Split up rights involved with the `electionadmin` group
Closed, DuplicatePublic
Actions

Assigned To

None

Authored By

	jrbs
	Dec 7 2021, 1:49 PM

Description

At the moment, SecurePoll uses the user right electionadmin to determine who has access to various aspects of the SecurePoll extension. Notably, as I understand it, if your account has the electionadmin right on votewiki (and is an admin on a SecurePoll election), you can:

Edit the poll settings (title, type, etc)
Set up encryption with GPG
Add and remove questions and options
Add and remove translations

These are all fine and do not interact with private information (with the potential exception of GPG, depending on how you classify that). However, it will also allow you to:

See CheckUser-level data for all voters
Strike votes (with a logged reason)

I would like to propose that those more private aspects of electionadmin be split out into a second user right, potentially something like scrutineer, which would lower the possibility of someone being inadvertently allowed access to CU-level data when all they really need to do is SecurePoll administrative work prior to an election.

Event Timeline

jrbs triaged this task as Low priority.Dec 7 2021, 1:49 PM

jrbs created this task.

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 7 2021, 1:49 PM

Zabe subscribed.Dec 7 2021, 7:17 PM

jrbs raised the priority of this task from Low to High.Sep 23 2022, 10:16 PM

jrbs moved this task from Backlog to Needs evaluation on the MediaWiki-extensions-SecurePoll board.

jrbs lowered the priority of this task from High to Medium.Sep 23 2022, 11:08 PM

Pppery closed this task as a duplicate of T377531: Ability to edit polls should be unbundled from securepoll-view-voter-pii / electionadmin.Oct 27 2024, 6:13 PM

Split up rights involved with the `electionadmin` groupClosed, DuplicatePublicActions

Description

Event Timeline

Split up rights involved with the `electionadmin` group
Closed, DuplicatePublic
Actions