On Fri, 2007-02-16 at 22:34 +0100, Axel Thimm wrote:
On Fri, Feb 16, 2007 at 11:30:37PM +0200, Timo Sirainen wrote:
I don't think I want an anonymous user to be able to create bugs. Maybe what I'm after is an automatic user creation based on the given email address, but the user won't be able to log in before verifying the email. If a user already exists for the given email address, that bug also belongs to that existing user even though no password was asked (but it could mention that it was created anonymously and log the IP).
But that's how most othe rregstration systems work too. All bugzilla/mailman etc. typically want is to verify the autheticity of the given email address.
But why? If all you're doing is just adding a new bug, what's the point of verifying the email address? It's just annoying to the user.
So sure you can use someone else's email address there, but why would anyone do that? Even if someone did, all it means is that the real owner complains about it and the address gets removed from the BTS.
Another possibly good reason for verification is if you typoed your email, but if the BTS by default sends you an email reply you'll notice the typo if you don't receive the email. Then the address can be changed by a BTS admin. And I expect this to be a rare problem also.
I just made a simple mockup of what I'd like the "Enter new bug" page to be like: http://dovecot.org/tmp/bug.html
The log in page would then allow logging in with email/password, or allow "registering" the user by sending a new password to the email.