It's great that we now support OIDC login. I wonder if we should add an option to the event creation page that allows us to force users to be logged in, in order to submit results to that particular event.
In order to combat spam, it could be an effective strategy to require login for most of our common test days, and only allow anonymous login on special test days that will likely bring a lot of contributors without a Fedora account (could be e.g. a CoreOS community, Libreoffice community, IoT, I don't know, Sumantro probably has a better idea).
Do we want this, or do we want to wait first to see if we have spam issues again?
1) The spam issues are not really repeating 2) I'm not sure we want to limit our audience to "people with FAS" 3) If you wanted to discourage anonymous results, but still allow them, I'd rather add the captcha (as is on the login form) to the result submission login too. Trust me, solving captcha gets old fast :D
Also, on a technical level, it is now way easier to delete unwanted data from the app too.
I don't really want to discourage anonymous results. I just wonder whether our assumption that "we often get results from non-fedora contributors" is valid. And whether we want to have the logged-in-only functionality available in advance as a precaution, to flip it on immediately when we see issues.
That can now be easily quantified, after couple testdays :)
Log in to comment on this ticket.