Flyspray - The bug killer!

“If debugging is the process of removing bugs, then programming must be the process of putting them in.” – Edsger Dijkstra

This is the Bug Tracking System for the Flyspray project. This is not a demo! Before opening a new task, please read the guidelines!

Do not issue bugs reports against versions earlier than 0.9.9.5

Security problem? Check the security section.

Tasklist

FS#961 - Email bug reporting

Attached to Project: Flyspray - The bug killer!
Opened by Ben Ohana (jbralie) - Thursday, 15 June 2006, 22:14 GMT+1
Last edited by Cristian Rodríguez R. (judas_iscariote) - Tuesday, 05 June 2007, 08:14 GMT+1
Task Type Feature Request
Category Backend/Core
Status Closed
Assigned To No-one
Operating System All
Severity Low
Priority Normal
Reported Version 0.9.8
Due in Version Undecided
Due Date Undecided
Percent Complete 100%
Votes 3
Private No

Details

This bts is fantastic, the only thing missing for us is a way to email a bug report to the system which is a requirement. Is it possible to get a script that takes input from an mta eg a piped mail and if it comes from a recognised user, enter the bug into a project and set the person to receive all notifies from that bug. Maybe this could be enabled on a per user basis or just a blanket basis connected direct to the database and seperate from the rest.

Closed by  Cristian Rodríguez R. (judas_iscariote)
Tuesday, 05 June 2007, 08:14 GMT+1
Reason for closing:  Will Not Implement
Additional comments about closing:  Due to the lack of a simple workeable and specially spam proof way to implement this feature, we have definately declined on it's implementation. a REST api will be provided to create tasks programatically from any kind of software or language that is able to talk the HTTP protocol.
Comment by Lars-Erik Hoffsten (Lars-Erik) - Thursday, 22 June 2006, 19:53 GMT+1

I’m not an expert on this field but I have had similar thoughts in other projects. One thing to consider on most server configurations is that there is no way to execute a script on mail reception, this means that someone has to manually access a script that checks for new mails and inserts the task.

Another question is; what’s the benefit? If you have mail access, you most certainly have access to flyspray online. Furthermore, you must specify the different fields like ‘Task type’ etc in some way.

But I agree, it would be a neat feature :-)

Would you autogenerate the mails from another system?

Comment by Johannes Buchner (Buchner) - Friday, 21 July 2006, 09:42 GMT+1

You might take a look at the Wordpress code, which has such a feature (I’m sure others have too)

Comment by Cristian Rodríguez R. (judas_iscariote) - Saturday, 29 July 2006, 10:18 GMT+1

this can be done with the XMLRPC interface (no need to look WP code, it is awful :-P)
However, Im not going to implement this.. looks easy to do, except one part “and if it comes from a recognised user..” mail headers are sooooooooo easy to spoof :-P

Florian what you think ? ;-)

Comment by Florian Schmitz (Floele) - Thursday, 31 August 2006, 21:34 GMT+1

I think that we should implement this feature because it can be really handy. Especially nice would be if one could reply to comment notification emails to add a comment.

Authentification is a problem of course. The email address alone is not enough, so either the username/password combo has to be included to the email, or each other gets an autogenerated key for use in emails so that the login data is not transferred in plain text.

Comment by Cristian Rodríguez R. (judas_iscariote) - Friday, 01 September 2006, 10:22 GMT+1

let’s see :-D

Alternative one.(just dreaming :-D)

  1. a comment (or a inital bug report), generates an email, this mail contains an unique, non constant, exclusive random hash , valid only for one reply, which is associated to the address which the email was sent(that is one hash per notification).
  2. a command line script attached to the correspondent mta facilities parses the message and validates is authorized,and then talks flyspray via xmlrpc. hence creating the comment.

alternative 2:

- A plain clear bridge between mailman and flyspray.(I vote for this :D)

Comment by Johannes Buchner (Buchner) - Friday, 01 September 2006, 11:44 GMT+1

I would just write next to the user name in a bug report or a comment “sent via email”.

This shows that it’s not totally secure who wrote the comment/bug report, but if it is a problem, it can be deleted/commented/discussed anyway.

This would be the easiest solution IMO.

Comment by Florian Schmitz (Floele) - Friday, 01 September 2006, 15:26 GMT+1
a comment (or a inital bug report), generates an email, this mail contains an unique, non constant, exclusive random hash , valid only for one reply, which is associated to the address which the email was sent(that is one hash per notification).

But this wouldn’t work for other email actions.

a command line script attached to the correspondent mta facilities parses the message and validates is authorized,and then talks flyspray via xmlrpc. hence creating the comment.

Fist problem: No one maintains the XML RPC code atm. Second problem: Command line script doesn’t sound good. If we implement this feature, it should be possible for everyone to easily use it without access to the command line.

This shows that it’s not totally secure who wrote the comment/bug report,

I will never implement “not totally secure” features on purpose.

Comment by Cristian Rodríguez R. (judas_iscariote) - Friday, 01 September 2006, 22:04 GMT+1

Florian.. and how the hell you pretend to implement it without command line script... ? o_O :-P

email message has to be processed by the mta and then something should parse the email, remove all uneeded parts and add to flsypray only message body...

Comment by Florian Schmitz (Floele) - Friday, 01 September 2006, 23:26 GMT+1

I suggest that the admin sets up a mailbox (any provider) where all emails @Flyspray can be sent to. Then Flyspray periodically checks (can be added to the reminder stuff) the mailbox for new emails and processes all emails that contain commands for Flyspray. This way everybody can make use of it without additional software or permissions on the server.

Comment by Alan Doucette (dragonwize) - Wednesday, 24 January 2007, 00:49 GMT+1

I am currently writing an extension for a forum software I use, that performs many of the things that are mentioned here. When I get that done, I will let you have a copy of the code to see if some or all of it could be applied here.

Comment by Mark Walling (markwalling) - Thursday, 25 January 2007, 23:12 GMT+1

the people over at mantis (which i have to use for work because of our webhost) are also working on something like this. the plan they came up with is very similar to how flo is describing.

if i get a chance i can look into churning something out.

Mantis Bug Report

Comment by Nuno Sousa (nunofgs) - Tuesday, 06 March 2007, 20:14 GMT+1

Hi, I registered on the BTS just to vote on this feature request!
I would LOVE email bug reporting.

Most end users tend to find bug reporting systems rather scary so I would love to have people email their problems to bugs@mydomain.com and it would show up as a task.

Even if there are no commands in the email (such as category, severity, etc) the bug report would show up in flyspray and one of the admins could then complete the information.

Comment by Andrzej Klasén (reszel) - Wednesday, 14 March 2007, 11:55 GMT+1

Zentrack [http://www.zentrack.net/] has it!
Egate Overview: [http://www.zentrack.net/modules/cjaycontent/index.php?id=5]
Scheduled task (cron) can check an email account.
Setting up email interface: [http://www.zentrack.net/modules/cjaycontent/index.php?id=6]
You'll need Mail_Mime for this.
HTH

Comment by Cristian Rodríguez R. (judas_iscariote) - Wednesday, 14 March 2007, 18:21 GMT+1

Ok, the only correct/viable/not too complex way to do this is like the comment 2799 by floele. that will work. ;)

Comment by Mark Walling (markwalling) - Tuesday, 15 May 2007, 01:59 GMT+1

Bugzilla put this into version 3:
http://www.bugzilla.org/releases/3.0/new-features.html#v30_feat_emi

Comment by Johannes Buchner (Buchner) - Tuesday, 15 May 2007, 10:16 GMT+1

From http://www.bugzilla.org/docs/3.0/html/api/email_in.html :
CAUTION The script does not do any validation that the user is who they say they are. That is, it accepts any ‘From’ address, as long as it’s a valid Bugzilla account. So make sure that your MTA validates that the message is actually coming from who it says it’s coming from, and only allow access to the inbound email system from people you trust.

Comment by Florian Schmitz (Floele) - Tuesday, 15 May 2007, 13:16 GMT+1

Doesn’t look like a solution for us. Most people certainly can’t configure their MTA (both because of lacking knowledge and permissions).

Comment by Florian Schmitz (Floele) - Sunday, 03 June 2007, 13:09 GMT+1

The outcome so far:

http://groups.google.com/group/flyspray/browse_thread/thread/a931b02426a5564e?hl=en

So in other words, we’ll most likely drop this feature.

Comment by Mark (emagin) - Tuesday, 26 February 2008, 21:30 GMT+1

I find the reason for closing a bit close-minded.
I pipe email through a gmail or google apps email account, and it's 95-99% free of spam.
Also the issue of spam is separate from the need for email pipelining.
All enterprise and well-developed support systems offer email pipelining - it's probably the #1 feature of all support systems.

Think about your logic.
There are annoying potholes on roads, therefore we don't drive cars.

Loading...