Haldis/haldis
2
0
Fork 0
Code Issues 39 Pull requests Packages Projects Releases Wiki Activity

Segregation: multiple realms/groups? #64

New issue
Open
opened 2020-09-01 13:04:16 +00:00 by midgard · 2 comments
midgard commented 2020-09-01 13:04:16 +00:00 (Migrated from git.zeus.gent)
Copy link
  • Do we want to keep all orders public?
    • Do we want advanced management of who can see what order, with groups that people can be added to?
  • Do we want separate realms that have their own orders? E.g. one for each student association?
- Do we want to keep all orders public? - Do we want advanced management of who can see what order, with groups that people can be added to? - Do we want separate realms that have their own orders? E.g. one for each student association?
midgard commented 2020-10-13 00:46:23 +00:00 (Migrated from git.zeus.gent)
Copy link

Brainstorm with @j tonight:

  • As Haldis gets more well-known people might start adding fake items anonymously.
    How to fix:

    • Login (with UGent), need to be logged in to create order.
    • Offer the option to password protect orders. (With an automatically generated, easy to type password or pincode.)
    • Offer the option to allow non-logged in people. Maybe the courier and/or creator could generate access tokens for guests on this order. When logged-in users do bad requests, the courier/creator can block them. This excludes them from future orders of this courier/creator. When a user is blocked 3 times, they are blocked globally (for some time or indefinitely).

  • Realms might be useful for discovery of open orders. Also to keep track of past orders, mainly for stats. (Not necessary for debt settlement: orders you participated in can be shown on the homepage.)

Own thoughts afterwards:

  • Public orders give a vector for stalking which may be undesirable.
Brainstorm with @j tonight: * As Haldis gets more well-known people might start adding fake items anonymously. How to fix: * Login (with UGent), need to be logged in to create order. * Offer the option to password protect orders. (With an automatically generated, easy to type password or pincode.) * Offer the option to allow non-logged in people. Maybe the courier and/or creator could generate access tokens for guests on this order. When logged-in users do bad requests, the courier/creator can block them. This excludes them from future orders of this courier/creator. When a user is blocked 3 times, they are blocked globally (for some time or indefinitely). * Realms might be useful for discovery of open orders. Also to keep track of past orders, mainly for stats. (Not necessary for debt settlement: orders you participated in can be shown on the homepage.) Own thoughts afterwards: * Public orders give a vector for stalking which may be undesirable.
flynn commented 2021-10-28 19:43:25 +00:00 (Migrated from git.zeus.gent)
Copy link

mentioned in issue #75

mentioned in issue #75
Sign in to join this conversation.
No Branch/Tag specified
Branches Tags
master
slug
hlds-verify-choice-option-count
feature/invitelink-token
feature/microsoft-auth
feature/slugs
show-logo-at-home
order-no-auth
feature-126
No results found.
Labels
Clear labels   
Doing

   
To Do

   
bug

   
hlds

   
ui

   
wishlist

   
wontfix
No labels
Doing
To Do
bug
hlds
ui
wishlist
wontfix
Milestone
Clear milestone
No items
No milestone
Usable for other student associations
Projects
Clear projects
No items
No project
Assignees
Clear assignees
No assignees
1 participant
Notifications
Due date
The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference: Haldis/haldis#64
No description provided.
Delete branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?