Last modified: 2014-04-09 07:08:01 UTC
Created attachment 11076 [details] Screenshot of Special:PasswordReset on mediawiki.org as of September 5, 2012 The form at <https://www.mediawiki.org/wiki/Special:PasswordReset> is currently kind of confusing. I'm attaching a screenshot, but it has a few obvious issues. The intro to the Special page reads "Enter one of the pieces of data below" while the intro to the form itself reads "Complete this form to receive an e-mail reminder of your account details." This is kind of confusing. (Plus the first message really ought to be properly punctuated!) I think a form like this might be better off as two fieldsets, but I'll leave that to the design folks to work on/figure out. I've added an attachment of a screenshot of the current form at <https://www.mediawiki.org/wiki/Special:PasswordReset>. This bug is related to bug 34386.
I am 100% behind improving all of the confusing forms and pages. Perhaps it would be good to get Oliver Keyes and the Micro Design Improvements team to look as this as dev time will be needed?
In the meantime, I implemented a solution on English Wikipedia: https://en.wikipedia.org/wiki/Special:PasswordReset It only really makes sense when it has exactly these two boxes (the two English Wikipedia happens to use), and I know there can be up to three (username, email, and domain (the latter of which I don't really get). Under the covers: https://en.wikipedia.org/wiki/Special:PasswordReset?uselang=qqx Discussion and explanation is at https://en.wikipedia.org/wiki/Wikipedia:MediaWiki_messages#Special:PasswordReset_improvements (might get archived).
(In reply to comment #2) > Discussion and explanation is at > https://en.wikipedia.org/wiki/Wikipedia:MediaWiki_messages#Special:PasswordReset_improvements > (might get archived). Permalink: https://en.wikipedia.org/w/index.php?title=Wikipedia:MediaWiki_messages&oldid=529045427#Special:PasswordReset_improvements
-easy: there's not even a defined set of things to do.
(In reply to comment #4) > -easy: there's not even a defined set of things to do. I don't think developers looking at easy bugs are incapable of thought.
Is this bug still relevant? I see that the password reset page only has a 'Username' field now. The text could certainly be improved, but there's isn't any room for confusion.
Pragun, it depends how the wiki is configured. https://www.mediawiki.org/wiki/Special:PasswordReset (the original example in the report) is among the wikis that use both routes.
Okay, I understand. The status is set to assigned but I see that the bug is yet to be fixed. Is it up for grabs?
(In reply to comment #8) > Okay, I understand. The status is set to assigned but I see that the bug is > yet to be fixed. Is it up for grabs? Yes, this bug is up for grabs. I corrected the bug status just now.
In that case, will it be an acceptable solution to mirror your implementation on English Wikipedia?
correction - Matthew Flaschen's implementation
What I used on English Wikipedia is intended for exactly those items. For core, you need to make sure it makes sense with all the possible configurations (you can use different messages for different configs, though). See includes/specials/SpecialPasswordReset.php, in particular $wgPasswordResetRoutes ([[mw:Manual:$wgPasswordResetRoutes]]), which controls the ways (username, email, domain).
There's a lot of redundancy on that page there. Especially between passwordreset-text and passwordreset-pretext. Maybe one of those should be removed.
You should look into the relationship of FormSpecialPage and SpecialPasswordReset (especially the preText function) so you'll have an idea how things currently work, and possible ways to change it.
https://gerrit.wikimedia.org/r/#/c/59806/ (already merged) is related to this. It removes "passwordreset-pretext" and splits "passwordreset-text" into "passwordreset-text-one" ("Complete this form to reset your password", for when there's only one field) and "passwordreset-text-many" ("Enter one of the pieces of data to reset your password.", for when there's multiple fields). I think that's helpful, but there's still room for improvement. "Enter one of the pieces of data" sounds a bit clinical, and it would be nice to explain how the routes actually work (i.e. I changed English Wikipedia to say "If you are certain of your email, but not your username, only enter your email.", to avoid it failing because people enter both the wrong user name and the right email). Special cases for the various route combinations (i.e. "email + username" => a specific message) are more work, but allow better messages.
S's change to https://gerrit.wikimedia.org/r/#/c/65346/ allows using a vform style for HTMLForm, and it enables this on PasswordReset (which is both an HTMLForm and related to the existing login and signup that use similar style). There was some discussion on the design list about further enhancing the form by using a combined text field for username and email. This should work if username is checked first, since '@' is a blacklisted character by default in usernames (for good reason). Jared also suggested not stacking the buttons (which would be an enhancement to the 'vform' style itself), although there's actually only one button for this form.
Please don't propose RFCs in the names of other people. That was created as an overview/idea page just today. Neither Steven nor myself (both of which you put as the RFC authors) have expressed intentions to make an RFC on this topic.
(In reply to comment #17) > Please don't propose RFCs in the names of other people. I didn't propose the ideas, you and Steven did, obviously. A quick look at the page history revealed this. The subpage structure is more organized and makes sense given the page's content (discussing the past, present, and future of the password reset form). You're not making any sense.
(In reply to comment #18) > (In reply to comment #17) > > Please don't propose RFCs in the names of other people. > > I didn't propose the ideas, you and Steven did, obviously. Yes, we proposed ideas, in overview and discussion format, *not* as an RFC. It's not up to you to decide whether I start an RFC. An RFC is not just a page format. It's a review *process* (https://www.mediawiki.org/wiki/Requests_for_comment) started by its authors, aiming to solicit feedback and ideas from other developers on a significant change. That process has multiple steps. One of them is that the *authors* should send an email to Wikitech. Neither Steven, you, nor I did that. The reason Steven and I did not do that, is that again this was not an RFC. You are welcome to start your own RFCs and list yourself as author.
(In reply to comment #19) > Yes, we proposed ideas, in overview and discussion format, *not* as an RFC. > It's not up to you to decide whether I start an RFC. > > An RFC is not just a page format. It's a review *process* > (https://www.mediawiki.org/wiki/Requests_for_comment) started by its authors, > aiming to solicit feedback and ideas from other developers on a significant > change. I have extensive experience with MediaWiki's RFC process and I can assure you that you're mistaken. The steps listed on that page were added fairly recently and are optional guidelines for how you might go about proposing a large change to MediaWiki. But not every step is applicable to every RFC, obviously, particularly smaller and more focused RFCs. > That process has multiple steps. One of them is that the *authors* should > send an email to Wikitech. It certainly wouldn't hurt to send an e-mail to wikitech-l about these implemented and proposed changes. That's one of the reasons the list exists. > You are welcome to start your own RFCs and list yourself as author. You're being needlessly defensive, childish, and stupid, but whatever.
Your personal attacks are unacceptable. You are also mistaken about the process. It *has* changed, but the current instructions at https://www.mediawiki.org/wiki/Requests_for_comment are clear.
(In reply to comment #21) > Your personal attacks are unacceptable. It's not a personal attack, I'm specifically commenting on your behavior in relation to this issue.
I hope followups will be on the page's talk, because this discussion is totally uninteresting.
(In reply to comment #20) > You're being needlessly defensive, childish, and stupid, but whatever. MZMcBride: Not in that tone. https://wikimediafoundation.org/wiki/Code_of_conduct_policy lists "Treat other people with respect." for a reason. So stop your personal attacks.
(In reply to comment #24) > https://wikimediafoundation.org/wiki/Code_of_conduct_policy lists "Treat > other people with respect." for a reason. So stop your personal attacks. I filed a bug to discuss and eventually correct the poor design of [[mw:Special:PasswordReset]]. I didn't file a bug to be lectured about civility. The page you linked is pretty clearly inapplicable here, but you already knew that before posting.
(In reply to comment #25) > The page you linked is pretty clearly inapplicable here Nope.
(In reply to comment #26) > (In reply to comment #25) >> The page you linked is pretty clearly inapplicable here > > Nope. Let's just quote the page here to make sure there's a record of what you're saying is applicable: > 1. Treat other people with respect. In general, people acting on the Foundation’s behalf should aim to be honest and ethical in their dealings with each other, with community members, project users, partners, suppliers and the public. The Foundation will not practice or tolerate discrimination on the basis of place of origin, ethnicity, citizenship, gender, age, political or religious affiliation, sexual orientation, marital status, family relationship, or economic or medical status. The Foundation aims to treat all people with respect, and to foster a productive environment free of harassment, intimidation and discrimination. People acting on the Foundation’s behalf may not bring weaponry to Foundation premises, behave violently, or threaten violence. > Obviously I'm not acting on the Foundation's behalf, I'm not the Foundation (and I'm not discriminating against anyone), and I'm not bringing weaponry to Foundation premises or engaging in violence. Please stop suggesting that an inapplicable code of conduct policy is relevant here.
Can someone who is more technical than myself post the bugs in the Action Items section here https://www.mediawiki.org/wiki/Talk:Password_reset#Action_Items to Bugzilla and link them to this bug. I don't want to use the wrong terms or language and confuse anyone who would be working on this. Thanks!
I think this has been fixed, see https://www.mediawiki.org/wiki/Special:PasswordReset Anyone have problems, or should someone mark this as fixed?
Marking fixed per Connor. The original issue seems to be fixed. There are two related bugs linked as See also, bug 56025 and bug 56028. Other issues can be filed separately.
