Surveys for unregistered users

[microstudi]

🎩 What? Why?

In our organization we've come with the necessity to allow everyone to answer certain surveys, whether is registered and logged in the platform or not. We find this specially important to avoid the use of external tools where to place that data (like google forms).

This pull-request implements this feature by adding a new setting option (same as allow_answers) in the survey component admin module (see screenshot). Modules affected ar decidim-forms and decidim-surveys.

In order to make this work I've added a db migration to create a unique token based on the session id of the anonymous user in the decidim_form_answers. This is being used by the data exporter to group all the answers of the user (as the user_id field will be nil in those cases).

[UPDATE]
After discussion, these has been added in order to improve security:

1. A hashed IP field in the answers, this will allow administrators to detect massive entries without knowing the user IP.
2. A warning in the admin to prevent admin to use this feature lightly.
3. Included invisible_captcha
4. CSV export adds the ip_hash field and the "user status", which tells admins if the answers is coming from a registered or unregistered user.

📌 Related Issues

non related issues

📋 Subtasks

• Add CHANGELOG entry
• Add tests

📷 Screenshots (optional)

[mrcasals]

@decidim/product what should we do here? I don't know if this has been discussed in MetaDecidim, and I'd like an approval from you before reviewing the code 😄

[microstudi]

As I know this may be controversial. I've created in meta-decidim a proposal to discuss the benefits of this feature:

https://meta.decidim.org/processes/roadmap/f/122/proposals/14323

[paarals]

Hi! I'm with Marc, it's better if we can discuss on meta.decidim. In fact, I think that this depends on #4991? Because before, an external user was not enable to see the survey.

[microstudi]

I'd say it's related but not dependant. You can decide to show the survey or to allow answers. The first is useful to let the user know what to expect, and the other to not required them to log in. There's no code coincidences between them.
Yes please, let's discuss on metadecidim.

[mrcasals]

I'm blocking this PR until it is discussed on MetaDecidim. Feel free to discard my review once this is handled! 😄

[microstudi]

Hi everyone,
This feature has been approved in metadecidim but they request to add some changes to improve security and avoid spammers.

The changes are:

1. A clear warning of the risks involved and the obligation to comply with the social contract.
2. Save the IP address (not whole).
3. To avoid spam, consider including some invisible captcha.

Now I have some questions about these changes, I would like if any of you could guide me a little for the better way to implement them. My questions are:

1. I think the easiest way to implement this is by adding a hidden div in the settings option that shows a warning message when the option is activated (will require some javascript). Is there any other example of settings that generate a warning already? if so, then the best would be to replicate it for consistency.
2. @andreslucena seems to have experience in saving partial IP's in the database. Can you point me where it is done so I can replicate it? thanks a lot.
3. Is the captcha concept implemented someway in Decidim? Are you using some gem for it? if not, anything you recommend? So far I've found 2 interesting captcha gems in case you can recommend one of them:
   https://github.com/subwindow/negative-captcha
   https://github.com/kiskolabs/humanizer

Thanks a lot in advance!

[andreslucena]

I think the easiest way to implement this is by adding a hidden div in the settings option that shows a warning message when the option is activated (will require some javascript). Is there any other example of settings that generate a warning already? if so, then the best would be to replicate it for consistency.

We could just add the warning as a message without this logic of hide / show for simplicity.

@andreslucena seems to have experience in saving partial IP's in the database. Can you point me where it is done so I can replicate it? thanks a lot.

As far as I know we don't have this kind of saving partials IP addesses.

Is the captcha concept implemented someway in Decidim? Are you using some gem for it? if not, anything you recommend?

Yes, it's implemented on user registration with https://github.com/markets/invisible_captcha

[microstudi]

Thanks @andreslucena for your answers. I'll probably finish this PR during May.

[virgile-dev]

Hey @microstudi
Are you still working on improvements for this feature ?
We have a client that is interested maybe we can help.

[paarals]

We have a client that is interested maybe we can help.

We too. Our client deserves something like google forms (focusing first on let unregistered participants answer). So, maybe we can built and epic and improve a lot surveys. for example: adding more ways to answer (timetable, etc..).

[microstudi]

Yes, still on it!
In fact i've already tested in a production environment, no problems so far. The only thing missing is to implement a couple of security measures (as is been commented).
I expect to complete this PR some day before ending this month.

[stale]

This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. @carolromero & @xabier feel free to chime in.

[carolromero]

I see the bot closed this PR. Are you still working on it @microstudi ?

[microstudi]

yes! hopefully soon enough

[carolromero]

ok! let's keep it open then :)

[microstudi]

@oriolgual this is ready to review. Thanks

No longer on the project, I shouldn't be blocking this