Convert Mailing Lists into special users, similar to bot users
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	epriestley
	Jun 2 2015, 2:53 PM

Description

See some discussion in T6367. Particularly after the introduction of Spaces (T8376), we need to start applying proper viewer-based policy checks to outbound email.

There is no way to policy check a mailing list, and all the options are bad:

Using the logged-out user will break mail for non-public installs, in the general case.
Using the omnipotent user will turn mailing lists into a gaping policy hole.
Using the actor will carry the issues in T6367 forward.

I think the cleanest solution here is to turn mailing lists into real users, similar to "Bot" users. These users would have all the restrictions that Bot users do, except that they would receive mail and they would be unable to use the Conduit API.

Then these users can be added to spaces and projects, included in policies, etc.

Some alternatives might be:

Generalize Viewer and let other objects be viewers: I think this is a grotesque amount of effort for basically no benefit.
Remove mailing lists entirely: I'd love to be able to do this but I think this functionality is important for too many installs.
Stop formally supporting them and offer some kind of hack-around: Arguable, but I think a reasonable hack-around is probably about the same amount of work as sort-of-reasonable support. Particularly, we need to provide a way to migrate, which is most of the work.

Revisions and Commits

		Restricted Differential Revision	Restricted Diffusion Commit
rP Phabricator
	Audited		rP908b426ee20d Put PhabricatorMetaMTAMailingList back to keep bin/storage adjust happy for now
		D13139	rP69ee51dc5375 Note extra mailing list settings in documentation
		D13137	rPd4a2034d2f8c Allow administrators to configure "Email Format" settings for lists
		D13138	rPa4d874287ff6 Allow administrators to configure "Email Settings" settings for lists
		D13136	rP14e318cb16d7 Allow administrators to edit the "Account" panel for mailing lists and bots
		D13129	rPba6cb62b492f Remove mailing lists application
		D13128	rP249ee9f1048a Migrate mailing lists to mailing list users
		D13123	rP992c19957760 Add "Mailing List" users
		D13122	rP13f0dac0ed7c Expand the power of user filtering
		D13125	rPe0a3e6ba3b87 Allow administrators to manage addresses for mailing list users
		D13120	rP8440b3efc0e3 Update account roles documentation and remove actAsUser

Related Objects
Search...

Status	Assigned	Task
		Restricted Maniphest Task
Resolved	epriestley	T1315 Phacility Launch Status
Resolved	epriestley	T2776 Phacility (High Priority)
		Restricted Maniphest Task
		Restricted Maniphest Task
		Restricted Maniphest Task
		Restricted Maniphest Task
Resolved	epriestley	T2795 Phacility (Mid Priority)
Open	None	T6008 Editing files and contributing changes via web
Open	epriestley	T182 Commit into repository directly from differential
		Restricted Maniphest Task
		Restricted Maniphest Task
		Restricted Maniphest Task
		Restricted Maniphest Task
Resolved	epriestley	T603 Support permissions/policies in all Phabricator applications
Resolved	None	T6787 Clarify UI for Objects with a non-default Policy
Resolved	epriestley	T3820 Implement top-level "Spaces" that provide policy isolation to groups of objects
Resolved	epriestley	T8376 Develop Spaces (v1)
Resolved	epriestley	T8377 Build the core "Spaces" Application
Open	None	T7004 Don't send email whilst online
Open	None	T9891 Verify WMF use cases are accommodated after Herald Outbound Rules resolves
Open	None	T5791 Write Herald rules for outbound mail
Wontfix	epriestley	T7047 Add user preference for diffs in emails
Resolved	epriestley	T6367 Send email with recipient's language and access levels, not sender's
Resolved	epriestley	T8387 Convert Mailing Lists into special users, similar to bot users

Event Timeline

epriestley created this task.Jun 2 2015, 2:53 PM

epriestley claimed this task.

epriestley raised the priority of this task from to Normal.

epriestley updated the task description. (Show Details)

epriestley added projects: Mail, Mailing Lists.

epriestley merged a task: T4877: "Mailing lists" are not documented.Jun 2 2015, 2:58 PM

epriestley added subscribers: renoirb, qgil, epriestley.

epriestley merged a task: Restricted Maniphest Task.Jun 2 2015, 3:00 PM

epriestley added subscribers: eadler, sophiebits, joshuaspence, csilvers.

epriestley merged a task: Restricted Maniphest Task.Jun 2 2015, 3:03 PM

epriestley added a subscriber: colegleason.

epriestley added a revision: D13120: Update account roles documentation and remove actAsUser.Jun 2 2015, 3:37 PM

cburroughs added a subscriber: cburroughs.Jun 2 2015, 4:33 PM

epriestley added a revision: D13122: Expand the power of user filtering.Jun 2 2015, 5:27 PM

epriestley added a revision: D13123: Add "Mailing List" users.Jun 2 2015, 6:28 PM

epriestley added a revision: Restricted Differential Revision.Jun 2 2015, 6:39 PM

D13124 shows up as Unknown Object (Differential Revision). for me. Something meta going on here?

It's in closed-source (Phacility) code, and makes the "import into phacility.com" tools aware that they shouldn't try to import mailing lists.

(It's supposed to say "Restricted Revision" instead; there's a bug for that somewhere.)

epriestley added a revision: D13125: Allow administrators to manage addresses for mailing list users.Jun 2 2015, 6:59 PM

epriestley added a revision: D13128: Migrate mailing lists to mailing list users.Jun 2 2015, 10:19 PM

epriestley added a revision: D13129: Remove mailing lists application.Jun 2 2015, 10:26 PM

eadler added a project: FreeBSD.Jun 2 2015, 10:33 PM

I'm going to evaluate giving administrators access to the "Language" and "Email Preferences" panels if they aren't too much of a mess to implement the user/viewer split on, but I think that's all that remains here.

@epriestley the latter is particularly important for the FreeBSD case. Already users are getting annoyed at the sheer amount of email that phabricator generates, so having a way to minimize that for particular mailing lists would be great.

eadler moved this task from Backlog to Important on the FreeBSD board.Jun 3 2015, 4:32 AM

@klimek, heads up about these changes since I know you're a big mailing list user, too. I'll publish guidance for installs soon (likely in the "Upgrading" section of the weekly Changelog).

@epriestly - thx for the heads up. /me fears the next integrate ;)

epriestley mentioned this in T8376: Develop Spaces (v1).Jun 3 2015, 2:04 PM

epriestley added a revision: D13136: Allow administrators to edit the "Account" panel for mailing lists and bots.Jun 3 2015, 2:16 PM

epriestley added a revision: D13137: Allow administrators to configure "Email Format" settings for lists.Jun 3 2015, 2:24 PM

epriestley added a revision: D13138: Allow administrators to configure "Email Settings" settings for lists.Jun 3 2015, 2:28 PM