusers on the local project. If the steward has any doubts about the request, they should discuss with one or more regular users of the local project.
- Promoting very new users: There is no approved policy regarding the promotion of very new users for projects with no local community. New users should generally not be given rights until they have spent more time editing projects. However, stewards might grant new users temporary rights until a community has time to build up, at which point it can hold a vote to confirm the user's status.
Direitos de administrador e burocrata
- If the wiki has a community, the community should have approved the user's request, generally on a local request page. The user should wait at least a week—perhaps two if the community is very small—before placing their request on Meta.
- If the wiki has no community, or if it has too few active users to hold a meaningful discussion of the issue, it is probably advisable to grant temporary rather than permanent rights. Three months is a common period for temporary rights.
- Be sure the community does not already have a local bureaucrat. Stewards should only grant administrator and bureaucrat requests on wikis with no local bureaucrats. The only exception to this is if all local bureaucrats have been inactive for a period of time.
Direitos de CheckUser
- Read the CheckUser policy carefully. Pay particular attention to the Access section, which specifies several important rules regarding the bestowal of this status. The use of this tool can have legal implications, so knowing and following the policy is of the utmost importance. Breach of the rules in this policy may result in removal of steward rights.
- Send this e-mail to the user to request that they sign the Confidentiality agreement for nonpublic information with the Wikimedia Foundation, record on the request page that the mail has been sent.
- If the user claims to have already signed the confidentiality agreement with the Foundation, check the Access to nonpublic personal data policy noticeboard or ask for confirmation of this fact from the Trust and Safety team.
- Grant rights only after receiving confirmation from the Wikimedia Foundation that the confidentiality agreement has been signed.
- After granting access, list the user in the appropriate section on CheckUser.
- Ask the user to subscribe to checkuser-l, and notify the listadmins that the user has been approved.
Direitos de oversight
- Read the policy at Oversight policy carefully. Pay particular attention to the Access section, which specifies several important rules regarding the bestowal of this status. The use of this tool can have legal implications, so knowing and following the policy is of the utmost importance. Breach of the rules in this policy may result in removal of steward rights.
- On the English Wikipedia, only the Arbitration Committee can approve a request for this status.
- Send this e-mail to the user to request that they sign the Confidentiality agreement for nonpublic information with the Wikimedia Foundation, record on the request page that the mail has been sent.
- If the user claims to have already signed the confidentiality agreement with the Foundation, check the Access to nonpublic personal data policy noticeboard or ask for confirmation of this fact from the Trust and Safety team
- Grant rights only after receiving confirmation from the Wikimedia Foundation that the confidentiality agreement has been signed.
- After granting access, list the user at Oversight policy/User list.
Remoção de acesso
- If a user requests that his or her own rights be removed, it is generally put on hold for some time (usually 24 hours) to allow the user to change their mind if they wish to do so.
- If a user requests that another user's rights be removed, be sure that the action complies with the local wiki's policy on removal of rights. This will often involve sifting through a lengthy debate on a local request page to confirm the validity of the procedure.
- After removing a user's checkuser or oversight rights, do not forget to remove them from the corresponding lists.
Direitos temporários
- The precise duration is a matter of discretion; three months and six months appear to be the most common.
- A bot will move the section to Steward requests/Permissions/Approved temporary if you use the {{Systmp}} to state when the rights will be removed.
Informações de CheckUser
- See Steward requests/Checkuser.
- If local checkusers exist in a project, checks should generally be handled by those. In emergencies or for multi-project checkuser checks as in the case of cross-wiki vandalism stewards may perform local checks. Stewards should remove checkuser access on the projects upon completion of the checks and notify the local checkusers or checkuser email list. (from the official CheckUser policy page).
- Stewards may checkuser on loginwiki as a form of long-requested "cross-wiki checkusering" (link).
- Note: The German Wikipedia requests that absolutely all CheckUser queries must be announced on de:Wikipedia:Checkuser/Anfragen (please ask the local users with access if you need help with formulation, or with precisely what should be published).
Outras atribuições dos stewards
- Ideally, one or several stewards should be 'on duty' in the #wikimedia-stewardsconectar IRC channel at any given time. Users of small wikis are encouraged to use this channel to report emergencies, but it has also been used for conversation about and among stewards, and for discussion of routine matters.
- We have a VRT queue, ideally at least one steward should review and sort the incoming queue at least once a day.
Predefinições de e-mail
To be sent to users with access to private data:
Comunicação com outros stewards
Mailing list: There is a private stewards mailing list, for discussions of policy and private requests. Please be advised that some mail services might mark some mail as "Spam". For instance, when using Gmail, it may be useful to setup a filter, instructing the service to avoid marking mails that are addressed "To: stewards-l@lists.wikimedia.org", checking the box "Never send it to Spam".
IRC: The public #wikimedia-stewardsconectar channel is a place to ask for help, announce emergencies, or discuss ongoing events with stewards and others. stewardbot
will flag stewards' attention in the channel if you say @steward
for routine requests and !steward
for urgent requests.
Meta: High-level discussion about policy and other wikis takes place on the Stewards’ noticeboard and Babel.
Ferramentas e alertas sobre bugs
- See also Admin tools development.
- and Phabricator for stewards
Ferramentas
- user or wiki activity
-
- CrossActivity: one user's edit/sysop/bureaucrat activity on all wikis.
- Stewardry: sysops/bureaucrats/checkusers/oversighters on a wiki by date of last activity (log and edits).
- Steward activity statistics: times of the last log actions per steward.[dead link]
- User contributions: contributions and block status on all wikis for the given user name.
- Event Streams: Filter and get notified above events across all wikis in real time.
- other
-
- CrossBlock: block status of given IP, CIDR range, or user on all wikis with links to prefilled block/unblock forms.
- gUserSearch: search and filter global accounts by exact, partial, or regex match.
- SULutil and Stalktoy: information about a given global account, and information and unification status for each local account with that name.
- SULWatcher - Reports: reports and logs of SULWatcher's monitoring of account unifications.
- Steward requests: overview of open steward requests.
- JavaScript
-
- StewardScript: adds shortcuts to the Meta interface for quicker stewarding.
- hideuser: allows quickly crosswiki local-hiding of globally locked & hidden accounts; available on the gadgets tab of Special:Preferences
- IRC
-
- StewardBot: a Python script which accepts commands from authorized stewards on IRC and performs utility operations related to steward activities.