Page MenuHomePhabricator
Create Task
Maniphest T294063

Consider changing the text "CSRF" to "Failed" or similar
Closed, ResolvedPublic
Actions

Description

In T277277: Modernize icons used in SecurePoll ListPage and VotePage, the decision was made to change the red "x" indicating a failed CSRF check to the letters "CSRF", which is not really clear as to what this actually means. Perhaps it should be tweaked to "CSRF failed" or just "Failed", for example, to make this clearer to those scrutinising these votes.

Details

Related Changes in Gerrit:
SubjectRepoBranchLines +/-
i18n: Changing 'CSRF' to 'Failed' to clarify why it's markedmediawiki/extensions/SecurePollmaster+1 -1
Customize query in gerrit

Related Objects
Search...

Event Timeline

jrbs created this task.Oct 21 2021, 9:07 PM
Legoktm subscribed.Oct 21 2021, 9:09 PM

CSRF stands for https://en.wikipedia.org/wiki/Cross-site_request_forgery - it's mostly technical jargon that shouldn't normally be shown to users, typically we say something like "session failure".

Legoktm unsubscribed.Oct 21 2021, 9:09 PM
jrbs added a subscriber: Legoktm.Oct 21 2021, 9:11 PM
In T294063#7449551, @Legoktm wrote:

CSRF stands for https://en.wikipedia.org/wiki/Cross-site_request_forgery - it's mostly technical jargon that shouldn't normally be shown to users, typically we say something like "session failure".

Yup, though it is seen by users scrutinising votes on votewiki (admittedly this will pretty much only ever be Stewards or staff looking at this stuff) but it could still be clearer. The four scrutinisers for the MCDC elections were pretty confused by the change.

jrbs removed a subscriber: Legoktm.Oct 21 2021, 9:11 PM
Tks4Fish subscribed.Oct 21 2021, 10:22 PM
Tks4Fish claimed this task.Nov 18 2021, 2:24 PM
gerritbot added a comment.Nov 18 2021, 2:31 PM

Change 739809 had a related patch set uploaded (by Tks4Fish; author: Tks4Fish):

[mediawiki/extensions/SecurePoll@master] i18n: Changing 'CSRF' to 'Failed' to clarify why it's marked

https://gerrit.wikimedia.org/r/739809

gerritbot added a project: Patch-For-Review.Nov 18 2021, 2:31 PM
gerritbot added a comment.Nov 30 2021, 3:03 PM

Change 739809 merged by jenkins-bot:

[mediawiki/extensions/SecurePoll@master] i18n: Changing 'CSRF' to 'Failed' to clarify why it's marked

https://gerrit.wikimedia.org/r/739809

Maintenance_bot removed a project: Patch-For-Review.Nov 30 2021, 3:10 PM
ReleaseTaggerBot added a project: MW-1.38-notes (1.38.0-wmf.12; 2021-12-06).Nov 30 2021, 4:00 PM
Tks4Fish closed this task as Resolved.Dec 18 2021, 4:53 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits