Bureaucrats: Difference between revisions

(10 intermediate revisions by the same user not shown)

Line 13:

On all wikis, bureaucrats have the ability to:</translate>

* <translate> Add the administrator and bureaucrat groups</translate>

* <translate> Add and remove the [[<tvar name="bots">Special:MyLanguage/Bots</tvar>|bot]], [[<tvar name="accountcreators">Special:MyLanguage/Account creators</tvar>|account creator]], and [[<tvar name="transwiki">Special:MyLanguage/Transwiki importers</tvar>|transwiki importer]] groups</translate>

* <translate> Add and remove the [[<tvar name="bots">Special:MyLanguage/Bots</tvar>|bot]], [[<tvar name="intadmin">Special:MyLanguage/Interface administrators</tvar>|interface administrator]], [[<tvar name="accountcreators">Special:MyLanguage/Account creators</tvar>|account creator]], and [[<tvar name="transwiki">Special:MyLanguage/Transwiki importers</tvar>|transwiki importer]] groups</translate>

* <translate> Add and remove most custom groups configured on that wiki according to local consensus</translate>

Line 20:

While bureaucrats on all wikis can ''grant'' administrator access, only some wikis are configured to allow bureaucrats to ''remove'' administrator access. These wikis are:</translate>

* <translate> [[<tvar name="enwickedgov">:w:</tvar>|WickedGov]] ~~(English)~~</translate>

* <translate> [[<tvar name="enwickedgov">:w:</tvar>|English WickedGov]]</translate>

* <translate> [[<tvar name="testwiki">:test:</tvar>|Test Wiki]]</translate>

On other wikis, administrator access removal is done by [[<tvar name="stewards">Special:MyLanguage/Stewards</tvar>|Stewards]].

=== Authentication checking ===

Bureaucrats have access to [[Special:VerifyOATHForUser]] on their respective wikis, allowing them to verify whether users have two-factor authentication enabled. These checks must ''only'' be conducted on users who (a) hold local permissions for which two-factor authentication is required, or (b) have requested and are likely to receive such permissions. Bureaucrats are expected to be careful and judicious with this access, and inappropriate use may result in revocation of the bureaucrat bit.

== Appointment ==

Bureaucrats are appointed by local community consensus. After that, a user with the appropriate permissions will add the technical flag.

Bureaucrats are appointed by local community consensus. As a matter of global policy, all bureaucrats must have [[Help:2FA|two-factor authentication]] enabled. After that, a user with the appropriate permissions will add the technical flag.

=== By other bureaucrats ===

Line 42:

Line 48:

* <translate> Appointments will be made by local community discussion, and there must be broad consensus to grant access.</translate>

* <translate> All users granted bureaucrat access by Stewards must be a permanent local administrator.</translate>

* <translate> All bureaucrats must have two-factor authentication enabled.</translate>

* <translate> The wiki must be large enough to require bureaucrats. Stewards will make the final determination of this point based on factors including the size of the community, the number of administrators and bots, and the frequency of permission changes being necessary.</translate>

== Removal ==

Line 49:

Line 57:

For security reasons, only Stewards can remove bureaucrat access. Bureaucrat access may be removed in emergencies, according to local policy/consensus, or according to the [[Special:MyLanguage/inactivity policy|inactivity policy]].

== ~~See also~~ ==

== Handbook ==

If you are a bureaucrat, to give or remove another user administrator, bureaucrat or bot access (or any other access), go to [[<tvar name="userrights">Special:UserRights</tvar>|Special:UserRights]] on the wiki where you are a bureaucrat. There is a link to this on the [[<tvar name="specialpages">Special:Specialpages</tvar>|list of special pages]].

Type the user's name into the box, and enter a reason for the change. Choose the rights you wish to assign/remove to the user by ticking/unticking the relevant boxes. Note that if the user group has an asterisk (*) next to it, you will not be able to remove it yourself. When you are done, press the ''<tvar name="saveusergroups">{{int:Saveusergroups}}</tvar>'' button.

The user will gain their access immediately, and the action will be recorded at the [[<tvar name="rightslog">Special:Log/rights</tvar>|user rights log]] of the wiki.

If you make a mistake and need to remove an access level which you cannot remove, contact a Steward.

</translate>

* <translate> [[Special:MyLanguage/Administrators/Handbook#User rights management|Administrators/Handbook § User rights management]]</translate>

@@ Line 13: / Line 13: @@
 On all wikis, bureaucrats have the ability to:</translate>
 * <translate><!--T:5--> Add the administrator and bureaucrat groups</translate>
-* <translate><!--T:6--> Add and remove the [[<tvar name="bots">Special:MyLanguage/Bots</tvar>|bot]], [[<tvar name="accountcreators">Special:MyLanguage/Account creators</tvar>|account creator]], and [[<tvar name="transwiki">Special:MyLanguage/Transwiki importers</tvar>|transwiki importer]] groups</translate>
+* <translate><!--T:6--> Add and remove the [[<tvar name="bots">Special:MyLanguage/Bots</tvar>|bot]], [[<tvar name="intadmin">Special:MyLanguage/Interface administrators</tvar>|interface administrator]], [[<tvar name="accountcreators">Special:MyLanguage/Account creators</tvar>|account creator]], and [[<tvar name="transwiki">Special:MyLanguage/Transwiki importers</tvar>|transwiki importer]] groups</translate>
 * <translate><!--T:7--> Add and remove most custom groups configured on that wiki according to local consensus</translate>
 <translate>
@@ Line 20: / Line 20: @@
 <!--T:9-->
 While bureaucrats on all wikis can ''grant'' administrator access, only some wikis are configured to allow bureaucrats to ''remove'' administrator access. These wikis are:</translate>
-* <translate><!--T:10--> [[<tvar name="enwickedgov">:w:</tvar>|WickedGov]] (English)</translate>
+* <translate><!--T:10--> [[<tvar name="enwickedgov">:w:</tvar>|English WickedGov]]</translate>
+* <translate><!--T:34--> [[<tvar name="testwiki">:test:</tvar>|Test Wiki]]</translate>
 <translate>
 <!--T:11-->
 On other wikis, administrator access removal is done by [[<tvar name="stewards">Special:MyLanguage/Stewards</tvar>|Stewards]].
+=== Authentication checking === <!--T:32-->
+<!--T:33-->
+Bureaucrats have access to [[Special:VerifyOATHForUser]] on their respective wikis, allowing them to verify whether users have two-factor authentication enabled. These checks must ''only'' be conducted on users who (a) hold local permissions for which two-factor authentication is required, or (b) have requested and are likely to receive such permissions. Bureaucrats are expected to be careful and judicious with this access, and inappropriate use may result in revocation of the bureaucrat bit.
 == Appointment == <!--T:12-->
 <!--T:13-->
-Bureaucrats are appointed by local community consensus. After that, a user with the appropriate permissions will add the technical flag.
+Bureaucrats are appointed by local community consensus. As a matter of global policy, all bureaucrats must have [[Help:2FA|two-factor authentication]] enabled. After that, a user with the appropriate permissions will add the technical flag.
 === By other bureaucrats === <!--T:14-->
@@ Line 42: / Line 48: @@
 * <translate><!--T:19--> Appointments will be made by local community discussion, and there must be broad consensus to grant access.</translate>
 * <translate><!--T:20--> All users granted bureaucrat access by Stewards must be a permanent local administrator.</translate>
+* <translate><!--T:31--> All bureaucrats must have two-factor authentication enabled.</translate>
 * <translate><!--T:21--> The wiki must be large enough to require bureaucrats. Stewards will make the final determination of this point based on factors including the size of the community, the number of administrators and bots, and the frequency of permission changes being necessary.</translate>
 <translate>
 == Removal == <!--T:22-->
@@ Line 49: / Line 57: @@
 For security reasons, only Stewards can remove bureaucrat access. Bureaucrat access may be removed in emergencies, according to local policy/consensus, or according to the [[Special:MyLanguage/inactivity policy|inactivity policy]].
-== See also == <!--T:24-->
+== Handbook == <!--T:26-->
+<!--T:27-->
+If you are a bureaucrat, to give or remove another user administrator, bureaucrat or bot access (or any other access), go to [[<tvar name="userrights">Special:UserRights</tvar>|Special:UserRights]] on the wiki where you are a bureaucrat. There is a link to this on the [[<tvar name="specialpages">Special:Specialpages</tvar>|list of special pages]].
+<!--T:28-->
+Type the user's name into the box, and enter a reason for the change. Choose the rights you wish to assign/remove to the user by ticking/unticking the relevant boxes. Note that if the user group has an asterisk (*) next to it, you will not be able to remove it yourself. When you are done, press the ''<tvar name="saveusergroups">{{int:Saveusergroups}}</tvar>'' button.
+<!--T:29-->
+The user will gain their access immediately, and the action will be recorded at the [[<tvar name="rightslog">Special:Log/rights</tvar>|user rights log]] of the wiki.
+<!--T:30-->
+If you make a mistake and need to remove an access level which you cannot remove, contact a Steward.
 </translate>
-* <translate><!--T:25--> [[Special:MyLanguage/Administrators/Handbook#User rights management|Administrators/Handbook § User rights management]]</translate>