fediversity/fediversity

Fork 6

sign-up for external developers #335

New issue

Closed

opened 2025-05-20 17:32:04 +02:00 by kiara · 3 comments

kiara commented

2025-05-20 17:32:04 +02:00

Owner

As a developer,
I want to be able to participate on the Fediversity forgejo without gatekeeping,
so that I may exchange ideas with its developers.

implementation notes

Gitea/Forgejo have been known to receive bulk sign-ups for SEO spam. Gatekeeping account approval after contact through e.g. our public Matrix channel has functioned as a stop-gap solution for this, but better mitigations, if needed, seem:

~~manually purging bot accounts~~
~~using Anubis over the built-in captcha mechanism (#643)~~
~~adding a single sign-on (c.f. #212), esp. given LDAP (c.f. #337)~~
- ~~note that lix for one went out of their way to get SSO integrating with github identity~~

**As** a developer, **I want** to be able to participate on the Fediversity forgejo without gatekeeping, **so that** I may exchange ideas with its developers. ### implementation notes ~~Gitea/Forgejo have been known to receive [bulk sign-ups for SEO spam](https://github.com/go-gitea/gitea/issues/19283). Gatekeeping account approval after contact through e.g. our [public Matrix channel](https://matrix.to/#/#fediversity:fediversity.eu) has functioned as a stop-gap solution for this, but better mitigations, if needed, seem:~~ 1. ~~manually [purging](https://brokkr.net/2025/02/15/purging-unwanted-gitea-users/) bot [accounts](https://git.fediversity.eu/admin/users)~~ 1. [x] ~~using [Anubis](https://anubis.techaro.lol/) over the built-in captcha mechanism (#643)~~ 1. ~~adding a [single sign-on](https://git.fediversity.eu/admin/auths/new) (c.f. #212), esp. given LDAP (c.f. #337)~~ - ~~note that lix for one went out of their way to get SSO integrating with github identity~~

kiara added the

type: user story

label

2025-05-20 17:32:04 +02:00

kiara added a new dependency

2025-05-20 17:32:17 +02:00

#288 external developers empowered to contribute

kiara changed title from ~~facilitate user sign-up~~ to sign-up for external developers

2025-06-01 15:10:10 +02:00

kiara commented

2025-06-01 15:41:55 +02:00

Author

Owner

addressed for now by setting /var/lib/forgejo/custom/conf/app.ini's DISABLE_REGISTRATION back to false - let's see how bad spam sign-ups would get.

addressed for now by setting `/var/lib/forgejo/custom/conf/app.ini`'s `DISABLE_REGISTRATION` back to `false` - let's see how bad spam sign-ups would get.

kiara closed this issue

2025-06-01 15:41:55 +02:00

~~kiara referenced this issue 2025-06-10 20:32:13 +02:00~~

external developers empowered to contribute #288

kiara commented

2025-07-11 10:57:21 +02:00

Author

Owner

this requires a better solution to forgejo's lack of secret scoping (#463)

kiara reopened this issue

2025-07-11 10:57:21 +02:00

kiara added a new dependency

2025-07-16 10:21:53 +02:00

#463 secrets may be handled securely w.r.t. use in PRs

kiara added

type: task

and removed

type: user story

labels

2025-09-19 09:02:01 +02:00

kiara added the

2 points

label

2025-12-02 21:07:09 +01:00

kiara referenced this issue from a pull request that will close it,

2025-12-14 21:21:15 +01:00

enable forgejo registration #681

kiara referenced this issue from a commit

2025-12-14 21:21:33 +01:00

enable forgejo registration (#681)

kiara closed this issue

2025-12-14 21:21:33 +01:00

kiara commented

2026-02-05 14:21:34 +01:00

Author

Owner

clean-up:

delete repos for any user
at ssh git.fediversity.eu delete users e.g. for i in $(seq 52 53); do sudo su - forgejo -c "nix-shell -p forgejo --run 'forgejo --config /var/lib/forgejo/custom/conf/app.ini admin user delete --id $i --purge'"; done (based on article)

~~if i can automate the former, maybe i can report back at the thread, but forgejo admin seems to lack repo administration.~~

actually, forgejo-guardian seems able to clean up their repos too.

clean-up: - delete repos for any [user](https://git.fediversity.eu/admin/users?sort=newest) - at `ssh git.fediversity.eu` delete users e.g. `for i in $(seq 52 53); do sudo su - forgejo -c "nix-shell -p forgejo --run 'forgejo --config /var/lib/forgejo/custom/conf/app.ini admin user delete --id $i --purge'"; done` (based on [article](https://brokkr.net/2025/02/15/purging-unwanted-gitea-users/)) ~~if i can automate the former, maybe i can report back at the [thread](https://github.com/go-gitea/gitea/issues/19283), but [forgejo admin](https://docs.gitea.com/administration/command-line) seems to lack repo administration.~~ actually, [forgejo-guardian](https://github.com/TheAwiteb/forgejo-guardian) seems able to clean up their repos too.

No milestone

No project

No assignees

1 participant

Notifications

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Blocks

#288 external developers empowered to contribute

fediversity/fediversity

Depends on

#463 secrets may be handled securely w.r.t. use in PRs

fediversity/fediversity

Reference

fediversity/fediversity#335

No description provided.

Rows
Columns