Access to some tools on wikipedia are restricted to only specific userrights. These userrights are added by admins/bureaucrats after successfully passing a request for the tool (held at WP:RFP in most cases), or are given automatically after passing some criteria. Bot flags are iven by the bot requests for approval group.
User groups edit
Unregistered users edit
Contributors who have not created an account or logged in are identified by their IP address rather than a user name, and may read all Wikipedia pages (except restricted special pages), and edit pages that are not protected or semi-protected. They may create talk pages in any talk namespace but may need to ask for help to create pages in some parts of the wiki. They cannot upload files or images.
New users edit
A user who edits through an account they have registered, may immediately create pages in any namespace (except the MediaWiki namespace, and limited to 8 per minute) and may also e-mail other users if they activate an email address in their user preferences. All logged-in users may mark edits as minor. They may also customize their Wikimedia interface and its options as they wish, via Special:Preferences or by adding personal CSS or JavaScript rules to their vector.css or vector.js files.
Autoconfirmed users edit
A number of actions on the English Wikipedia are restricted to user accounts that pass certain thresholds of age (time passed since the first edit) and edit count: users who meet these requirements are considered part of the pseudo-group 'autoconfirmed'. Autoconfirmed status is checked every time a user performs a restricted action: it is then granted automatically by the software. The precise requirements for autoconfirmed status vary according to circumstances: for most users on en.wiki, accounts that are both more than four days old and have made at least 10 edits are considered autoconfirmed.
Autoconfirmed status is required to move pages, edit semi-protected pages, and upload files or upload a new version of an existing file.
Administrators, bureaucrats and stewards edit
Administrators edit
Administrator rights are granted by the community to users requesting them. The process involves considerable discussion and examination of their activities as an editor. Users who are members of the 'administrator' user group have access to a number of tools to allow them to carry out certain functions on the wiki. The tools cover processes such as page deletion, page protection, blocking and unblocking, access to modify fully protected pages and the Mediawiki interface. Administrators also have the ability to grant and remove account creator, rollback, ipblock-exempt rights, confirmed user, auto-reviewer, and edit filter manager rights to other users, and to their own alternate accounts. Administrators are otherwise no different from any other editor. Ad,ins are also known as sysops (for system operators).
Bureaucrats edit
Bureaucrat rights are granted by the community to exceptionally trusted users who are allowed to perform certain actions on other users' accounts. Bureaucrats have extended access to Special:UserRights, enabling them to add users to the 'sysop' and 'bureaucrat' groups (but not remove them), and both add users to and remove users from the 'bot' user group. Bureaucrats can use Special:RenameUser to rename users (including themselves).
Stewards edit
Stewardship is an elected role, and stewards are appointed globally across all Wikimedia Foundation wikis. They are able to add/revoke any userright. All steward actions are logged at meta:Special:Log/rights.
Other flags giving access to specialized functions edit
Reviewer edit
This usergroup is used in the pending changes trial. Members of this group can review other user's edits to articles placed under pending changes.
Rollback edit
Users who are given the rollback flag ('rollbacker' user group) may revert revisions using the rollback feature. This right is automatically assigned to administrators. They may use HUGGLE.
Autopatrolled edit
Members of this group have 'autopatrol', which allows them to have their pages automatically patrolled on the New Pages list. This right is automatically assigned to administrators.
Confirmed users edit
In some situations, it is necessary for accounts to be exempted from the autoconformation process. This userright is granted by administrators at requests for protection.
File mover edit
The file mover user right is intended to allow users experienced in working with files to rename them, subject to policy, with the ease that autoconfirmed users already enjoy when renaming Wikipedia articles. This right is automatically assigned to administrators.
Accountcreator edit
Users who are given the accountcreator flag ('accountcreator' user group) are not affected by the 6 account creation limit per day per IP, and can create accounts for other users without restriction.
Ipblock-exempt edit
Users who are given the ipblock-exempt flag ('ipblock-exempt' user group) are not affected by autoblocks and blocks of IP addresses and ranges that aren't made with the "anonymous users only" setting.
Edit Filter managers edit
Members of this group can create, modify and delete edit filters. This flag is given and removed by administrators.
Oversight edit
Users who are given the oversight flag ('oversight' user group) have access to Special:HideRevision, through which they can permanently hide revisions of pages from all users, and Special:Oversight, where they can view a log of such actions and the content of the hidden revisions. This right is only granted to exceedingly few users who are at least 18 years of age and have identified themselves to the Wikimedia Foundation.
CheckUser edit
Users who are given the checkuser flag ('checkuser' user group) have access to Special:CheckUser. They are able to view a list of all IP addresses used by a user account to edit the English Wikipedia, a list of all edits made by an IP, or all user accounts that have used an IP address. They may also view a log of such requests. This right has the same type of restrictions as Oversight.
Importers and Transwiki edit
Transwiki and Importers are flags which give permissions on Special:Import. This interface allows users to move pages between Wikimedia wikis (for instance, to copy an article written in English on a foreign-language wiki, while preserving full edit history). Although Mediawiki software provides the ability to import articles directly from XML (which may come from any wiki site), this is disabled on en.wikipedia as well as most other Wikimedia projects.
Other flagged accounts edit
Bots edit
Accounts used by approved bots to make pre-approved edits can be flagged as such. Bot accounts are automated or semi-automated, the nature of their edits is well defined, and they will be quickly blocked if their actions vary from their given tasks, so they need less scrutiny than human edits.
Founder edit
The 'founder' group was created on the English Wikipedia by developer Tim Starling, without community support, as a unique group for Jimmy Wales. The group gives Wales full access to Special:UserRights.
Researcher edit
The 'researcher' group was created in April 2010 to allow individuals explicitly approved by the Wikimedia Foundation to search deleted pages and view deleted history entries without their associated text.
Table edit
- As a function of the Requests for adminship and Requests for Bureaucratship processes, all bureaucrats on the English Wikipedia are also administrators, and so have all the permissions of the 'sysop' user group in addition to those rights from the 'bureaucrat' group. However this is not a requirement of the MediaWiki software; it is technically possible for a user to be a bureaucrat without also being an admin.
- Special:ListGroupRights is an automatically generated list of granted user group rights. The below table is manually updated, and also includes global groups with local access.
Permission |
Allows user(s) to… | All users[a] |
Registered accounts[b] | Autoconfirmed and Confirmed |
Bots | Administrators | Bureaucrats | other groups[c] |
|---|---|---|---|---|---|---|---|---|
| abusefilter-hidden-log | View hidden abuse log entries | OS | ||||||
| abusefilter-hide-log | Hide entries in the abuse log | |||||||
| abusefilter-log | View the abuse log | 
|
| |||||
| abusefilter-log-detail | View detailed abuse log entries |
|
|
|
GR | |||
| abusefilter-log-private | View edit filters marked as private |
|
||||||
| abusefilter-modify | Modify abuse filters | EFM | ||||||
| abusefilter-modify-restricted | Modify edit filters with restricted actions |
|
||||||
| abusefilter-privatedetails | View private data (IP addresses) in the abuse log | CU | ||||||
| abusefilter-privatedetails-log | View the AbuseFilter private details access log | |||||||
| abusefilter-revert | Revert all changes by a given abuse filter |
|
||||||
| abusefilter-view | View non-private abuse filters |
|
||||||
| abusefilter-view-private | View edit filters marked as private | CU, EFH, EFM, OS | ||||||
| apihighlimits | Request API queries in batches of 5,000, rather than 500 |
|
|
Researchers | ||||
| applychangetags | Apply tags along with one's changes |
|
||||||
| autoconfirmed | Not be affected by IP-based rate limits |
|
|
|
PCR, GR, IE | |||
| autopatrol | Automatically mark all edits made by the user as patrolled |
|
AP, GR | |||||
| autoreview | Automatically mark all revisions made by the user as "accepted" |
|
|
|
PCR | |||
| bigdelete | Delete pages with over 5,000 revisions | Stewards | ||||||
| block | Block an IP address, user account, or range of IP addresses, from editing |
|
||||||
| blockemail | Block a user from sending email |
|
||||||
| bot | Edit without their edits showing up in recent changes |
|
||||||
| browsearchive | Search deleted pages |
|
CU, OS, Researchers | |||||
| centralauth-merge | Merge their account |
|
||||||
| changetags | Add and remove arbitrary tags on individual revisions and log entries |
|
|
EFM | ||||
| checkuser | View all IP addresses used by a user account or show all edits from a given IP address | CU, Ombuds | ||||||
| checkuser-log | View the checkuser log | |||||||
| collectionsaveasuserpage | Save books as user subpage |
|
|
|||||
| createaccount | Create a new user account for themselves or another user |
|
|
ACCP | ||||
| createpage | Create a new page |
|
||||||
| createpagemainns | Create a new mainspace page (users without this right are redirected to the Article Creation Workflow landing page) |
|
||||||
| createtalk | Create a new talk page |
|
|
|||||
| delete | Delete a page with ≤ 5,000 revisions |
|
||||||
| deletechangetags | Delete tags from the database |
|
||||||
| deletedhistory | View the history of a deleted page or a user's deleted contributions, provided it is not CSS or JS |
|
CU, OS, Researchers | |||||
| delete-redirect | Delete single revision redirects during page moves | PMR | ||||||
| deletedtext | View the text of deleted revisions, provided the page is not CSS or JS |
|
CU, Ombuds, OS, Researchers | |||||
| deletelogentry | Access the RevisionDelete tool and change the public visibility of log entries |
|
OS | |||||
| deleterevision | Access the RevisionDelete tool and change the public visibility of edit revisions |
|
||||||
Permission |
Allows user(s) to… | All users[a] |
Registered accounts[b] | Autoconfirmed and Confirmed |
Bots | Administrators | Bureaucrats | other groups[c] |
| edit | Edit any page which is not protected |
|
|
IE | ||||
| editcontentmodel | Edit the content model of a page |
|
TE, IE | |||||
| editinterface | Edit the MediaWiki namespace to affect the interface |
|
IA, IE | |||||
| editmyoptions | Edit your own preferences |
|
||||||
| editmyprivateinfo | Edit your own private data (e.g. email address, real name) |
|
||||||
| editmyusercss | Edit your own user .css files |
|
||||||
| editmyuserjs | Edit your own user .js files |
|
||||||
| editmyuserjson | Edit your own user .json files |
|
||||||
| editmywatchlist | Edit your own watchlist |
|
||||||
| editprotected | Edit fully-protected pages |
|
IE | |||||
| editsemiprotected | Edit semi-protected pages |
|
|
|
PCR, GR, IE | |||
| editsitecss | Edit sitewide .css files | IA, IE | ||||||
| editsitejs | Edit sitewide .js files | |||||||
| editsitejson | Edit sitewide .json files |
|
||||||
| editusercss | Edit other users' .css files | IA, IE | ||||||
| edituserjs | Edit other users' .js files | |||||||
| edituserjson | Edit other users' .json files |
|
IA | |||||
| extendedconfirmed | Edit 30/500 protected pages |
|
|
XC, IE | ||||
| globalblock-whitelist | Disable global blocks locally |
|
||||||
| hideuser | Block a username, hiding it from the public | OS | ||||||
| import | Import pages from other wikis |
|
IMP, TWI | |||||
| importupload | Import pages from a locally stored XML file | IMP | ||||||
| ipblock-exempt | Be unaffected by blocks applied to the user's IP address or a range (CIDR) containing it |
|
|
IPBE | ||||
| managechangetags | Create and (de)activate tags |
|
EFM | |||||
| markbotedits | Mark rollback as bot edits, to keep them out of recent changes |
|
GR[d] | |||||
| massmessage | Send a message to multiple users at once |
|
MMS | |||||
| mergehistory | Merge the history of pages |
|
||||||
| minoredit | Make an edit marked as 'minor' |
|
||||||
| move | Change the title of a page by moving it |
|
|
PMR, GR | ||||
| move-categorypages | Change the title of a category by moving it |
|
|
PMR | ||||
| movefile | Change the title of a file by moving it |
|
FMV | |||||
| move-rootuserpages | Move root user pages |
|
|
|||||
| move-subpages | Move pages with their subpages |
|
|
PMR | ||||
| movestable | Move pages under pending changes |
|
|
GR | ||||
| mwoauthmanagemygrants | Manage OAuth grants |
|
||||||
| nominornewtalk | Minor edits by this user to user talk pages do not trigger the "you have new messages" banner |
|
||||||
| noratelimit | Not be affected by rate limits |
|
|
|
ACCP, EVC, GR[d], Stewards | |||
Permission |
Allows user(s) to… | All users[a] |
Registered accounts[b] | Autoconfirmed and Confirmed |
Bots | Administrators | Bureaucrats | other groups[c] |
| nuke | Mass delete pages |
|
||||||
| oathauth-enable | Enable two-factor authentication |
|
|
CU, EFM, Founder, IMP, IA, OS, TE, TWI | ||||
| override-antispoof | Allows the creation of accounts with mixed-script, confusing and similar usernames |
|
|
ACCP | ||||
| pagetriage-copyvio | Tag pages in the Special:NewPagesFeed as likely copyright violations, through the pagetriage-tagcopyvio API | Copyright violation bots | ||||||
| patrol | State that they have checked a page that appeared in Special:Newpages |
|
NPR | |||||
| protect | Change protection levels, edit and move protected pages, and edit cascade-protected pages |
|
IE | |||||
| purge | Purge a page by adding &action=purge to the URL
|
|
||||||
| read | Read pages |
|
|
|||||
| renameuser | Change the name of an existing account | Global renamers, Stewards | ||||||
| reupload | Overwrite an existing unprotected file |
|
|
|||||
| reupload-own | Overwrite existing files uploaded by oneself |
|
||||||
| reupload-shared | Override files on the shared media repository locally |
|
||||||
| review | Mark revisions as being "accepted" |
|
PCR | |||||
| rollback | Use a special link to more easily revert a bad edit |
|
RBK, GR[d] | |||||
| sendemail | E-mail a user (using Special:EmailUser/username) who have associated an email address with themselves
|
|
||||||
| skipcaptcha | Perform CAPTCHA-triggering actions without having to go through the CAPTCHA |
|
|
|
GR | |||
| spamblacklistlog | View the spam blacklist log |
|
EFH | |||||
| stablesettings | Configure how the latest accepted revision is selected and displayed |
|
||||||
| suppressionlog | View private logs | OS | ||||||
| suppressredirect | Not create a redirect from the old name when moving a page |
|
|
|
GR[d], PMR, IE | |||
| suppressrevision | Access the RevisionDelete tool and change the public and administrator visibility of edit revisions and logs | OS | ||||||
| tboverride | Override the title blacklist |
|
|
TE, PMR, IE | ||||
| tboverride-account | Override the username blacklist | ACCP | ||||||
| templateeditor | Edit pages under template protection |
|
TE, IE | |||||
| titleblacklistlog | View title blacklist log (note: the log is empty, as it has not been enabled) |
|
| |||||
| torunblocked | Bypass automatic blocks of Tor exit nodes | IPBE | ||||||
| transcode-reset | Reset failed or transcoded videos so they are inserted into the job queue again |
|
|
|||||
| transcode-status | View information about the current transcode activity |
|
||||||
| undelete | Undelete a previously deleted page or specific revisions from it, view deleted revisions |
|
||||||
| unwatchedpages | View a list of pages which are not on anyone's watchlist |
|
||||||
| upload | Upload a media file |
|
|
|||||
| urlshortener-create-url | Create short URLs |
|
|
|||||
| userrights | Edit all user rights | Stewards | ||||||
| viewmyprivateinfo | View your own private data (e.g. email address, real name) |
|
||||||
| viewmywatchlist | View your own watchlist |
|
||||||
| viewsuppressed | View revisions hidden from any user | OS | ||||||
| vipsscaler-test | Use the VIPS scaling test interface |
|
||||||
| writeapi | Use of the write API |
|
|
|
||||
Permission |
Allows user(s) to… | All users[a] |
Registered accounts[b] | Autoconfirmed and Confirmed |
Bots | Administrators | Bureaucrats | other groups[c] |
- ^ a b c d Includes IP users. Any permission granted to all users will be inherited by the other user groups.
- ^ a b c d Any permission granted to registered accounts will be inherited by the other (registered) user groups.
- ^ a b c d Any user listed in this column has the relevant permission. Italics indicate a global permission.
- ^ a b c d Per Wikipedia:Global rights policy, Global rollbackers are only allowed to use this right in the context of counter-vandalism efforts
Assignment edit
Replace "USER" with your username.