Honestly, there's no reason _at all_ that the versioncontrol_account_status module should be in here. AFAICT, it was originally created as part of the 1:1 feature parity attempt with vcapi vis-a-vis cvslog & company. Given the huge variety of different possible ways you could set up an account approval workflow (as demonstrated by the very discussions we're having right now for phase 2 - #781264: Decide on an appropriate git analogue to current CVS account workflow), I see no reason to package one approach with the main api module itself.

Consequently, unless someone raises a legitimate objection, I'm going to rip that whole implementation out. Someone else is free to resuscitate it from CVS history and rebuild it in another project. Or I will, if the need arises.

CommentFileSizeAuthor
#1 0001-Kill-the-account-status-module-completely.patch70.16 KBmarvil07
Support from Acquia helps fund testing for Drupal Acquia logo

Comments

marvil07’s picture

marvil07 CreditAttribution: marvil07 commented
Status: Active » Needs review
Issue tags: +rip
FileSize
0001-Kill-the-account-status-module-completely.patch70.16 KB

sounds reasonable

hint: do not forgot removing the directory from cvs

marvil07’s picture

marvil07 CreditAttribution: marvil07 commented
Status: Needs review » Needs work

avoid forgetting we must have another solution before removing this module

marvil07’s picture

marvil07 CreditAttribution: marvil07 commented
Component: Account Status » API module
Priority: Normal » Major
Issue tags: +git phase 2, +versioncontrol account refactor

This issue is naturally too related with #983926: Remove account class.

This module intersect the user in the account creation form to force an "approval process" by an administrator. It relies on the "account entity" at main vcs api, so it account gets removed from versioncontrol we should need to move some of it to this module(as I started at the other issue).

The idea behind it AFAIK is:
- Provide a drupal UI to manage accounts, and process them inside an "approval process".

One thing to notice here is that versioncontrol_account_status module maintains a list of accounts(uid+repo_id) that have access to a repository, but it is assuming that the approval of the account is done once, so if we have cases like d.o where we have one repo per project, we should need to add an approval per project, which do not really make sense.

One use case for it can be: Using git-daemon(with receive-pack aka all can write) + hooks per repo + versioncontrol_account_status auth plugin(#223891: API change: make authentication management pluggable) which verify against approved accounts we can get a simple authentication mechanism controlled at drupal.

The other natural fit for it is for any CVCS, since many of that menthods uses authentication based on passwords, so accounts are real. It only needs to synchronize passwords(which is done for example at versioncontrol_cvs/xcvs/xcvs-generate-passwd.php)

I am still not really sure if this module must be removed or not :-(

sdboyer’s picture

sdboyer CreditAttribution: sdboyer commented
Status: Needs work » Reviewed & tested by the community

OK, thinking on this even yet MORE, I'm still inclined in the direction that says we strip it out of the api. There's nothing wrong, nothing at all, with backends implementing their own account registration system. But it gets backend-specific SO quickly - the text & options for the account registration page, where to store/what to do with the account information, how to use the account information etc., that I think the difficulties of having it in the API far outweigh the benefits. Especially because the benefits really just come down to avoid a little code duplication. Big deal.

Basically, I see it being 5-10x as much work to come up with good architecture for this in the API as it is to let each backend implement it. If we just stipulate that this system needs to work on top of the new pluggable auth system, then it shouldn't be any problem to push it out there. The most we should have in the API is maybe some kind of messaging layer for doing 'account status'...but we can open an issue for that later if we want it.

Therefore, RTBC. Your patch, marvil07, so you please pull that trigger :)

sdboyer’s picture

sdboyer CreditAttribution: sdboyer commented
Status: Reviewed & tested by the community » Needs work

Dammit.

Thought about this more and poked at the code, and we do need SOMETHING. So let's hold off committing the changes until we've at least opened an issue outlining what ought to be done.

sdboyer’s picture

sdboyer CreditAttribution: sdboyer commented

OK, I'm going to officially back off of this. The more I think about it, the less I feel like I'm approaching a reasonable idea. Other ideas, proposals, brainstorming, whatever, welcome. marvil07, you should also feel free to just run with this, if you have an idea.

marvil07’s picture

marvil07 CreditAttribution: marvil07 commented
Status: Needs work » Postponed

I will be working on #983926: Remove account class as the step 1 of this(see #983926-8: Remove account class for details), postponing this until that gets in.

sdboyer’s picture

sdboyer CreditAttribution: sdboyer commented
Status: Postponed » Fixed

As part of #983926: Remove account class, I removed the account status module entirely. If and when we have time to do a good job of reimplementing that mess, we can have it back in - but we can't let it hold back a stable release and/or the git migration as a whole. And that's the point we've gotten to.

Status: Fixed » Closed (fixed)
Issue tags: -git phase 2, -rip, -versioncontrol account refactor

Automatically closed -- issue fixed for 2 weeks with no activity.

Issue tags: +git phase 2, +rip, +versioncontrol account refactor

Restoring issue tags, see #2125755: System messages removed all issue tags during D7 upgrade.