Extension:SecurePoll/zh
SecurePoll扩展是一个特殊页面扩展,用于选举、投票和调查。 它被用于维基媒体基金会董事会的选举和仲裁委员会的选举,并被用于维基媒体许可证的过渡投票等。
截图
主页面显示投票的清单。
一个带有描述性文字的投票页面。
SecurePoll的管理日志
在SecurePoll上的投票者日志
.png){kind=small}
安裝
- 下载,并将解压后的
SecurePoll移动到extensions/目录中。
开发者和代码贡献人员应从Git安装扩展,输入:cd extensions/
git clone https://gerrit.wikimedia.org/r/mediawiki/extensions/SecurePoll - 将下列放置在您的LocalSettings.php的底部:
wfLoadExtension( 'SecurePoll' );
- 更新脚本,它将自动此必须的数据库表。
完成 – 在您的wiki上至Special:Version,以验证已成功安装。
In addition, you will need to add some user groups and user rights to your LocalSettings.php file. Here is one way to do it, which gives a new group called electionadmin the power to do everything in SecurePoll (create polls, edit polls, see voter IP addresses):
$wgGroupPermissions['electionadmin']['securepoll-create-poll'] = true;
$wgGroupPermissions['electionadmin']['securepoll-edit-poll'] = true;
$wgGroupPermissions['electionadmin']['securepoll-view-voter-pii'] = true;
Once this group is created, a bureaucrat can add someone to the group using Special:UserRights. Then that person can visit Special:SecurePoll to view polls, create polls, edit polls, tally polls, etc.
Each poll's data is compartmentalized. You can have 100 electionadmins, but if you only add one electionadmin to a particular poll, only that one electionadmin will be able to edit that particular poll or see user IPs. If an electionadmin is removed from a poll, they will lose access to it.
securepoll-view-voter-pii is used for "scrutineering" a poll, which involves looking at a list of voter IPs, user agents, and X-Forwarded-For headers to look for cheating (secret duplicate votes by sockpuppets). Because this involves looking at voter IP addresses and other sensitive, personal, de-anonymizing data, it is a sensitive user right, so only trusted users should be assigned to the electionadmin group.
It is possible to split securepoll-view-voter-pii into a separate group. You can use a config such as the one below to create a group called scrutineer that contains the securepoll-view-voter-pii right, separating it from the electionadmin group:
$wgGroupPermissions['electionadmin']['securepoll-create-poll'] = true;
$wgGroupPermissions['electionadmin']['securepoll-edit-poll'] = true;
$wgGroupPermissions['scrutineer']['securepoll-create-poll'] = true;
$wgGroupPermissions['scrutineer']['securepoll-edit-poll'] = true;
$wgGroupPermissions['scrutineer']['securepoll-view-voter-pii'] = true;
A user also needs to be added to the poll (and hence have the securepoll-edit-poll right) in order to view PII - securepoll-view-voter-pii by itself has no effect.
用法
创建新投票
有两种方法来创建一个新的投票:手动创建一个XML文件并导入,或者使用Special:SecurePoll的投票创建界面。
手动
要手动创建一个投票,需要:
- 编写一个XML文件
- 使用
import.php命令行界面命令导入它
在test文件夹中,你可以找到四个示例文件。
3way-test.xmlapproval-test.xmlradio-range.xmlschulze-test.xmlinfo
要导入一个投票,从cli文件夹中运行以下内容。
extensions/SecurePoll/cli$ php import.php ../tests/phpunit/data/3way-test.xml
要使用docker导入一个投票,从cli文件夹中运行以下内容:
docker-compose exec mediawiki php extensions/SecurePoll/cli/import.php extensions/SecurePoll/tests/phpunit/data/3way-test.xml
通过Web界面
拥有securepoll-create-poll权限的用户可以点Special:SecurePoll下面的链接来创建新的投票。
要创建一个新的投票,请填写创建表格中的必填项。 请特别关注一下字段:
- 只有
electionadmin组的成员允许增加投票管理员。如果$wgSecurePollUseLogging设置为true,那么不管增加还是移除投票管理员都会留下日志。日志可以在Special:SecurePollLog查看。 - 要创建一个加密的投票,请选择加密方法。 如果你选择GnuPG,会生成一个公钥和一个私钥。 在创建表格中输入加密密钥,并将私人密钥保存在线下的某个地方(一旦选举结束,你将需要它来进行统计)。 一个详细示例可以在这里找到。
现在访问Special:SecurePoll,你会看到你的投票。
编辑现有投票
要编辑一个投票,你必须是该特定投票的管理员。 在Special:SecurePoll,点击编辑你想要的投票。
在选举开始之前,关于选举的任何内容都可以被编辑。 选举开始后,有些字段就不能再编辑了。
编辑可以参与投票的人
要编辑谁可以投票,你必须是该投票的管理员。 在Special:SecurePoll,点击该投票的投票者资格链接。
翻译一个投票
要翻译一个投票,你必须是该特定投票的管理员。 在Special:SecurePoll,在你想翻译的投票处点击翻译链接来翻译。
查看投票者名单
任何人都可以看到投票者的名单,除非在创建投票时禁用了透明功能。
某一投票的管理员可以看到投票者的名单,以及可能有助于识别重复投票者的私人信息(例如IP地址、用户代理信息、共享cookies)。
如果$wgSecurePollUseLogging设置为true,任何管理员查看隐私数据都会留下日志。 这些日志可以在Special:SecurePollLog查看。
管理员可以删除任何他们认为是重复的投票。
计票
要统计一个投票,你必须是该特定投票的管理员。 Special:SecurePoll,点击计票链接为你想要计票的投票计票。
如果投票之前已经统计过,结果将显示在页面上。 如果没有,或者你想重新统计,有一个表格可以开始新的统计。
- 如果投票是未加密的,点击计票按钮。
- 如果投票是加密的,你需要输入更多信息。比如,如果你使用GnuPG,输入私钥并点击计票按钮。如果加密投票有很多人投票,可能会花很长时间计票。你可能需要过段时间再回来查看结果。
访问Special:SecurePoll,你就能看到你的投票。
单一可转移票制计票
更多关于单一可转移票制的信息,可以在維基百科找到。
贪心算法实现(來源)。
Quota is + .000001. Quota is the minimum value of votes to secure a seat.
1. Compute the quota. 2. Assign votes to candidates by first preferences. 3. Declare as winners all candidates who received at least the quota. 4. Transfer the excess votes from winners to hopefuls. 5. Repeat steps 3 and 4 until no new candidates are elected. (Under some systems, votes could initially be transferred in this step to prior winners or losers. This might affect the outcome.) If all seats have winners, the process is complete. Otherwise: 6. Eliminate one or more candidates, typically either the lowest candidate or all candidates whose combined votes are less than the vote of the lowest remaining candidate. 7. Transfer the votes of the losers to remaining hopeful candidates. 8. Repeat 3–7 until all seats are full.
The quota we will use (step 1) is the Droop quota (source):
floor( no. votes / (no. seats + 1) ) + 1
The method for transferring votes from elected or eliminated candidates will be the Meek method:
Tallying (JobRunner)
- Tallies can be processed via a scheduled job :. Make sure to create a scheduled job for this task or execute the task manually.
- Tallies can also be processed by executing the tallying script manually:
To execute a tally, run the following from the cli folder located at extensions/SecurePoll/cli:
extensions/SecurePoll/cli/tally.php
To execute a tally using MediaWiki-Docker, run the following from the cli folder located at extensions/SecurePoll/cli:
docker-compose exec mediawiki php extensions/SecurePoll/cli/tally.php
Generating (STV) Test Elections
- Test (STV) elections can be generated from the cli folder located at extensions/SecurePoll/cli:
- To generate a test election, run the following from the cli folder located at extensions/SecurePoll/cli:
extensions/SecurePoll/cli/generateTestElection.php
- Test (STV) elections provide scaffolding from which to tally on
Redirect polls
A redirect poll is a poll that shows up in the list of polls at Special:SecurePoll, but clicking on "vote" and other links will redirect the voter to a different wiki. This is useful if you do all of your votes on a central votewiki (in Wikimedia's case, https://vote.wikimedia.org).
Special:SecurePoll/create will show an additional drop-down list called "For wiki:"—allowing you to select "This wiki", "All wikis", or a different wiki in your wiki farm—if all of the following conditions are met:
- You are using a wiki farm (multiple wikis using the same file system but different databases).
- You haven't excluded all other wikis using
$wgSecurePollExcludedWikis. - You have
$wgCanonicalServerconfigured to have a period (use different subdomains) on each wiki. - You have
$wgSecurePollEditOtherWikis = true;for your current wiki.
If you have a wiki in your wiki farm that doesn't have SecurePoll installed, be sure to add it to $wgSecurePollExcludedWikis to keep it out of the "For wiki:" list.
| "For wiki" dropdown item selected | What it does locally | What it does on other wikis |
|---|---|---|
| This wiki | Creates a local election | Nothing |
| All wikis | Creates a local election | Creates "redirect polls" at every other wiki in the wiki farm |
| Picking a specific other wiki such as es.wikipedia.org | Creates a local election | Creates a "redirect poll" at the chosen wiki |
Testing note: $wgCanonicalServer must contain domains with subdomains. So for example, http://localhost will not get the dropdown list to show up, but http://en.localhost will.
$wgConf->settings = [
'wgCanonicalServer' => [
'my_database' => 'http://en.localhost:8080',
'secondwiki' => 'http://es.localhost:8080'
],
In the database, fields related to redirect polls include securepoll_elections.el_auth_type (can be local or mw-remote), and the following securepoll_properties.pr_keys: jump-id, jump-url, and main-wiki.
For developers
SQL tables
| Table | Field prefix | Description | Contains sensitive data? |
|---|---|---|---|
| securepoll_cookie_match | cm_ | Used on the vote details page to display the securepoll-cookie-dup-list message ("Cookie duplicate users"). |
Yes |
| securepoll_elections | el_ | List of elections, and some basic config data such as the name, creator, start date, end date, language, ballot type (e.g. approval), and tally type (e.g. plurality). Additional config data is pivoted and stored in securepoll_properties instead. |
No |
| securepoll_entity | en_ | Maps "one to many" with the securepoll_msg table. The "many" is because a securepoll_msg can be in multiple languages. Possible options for securepoll_entity.en_type are election, question, and option. |
No |
| securepoll_lists | li_ | Stores usernames manually added via the Voter Eligibility page. Users are added in the format userName@databaseName. There are 3 types of lists:
|
No |
| securepoll_log | spl_ | If $wgSecurePollUseLogging is set to true, stores the log entries here. |
Yes. Special:SecurePollLog is private. |
| securepoll_msgs | msg_ | List of strings. For example, the poll name, the poll questions, and the poll answers. This is mapped to from other tables such as securepoll_options and securepoll_questions, and supports having the same entity in multiple languages (securepoll_msgs.msg_lang). |
No |
| securepoll_options | op_ | List of poll options for each question. Doesn't store the option text here, but rather maps it to the table securepoll_msgs. |
No |
| securepoll_properties | pr_ | Config data for each election. For example, who the election admins are, whether it's a redirect poll, whether to shuffle the options, whether to use encryption, etc.
Is also the config data for on-the-fly voter eligibility calculation. For example, voter minimum edit count and voter not-sitewide-blocked is stored here. |
Partial. Rows with pr_key as gpg-encrypt-key, gpg-sign-key, openssl-encrypt-key or openssl-sign-key are private data. |
| securepoll_questions | qu_ | List of poll questions. Doesn't store the question text here, but rather maps it to the table securepoll_msgs. |
No |
| securepoll_strike | st_ | Which votes have been struck (crossed out, removed from the tally) by election admins. Includes a reason that they can type in. | Yes. Only election admins can see the strike log from the UI. |
| securepoll_voters | voter_ | One row per vote per election. Contains data on the voter such as their user groups and whether they're blocked or not. Probably used to determine voter eligibility. | Partial. This is private for elections with transparency features disabled. |
| securepoll_votes | vote_ | One row per vote per election. Contains data on the voter such as IP address and user agent, and contains the actual vote in the vote_record column. |
Yes. Contains voter PII such as IP addresses and user agents. Contains the vote itself. |
帮助文档
安全投票
安全投票的所有相关文档可在wikitech:SecurePoll查看。
安全投票的改进
A summary of improvements to SecurePoll can be found at Anti-Harassment Tools/SecurePoll Improvements.
Understanding the STV result
Documentation on STV results can be found at Anti-Harassment Tools/SecurePoll Improvements/Understanding the STV result.
See also
 | 此用于一个或多个维基媒体项目。 这可能意味着足够稳定、运作足够良好,可以用在这样的高流量的网站上。 请在维基媒体的CommonSettings.php和InitialiseSettings.php中查找此的名称以查看哪些网站安装了该。 特定wiki上的已安装的的完整列表位于Special:Version页面。 |
 | 此在以下wiki农场/托管网站和/或软件包中提供: 這不是一份權威名單。 即使某些wiki农场/托管网站和/或软件包未在这里列出,它们也可能提供此。 请检查你的wiki农场/托管网站或软件包以确认提供情况。 |