Extension talk:Enkoder

Bot-accessible data problem
On the talk page of Extension:EmailObfuscator I found the following comment by Jimbojw. The problem with the methodology used by this extension is that you still have to specify the email address in a computer accessible way. It's wonderful that the HTML page lacks the plaintext email addresses, but they're still viewable in the page source.

All a bot creator would have to do is tell the bot to pull down the action=raw versions of pages and parse them for instances of email addresses, and the functionality provided by this extension would be completely circumvented.

One thing that might work would be to pull the email address of a user (which is only available to the wiki system), then build that out using JS. So instead of this: Some Text You'd have this: Some Text Just a thought. --Jimbojw 17:03, 12 April 2007 (UTC)

This is also the case for Extension:Enkoder so I changed the renderEnkodeMail function in enkoder-mw.php. Now the following is possible. Instead of specifying the e-mail through to="person@example.com" it is also possible to break the domain name of the address so that the @ character does not show in the action=raw version.  Imaginary Person

To use the e-mail of an user, which is known in the wiki system, the following two are also possible by using the user's name or id. Note that since the readable output of Extension:Enkoder is shown in the status bar of the browser, someone who is able to edit pages of a wiki with Extension:Enkoder could get the e-mail addresses of any other user of which the user name or id is known.  Imaginary Person <enkodemail id="54321" subject="Please advise." title="Hover over me"> Imaginary Person

The changes I made to the renderEnkodeMail</tt> function are shown below.

BTW I tested this with MW 1.12.

--Rebbyte 19:11, 14 April 2008 (UTC)