Newsgroups: php.internals,php.webmaster
Path: news.php.net
Xref: news.php.net php.internals:53858 php.webmaster:11556
Return-Path: <hannes.magnusson@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 38335 invoked from network); 11 Jul 2011 10:04:05 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 11 Jul 2011 10:04:05 -0000
Authentication-Results: pb1.pair.com smtp.mail=hannes.magnusson@gmail.com; spf=pass; sender-id=pass
Authentication-Results: pb1.pair.com header.from=hannes.magnusson@gmail.com; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.160.170 as permitted sender)
X-PHP-List-Original-Sender: hannes.magnusson@gmail.com
X-Host-Fingerprint: 209.85.160.170 mail-gy0-f170.google.com  
Received: from [209.85.160.170] ([209.85.160.170:54878] helo=mail-gy0-f170.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id D9/D1-41672-29ACA1E4 for <internals@lists.php.net>; Mon, 11 Jul 2011 06:04:05 -0400
Received: by gyb13 with SMTP id 13so1617293gyb.29
        for <multiple recipients>; Mon, 11 Jul 2011 03:03:59 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :cc:content-type;
        bh=61c3xxJp+SIgGJHM3BAfYWR2CT3yZSxKsHhigSCFutg=;
        b=W1OEC5ube70WpOZDv7lGAnusZEe10baBElCIn05RhnFv9hKQ7apbaIBgcr3OSX+DV+
         vZOiMpQcXnJEunOdrpUurFadLTX7dsyNtF/FS6zDmuIGbfJtqKpC9uuiz14gra/ORxkw
         YBA2MPjywuCpt137tNbFanhRF/6VJwbeUKhrk=
MIME-Version: 1.0
Received: by 10.151.87.16 with SMTP id p16mr4040824ybl.227.1310378638902; Mon,
 11 Jul 2011 03:03:58 -0700 (PDT)
Received: by 10.147.35.14 with HTTP; Mon, 11 Jul 2011 03:03:58 -0700 (PDT)
In-Reply-To: <CAEZPtU5AZ=14unupawXnwiB0gPYxoLwOFzj-LVHKF4qF+QaZfw@mail.gmail.com>
References: <CAH-PCH40muSZ-9DAXVcRMC0gjQH2b1=CRmcBeL315jFZAwOs2g@mail.gmail.com>
	<4E1AB83A.6060801@sugarcrm.com>
	<CADNQb0Vg6vPg0k0YJ_23_VGfzSiQ70D2_ghJ-ke-SHnazaSa4w@mail.gmail.com>
	<CAEZPtU44LjWusp-+KWhaN50bmVLaAHXmttxOfFy=kyQAyp1Z0Q@mail.gmail.com>
	<CAEZPtU5AZ=14unupawXnwiB0gPYxoLwOFzj-LVHKF4qF+QaZfw@mail.gmail.com>
Date: Mon, 11 Jul 2011 12:03:58 +0200
Message-ID: <CADNQb0USw0y1jgnWWPkw8H+v73FQ_5HE815qAjBMA-gQ26J2GQ@mail.gmail.com>
To: Pierre Joye <pierre.php@gmail.com>
Cc: Stas Malyshev <smalyshev@sugarcrm.com>, Ferenc Kovacs <tyra3l@gmail.com>, 
	php-webmaster <php-webmaster@lists.php.net>, PHP Internals <internals@lists.php.net>
Content-Type: text/plain; charset=UTF-8
Subject: Re: [PHP-DEV] sudden spike in wiki registrations
From: hannes.magnusson@gmail.com (Hannes Magnusson)

It is very hard to detect which "php group" a person belongs to, our
karma system doesn't work like that.

We can easily detect if an account is an php.net SVN account though.
And the wiki can tell you if a person has write access to that specific page.

Most external users have assigned "write" groups, "qa", "rfc", "web".
These are the people who have requested access to these areas.

I was under the impression the vote plugin respected the write
permission acl to that page, so a user would need to have write karma
to that namespace to be able to vote.
Does it have no builtin functionality like that?

-Hannes

On Mon, Jul 11, 2011 at 11:59, Pierre Joye <pierre.php@gmail.com> wrote:
> about the fix, instead of "only registered users", we have to add
> group support, so we can add php-src/doc/etc. to it and manually add
> external and approved persons. If anyone has time to do it, please go
> ahead, code is in SVN.
>
> On Mon, Jul 11, 2011 at 11:56 AM, Pierre Joye <pierre.php@gmail.com> wrote:
>> On Mon, Jul 11, 2011 at 11:53 AM, Hannes Magnusson
>> <hannes.magnusson@gmail.com> wrote:
>>> On Mon, Jul 11, 2011 at 10:45, Stas Malyshev <smalyshev@sugarcrm.com> wrote:
>>>> Hi!
>>>>
>>>> On 7/11/11 1:23 AM, Ferenc Kovacs wrote:
>>>>>
>>>>> Hi,
>>>>>
>>>>> if somebody wonders why do we have those french guys registering on the
>>>>> wiki:
>>>>>
>>>>> http://blog.mageekbox.net/?post/2011/07/10/La-r%C3%A9volution-est-en-marche-%21
>>>>>
>>>>> the author thought that anybody can vote who has wiki account, but
>>>>> that is corrected now.
>>>>> however judging from the responses and the number of registrations I
>>>>> think we should publish something to the php.net frontpage about the
>>>>> accepted voting RFC, and maybe rephrase or clean up the who can vote
>>>>> part.
>>>>>
>>>>> for example can someone with svn account and 1 commit vote?
>>>>
>>>> I'd say for core features everybody with write access to the core, but then
>>>> again, not sure about how to formalize that. Note that vote isn't meant to
>>>> be the decision. At least I think it wasn't and shouldn't mean that. It
>>>> should be a measure of if there's a consensus about certain thing or not.
>>>>
>>>> As for technical side, I don't know enough about how the auth system works
>>>> to see if we can enforce it technically. If somebody with this
>>>> knowledge is willing to help, please ping me and we can discuss how to
>>>> implement this in docuwiki.
>>>
>>> I thought I had pointed this out already.
>>>
>>> AFAICT anyone with wiki account can vote. And anyone can get wiki account.
>>>
>>> People with wiki accounts however cannot modify any content because we
>>> have write restrictions on everything, so before this vote plugin came
>>> along a wiki account was utterly useless without an admin explicitly
>>> giving write karma.
>>
>> Yes, hence why I said we have to fix that in the moodle plugin. But
>> who can vote is clearly define. Now, I'd to ask wiki admins to do not
>> accept random accounts for the fun to accept them. Thanks.
>>
>> Cheers,
>> --
>> Pierre
>>
>> @pierrejoye | http://blog.thepimp.net | http://www.libgd.org
>>
>
>
>
> --
> Pierre
>
> @pierrejoye | http://blog.thepimp.net | http://www.libgd.org
>