if ( $params['user'] !== null || $params['excludeuser'] !== null ) {
            // Paranoia: avoid brute force searches (T19342)
            // (shouldn't be able to get here without 'deletedhistory', but
            // check it again just in case)
            if ( !$this->getAuthority()->isAllowed( 'deletedhistory' ) ) {