On Sep 28, 2012 8:40 PM, "Mark Holmquist" mtraceur@member.fsf.org wrote:
I'm fine with features using JS. It's just important that the feature is either an additive feature that is not necessary for use or it has a way to work without JS. In this case we're talking about login. If you disable JS... you can't even log into your own user account. And disabling JS is supposed to be an improvement to the security of logging in.
OK, here is the misunderstanding--if we implemented BrowserID, it
wouldn't be the *only* way to login. It would be like OpenID, in that you could login with either a MW login or with OpenID if you have it. If you don't have JS enabled, we'll put in noscript tags that explain what you're missing.
Sound OK? Admittedly this is all hypothetical, but in case the Foundation
wants to pursue this, I don't want there to be huge misunderstandings :)
-- Mark Holmquist Contractor, Wikimedia Foundation mtraceur@member.fsf.org http://marktraceur.info
I think Mark is correct to point out that we are talking about supporting an additional login method here, not a replacement.
The key question for me is though: how many users would we really be helping by implementing browserid support right now? It sounds like not many, compared to standard login methods or OpenID.
I don't know how many people have looked at the current login form code, but it is a huge piece of shit. My team and several people active on this list have been working to try and update it, and if you're interested in making MediaWiki logins less painful, then we would love your help. There is a lot of work to be done before we think about supporting the beta release of a new standard.
____________________
Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l