Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:107112
Return-Path: <danack@basereality.com>
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 84846 invoked from network); 15 Sep 2019 19:34:41 -0000
Received: from unknown (HELO php-smtp3.php.net) (208.43.231.12)
  by pb1.pair.com with SMTP; 15 Sep 2019 19:34:41 -0000
Received: from php-smtp3.php.net (localhost [127.0.0.1])
	by php-smtp3.php.net (Postfix) with ESMTP id D84C52D08EE
	for <internals@lists.php.net>; Sun, 15 Sep 2019 10:11:22 -0700 (PDT)
X-Spam-Checker-Version: SpamAssassin 3.4.2 (2018-09-13) on php-smtp3.php.net
X-Spam-Level: 
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,DKIM_SIGNED,
	DKIM_VALID,RCVD_IN_DNSWL_NONE,SPF_HELO_NONE autolearn=no
	autolearn_force=no version=3.4.2
X-Spam-ASN: AS3215 2.6.0.0/16
X-Spam-Virus: No
Received: from mail-pl1-x635.google.com (mail-pl1-x635.google.com [IPv6:2607:f8b0:4864:20::635])
	(using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits))
	(No client certificate requested)
	by php-smtp3.php.net (Postfix) with ESMTPS
	for <internals@lists.php.net>; Sun, 15 Sep 2019 10:11:22 -0700 (PDT)
Received: by mail-pl1-x635.google.com with SMTP id t11so15560950plo.0
        for <internals@lists.php.net>; Sun, 15 Sep 2019 10:11:22 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=basereality-com.20150623.gappssmtp.com; s=20150623;
        h=mime-version:from:date:message-id:subject:to;
        bh=AaNUiCSv8RGqxV8SPaZXGV5Gf+oEkz5YjMOCmB53SnQ=;
        b=SvuabKlVZIQ6j0BX3mdtGbhFx4MMlXC+Fws5g7y5lWlB2HCKhmHb9RUnFdIltO24En
         vcoZwa2sgYjZ8bgiv7Ht8zbhFncc3qY0CktoGuRCmwIw3/4LQStZdechki60b4MmCYZR
         +iOAsL5YaaS+acRiasSev8hzUkTFEqaJQUoqTlsXdpi+hPfgT+4reX2TlfSHWIGslp2w
         lc+vs/4K7fe60CnOO34VFSMmLtD5mhbm9QO8rt0At8TXg/gwoNheyiSeRK9alY1z/FHJ
         R94NTaOMwy2oSYilD6t0yJss7ZKB2vzMycrlDWVqchKIsMcdlp0W+0+UVlcYvEgqPC00
         oWPQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=1e100.net; s=20161025;
        h=x-gm-message-state:mime-version:from:date:message-id:subject:to;
        bh=AaNUiCSv8RGqxV8SPaZXGV5Gf+oEkz5YjMOCmB53SnQ=;
        b=hJcH+c0bP4yvHq9iut4WiCYLdEUTSAEAVEULGwMGDxUJMuX4ImM+qwjdjoEM1qo6yB
         IT0X2NXI4k1xXQvznsdCONyzkXd2gdTSRN07zQDQ6tjRvftOQrTk1QgsC5S0sIE3EFbF
         YY4evJ8X4QYO0Ng7FdxDSPLVh6737NdJo0/1LJVaCiv6ol9e0KnSrRkwQRurC1g1hfqq
         TG527eQTia9tlpNlhB7dD16eAw6hh+8rCP07EYqjUiTHOmH8ajj9JZTaNTtbAgVXGYSo
         U0fMu5wI49qH1o680NpC1VDJJ+Eczkogn4Ct4Dpr9mN2JGN5vLjlorYekJrhYC4kgOjr
         HttQ==
X-Gm-Message-State: APjAAAWYxOhqhVnFJL835p7yku/SEJR+hFb9Q7BS8x+GXUgr4udNKcXY
	9vcK50XNy4jLRRO1XlCpO0UXqkQv5JvqtG6zOo+VIN2EFyPPHA==
X-Google-Smtp-Source: APXvYqxdeRTjTrKAcuOd8cEDjANKUr9DnEs4PbamPEml1U6S38xpVMhHb3afvIZzJkZ8QLl6DVkJ1veKCqc1fYRPHSQ=
X-Received: by 2002:a17:902:860b:: with SMTP id f11mr59191471plo.48.1568567481071;
 Sun, 15 Sep 2019 10:11:21 -0700 (PDT)
MIME-Version: 1.0
Date: Sun, 15 Sep 2019 18:11:10 +0100
Message-ID: <CA+kxMuTvOjnV18LwVP=n_JXwm66932uGV-m9zRSsFgiX9Jcy7g@mail.gmail.com>
To: PHP internals <internals@lists.php.net>
Content-Type: text/plain; charset="UTF-8"
X-Envelope-From: <danack@basereality.com>
Subject: Changing PECL signup flow.
From: Danack@basereality.com (Dan Ackroyd)

HI internals,

Currently, it is quite difficult to signup to get a PECL account.

We have a somewhat deliberately obtuse form to signup through, which
then needs to be manually approved by someone with the appropriate
karma.

Over the past year two people who I know from the community have
reached out to me to ask "we've submitted our account application, how
do we get approved now", after their application has sat un-actioned
for weeks. And only after I spoke to someone with the appropriate
karma was their account approved.

I would like to suggest the following changes both to allow it easier
to publish PECL extensions, and also prevent that causing problems.

# Allow a new signup method

Allow people who want a PECL account to submit a link to github repo
(or alternative VCS provider) that contains a 'ready-to-ship' PHP
extension repo.

We (or probably, I) will provide a tool that allows people to check
that their repo is ready to be submitted to PECL, including all the
appropriate things like buildconf works, the name of the project is
set in the appropriate place.

On signup, when someone submits a 'ready-to-ship' extension we will
have code that checks the extension for conformance, and if the
extension looks ready to go, their application is listed on a page
where anyone with PECL karma can approve or reject the application.

This would remove the bottleneck of only a few people being able to
approve the PECL accounts, while still blocking most inappropriate
signup attempts.

# Change voting rights

Getting a pecl account would explicitly no longer give or require a
php.net account, and wouldn't confer voting karma. To be clear, I am
actually unsure whether it's intended for people with PECL accounts
should get voting karma; I know some people did but apparently not all
have.

Although giving those a php.net account and voting karma is
appropriate for extensions that are widely used, it is not appropriate
for extensions that belong to a company and don't represent a wider
community interest to automatically get a php.net account and/or
voting rights.

For example, there are multiple extensions that allow Application
Performance Monitoring. Those extensions are not 'owned' by the
community, but instead represent a commercial interest.

Those two changes should allow extensions to be listed on PECL much
more easily, without being too disruptive to the PECL site.

Thoughts?

cheers
Dan
Ack