core_feedback_features: Support attachments on comment topics

1 vote

Vote

Raised 0% of 12 credits
(12 credits = 2 hours or $83.49)

Currently you can use attachments in quick reply on the forum, but not on comment topic replies.

It should be possible for Conversr sites, but optional whether it's enabled.

Suggested by Chris Graham on 31st July 2018

core: Deep tracking

0 votes

Vote

Raised 0% of 144 credits
(144 credits = 24 hours or $1,001.88)

Currently Composr can track activity by member, or by IP address.

Back when I designed this, I thought we'd all be on ipv6 soon without us having NAT (Network Address Translation). Perhaps more than ever we have organisations were all users share a public facing IP.

This means that we cannot effectiv…

Suggested by Chris Graham on 30th July 2018

core: 2-step login

1 vote

Vote

Raised 0% of 30 credits
(30 credits = 5 hours or $208.73)

Allow login over 2 steps. The first step would be the username, the second the password. The username of an in-progress login would be stored in a new table that had the session ID, the username, and a login ID. That login ID would be presented on the second screen as a hidden field, and used for looking t…

Suggested by Chris Graham on 30th July 2018

core_cns: Score passwords that contain the username lower

1 vote

Vote

Raised 0% of 6 credits
(6 credits = 1 hour or $41.75)

If a password contains the username, discount all those letters from the scoring algorithm. Therefore the password may not hit the score threshold configured.

Suggested by Chris Graham on 30th July 2018

core_form_interfaces: Virtual Keyboard

1 vote

Vote

Raised 0% of 48 credits
(48 credits = 8 hours or $333.96)

With all the other accessibility features in Composr I think it might be useful to have a Virtual Keyboard (on the login screen at least, as this would likely prevent keylogging). Might be nice to extend it to other input fields but at the bare minimum I think it would be a handy feature which could possib…

Suggested by Adam on 23rd July 2018

core_permission_management: Rename privileges for clarity

1 vote

Vote

Raised 0% of 12 credits
(12 credits = 2 hours or $83.49)

Edit privilege labels like "Edit topic" or "Delete high-impact (high visibility) categories" to include the word "any" in. E.g. "Edit any topic".

Otherwise people may incorrectly assume that it's just referring to a user's own access. User's own access is showed there too, but I guess users may miss tha…

Suggested by Chris Graham on 16th July 2018

shopping: Interstitial page between shopping cart and payment gateways

1 vote

Vote

Raised 0% of 24 credits
(24 credits = 4 hours or $166.98)

There is a discussion in #3637 regarding current complexity of the cart, regarding order duplication.

We could improve things a lot if the cart did not show payment buttons but rather passed through an interstitial page that:
- Copied the cart into an order
- Emptied the cart
- Redirected to the p…

Suggested by Chris Graham on 29th June 2018

core_form_interfaces: Password input with show password button

1 vote

Vote

Raised 0% of 18 credits
(18 credits = 3 hours or $125.24)

Have a new $value parameter to form_input_password. If not null, it will put a 'show password' button next to it.

Currently we don't use password inputs for passwords in configuration, because you may legitimately want to see the value when checking your configuration. All these would need moving over t…

Suggested by Chris Graham on 7th June 2018

core: CSRF post token expiry, AJAX checks for expiry

0 votes

Vote

Raised 0% of 12 credits
(12 credits = 2 hours or $83.49)

Before submitting a form, check that the post token is not expired. If it has expired, tell the user that they appear to be making a submission that is not authorised under their account and if this is due to it the form being opened a while back that they can choose to re-authorise it. This will put in th…

Suggested by Chris Graham on 31st May 2018

core: Improve HTML_COMPRESS directive's relative URL capability

0 votes

Vote

Raised 0% of 12 credits
(12 credits = 2 hours or $83.49)

HTML_COMPRESS is a new directive coming to v11. It allows making URLs relative, to reduce page size.

It would be good to extend this so...
1) it can use "../" to make things relative from deeper URLs.
2) You can pass the HTML_COMPRESS directive your base URL, in case you use a <base> tag and Composr n…

Suggested by Chris Graham on 25th May 2018