Dne pondělí 17. dubna 2023 9:18:57 CEST, Per Jessen napsal(a):
Vojtěch Zeisek wrote:
Dne neděle 16. dubna 2023 13:04:55 CEST, Per Jessen napsal(a):
For starters, there will be 700-800 members who will all need to set up their systems for such a new feature. This will no doubt require some hand-holding, never mind how well it is described on that wiki page
I'd guess this should be solvable "in standard way", i.e. ML, fora, IRC, ...
Many people look at this slightly differently. When they have been issued an account and some credentials, they often feel entitled to help. Equally often, problems are perceived to be caused by whoever provided the account and credentials.
Well, might be, but still I'd say "standard" existing support is enough, regardless anyone's perceptions.
Next, there is userid+password management. People will need to authenticate to use their accounts - the easiest (implementation) is userid+pwd. People forget them, want to change them, need to setup an account on a new system etc etc. Another question here is - do we add all of them to our internal accounts system or do we maintain a separate accounts system?
IMHO the best would be to use existing openSUSE accounts as for any other part of our infrastructure.
Yes, probably. I suspect the issue would be - today, the vast majority of our members don't have an account - with email suddenly requiring an account, everybody will want one. Today, we already have one or two account support requests, per week.
Hmmm... An account You need practically for everything, don't You? Bugzilla, OBS, fora, wiki, getting @opensuse.org alias, Weblate, ... For ML You can be subscribed with any mail, OK, but for anything else You should already have an account and credentials, don't You?
Third, we will need some sort of rate limiting - accounts are stolen all the time, we don't want anyone abusing our mail system and sending thousands of mails when an acocunt has been compromised. (not really a support matter though).
Yep, there should be dedicated volunteer for that, but accounts can be stolen even now - how is this solved now?
Today it isn't so important - a compromised account might give someone access to bugzilla, but not much else. A compromised email account can cause our mailserver to be blacklisted, thus affecting everyone.
True. This most be already solved thousand times. How is this practically processed in comparable organizations? Apart of technical maintenance, this would be IMHO the most demanding part, so when we see how demanding, we see if it'd be worth of the effort.
I'm sure I have forgotten something :-)
Might be, but it sound doable. :-)
Yes, from a purely technical point of view, it is very much doable and I would be happy to set it up.
I might be able to help with some other parts. -- Vojtěch Zeisek https://trapa.cz/ Komunita openSUSE GNU/Linuxu Community of the openSUSE GNU/Linux https://www.opensuse.org/