Jump to content

User group rights

The following is a list of user groups defined on this wiki, with their associated access rights. There may be additional information about individual rights.

Legend:

  • Granted right
  • Revoked right
GroupRights
(all)
(*)
  • Create discussion pages (createtalk)
  • Create new user accounts (createaccount)
  • Create pages (which are not discussion pages) (createpage)
  • Create short URLs (urlshortener-create-url)
  • Edit pages (edit)
  • Edit using the translate interface (translate)
  • Edit your own preferences (editmyoptions)
  • Edit your own private data (e.g. email address, real name) and request password reset emails (editmyprivateinfo)
  • Merge their account (centralauth-merge)
  • Read pages (read)
  • Use the VIPS scaling test interface Special:VipsTest (vipsscaler-test)
  • View abuse filters (abusefilter-view)
  • View detailed abuse log entries (abusefilter-log-detail)
  • View the abuse log (abusefilter-log)
  • View your own private data (e.g. email address, real name) (viewmyprivateinfo)
Account creators
(accountcreator)
(list of members)
  • Not be affected by rate limits (noratelimit)
Autoconfirmed users
(autoconfirmed)
  • Access a basic view of the IP information attached to revisions or log entries (ipinfo-view-basic)
  • Edit pages protected as "Allow only autoconfirmed users" (editsemiprotected)
  • Mark translation units as no longer outdated (unfuzzy)
  • Move pages (move)
  • Not be affected by IP-based rate limits (autoconfirmed)
  • Perform CAPTCHA-triggering actions without having to go through the CAPTCHA (skipcaptcha)
  • Reset failed or transcoded videos so they are inserted into the job queue again (transcode-reset)
  • Retrieve information about IP addresses attached to revisions or log entries (ipinfo)
  • Save books as community page (collectionsaveascommunitypage)
  • Save books as user page (collectionsaveasuserpage)
  • View information about the current transcode activity (transcode-status)
  • View detailed abuse log entries (abusefilter-log-detail)
Autopatrollers
(autopatrolled)
(list of members)
  • Have one's own edits automatically marked as patrolled (autopatrol)
Bots
(bot)
(list of members)
  • Add and remove arbitrary tags on individual revisions and log entries (changetags)
  • Be treated as an automated process (bot)
  • Bypass blocked external domains (abusefilter-bypass-blocked-external-domains)
  • Bypass the spam block list (sboverride)
  • Edit pages protected as "Allow only autoconfirmed users" (editsemiprotected)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Not be affected by IP-based rate limits (autoconfirmed)
  • Not be affected by rate limits (noratelimit)
  • Not create redirects from source pages when moving pages (suppressredirect)
  • Not have minor edits to discussion pages trigger the new messages prompt (nominornewtalk)
  • Perform CAPTCHA-triggering actions without having to go through the CAPTCHA (skipcaptcha)
  • Use higher limits in API queries (apihighlimits)
Bureaucrats
(bureaucrat)
(list of members)
Central notice administrators
(centralnoticeadmin)
(list of members)
  • Change protection settings and edit cascade-protected pages (protect)
  • Edit the user interface (editinterface)
  • Enable two-factor authentication (oathauth-enable)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Manage central notices (centralnotice-admin)
  • Protect translatable messages handled by the Translate extension and included in CentralNotice banners (banner-protect)
CheckUsers
(checkuser)
(list of members)
  • Access a full view of the IP information attached to revisions or log entries (ipinfo-view-full)
  • Check users' IP addresses and other information (checkuser)
  • Enable two-factor authentication (oathauth-enable)
  • View a log of who has accessed IP information (ipinfo-view-log)
  • View logs related to accessing protected variable values (abusefilter-protected-vars-log)
  • View private data in the abuse log (abusefilter-privatedetails)
  • View the AbuseFilter private details access log (abusefilter-privatedetails-log)
  • View the checkuser log (checkuser-log)
  • View the log of access to temporary account IP addresses (checkuser-temporary-account-log)
Temporary account IP viewers
(checkuser-temporary-account-viewer)
(list of members)
  • Read pages (read)
Confirmed users
(confirmed)
(list of members)
  • Access a basic view of the IP information attached to revisions or log entries (ipinfo-view-basic)
  • Edit pages protected as "Allow only autoconfirmed users" (editsemiprotected)
  • Mark translation units as no longer outdated (unfuzzy)
  • Move pages (move)
  • Not be affected by IP-based rate limits (autoconfirmed)
  • Perform CAPTCHA-triggering actions without having to go through the CAPTCHA (skipcaptcha)
  • Reset failed or transcoded videos so they are inserted into the job queue again (transcode-reset)
  • Retrieve information about IP addresses attached to revisions or log entries (ipinfo)
  • Save books as community page (collectionsaveascommunitypage)
  • Save books as user page (collectionsaveasuserpage)
  • View information about the current transcode activity (transcode-status)
  • View detailed abuse log entries (abusefilter-log-detail)
Event organizers
(event-organizer)
(list of members)
  • Email event participants (campaignevents-email-participants)
  • Enable event registrations (campaignevents-enable-registration)
  • Organize events (campaignevents-organize-events)
Flood flag
(flood)
(list of members)
  • Be treated as an automated process (bot)
Global renamers
(global-renamer)
(list of members)
  • Enable two-factor authentication (oathauth-enable)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Rename global accounts (centralauth-rename)
Importers
(import)
(list of members)
  • Enable two-factor authentication (oathauth-enable)
  • Import pages from a file upload (importupload)
  • Import pages from other wikis (import)
Interface administrators
(interface-admin)
(list of members)
  • Edit other users' CSS files (editusercss)
  • Edit other users' JSON files (edituserjson)
  • Edit other users' JavaScript files (edituserjs)
  • Edit sitewide CSS (editsitecss)
  • Edit sitewide JSON (editsitejson)
  • Edit sitewide JavaScript (editsitejs)
  • Edit the user interface (editinterface)
  • Enable two-factor authentication (oathauth-enable)
IP block exemptions
(ipblock-exempt)
(list of members)
  • Bypass IP blocks, auto-blocks and range blocks (ipblock-exempt)
  • Bypass IP restrictions issued by the StopForumSpam extension (sfsblock-bypass)
  • Bypass automatic blocks of Tor exit nodes (torunblocked)
MassMessage senders
(massmessage-sender)
(list of members)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Send a message to multiple users at once (massmessage)
Users blocked from the IP Information tool
(no-ipinfo)
(list of members)
  • Access a basic view of the IP information attached to revisions or log entries (ipinfo-view-basic)
  • Access a full view of the IP information attached to revisions or log entries (ipinfo-view-full)
  • Retrieve information about IP addresses attached to revisions or log entries (ipinfo)
  • View a log of who has accessed IP information (ipinfo-view-log)
OAuth administrators
(oauthadmin)
(list of members)
  • Enable two-factor authentication (oathauth-enable)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Manage OAuth consumers (mwoauthmanageconsumer)
Patrollers
(patroller)
(list of members)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Mark others' edits as patrolled (patrol)
  • Quickly rollback the edits of the last user who edited a particular page (rollback)
Push subscription managers
(push-subscription-manager)
(list of members)
  • Manage all push subscriptions (manage-all-push-subscriptions)
Stewards
(steward)
(list of members)
  • Access the log of two-factor authentication changes (oathauth-view-log)
  • Create or modify global abuse filters (abusefilter-modify-global)
  • Delete pages with large histories (bigdelete)
  • Edit all user rights (userrights)
  • Edit membership to global groups (globalgroupmembership)
  • Edit user rights of users on other wikis (userrights-interwiki)
  • Forcibly create a local account for a global account (centralauth-createlocal)
  • Lock or unlock global account (centralauth-lock)
  • Make and remove global blocks (globalblock)
  • Manage global groups (globalgrouppermissions)
  • Manage short URLs (urlshortener-manage-url)
  • Not be affected by rate limits (noratelimit)
  • Rename global accounts (centralauth-rename)
  • Suppress or hide global account (centralauth-suppress)
  • Unmerge global account (centralauth-unmerge)
  • Verify whether a user has two-factor authentication enabled (oathauth-verify-user)
  • View private data in the abuse log (abusefilter-privatedetails)
  • View short URLs management log (urlshortener-view-log)
Oversighters
(suppress)
(list of members)
  • Block or unblock a username, hiding or unhiding it from the public (hideuser)
  • Delete and undelete specific log entries (deletelogentry)
  • Delete and undelete specific revisions of pages (deleterevision)
  • Enable two-factor authentication (oathauth-enable)
  • Hide entries in the abuse log (abusefilter-hide-log)
  • View hidden abuse log entries (abusefilter-hidden-log)
  • View private logs (suppressionlog)
  • View revisions hidden from any user (viewsuppressed)
  • View, hide and unhide specific revisions of pages from any user (suppressrevision)
Administrators
(sysop)
(list of members)
  • Access a full view of the IP information attached to revisions or log entries (ipinfo-view-full)
  • Add and remove arbitrary tags on individual revisions and log entries (changetags)
  • Block or unblock a user from sending email (blockemail)
  • Block or unblock other users from editing (block)
  • Bypass IP blocks, auto-blocks and range blocks (ipblock-exempt)
  • Change page language (pagelang)
  • Change protection settings and edit cascade-protected pages (protect)
  • Create and (de)activate tags (managechangetags)
  • Create new user accounts (createaccount)
  • Create or modify abuse filters (abusefilter-modify)
  • Create or modify global abuse filters (abusefilter-modify-global)
  • Create or modify what external domains are blocked from being linked (abusefilter-modify-blocked-external-domains)
  • Create short URLs (urlshortener-create-url)
  • Delete tags from the database (deletechangetags)
  • Delete and undelete specific log entries (deletelogentry)
  • Delete and undelete specific revisions of pages (deleterevision)
  • Delete event registrations (campaignevents-delete-registration)
  • Delete pages (delete)
  • Disable global blocks locally (globalblock-whitelist)
  • Edit other users' JSON files (edituserjson)
  • Edit pages protected as "Allow only administrators" (editprotected)
  • Edit pages protected as "Allow only autoconfirmed users" (editsemiprotected)
  • Edit sitewide JSON (editsitejson)
  • Edit the content model of a page (editcontentmodel)
  • Edit the user interface (editinterface)
  • Enable two-factor authentication (oathauth-enable)
  • Forcibly create a local account for a global account (centralauth-createlocal)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Import pages from other wikis (import)
  • Mark others' edits as patrolled (patrol)
  • Mark rolled-back edits as bot edits (markbotedits)
  • Mass delete pages (nuke)
  • Merge the history of pages (mergehistory)
  • Modify abuse filters with restricted actions (abusefilter-modify-restricted)
  • Move category pages (move-categorypages)
  • Move files (movefile)
  • Move pages (move)
  • Move pages with their subpages (move-subpages)
  • Move root user pages (move-rootuserpages)
  • Not be affected by IP-based rate limits (autoconfirmed)
  • Not be affected by rate limits (noratelimit)
  • Not create redirects from source pages when moving pages (suppressredirect)
  • Override files on the shared media repository locally (reupload-shared)
  • Override the disallowed titles or usernames list (tboverride)
  • Override the spoofing checks (override-antispoof)
  • Overwrite existing files (reupload)
  • Overwrite existing files uploaded by oneself (reupload-own)
  • Perform CAPTCHA-triggering actions without having to go through the CAPTCHA (skipcaptcha)
  • Quickly rollback the edits of the last user who edited a particular page (rollback)
  • Reset failed or transcoded videos so they are inserted into the job queue again (transcode-reset)
  • Revert all changes by a given abuse filter (abusefilter-revert)
  • Search deleted pages (browsearchive)
  • Send a message to multiple users at once (massmessage)
  • Undelete a page (undelete)
  • Upload files (upload)
  • Use higher limits in API queries (apihighlimits)
  • View information about the current transcode activity (transcode-status)
  • View a list of unwatched pages (unwatchedpages)
  • View abuse filters marked as private (abusefilter-view-private)
  • View and create filters that use protected variables (abusefilter-access-protected-vars)
  • View deleted history entries, without their associated text (deletedhistory)
  • View deleted text and changes between deleted revisions (deletedtext)
  • View detailed abuse log entries (abusefilter-log-detail)
  • View log entries of abuse filters marked as private (abusefilter-log-private)
  • View the disallowed titles list log (titleblacklistlog)
  • Add groups: Autopatrollers, Event organizers, MassMessage senders, Patrollers and IP block exemptions
  • Remove groups: Autopatrollers, Event organizers, MassMessage senders, Patrollers and IP block exemptions
  • Add groups to own account: Flood flag and Translation administrators
  • Remove groups from own account: Flood flag and Translation administrators
Translation administrators
(translationadmin)
(list of members)
  • Change page language (pagelang)
  • Edit the content model of a page (editcontentmodel)
  • Enable two-factor authentication (oathauth-enable)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Import offline translations (translate-import)
  • Manage message groups (translate-manage)
  • Mark versions of pages for translation (pagetranslation)
  • Protect translatable messages handled by the Translate extension and included in CentralNotice banners (banner-protect)
Transwiki importers
(transwiki)
(list of members)
  • Enable two-factor authentication (oathauth-enable)
  • Import pages from other wikis (import)
Uploaders
(uploader)
(list of members)
  • Overwrite existing files (reupload)
  • Overwrite existing files uploaded by oneself (reupload-own)
  • Upload files (upload)
Users
(user)
(list of members)
  • Apply tags along with one's changes (applychangetags)
  • Change workflow state of message groups (translate-groupreview)
  • Create discussion pages (createtalk)
  • Create pages (which are not discussion pages) (createpage)
  • Edit pages (edit)
  • Edit your own user CSS files (editmyusercss)
  • Edit your own user JSON files (editmyuserjson)
  • Edit your own user JavaScript files (editmyuserjs)
  • Edit your own watchlist (note that some actions will still add pages even without this right) (editmywatchlist)
  • Manage OAuth grants (mwoauthmanagemygrants)
  • Mark edits as minor (minoredit)
  • Move category pages (move-categorypages)
  • Move root user pages (move-rootuserpages)
  • Propose new OAuth consumers (mwoauthproposeconsumer)
  • Read pages (read)
  • Review translations (translate-messagereview)
  • Send email to other users (sendemail)
  • Update OAuth consumers you control (mwoauthupdateownconsumer)
  • View the spam block list log (spamblacklistlog)
  • View your own watchlist (viewmywatchlist)
WMF Office IT
(wmf-officeit)
(list of members)
  • Create new user accounts (createaccount)
  • Enable two-factor authentication (oathauth-enable)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Lock or unlock global account (centralauth-lock)
  • Not be affected by rate limits (noratelimit)
  • Override the disallowed titles or usernames list (tboverride)
  • Rename global accounts (centralauth-rename)
WMF Trust and Safety
(wmf-supportsafety)
(list of members)
  • Access the log of two-factor authentication changes (oathauth-view-log)
  • Disable two-factor authentication for a user (oathauth-disable-for-user)
  • Edit all user rights (userrights)
  • Edit the content model of a page (editcontentmodel)
  • Edit user rights of users on other wikis (userrights-interwiki)
  • Enable two-factor authentication (oathauth-enable)
  • Have one's own edits automatically marked as patrolled (autopatrol)
  • Lock or unlock global account (centralauth-lock)
  • Make and remove global blocks (globalblock)
  • Rename global accounts (centralauth-rename)
  • Send a message to multiple users at once (massmessage)
  • Suppress or hide global account (centralauth-suppress)
  • Verify whether a user has two-factor authentication enabled (oathauth-verify-user)

Namespace restrictions

NamespaceRight(s) allowing user to edit
MediaWiki
  • Edit the user interface (editinterface)
Schema
  • Not be affected by IP-based rate limits (autoconfirmed)
CNBanner
  • Not be affected by IP-based rate limits (autoconfirmed)
Translations
  • Edit using the translate interface (translate)