Enable SecurePoll extension and electionadmin user group on enwiki
Open, Stalled, Needs TriagePublic
Actions

Assigned To

None

Authored By

	Novem_Linguae
	Oct 27 2024, 3:12 PM

Description

Rationale

On April 9, 2025, an RFC closed with consensus to have additional English Wikipedia administrator elections at a cadence of approximately every 5 months. https://en.wikipedia.org/wiki/Wikipedia:Requests_for_adminship/2024_review/Phase_III/Administrator_elections

Having local SecurePoll set up, instead of having WMF T&S set up polls for us on VoteWiki, is much more scalable in the long run. WMF T&S is often busy, and often needs to schedule our elections in a way that doesn't overlap with their other elections.

Consensus

An October 2024 RFC found consensus to activate SecurePoll and activate the electionadmin user group on English Wikipedia: https://en.wikipedia.org/wiki/Wikipedia:Village_pump_(proposals)/Archive_214#Enabling_SecurePoll_elections_with_the_electionadmin_right

Steps

enable SecurePoll on enwiki
resolve sub-tickets T301180: Allow local wikis to set up elections and T384302: SecurePoll: Restrict creation of foreign and global elections
- get code review for https://gerrit.wikimedia.org/r/1134659 and have it ride the train
- deploy https://gerrit.wikimedia.org/r/1134660 via a backport window
- consult with Trust & Safety Product team to see if any other modifications to SecurePoll are needed for T301180: Allow local wikis to set up elections to proceed
see if this needs approval from Selena Deckelmann. in an email with me on Nov 20, 2024, she wrote "You can make me the person who needs to approve, and I'll see about assigning it to a correct owner once we identify that person."
deploy a patch enabling the electionadmin user group on enwiki ( https://gerrit.wikimedia.org/r/c/operations/mediawiki-config/+/1083870 )

Details

	Subject	Repo	Branch	Lines +/-
	Enable electionadmin user group on enwiki	operations/mediawiki-config	master	+7 -0

Customize query in gerrit

Related Objects
Search...

Status	Subtype	Assigned	Task
Stalled		None	T378287 Enable SecurePoll extension and electionadmin user group on enwiki
Stalled	Feature	None	T301180 Allow local wikis to set up elections
Open		None	T335201 Investigation: What needs to change to allow local wikis to run their own elections?
Resolved		JWheeler-WMF	T209892 SecurePoll is not compatible with GPG 2.1+
Resolved	Feature	SD0001	T373950 SecurePoll's "active wiki" dropdown should be a config option and not active on all votes
Resolved	Feature	None	T377531 Ability to edit polls should be unbundled from securepoll-view-voter-pii / electionadmin
Resolved		Novem_Linguae	T384302 SecurePoll: Restrict creation of foreign and global elections

Event Timeline

Novem_Linguae created this task.Oct 27 2024, 3:12 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 27 2024, 3:12 PM

NightWolf1223 subscribed.Oct 27 2024, 3:21 PM

Soni subscribed.Oct 27 2024, 3:45 PM

Novem_Linguae updated the task description. (Show Details)Oct 27 2024, 4:16 PM

Nemoralis added a parent task: T301180: Allow local wikis to set up elections.Oct 27 2024, 5:23 PM

Nemoralis added a project: Wikimedia-Extension-setup.

The SecurePoll extension is already installed on enwiki.

Novem_Linguae updated the task description. (Show Details)Oct 27 2024, 5:42 PM

A_smart_kitten subscribed.Oct 27 2024, 6:21 PM

Stang subscribed.Oct 28 2024, 6:27 AM

Novem_Linguae updated the task description. (Show Details)Oct 28 2024, 8:03 AM

DreamRimmer subscribed.Oct 28 2024, 4:24 PM

Change #1083870 had a related patch set uploaded (by Dreamrimmer; author: Dreamrimmer):

[operations/mediawiki-config@master] Enable electionadmin user group on enwiki

https://gerrit.wikimedia.org/r/1083870

gerritbot added a project: Patch-For-Review.Oct 28 2024, 5:41 PM

Novem_Linguae updated the task description. (Show Details)Oct 28 2024, 5:46 PM

Novem_Linguae updated the task description. (Show Details)Oct 29 2024, 8:42 AM

I suggest stalling this until T377531 is resolved.

At the moment, it sounds like enwiki wants to put all the SecurePoll perms in the electionadmin user group. Having all the perms in the same group that they were basically in before means that the unbundling in T377531 will have no effect on this ticket, right? May not need to stall this.

As for the social/consensus side of things, we can create the electionadmin group as a first step, then not give it to anyone until we hammer out the details of how it will be given out. The exact process for giving it out is still being discussed on enwiki, but there is a consensus to have SecurePoll on enwiki and to have electionadmins.

WP:SNOW: unanimous support to have the ability to hold local SecurePoll elections, including enabling the electionadmin right on enwiki. An RFC to determine how the new right should be distributed can be launched at any time; it may be advisable to advertise that RFC on WP:CENT. --Levivich

Would the line $wgGroupPermissions['electionadmin']['securepoll-administrate-poll'] = true; cause any problems if securepoll-administrate-poll isn't created yet?

In T378287#10271579, @Novem_Linguae wrote:

Would the line $wgGroupPermissions['electionadmin']['securepoll-administrate-poll'] = true; cause any problems if securepoll-administrate-poll isn't created yet?

This wouldn't cause any problems, but it would be redundant in the codebase, so leaving it for now is the best approach. For now, we can create the electionadmin user group with existing rights, and later, if there are any updates, we can add more rights as needed. I think creating this user group is harmless since no one can add or remove it at the moment (except stewards). When the community decides who can grant access to this user group and to whom, we can then add the configurations for wgAddGroups and wgRemoveGroups.

In T378287#10271575, @Novem_Linguae wrote:

At the moment, it sounds like enwiki wants to put all the SecurePoll perms in the electionadmin user group.

In https://en.wikipedia.org/wiki/Wikipedia:Village_pump_(idea_lab)#Determining_who_should_be_an_electionadmin, there is just one user who appears to suggest putting all perms in one group.

There are more people who suggest bundling poll creation and editing into sysop, and view-voter-pii into CheckUser. If that is the eventual consensus, we don't need the electionadmin group at all.

Also, it's just an idea lab discussion, likely a prelude to a more organized VPR discussion or RfC which the closer of https://en.wikipedia.org/wiki/Wikipedia:Village_pump_(proposals)#Enabling_SecurePoll_elections_with_the_electionadmin_right suggested should happen before enwiki deployment:

An RFC to determine how the new right should be distributed can be launched at any time; it may be advisable to advertise that RFC on WP:CENT.

It would help if T377531 is resolved before such a discussion happens.

Pppery moved this task from Backlog to Analysis / under discussion on the Wikimedia-Site-requests board.Oct 29 2024, 8:40 PM

JJMC89 subscribed.Nov 15 2024, 10:29 PM

JJMC89 removed a parent task: T301180: Allow local wikis to set up elections.Nov 15 2024, 10:42 PM

JJMC89 added a subtask: T301180: Allow local wikis to set up elections.

Johannnes89 subscribed.Nov 16 2024, 5:08 PM

Novem_Linguae updated the task description. (Show Details)Nov 17 2024, 9:32 AM

I'd be in favor of getting this deployed so the electionadmin group exists. This would get the technical part out of the way. Then, onwiki and at the community's convenience, we can workshop a policy/guideline for which users it can be granted to.

I think this will be ready for deployment once the two code review comments are resolved.

I would like to avoid decision paralysis here.

I will tweak the patch shortly.

Novem_Linguae updated the task description. (Show Details)Nov 20 2024, 7:10 PM

Selena / Suman are investigating "some challenges on the database side".

SD0001 mentioned this in T381197: Create views for SecurePoll db tables in Toolforge replicas.Nov 30 2024, 1:19 PM

Stang mentioned this in T380020: Enable SecurePoll extension on zhwiki (tracking).Dec 8 2024, 3:18 PM

Hi @Novem_Linguae , is such investigate still in progress? And may I know what kind of database challenge is facing, is it related to T381197 or not?

I'll reach out to @SDeckelmann-WMF via email and see if I can get an update. The discussion is currently off phabricator I think. Would be great to get it moved onto phabricator to make progress a bit easier to track.

@Novem_Linguae I can look into it. Let me get back to you with more information shortly.

Thanks!

In terms of SecurePoll database scalability (which I believe is the concern), my understanding is that there's only issues for global elections, because a maintenance script is used to generate a table of authorized voters for every single wiki. Naturally that does not scale. I first learned about this after reading T355594: For global elections, SecurePoll creates an eligible voters table for each election on every wiki and keeps it forever.

But my understanding is that a local election that only involves one wiki doesn't generate any extra tables, and just uses the existing 12 SecurePoll tables already installed on that wiki. Please let me know if I'm misunderstanding something.

Bunnypranav subscribed.Jan 21 2025, 3:01 PM

In T378287#10475973, @Novem_Linguae wrote:

Thanks!

In terms of SecurePoll database scalability (which I believe is the concern), my understanding is that there's only issues for global elections, because a maintenance script is used to generate a table of authorized voters for every single wiki. Naturally that does not scale. I first learned about this after reading T355594: For global elections, SecurePoll creates an eligible voters table for each election on every wiki and keeps it forever.

But my understanding is that a local election that only involves one wiki doesn't generate any extra tables, and just uses the existing 12 SecurePoll tables already installed on that wiki. Please let me know if I'm misunderstanding something.

This is correct. SecurePoll supports local elections through its base tables and if you're curious about the process around global elections, you can read this documentation. I don't think the global databases will block local elections but SecurePoll making assumptions about the access to global elections may. T384302: SecurePoll: Restrict creation of foreign and global elections tracks the work needed to gate some of those features. IIRC, SecurePoll was intended to run on votewiki and therefore although it supports local elections, in practice it assumes any election it runs will be global and therefore whoever is has permission to administrate it it has permissions to do global things, will be running the support cli scripts, etc.

Novem_Linguae updated the task description. (Show Details)Jan 22 2025, 12:39 PM

kostajh added a project: MediaWiki-extensions-SecurePoll.Jan 29 2025, 10:45 AM

Restricted Application added a project: Trust and Safety Product Team. · View Herald TranscriptJan 29 2025, 10:45 AM

This needs some engineering specification to see what we can decouple from global elections permissions, so moving it to the "Needs engineering specification" column.

kostajh changed the status of subtask T301180: Allow local wikis to set up elections from Open to Stalled.Jan 30 2025, 7:49 AM

Vanderwaalforces subscribed.Feb 11 2025, 3:07 PM

Novem_Linguae updated the task description. (Show Details)Wed, Apr 9, 11:50 PM

Novem_Linguae updated the task description. (Show Details)Thu, Apr 10, 7:51 PM

	F58229572: image.png
	Jan 20 2025, 12:57 PM

Enable SecurePoll extension and electionadmin user group on enwikiOpen, Stalled, Needs TriagePublicActions