Interface administrators: Difference between revisions
derived from metawikimedia:Interface administrators |
update; crats can add/remove |
||
| (One intermediate revision by the same user not shown) | |||
| Line 4: | Line 4: | ||
Editing CSS/JS that gets executed in other users' browsers is very powerful and potentially dangerous in the hands of a malicious user; interface administrators should be users who are highly trusted, have at least a basic understanding of CSS and JS, are aware of the privacy expectations of wikis, and have a good understanding of account security. | Editing CSS/JS that gets executed in other users' browsers is very powerful and potentially dangerous in the hands of a malicious user; interface administrators should be users who are highly trusted, have at least a basic understanding of CSS and JS, are aware of the privacy expectations of wikis, and have a good understanding of account security. | ||
== | == Appointment == | ||
Interface administrators are appointed by local community consensus. As a matter of global policy, they are required to enable [[Help:2FA|two-factor authentication]]. After that, a user with the appropriate permissions will add the technical flag. | |||
=== By bureaucrats === | |||
On wikis that have bureaucrats, interface administrators can be added by the bureaucrats. | |||
=== By Stewards === | |||
On wikis with no active bureaucrats, the Stewards will grant interface administrator access. In addition to local policies and consensus and the authentication requirement, Stewards use the following criteria when deciding whether or not to grant access: | |||
* Interface administrator access may be granted either temporarily or indefinitely. | * Interface administrator access may be granted either temporarily or indefinitely. | ||
* Appointments will be made by local community discussion. If any reasonable objections were raised in the local discussion, there must be broad consensus to grant access. | * Appointments will be made by local community discussion. If any reasonable objections were raised in the local discussion, there must be broad consensus to grant access. | ||
* All users | * All users granted interface administrator access by Stewards must be a local administrator. | ||
* | ** Exceptions to this criterion are possible for non-administrator bot accounts operated by administrators. | ||
* ''For indefinite access:'' The wiki must be large enough to require permanent interface administrators. Stewards will make the final determination of this point based on criteria including the size of the community and the frequency of CSS/JS edits being necessary. | * ''For indefinite access:'' The wiki must be large enough to require permanent interface administrators. Stewards will make the final determination of this point based on criteria including the size of the community and the frequency of CSS/JS edits being necessary. | ||
== Removal == | |||
On wikis with no active bureaucrats, Stewards will remove interface administrator access in the following cases: | |||
* When an interface administrator has resigned. | |||
* When an account does not meet or no longer meets the two-factor authentication requirement. | |||
* When an account appears to be compromised. | |||
* When an interface administrator is making suspicious, malicious, or inappropriate edits to the interface. | |||
* According to the [[inactivity policy]] (no local edits or logged actions for 1 year). | |||
* According to local policy. | |||
* According to local consensus to remove the permission. | |||
Even if there are active bureaucrats, Stewards can use their discretion to remove the permission (a) when the authentication requirement is not met and no bureaucrat action is forthcoming, or (b) in emergencies to protect the best interests of the WickedGov sites. | |||
Latest revision as of 22:09, 14 April 2025
 | This page documents an official global policy. It represents broad consensus, and compliance is mandatory for all projects. It should not be modified without prior community approval. |
Interface administrators are local users with the ability to edit sitewide CSS and JS pages and other users' personal CSS/JS pages.
Editing CSS/JS that gets executed in other users' browsers is very powerful and potentially dangerous in the hands of a malicious user; interface administrators should be users who are highly trusted, have at least a basic understanding of CSS and JS, are aware of the privacy expectations of wikis, and have a good understanding of account security.
Appointment[edit | edit source]
Interface administrators are appointed by local community consensus. As a matter of global policy, they are required to enable two-factor authentication. After that, a user with the appropriate permissions will add the technical flag.
By bureaucrats[edit | edit source]
On wikis that have bureaucrats, interface administrators can be added by the bureaucrats.
By Stewards[edit | edit source]
On wikis with no active bureaucrats, the Stewards will grant interface administrator access. In addition to local policies and consensus and the authentication requirement, Stewards use the following criteria when deciding whether or not to grant access:
- Interface administrator access may be granted either temporarily or indefinitely.
- Appointments will be made by local community discussion. If any reasonable objections were raised in the local discussion, there must be broad consensus to grant access.
- All users granted interface administrator access by Stewards must be a local administrator.
- Exceptions to this criterion are possible for non-administrator bot accounts operated by administrators.
- For indefinite access: The wiki must be large enough to require permanent interface administrators. Stewards will make the final determination of this point based on criteria including the size of the community and the frequency of CSS/JS edits being necessary.
Removal[edit | edit source]
On wikis with no active bureaucrats, Stewards will remove interface administrator access in the following cases:
- When an interface administrator has resigned.
- When an account does not meet or no longer meets the two-factor authentication requirement.
- When an account appears to be compromised.
- When an interface administrator is making suspicious, malicious, or inappropriate edits to the interface.
- According to the inactivity policy (no local edits or logged actions for 1 year).
- According to local policy.
- According to local consensus to remove the permission.
Even if there are active bureaucrats, Stewards can use their discretion to remove the permission (a) when the authentication requirement is not met and no bureaucrat action is forthcoming, or (b) in emergencies to protect the best interests of the WickedGov sites.