Update v2/v3 Onion Page Text #122
Comments
Suggested edit notes
|
|
@eloquence In our chat yesterday, you mentioned that users also need to turn-off/discontinue their v2 onion pages, for their migration to be considered "successful"? We don't mention that, on this page. It should be mentioned on this page, imho. Likewise, some link to instructions for how to do this—assuming such content exists somewhere? |
|
This link blab also needs to be edited to present v2 vs v3 as less optional. Recommend against using "Next Generation" as a user-facing phrase in documentation. v3 vs v2 sounds adequate w/o additional qualifiers, as the text is for admins. |
That's advisable; the migration to v3 is also enforced as part of the migration to Ubuntu 20.04 (after April 30, it will not be possible to run a live instance on v2 onion services). We do have documentation for this, in this section: https://docs.securedrop.org/en/stable/v3_services.html#disabling-v2-onion-services I agree we should simplify and reorganize the v3 chapter of the docs a bit. We should also make clearer how the v3 migration relates to the Ubuntu 20.04 transition.
I'm not sure what you're referring to here. I don't see the phrase "next generation" anywhere in the linked page. |
So... that sounds to me, like they'll have to do it? I totally respect the soft-language approach for open source. I just question if we're making our own or our customer's lives harder, by not being simpler, clearer, and more direct with them. Between the Docs page I'm referencing with this issue, and the mention of Ubuntu in April, I'm left to ask "Which is it—February or April?!" as I'm reading one thing in one place, and hearing another thing in another place.
Doh! Installation > Onion Service Options linkfail, sorry! |
|
Updated suggestion for page's text, below. Looking forward to getting more comfy with GitHub in the near future... ty again Erik for the instruction so far! SecureDrop v3 Onion Services
SecureDrop supports the newer v3 onion protocol, and is phasing-out support for the v2 protocol. Beginning in February 2021, new SecureDrop installs will only support v3 onion addresses. The newer v3 onion services protocol provides stronger cryptographic protections than v2 onion services, including improved mitigation against service information leaks on the Tor network. Because of these important improvements, the Tor project is deprecating their own support for v2 onion services. With SecureDrop's 2.0 release on April 30, 2021, pages on v2 onion services will no longer be reachable. v3 onion addresses are 56 characters long - shown below in an example:
v2 onion addresses are 16 characters long - shown below in an example:
We recommend that you follow the v2+v3 migration path below, and test v3 functionality thoroughly before :ref: Migrating from v2 to v3 only or v2+v3Preparing for the migration Before starting... |
Great catch, we should definitely update that paragraph.
Yes. We recommend that they do it ASAP, before the Ubuntu 20.04 migration (which isn't even supported yet with this coming 1.7.0 release), so they don't have to handle two complex upgrades at the same time. But they can also do the two together -- the ultimate deadline is April 30. I agree the docs should re-center the April 30 deadline at this point to keep it simple. |
Ok, then the text I composed above seems to be inaccurate. When will v2 onion services literally stop working? The "Update your Onion on your LP!" CTA sounds most urgent, and I want to ensure we don't mislead users while also not confusing them. Also: Your brain must need a proper 2 week nap more than just over the holidays, this is SO MUCH to keep straight! ;) |
|
(Also, I updated the first 2 comments on this Issue—sorry it's been all a bit jumbled and confusing. Looking forward to being able to do PRs on my own!) |
|
One thing to bear in mind is that users may also be coming to that page directly while browsing the documentation, so preamble (what is this? why should I care?) is important in that scenario. You could have the least-worst of both worlds by linking to an anchor in the doc from the banners, ie: https://docs.securedrop.org/en/stable/v3_services.html#migrating-from-v2-to-v3-only-or-v2-v3 In fact, given that we'll have separate banners for each case, we could probably link to docs specifically covering the appropriate workflow for each case. |
|
I like @ninavizz's suggested changes to the docs. I do agree that the docs are both explaining/contextualizing ("what are onion services and why should I care?") and also instructional, which makes for a mixed tone and loses some of the urgency of the instructions. I would be happy to work on docs changes to accompany @zenmonkeykstop's JI changes. I'd also be happy to work with you on making your own PRs, nina. |
|
We'll consider these improvements as part of the 1/6-1/20 sprint. Because we will direct admins to this page from the Journalist Interface, we should IMO make sure that we also mention the coming Ubuntu 20.04 transition on it, as it's the other major coming operation that needs to be on admins' radar. One point of clarification @ninavizz: Per the updated roadmap, SecureDrop 2.0.0 will be released after April 30, and we can IMO remove explicit reference to that version here. 2.0.0 will be the first release that drops support for Ubuntu 16.04 (a compatibility-breaking change that justifies the major version number increase), but the April 30 deadline will be enforced on older installations by disabling the Source Interface after April 30 (freedomofpress/securedrop#5688). |
|
Are you guys trying to make my head go-splodey with all the dates/releasedetails/etc? ;) Per @zenmonkeykstop's comment about who is reading the docs and how—I do actually appreciate that a lot, and have thought that perhaps a blog post speaking directly to the general public and folks landing onto a page from an in-site banner, could be more appropriate? Tomorrow (Thurs) I'll also be OOO, but will poke at drafts for both a blog article, and subsequent Docs update to this page. Per item number 6 the my comment in the banner ticket, @zenmonkeykstop I still would like to get a (simple/brief) checklist in that location, so admins can quickly look at it to determine if they've missed a step. Likewise, in the blog article I'd like to speak to why a user may see the "Partially done, still got stuff to do!" banner—so some more background for myself, here, on why that gets triggered vs the other banner, would be muio helpful. :) |
|
Was fixed by #136. (GitHub recognizes |
|
Thanks @gonzalo-bulnes, closing. |
Describe the change
Hi Gang! Until I learn Git a little more, I can’t really do PRs on my own, but wanted to flag the request for some edits to this page in the Docs. Edit suggestion, in comment below. These edits are important for the user experience and comprehension of info to be smooth, when folx click on the link in the new JI banners telling them to upgrade.
How will this impact users?
The page is confusing and a challenging read at the moment, for users arriving on the page from the banner we'll be pushing live in
1.7.0. It's important to communicate with users what we need them to know, first; and everything, later.The "Order Of Consequence" with the text on this page, seems to be:
The topical 101 in the first paragraph of a page, is also quite confusing. Per #123 I'm recommending creating a new item in the glossary, and moving the existing content there.
With the increased urgency of getting users to Update, it feels extra important to prioritize user engagement for this page when users link to it from the
1.7.0JUI banner.User Research Evidence
Nope! Someday, though. :)
Recommendations from UX SME follow general best-practices for writing instructional content that users need to follow.
The text was updated successfully, but these errors were encountered: