Open maltfield opened 7 months ago
See also this ticket to add a section to the Lemmy UI for users to be able to delete individual images without having to delete their account
For additional context of this issue, please see Nightmare on Lemmy Street (A Fediverse GDPR Horror Story)
Requirements
Describe the feature you'd like
Requirements
Describe the feature you'd like
This is a request to implement a section of the Lemmy WUI where admins can:
Problem
Currently it's not possible in the Lemmy WUI for admins to delete files that users have uploaded.
This is not just an inconvenience. It's a legal risk to lemmy instane admins.
Legally, instance admins must respond to "GDPR Erasure Requests" from their users. That is, if a user sends them a request to delete some content (eg a photo), then they must delete it from their website within a reasonable timeframe. This law applies to any website operating anywhere in the world (not just to websites or businesses located in the EU) that has users who are residents of the EU (so it likely affects >90% of public lemmy instances with >100 active users).
The fines for this violation are commonly millions of euros or a percent of of revenue, whichever is higher.
Currently there is no way for lemmy admins to find and delete images that have been uploaded by users in the WUI.
Currently there are no lemmy-specific API endpoints for admins to delete images that have been uploaded by users.
Currently it is possible for admins to delete images that have been uploaded by users via the pict-rs API, but it is non-trivial (how the heck does one get the
alias
ordelete_token
anyway?), and there is no examples given in the lemmy documentation describing how to do this.Solution
There should be a very straightforward way in the lemmy WUI for dmins to view & delete any files that have been uploaded by users.
Because this dataset is so large, there should be a search field in the admin WUI where admins can enter attributes about the image that will find the image -- and then they can delete the image after its found.
Admins should be able to find images by querying for, at least:
Moreover, the image results returned above should be able to be sorted: