Last modified: 2014-02-16 04:07:28 UTC

Wikimedia Bugzilla is closed!

Wikimedia migrated from Bugzilla to Phabricator. Bug reports are handled in Wikimedia Phabricator.
This static website is read-only and for historical purposes. It is not possible to log in and except for displaying bug reports and their history, links might be broken. See T63302, the corresponding Phabricator task for complete and up-to-date bug report information.
First Last Prev Next    This bug is not in your last search results.
Bug 61302 - [QuestyCaptcha] Store questions and answers in an automatically encrypted page, whose plaintext is viewable only by sysops
[QuestyCaptcha] Store questions and answers in an automatically encrypted pag...
Status: NEW
Product: MediaWiki extensions
Classification: Unclassified
ConfirmEdit (CAPTCHA extension) (Other open bugs)
unspecified
All All
: Lowest enhancement (vote)
: ---
Assigned To: Nobody - You can work on this!
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-02-13 07:29 UTC by Nathan Larson
Modified: 2014-02-16 04:07 UTC (History)
3 users (show)

See Also:
Web browser: ---
Mobile Platform: ---
Assignee Huggle Beta Tester: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Description Nathan Larson 2014-02-13 07:29:11 UTC 
If we were to store QuestyCaptcha questions and answers in an automatically encrypted page, whose plaintext is viewable only by sysops, then we could use the revision history system to store old copies of it, and changes would not require edits to LocalSettings.php.

The content to be saved to the page should be encrypted by, e.g., a [[mw:Manual:Hooks/PageContentSave]] function. [[mw:Manual:Hooks/ParserBeforeStrip]] could be used to display to the sysop a decrypted version of it. It would also be necessary to put that decrypted text in sysops' edit windows when they edit; I haven't tried to figure out yet what hook that would be.

Encryption keys could be stored in, say, [[mw:Manual:page_props]] or maybe [[mw:Manual:user_properties]] or [[mw:Manual:config table]].
Comment 1 Kunal Mehta (Legoktm) 2014-02-13 07:30:57 UTC 
I think bug 34911 is a better idea.
Comment 2 Nathan Larson 2014-02-13 07:52:55 UTC 
(In reply to Kunal Mehta (Legoktm) from comment #1)
> I think bug 34911 is a better idea.

A number of different proposals are presented by the commenters there; which do you favor? Of course, if the config database gets implemented, then this is kinda moot, but I'm not sure how far off that is.
Comment 3 Nathan Larson 2014-02-16 04:07:28 UTC 
The code in [[mw:Extension:InterwikiMap]] for parsing and using the contents of the MediaWiki:Interwiki-whitelist might provide inspiration for how to do something similar with the page of questions and answers. Also, some code from [[mw:Extension:ROT13]] might be used, although a stronger encryption algorithm would be needed.
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.

Navigation
Links