Page MenuHomePhabricator
Create Task
Maniphest T88620

Hacking: Provide a clickthrough workflow for file copyright email permissions
Open, MediumPublic
Actions

Description

The current Commons workflow for file copyright permissions requires the copyright owner to email OTRS, if unable to specify a free license for the files in a website where they are published.

File are uploaded with {{OTRS-pending}} on it, and the OTRS agent verifies the permission by replacing the template with {{OTRS received}}. Before or after the upload, often contacted by an editor, the copyright owner emails a permission to OTRS, referring to the specific works in question.

There are many problems with this:

  • The burden of writing a correct boilerplate permission is on the uploader. This does not works well in practice; less experienced users often omit some obscure but important requirement (e.g. permission for commercial reuse) and the OTRS agent has to refuse. This annoys uploaders and copyright holders and wastes the time of OTRS agents.
  • The process involves more manual work for the OTRS agent than ideal (OTRS backlogs are huge) and extra work for the uploader.
  • The software has no concept of permissions; the workflow is enforced by external hacks (e.g. AbuseFilter to prevent non-OTRS-agent users from adding {{OTRS received}}) which makes it hard to reuse in other wikis.

One solution would be to use a post-upload permission workflow with a clickthrough interface: the editor uploads the file to non-public storage, receives a secret link, sends it to the copyright holder, the copyright holder can see the image and give permission via clickthrough. The text of the permission does not depend on the editor or the copyright holder (neither of which are usually very knowledgeable about technical details of free content licensing), and OTRS agents only get involved once a boilerplate text which has been pre-approved by them is accepted.

A possible implementation:

  • When uploading via Special:Upload[Wizard], there is a checkbox "I need to request permission for this image".
  • When the box is checked, the upload goes to the permission stash (a new type of upload stash). The uploader can add license, description and other metadata, but the image is not public, does not appear on recent changes etc.
  • Unlike the normal stash, the image is still visible to anyone (not just the uploader) via a new special page Special:PermissionRequest/<secret token>. The page has a boilerplate text for the selected license; the text can be accepted via clickthrough.
  • The uploader only needs to send the link to this page to the copyright holder. After the copyright holder accepts by clickthrough another secret link is generated (along with some boilerplate text for an email message). The copyright holder needs to send that link to OTRS in email.
  • OTRS agents can verify the permission by clicking on the secret link, reviewing the permission, and clicking accept, at which point the image becomes public.
  • If the verification does not happen for a given period of time, and the image gets deleted.

The Lyon Hackathon will be a good chance to come up with initial user stories/mocks and think about the future of uploadstash.

This card tracks a proposal from the 2015 Community Wishlist Survey: https://meta.wikimedia.org/wiki/2015_Community_Wishlist_Survey

This proposal received 9 support votes, and was ranked #68 out of 107 proposals. https://meta.wikimedia.org/wiki/2015_Community_Wishlist_Survey/Moderation_and_admin_tools#OTRS_permissions_checker

Related Objects

Event Timeline

Tgr created this task.Feb 4 2015, 11:02 PM
Tgr raised the priority of this task from to Needs Triage.
Tgr updated the task description. (Show Details)
Tgr added projects: MediaWiki-Uploading, MediaWiki-File-management, Epic.
Tgr subscribed.
Restricted Application added a project: Multimedia. · View Herald TranscriptFeb 4 2015, 11:02 PM
Restricted Application added a subscriber: Aklapper. · View Herald Transcript
MichaelMaggs subscribed.Feb 5 2015, 3:16 AM
Ijon subscribed.Feb 5 2015, 3:28 AM
Rubin16 subscribed.Feb 5 2015, 3:57 AM
Ariconte subscribed.Feb 5 2015, 4:00 AM
Qgil added a project: Znuny.Feb 5 2015, 7:53 AM
Qgil subscribed.
Nemo_bis renamed this task from Provide a clickthrough workflow for file copyright permissions to Provide a clickthrough workflow for file copyright email permissions.Feb 5 2015, 8:24 AM
Nemo_bis edited projects, added Wikimedia-Media-storage; removed MediaWiki-File-management, MediaWiki-Uploading.
Nemo_bis set Security to None.
Nemo_bis subscribed.Feb 5 2015, 8:31 AM

This only works for the case where the copyright owner is also able to perform the upload: do we have statistics on how common this case is?

The gist of this proposal is to keep using email for permissions, but move the content of the permission to an attachment stored on wiki. Is this really worth it? Can't we just provide a form which produces a correct email? Ideally the output of the form would just be a mailto: link with all the necessary content; but many don't know how to use email, so we might need to connect to their mailbox directly.

Nemo_bis updated the task description. (Show Details)Feb 5 2015, 8:35 AM
Nemo_bis updated the task description. (Show Details)Feb 5 2015, 8:38 AM
Rjd0060 subscribed.Feb 5 2015, 10:36 AM
Krenair subscribed.Feb 5 2015, 12:52 PM

I think we'd also get requests for the ability to move images back into the permission stash, because some users will inevitably misunderstand or just forget to tick "I need to request permission for this image".

Matthewrbowker subscribed.Feb 5 2015, 5:56 PM
Nick subscribed.Feb 6 2015, 9:03 PM
Matthewrbowker claimed this task.Feb 6 2015, 11:01 PM
Matthewrbowker triaged this task as Medium priority.
Tgr added a comment.Mar 2 2015, 8:56 PM
In T88620#1017337, @Nemo_bis wrote:

This only works for the case where the copyright owner is also able to perform the upload: do we have statistics on how common this case is?

I don't see why that would be the case.

The gist of this proposal is to keep using email for permissions, but move the content of the permission to an attachment stored on wiki. Is this really worth it? Can't we just provide a form which produces a correct email? Ideally the output of the form would just be a mailto: link with all the necessary content; but many don't know how to use email, so we might need to connect to their mailbox directly.

Email is somewhat understood as a legal tool for creating contracts, and has some value as an audit trail. Being able to show that the email was sent by the copyright holder, and the copyright holder organization being able to use the email details to figure out (for example) which employee exactly wrote it is important. So I think we need to stick with email and it needs to be sent by the copyright holder from their own mail system.

Using mailto: instead of / next to showing the boilerplate text is certainly possible; I'm not sure about the user-friendlyness of mailto: links.

Steinsplitter removed Matthewrbowker as the assignee of this task.Mar 3 2015, 10:00 AM
Nemo_bis added a comment.Mar 5 2015, 3:42 PM

Email is somewhat understood as a legal tool for creating contracts, and has some value as an audit trail.

Some value compared to what? Sources appreciated. The best tool is direct publication under a free license, according to the Creative Commons website.

Tgr added a comment.Mar 6 2015, 1:22 AM
In T88620#1092250, @Nemo_bis wrote:

The best tool is direct publication under a free license, according to the Creative Commons website.

I'm not sure about that. What if six month later they redo their website, and another six month later they demand to know by what right do you use the image? Especially in large organizations, where employees come and go, it's easily possible that no record remains that someone gave a permission at some point.

Of course, direct publication + email is better than just email, but if someone is willing to go the direct publication route, they can just copy/paste some boilerplate text, I don't think a tool is warranted for that. But that would put most of the burden on the copyright holder (and thus decreasing the probability of success) - sending a permission email is much simpler than modifying a web page.

Also, this tool should be implemented with reusability in mind - many projects allow non-free images in which case direct publication is not an option.

Tgr added a project: Wikimedia-Hackathon-2015.Mar 6 2015, 1:24 AM

Refining the workflow and creating a mockup or prototype could be a hackathon project.

Qgil unsubscribed.Mar 6 2015, 7:30 AM
Qgil subscribed.
Ariconte unsubscribed.Mar 6 2015, 8:05 AM
Qgil moved this task from Backlog to Hacking proposals on the Wikimedia-Hackathon-2015 board.Mar 12 2015, 11:53 AM
Steinsplitter moved this task from Incoming to Backlog on the Znuny board.Mar 12 2015, 12:38 PM
Rberchie subscribed.Mar 24 2015, 12:15 PM
Qgil added a comment.May 18 2015, 11:12 AM

It is time to promote Wikimedia-Hackathon-2015 activities in the program (training sessions and meetings) and main wiki page (hacking projects and other ongoing activities). Follow the instructions, please. If you have questions, about this message, ask here.

Tgr claimed this task.May 21 2015, 3:31 PM
Tgr renamed this task from Provide a clickthrough workflow for file copyright email permissions to Hacking: Provide a clickthrough workflow for file copyright email permissions.May 21 2015, 9:52 PM
Tgr updated the task description. (Show Details)
Tgr removed a project: Wikimedia-Hackathon-2015.May 25 2015, 4:22 PM
Nemo_bis unsubscribed.Jun 3 2015, 3:55 PM
Jdforrester-WMF moved this task from Untriaged to Backlog on the Multimedia board.Sep 4 2015, 6:27 PM
Restricted Application added subscribers: Steinsplitter, Matanya. · View Herald TranscriptSep 4 2015, 6:27 PM
Tgr mentioned this in T111792: Commons private-to-public setting.Sep 8 2015, 8:28 PM
Jdforrester-WMF removed a project: Multimedia.Sep 21 2015, 4:01 PM
DannyH added a project: Community-Wishlist-Survey-2015.Dec 7 2015, 10:41 PM
Restricted Application added a project: Commons. · View Herald TranscriptDec 7 2015, 10:41 PM
zhuyifei1999 moved this task from Incoming to Backlog on the Commons board.Dec 8 2015, 11:55 AM
Rjd0060 added a subscriber: MZMcBride.Dec 10 2015, 8:36 PM
DannyH moved this task from Wishlist 51-on to Wishlist 51-on on the Community-Wishlist-Survey-2015 board.Dec 15 2015, 8:47 PM
DannyH moved this task from Wishlist 51-on to Wishlist 51-on on the Community-Wishlist-Survey-2015 board.Dec 15 2015, 9:13 PM
Aklapper added a comment.Jan 21 2016, 2:53 PM
IMPORTANT: If you are a community developer interested in working on this task: The Wikimedia Hackathon 2016 (Jerusalem, March 31 - April 3) focuses on #Community-Wishlist-Survey projects. There is some budget for sponsoring volunteer developers. THE DEADLINE TO REQUEST TRAVEL SPONSORSHIP IS TODAY, JANUARY 21. Exceptions can be made for developers focusing on Community Wishlist projects until the end of Sunday 24, but not beyond. If you or someone you know is interested, please REGISTER NOW.
Restricted Application added a subscriber: JEumerus. · View Herald TranscriptJan 21 2016, 2:53 PM
matmarex edited projects, added MediaWiki-General; removed Wikimedia-Media-storage.Jan 26 2016, 3:59 PM
matmarex edited projects, added MediaWiki-extension-requests; removed MediaWiki-General.
DannyH updated the task description. (Show Details)Feb 6 2016, 12:17 AM
Quiddity mentioned this in T135422: Wishlist tasks suggested for the Wikimania Hackathon 2016.May 31 2016, 6:49 AM
Quiddity added a project: Wikimania-Hackathon-2016.Jun 9 2016, 5:31 AM
Restricted Application added subscribers: TerraCodes, Poyekhali. · View Herald TranscriptJun 9 2016, 5:31 AM
Quiddity moved this task from Backlog to Projects on the Wikimania-Hackathon-2016 board.Jun 9 2016, 5:41 AM
Basvb subscribed.Jun 15 2016, 1:18 AM
tom29739 subscribed.Sep 13 2016, 10:11 PM
Quiddity added a project: Outreachy (Round-13).Sep 21 2016, 11:43 PM
Quiddity subscribed.

Notes:
This task has some potential, as a possible candidate for a strongly qualified Outreachy/GSoC candidate.

The planned implementation makes sense to at least one OTRS agent, but would definitely need to be verified with a larger number of other OTRS agents, before development progressed.

@Tgr is potentially willing to be the primary mentor, if his other proposed mentor project isn't accepted first.

Tgr added a comment.Sep 22 2016, 12:26 AM

Note that the linked wishlist discussion was about (part of) the same use case but a different proposal.

OldUser02 awarded a token.Oct 9 2016, 1:03 PM
OldUser02 subscribed.
Tbayer subscribed.Nov 26 2016, 1:55 AM
Harej moved this task from Incoming to Confirmed Extension Requests on the MediaWiki-extension-requests board.Jan 29 2018, 9:49 PM
ESM subscribed.Mar 10 2018, 12:04 PM
ESM added subscribers: KRLS, Toniher, Nemo_bis.Mar 23 2018, 3:46 PM

Guess I'm doing some task necromancy here, but the current file copyright pemissions workflow is a pet peeve of mine and thought that we could try to improve it somehow during next Wikimedia Hackathon.
I'm not a developer myself, but I'd like to help to make this tool and workflow better so that we don't lose so many file uploads due to a rather obscure process.

What do you think?
Pinging those users that seemed the most active in the thread & other that might be interested to know: @Tgr @Qgil @Nemo_bis @Krenair @Aklapper @Quiddity @Toniher @KRLS

SandraF_WMF subscribed.Apr 11 2018, 10:25 AM
Galobtter subscribed.Mar 7 2019, 7:27 AM
OldUser01 subscribed.Feb 1 2020, 1:09 PM
Restricted Application added a subscriber: Liuxinyu970226. · View Herald TranscriptFeb 1 2020, 1:09 PM
Aklapper removed Tgr as the assignee of this task.Jun 19 2020, 4:26 PM

This task has been assigned to the same task owner for more than two years. Resetting task assignee due to inactivity, to decrease task cookie-licking and to get a slightly more realistic overview of plans. Please feel free to assign this task to yourself again if you still realistically work or plan to work on this task - it would be welcome!

For tips how to manage individual work in Phabricator (noisy notifications, lists of task, etc.), see https://phabricator.wikimedia.org/T228575#6237124 for available options.
(For the records, two emails were sent to assignee addresses before resetting assignees. See T228575 for more info and for potential feedback. Thanks!)

Tgr added a comment.Jun 20 2020, 12:36 PM

Relgen addressses a lot of these issues, although, being a gadget, it's less integrated.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits
pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy