-
-
Notifications
You must be signed in to change notification settings - Fork 6.8k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Add options to filter registrations on invite request text #15275
base: main
Are you sure you want to change the base?
Add options to filter registrations on invite request text #15275
Conversation
7b98bc4
to
2e127b2
Compare
Another idea that came to my mind is to use regex to disallow reserved usernames like admin, root etc. |
50906c8
to
6b81f27
Compare
Love to see it. |
There's already a list of reserved usernames! Though it's not regex, it's configurable. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
General thoughts:
- Making admins input regex directly will backfire. First, it's not very user-friendly and people will mess up the separators and escaped characters and what not (we've been through this with HTML already). Secondly, it's dangerous because people will accidentally create slow regexes. It would have to be something like our phrase filter form instead
- Too many settings on one page. We need to begin splitting up settings into separate pages, like a page dedicated to sign-ups or whatever. The form is too huge.
Agreed wrt. regexps not being very user-friendly, although I do think being able to write regexps here is useful, maybe each filter could be either a word or a regexp. Wrt. slow regexps, only the instance admins can set them, and they are only applied to registrations, so I really don't think that's an issue. I also agree with the fact the site settings would benefit being split into different pages, but I'm not too sure how they should be split. |
Maybe I could split this PR in 3:
|
6b81f27
to
c72cb7e
Compare
c72cb7e
to
cfd2e0d
Compare
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
bump |
0f3c8ec
to
462bdb3
Compare
f9719b0
to
383d81d
Compare
383d81d
to
e36f798
Compare
ping @Gargron |
8c345bd
to
8e6b7c2
Compare
ping @Gargron |
8e6b7c2
to
024d312
Compare
Rebased. Again. cc @Gargron |
Wow, this is a great start! |
instead of allowing "plain" regex, you instead could use regular wildcards (that are already wildly used) like at least almost everyone understands what star means in normal wildcard environments. you could even go so far to make it understand (web)paths by differentiating |
Bump.. Is there a possibility this can get merged? We really, really, reallllllyyy need something against the bots.. |
024d312
to
11ad100
Compare
11ad100
to
42ecd55
Compare
Rebased again. |
42ecd55
to
e499cc8
Compare
This pull request has merge conflicts that must be resolved before it can be merged. |
This partially addresses #13269 and #10742 by adding registration text filters: the rationale being that spambots frequently feel invited to paste their crap into the invite request field, so providing a way to filter those with keywords and regexps seem useful.
Admin and moderation interfaces
Adding a filter
Regexp validation
Listing filters (mod and admin-facing)
Audit log (mod and admin-facing)
Registration form (user-facing)