Interface administrators: Difference between revisions
Jump to navigation
Jump to search
derived from metawikimedia:Interface administrators |
→Appointment: revise appointment section, add removal section Tag: Mobile |
||
| Line 4: | Line 4: | ||
Editing CSS/JS that gets executed in other users' browsers is very powerful and potentially dangerous in the hands of a malicious user; interface administrators should be users who are highly trusted, have at least a basic understanding of CSS and JS, are aware of the privacy expectations of wikis, and have a good understanding of account security. | Editing CSS/JS that gets executed in other users' browsers is very powerful and potentially dangerous in the hands of a malicious user; interface administrators should be users who are highly trusted, have at least a basic understanding of CSS and JS, are aware of the privacy expectations of wikis, and have a good understanding of account security. | ||
== | == Appointment == | ||
Interface administrators may be appointed on individual wikis, subject to the following rules: | Interface administrators may be appointed on individual wikis, subject to the following rules: | ||
| Line 11: | Line 11: | ||
* Appointments will be made by local community discussion. If any reasonable objections were raised in the local discussion, there must be broad consensus to grant access. | * Appointments will be made by local community discussion. If any reasonable objections were raised in the local discussion, there must be broad consensus to grant access. | ||
* All users applying for interface administrator access must be a local administrator. If a user's administrator access is removed, interface administrator access must also be removed. | * All users applying for interface administrator access must be a local administrator. If a user's administrator access is removed, interface administrator access must also be removed. | ||
** Exceptions to this criterion are possible for non-administrator bot accounts operated by administrators. | |||
* All interface administrators must have [[Help:2FA|two-factor authentication]] enabled. | * All interface administrators must have [[Help:2FA|two-factor authentication]] enabled. | ||
* ''For indefinite access:'' The wiki must be large enough to require permanent interface administrators. Stewards will make the final determination of this point based on criteria including the size of the community and the frequency of CSS/JS edits being necessary. | * ''For indefinite access:'' The wiki must be large enough to require permanent interface administrators. Stewards will make the final determination of this point based on criteria including the size of the community and the frequency of CSS/JS edits being necessary. | ||
== Removal == | |||
Stewards will remove interface administrator access in the following cases: | |||
* When an interface administrator has resigned. | |||
* When an account does not meet or no longer meets the two-factor authentication requirement. | |||
* When an account appears to be compromised. | |||
* When an interface administrator is making suspicious, malicious, or inappropriate edits to the interface. | |||
* According to the [[inactivity policy]] (no local edits or logged actions for 1 year). | |||
* According to local policy. | |||
* According to local consensus to remove the permission. | |||
Revision as of 02:43, 17 March 2025
 | This page documents an official global policy. It represents broad consensus, and compliance is mandatory for all projects. It should not be modified without prior community approval. |
Interface administrators are local users with the ability to edit sitewide CSS and JS pages and other users' personal CSS/JS pages.
Editing CSS/JS that gets executed in other users' browsers is very powerful and potentially dangerous in the hands of a malicious user; interface administrators should be users who are highly trusted, have at least a basic understanding of CSS and JS, are aware of the privacy expectations of wikis, and have a good understanding of account security.
Appointment
Interface administrators may be appointed on individual wikis, subject to the following rules:
- Interface administrator access may be granted either temporarily or indefinitely.
- The local interface administrator flag may be granted and removed by Stewards only.
- Appointments will be made by local community discussion. If any reasonable objections were raised in the local discussion, there must be broad consensus to grant access.
- All users applying for interface administrator access must be a local administrator. If a user's administrator access is removed, interface administrator access must also be removed.
- Exceptions to this criterion are possible for non-administrator bot accounts operated by administrators.
- All interface administrators must have two-factor authentication enabled.
- For indefinite access: The wiki must be large enough to require permanent interface administrators. Stewards will make the final determination of this point based on criteria including the size of the community and the frequency of CSS/JS edits being necessary.
Removal
Stewards will remove interface administrator access in the following cases:
- When an interface administrator has resigned.
- When an account does not meet or no longer meets the two-factor authentication requirement.
- When an account appears to be compromised.
- When an interface administrator is making suspicious, malicious, or inappropriate edits to the interface.
- According to the inactivity policy (no local edits or logged actions for 1 year).
- According to local policy.
- According to local consensus to remove the permission.