Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

7291 spam check #7479

Closed
wants to merge 29 commits into from
Closed

7291 spam check #7479

wants to merge 29 commits into from

Conversation

landreev
Copy link
Contributor

What this PR does / why we need it:

An anti-spam mod that prevents sus datasets and dataverses from being published. See the issue for more info. The plan is to throw this on our prod. servers shortly in order to gauge the real life usefulness of the solution. We are likely going to revise it before adding this to an official release.

(but this brings up a question, do we even want to merge this into develop at all?)

Which issue(s) this PR closes:

Closes #7291

Special notes for your reviewer:

Please keep in mind that in its current form this is intended for local use only. Hence no documentation in the official guide etc.

Suggestions on how to test this:

Let's talk once it goes to QA.

Does this PR introduce a user interface change? If mockups are available, please link/include them here:

Is there a release notes update needed for this change?:

Additional documentation:

landreev added 13 commits December 1, 2020 11:01
@landreev
parts of the initial external validation framework.
dc429a3
@landreev
Merge branch 'develop' into 7291-spam-check
1b5ddbe
@landreev
more parts for the external metadata validation checks. (#7291)
b3da132
@landreev
Added a mechanism for an admin to override the external metadata chec…
89b3244 
…k. (#7291)
@landreev
Added customizable failure messages. #7291
83a51c3
@landreev
show the command exception message, if available. (#7291)
9d4a89f
@landreev
SpamAssassin-based external validation solution for dataverses (#7291)
5ef9156
@landreev
typo in the readme doc (#7291)
6f0cd77
@landreev
cleaned up and improved SpamAssassin config file - with more spam kil…
d89baae 
…ling. (#7291)
@landreev
fixed a typo in the name of the script (#7291)
19a2757
@landreev
cleaned up the main working script; created individual executables fo…
0673f6b 
…r the dataverse and dataset validation. (#7291)
@landreev
Added "use strict" to the script; added a few lines to the readme. (#…
94b4215 
…7291)
@landreev
Merge branch 'develop' into 7291-spam-check
ebe0e77
@coveralls
Copy link

coveralls commented Dec 15, 2020
edited
Loading

Coverage Status

Coverage decreased (-0.01%) to 19.472% when pulling 44c5769 on 7291-spam-check into 2fd33c5 on develop.

scolapasta
scolapasta reviewed Dec 15, 2020
View reviewed changes
scripts/spam/spamassassin/README.md

`curl -X PUT -d true http://localhost:8080/api/admin/settings/:ExternalValidationAdminOverride`

When the override is enabled, the external check will be skipped for admin users.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

should say superusers instead of admins.

Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually, better question - do we need this setting? i.e. what's the use case for not just always allowing superusers to publish?

scolapasta
scolapasta reviewed Dec 15, 2020
View reviewed changes
Copy link
Contributor

@scolapasta scolapasta left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Looks good! I added a few minor comments (docs, and a test ignore).

The biggest question is the one about superusers? It seems to me that that aetting may be overkill and not needed.

I'm only "commenting" and not approving, because we don't want this to get merged just yet.

scripts/spam/spamassassin/README.md



DataverseMetadataValidationFailureMsg,
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

not sure if this text is in the right place.

src/test/java/edu/harvard/iq/dataverse/export/OpenAireExporterTest.java Outdated
@@ -16,6 +16,7 @@
import javax.xml.parsers.DocumentBuilder;
import javax.xml.parsers.DocumentBuilderFactory;
import static junit.framework.Assert.assertEquals;
import org.junit.Ignore;
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

was this meant to be checked in?

scripts/spam/spamassassin/README.md

`curl -X PUT -d true http://localhost:8080/api/admin/settings/:ExternalValidationAdminOverride`

When the override is enabled, the external check will be skipped for admin users.
Copy link
Contributor

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Actually, better question - do we need this setting? i.e. what's the use case for not just always allowing superusers to publish?

@qqmyers qqmyers mentioned this pull request Jan 20, 2021
Closed
@pdurbin
Copy link
Member

pdurbin commented Feb 4, 2022

Closing. This has been superseded by pull request #8155.

@pdurbin pdurbin closed this Feb 4, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@scolapasta scolapasta scolapasta left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Check during Dataset Publish and Dataverse Create for Spam Content
4 participants
@landreev @coveralls @pdurbin @scolapasta