Re: New Member website ready for testing
On Mon, 21 May 2001 09:55:50 +1000, Craig Small wrote:
>On Tue, May 15, 2001 at 09:03:51PM +0200, Nils Lohner wrote:
>> - the password entry should be secure. It's probably better to
>> generate a random password and allow the user to change it later using
>> a secure web page
>I'm not sure what you mean by secure. Do you mean the application page
>should be via HTTPS?
Not the application page itself, but once you authenticate yourself
with a password that should be an option, like the db.debian.org
access. This password can eventually be used for voting online etc.
and anyone with it can take over someone's account and vote in their
place. So, IMO, it's important to have this option.
...
>There is a membership sequence number and a applicatiosn sequence
>number. The page gives you the application one.
Perfect.
>> - if someone doesn't respond to the confirmation email, how long before
>> the record gets deleted? I'd say ~2 days is good...
>At the moment it doesn't. I can put an automatic reaper in there
>similar to the advocation script on Debian.
Would be a good idea. Maybe resend it every 2 days for a week, then
delete it?
>> - the status page http://nm.spi-inc.org/nmstatus.php should allow the
>> user to edit the fields needed for contributing membership, or have a
>> link to another web page where he can supply the information needed and
>> submit it.
>It will be on that page, contrib isn't covered yet as there are still
>some issues to iron out about non-contrib.
No problem. I think having the info on a separate page is OK, with
another page (or maybe 'edit' buttons next to the info? Whatever you
think best/easiest...) to edit it.
>> - question: should we allow them to freely edit their name and/or email
>> addr?
>At first, I'd say no.
>We can always add this later.
Agreed.
Thanks for the work! I'll take a look at the pages again and send
another mail.
Nils.
Reply to: