Context Navigation

Modify ↓

#8395 closed enhancement (wontfix)

restriction of contents of notifications (both, subject and body)

Reported by:	xyanipheia	Owned by:
Priority:	normal	Milestone:
Component:	notification	Version:	0.10.3.1
Severity:	normal	Keywords:	confidentiality
Cc:		Branch:
Release Notes:
API Changes:
Internal Changes:

Description (last modified by Christian Boos)

In #8294 GPG encoded notifications were mentioned. An easy workaround is to restrict the content of notifications. In this case no critical content is sent to the recipients, only a ticket number and the project link. Of course, encrypted notification is more preferable, but maybe this approach may be implemented earlier than milestone 2.0 for #8294? This approach allows to use TRAC in restricted environments if additionally:

the server is protected (https with client certificates, …
the project names are chosen to be simple, e.g. only project-numbers

Attachments (0)

Change History (5)

in reply to: description comment:1 by Christian Boos, 15 years ago

Description:	modified (diff)
Keywords:	confidentiality added
Milestone:	→ 0.13

Replying to xyanipheia:

… maybe this approach may be implemented earlier than milestone 2.0 for #8294?

Well, this mainly depends of someone implementing that feature, see TracDev/SubmittingPatches.

As here it's mainly a matter of adding a boolean config option and checking for the flag before writing the content of the notification mail, this should be a pretty easy task. See TracNotification to get some ideas about the config option name. I'd suggest ticket_omit_content, or if you want more control, ticket_omit_fields, ticket_omit_changes and ticket_omit_comment. All defaulting to False for compatibility with current behavior.

Also the already ticket_subject_template can be used to restrict the information shown in the mail summary.

comment:2 by Remy Blank, 14 years ago

Milestone:	next-major-0.1X → unscheduled

comment:3 by Ryan J Ollos, 9 years ago

Owner:	Emmanuel Blot removed

comment:4 by Peter Suter, 8 years ago

Could now be implemented in a plugin like this?

comment:5 by Ryan J Ollos, 8 years ago

Milestone:	unscheduled
Resolution:	→ wontfix
Status:	new → closed

Yeah looks like INotificationFormatter is what is needed, along with a custom project template to control which ticket fields are added to the message.

Modify Ticket

Change Properties

Summary:
Description:	In #8294 GPG encoded notifications were mentioned. An easy workaround is to restrict the content of notifications. In this case no critical content is sent to the recipients, only a ticket number and the project link. Of course, encrypted notification is more preferable, but maybe this approach may be implemented earlier than milestone 2.0 for #8294? This approach allows to use TRAC in restricted environments if additionally: * the server is protected (https with client certificates, ... * the project names are chosen to be simple, e.g. only project-numbers You may use WikiFormatting here.
Type:		Priority:
Milestone:		Component:
Version:		Severity:
Keywords:		Cc:	Set your email in Preferences
Branch:
Release Notes:
API Changes:
Internal Changes:

Action

leave as closed The ticket will remain with no owner.

reopen The resolution will be deleted. Next status will be 'reopened'.

change ownership to The owner will be changed from (none) to the specified user.

Add Comment

Your email or username:

E-mail address and name can be saved in the Preferences .

You may use WikiFormatting here.

Attachments ↑ Description ↑

Note: See TracTickets for help on using tickets.

Download in other formats: