Add anonymous stats collection plugin #8291
Conversation
joomla-cms-bot
added
Language Change
| @@ -0,0 +1,7 @@ | |||
| PLG_SYSTEM_STATS="J!Stats" | |||
| PLG_STATS_XML_DESCRIPTION="System Plugin that sends environment statistics to a server controlled by the Joomla! project for statistical analysis. Statistics sent include PHP version, CMS version, Database type and Database version." | |||
| PLG_STATS_UNIQUE_ID_DESC="An identifier that allows us to count unique installs of the plugin. This is sent with the statistics back to the server." | |||
There was a problem hiding this comment.
Should we change "us" to "the Joomla! project
There was a problem hiding this comment.
Does the project in Joomla! project get a capital letter?
There was a problem hiding this comment.
We have both in core. ;) Joomla! project in the new "update mail text" and Joomla! Project in the Backend Update News (com_postinstall).
|
@wilsonge Can You update the Copyright and add the package ans subpackage tags to all files. As well As Travis fails. I would expect that we need testing here? So how Can this be done? |
| <license>GNU General Public License version 2 or later; see LICENSE.txt</license> | ||
| <authorEmail>admin@joomla.org</authorEmail> | ||
| <authorUrl>www.joomla.org</authorUrl> | ||
| <version>1.0.0</version> |
|
I would say just mute https://github.com/joomla/joomla-cms/pull/8291/files#diff-3ed68cf31bdf35dfc6b19cef6e2e7253R137 |
wilsonge
force-pushed
the
stats
branch
2 times, most recently
from
07f365e
to
72af8d5
Compare
|
sorry @dgt41 i just rebased so not sure what you are referring to anymore |
|
|
||
| // Uncomment the following line to enable debug mode (stats sent every single time) | ||
| // define('PLG_SYSTEM_STATS_DEBUG', 1); | ||
|
|
There was a problem hiding this comment.
We miss the default defined call here ;)
There was a problem hiding this comment.
|
@wilsonge I was trying to suggest a testing procedure |
|
You can go here and check your data exists :P http://developer.joomla.org/stats/ |
wilsonge
force-pushed
the
stats
branch
4 times, most recently
from
ddf0518
to
392b01b
Compare
|
OK I just fixed a pretty major bug in the code. Things should work now |
|
@wilsonge you got my data 😃 |
|
Nica |
|
Code style fixes should mean travis is happy |
|
If this is merged, please alpha order the new strings and modify admin en-GB/install.xml |
|
Although a bit late to the party, regardless |
|
Enabled by default? This may be a good thing for the project - lots of data, yum, we can learn lots - and maybe for the user in the long term. But it is not, in my view, a good thing to be doing without explicit permission. Because we want the data, and we believe it will be useful, is no reason to auto collect data from users. I am totally against any auto-collection of data without consent. Saying you can opt-out after it is sent is a bit disingenous (dishonest even). Will that opt-out send a message to the data collection server and delete the data it sent earlier, before the chance to say no? I doubt it. Opt in is always the best for consumers - if your proposal (offering/product/email) is adding value then people will understand and opt in. If people don't, then whatever you are doing isn't really wanted. |
|
Yet again. I know you compare against Microsoft. But how about we compare against our direct competitors. Wordpress collect this data with any kind of opt out at all. Drupal collect this data by default (and I think (but not 100% from glancing through the ticket) you can also not opt out). So I think that what we have is still a better compromise than any of our direct competitors whilst still giving useful information to the project |
|
Once again, just because others do it is not a good enough reason to copy them. Wordpress collect data like this - which is one of the reasons I don't use it Would it really be so hard to make the post install message the opt-in question? A post install message is already generated, so why not use it to get consent? Something like To help the Joomla! project we would like to collect the following information about your install. This will help us improve Joomla! in many ways. The stats are always visible at https://developer.joomla.org/about/stats.html and you can find out more about how we use this information {here} [ ] Don't want to see this again, support Joomla! by auto-sending this data after every update {submit button} |
|
In itself doing it because others do it isn't a reason to copy them. But when you are referring to what other projects do I think it's reasonable for me to refer to other (in my opinion more relevant) projects in my defence :) I explained as you know two different reasons why we want this data in this google group post (https://groups.google.com/forum/?fromgroups=#!topic/joomla-dev-cms/FkdJH74rCqQ) so it's not like we are doing this just because other projects are. |
|
I see why it could help both the project and the end user (the bcrypt thing was a nightmare, as were the discussions around raising the minimum supported PHP version), but it still does not justify taking the data without consent. Ask the question, explain why, gather data with consent. Project_desire !> User_choice Maybe I should have left the Microsoft example out of my post (although I still think that collecting data without explicit consent, by them, WordPress and Drupal is wrong). Telling people you have collected the data after the fact, and telling them it is for their own good, but they can stop it happening again if they really want - when they know it is too late to do anything about the data that was grabbed already - is wrong in so many ways. What I install and where is my business, my data, my information. You, nor anyone else, has the right to know that. I can share it if I want, but you cannot (should not) ever just take that information without my consent. That is the core of my objection to this. Consent. Before data is taken, not after when it is too late. You still have not answered my question regarding the post install message acting as the consent form. Implementing it as part of the post install message will not be affected by 3rd party installers (like it would if the data collection was an option during install), and would give people the choice. If people do not consent to sharing the data, then despite the desire of the project, the users are not comfortable with it. This is their data, their information, they own it and can choose to share or not. Perhaps a compromise, whereby the consent form is displayed as a post install message but if it is not interacted with within (for example) 48hours of the install/update the data is sent. This can be made clear in the message. This would then catch those who can't be bothered to read and review the messages, those who simply don't care about it (one way or the other), as well as those of us who prefer to have a choice. |
|
The post-install system cannot handle the conditions you've requested. It is not designed to give any actionable point beyond a single action button or a dismissal button. Likewise, it is unable to give the specifics of data which you've requested; the system works with static language strings that cannot receive dynamic variables. |
|
Thanks Michael. The simple, glib, response... Then change it. Redesign it to cope with this use case, and postpone implementing the data collection until it is done. The more considered response... Are there any other existing mechanisms that would be able to implement this use case? Would having a 48hour delay in sending automatically be doable? Data about your install (CMS version, database type and version and OS) has been collected and is useful to the Joomla! project. This will be sent to Joomla! 48 hours after your install time unless you disable the plugin. Again, those that care about choice have one. Those that don't read the message probably don't care about it. The project gets their data (from those who actively consent and from those who do not actively say no). Let me finish by saying I don't object to the project wanting the data, nor the collection of it, and I see how it could be useful. I just don't like the lack of consent, the lack of choice, of not being asked "Is this OK?" |
|
For non-native English readers... I used the word "glib" in my previous post. It means "readily fluent, often thoughtlessly, superficially, or insincerely so: It has nothing to do with the Glib project https://wiki.gnome.org/Projects/GLib It just occurred to me that not everybody reading would understand the word, and that a FOSS project of that name exsits (and maybe more people know of it than of the English meaning of the word). |
|
So was thinking about this today, and I think I have a great compromise. During install/update generate some sort of time/date info of when the plugin was installed. In the plugin code we can allow a 24 hour delay before data is allowed to be collected based on that time/date. This gives Joomla the ability to enable the plugin by default, but give enough time for people to make an executive decision based on postinstall messages. |
|
Already proposed with #8346 which would give a 6hrs delay to first sending data. |
|
Make sure these plug-ins are disabled by default and are opt-in. And not the other way around like it is now. Even if you do not gather any private information. This is not allowed by several countries. So to apply the laws for such countries set it disabled and change to opt-in. Or you most certain will get law suits. You will not be the first who will be in trouble for such issues. I understand the great values you see in this. But this will be probably a show stopper for me and will change to an other csm who does not have such plugins and/or gather their information like this. |
|
We are the last of the major 3 CMS who doesn't have this feature. Both Wordpress and Drupal already have this with no opt-out's at all. They haven't been given lawsuits against them yet ;) |
|
Because many people do not know this yet, they feel save to do this. |
|
We have checked the legalities out carefully. We are fine to do it. And by giving the parameter we are still offering better than either Drupal or Wordpress. |
|
@jjsjjs The EU law that I think you are referring to covers personal information. The intersection of the set of websites and the set of EU citizens very likely contains no members. |
|
Well if so, then keep the users your friend by not scare them off with this force of ignorance by putting it default enabled with an opt-out. Show them you respect them even if it is save data you collect by setting it disabled by default with an opt-in. Many people do not like the point of view you now show. It's still Beta so you can still reverse it. |
|
Have you tested the latest beta package or followed any of the referenced items in this thread? If so you'll note that the issues you've raised here have already been addressed. |
|
Explicitly not, because of what i've read. In the above thread i don't see it addressed. I only see arguments. For me addressed would mean it is solved for the anctious people so the enabled by default and opt-out are gone. |
|
I'd suggest reading then. But to sum it up, the plugin stays enabled by default with a delay before it will start sending data (the plugin is how the user is prompted to send data, turn it off by default and you don't even get the prompt which defeats the purpose of having an opt-in or -out system to begin with). |
|
That would be far too easy.
|
|
Basically see 8346 as referenced immediately before your first comment |
|
That would be the best as you say, mbabker. No prompt for it is no problem at all. You could set a text message that there is such an plugin available. Like there is now for other things when first install Joomla. Look for example at the CookieLaw. Most people even did not know about it at all. Many Cookies are harmless. There was no opt-out or opt-in. A minister of the Netherlands came with the Law which turn out to an EU law. And have to be noted up front to have an opt-int and/or opt-out depending on the information gathered. If a cookie is only neccessary for functionality then a notice is enough. But when data collecting is needed then an opt-out is obligated. I see this is similair. And i guess a court will also see this as similair, because you will collect data, non-private or not. It's not needed for the functionality of the website, but for future versions. |
|
You are discussing something that has already heappend On 7 February 2016 at 09:29, jjsjjs notifications@github.com wrote:
Brian Teeman |
|
Request for a lock on the.is topic. This is not the right place for that discussion! |
|
The point in that law is the "personal data" part. It's not about collecting generic data like server infrastructure (part of which is shared with public on every request). |
|
Locked |
No description provided.