Hi,
What is the correct syntax for $wgOATHExclusiveRights ? I want to revoke sysop right for deleteperm. Should i type something like this ? false or true ? I think adding one example would help users to understand better. :)
$wgOATHExclusiveRight['sysop']['deleteperm'] = false;
Or should i just type : $wgOATHExclusiveRight['sysop']= true;
And will it revoke all sysop rights until they activate 2FA ?
thanks,
I'm wondering about the same, nothing seems to work. I dug into CheckExclusiveRights.php and i'm still confused.
You should list the permissions you want to restrict in the array:
$wgOATHExclusiveRights = ['edit', 'move'];
I don't think you can take a permission away from a specific group. If you want to take the "delete" permission away from sysops unless they log in with 2FA, it will be simply:
$wgOATHExclusiveRights = ['delete'];
and then only those who logged in with 2FA will be able to delete pages, as long as their user group allows for that. Hope this is helpful!
What if I wanted to force 2FA for all logins? Could I take away ALL permissions? Something like this...
$wgOATHExclusiveRights = ['*'];
