Rev 147 | Rev 151 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
| Rev 147 | Rev 150 | ||
|---|---|---|---|
| Line 1... | Line 1... | ||
| 1 | 1 | ||
| 2 | IMPORTANT |
2 | IMPORTANT |
| 3 | - Verify: escape everything |
3 | - Test all new prepared statements |
| 4 | - Cookie law: |
4 | - Cookie law: |
| 5 | Download CookieConsent code into _3p folder, do not hotlink it |
5 | Download CookieConsent code into _3p folder, do not hotlink it |
| 6 | we need to log all consents |
6 | we need to log all consents |
| 7 | do we need an explicit consent at the login form? |
7 | do we need an explicit consent at the login form? |
| 8 | do we need a consent for the cookie SSL_CHECK? |
8 | do we need a consent for the cookie SSL_CHECK? |
| 9 | - dsgvo datenschutzerklärung, agbs etc. |
9 | - dsgvo datenschutzerklärung, agbs etc. |
| 10 | - Verify that logger works correctly, check if all logmasks are correct |
10 | - Verify that logger works correctly, check if all logmasks are correct |
| 11 | 11 | ||
| - | 12 | TODO |
|
| - | 13 | - "Plugins" aufklappen |
|
| - | 14 | - Instead of title "Registration Authority Information", the title should be the actual RA name |
|
| - | 15 | - backtick operators entf |
|
| - | 16 | - self host polyfill and add to acknowledgements page |
|
| - | 17 | ||
| 12 | ADMIN AREA |
18 | ADMIN AREA |
| 13 | - Allow that the admin can change user's passwort/contact data |
19 | - Allow that the admin can change user's passwort/contact data |
| 14 | - Admin should see log events for each RA and OID |
20 | - Admin should see log events for each RA and OID |
| 15 | 21 | ||
| 16 | SETUP |
- | |
| 17 | - Add warning that with the insertion of the database, all tables will be droppped |
- | |
| 18 | - | ||
| 19 | RFC |
22 | RFC |
| 20 | - proof read |
23 | - proof read |
| 21 | - should the whole WHOIS output be case insensitive? |
24 | - should the whole WHOIS output be case insensitive? |
| 22 | - should "distance" be mandatory? |
25 | - should "distance" be mandatory? |
| 23 | - try to use MUST, MUST NOT, SHALL etc. according to RFC 2119 |
26 | - try to use MUST, MUST NOT, SHALL etc. according to RFC 2119 |
| 24 | - felder die nicht optional sind => mandatory kennzeichnen |
27 | - felder die nicht optional sind => mandatory kennzeichnen |
| 25 | 28 | ||
| 26 | SMALL THINGS |
29 | SMALL THINGS |
| - | 30 | - Object type plugins : name all files "plugin.inc.php" |
|
| - | 31 | - when ajax.php generates a PHP error, the client gives a "syntax error" message... it would be better if the client shows the full php error? or something more user-friendly? |
|
| 27 | - freeoid: gmail app does not hyperlink the activation URL. why? |
32 | - freeoid: gmail app does not hyperlink the activation URL. why? |
| 28 | - how to avoid invite spamming? |
33 | - how to avoid invite spamming? |
| 29 | - when a PHP error happens, the AJAX script outputs "Error: SyntaxError: Unexpected token < in JSON at position 0" ... better show the user the actual message |
34 | - when a PHP error happens, the AJAX script outputs "Error: SyntaxError: Unexpected token < in JSON at position 0" ... better show the user the actual message |
| 30 | - "plugin.inc.php" => rename to *.class.php ? Or vice versa for object types? |
35 | - "plugin.inc.php" => rename to *.class.php ? Or vice versa for object types? |
| 31 | - when login expired, remove entries in the treeview |
36 | - when login expired, remove entries in the treeview |
| Line 59... | Line 64... | ||
| 59 | - kritischer bug: seite öffnen, tiny mce editieren, speichern klicken. dann f5 neu laden (nicht strg+f5): dann ist der alte content wieder da. außer man drückt strg+f5 |
64 | - kritischer bug: seite öffnen, tiny mce editieren, speichern klicken. dann f5 neu laden (nicht strg+f5): dann ist der alte content wieder da. außer man drückt strg+f5 |
| 60 | - jstree select: automatically scroll down |
65 | - jstree select: automatically scroll down |
| 61 | - optisch aufhübschen. dinge wie RA: mehr dinge zeigen, adresse, email etc |
66 | - optisch aufhübschen. dinge wie RA: mehr dinge zeigen, adresse, email etc |
| 62 | 67 | ||
| 63 | FUTURE |
68 | FUTURE |
| - | 69 | - we need to make OIDplus more compatible with non-MySQL databases (different SQL dialects) |
|
| 64 | - make use of Composer. Problems: |
70 | - make use of Composer. Problems: |
| 65 | * What if composer installs a version of a component, which is incompatible? |
71 | * What if composer installs a version of a component, which is incompatible? |
| 66 | * We need a new publishing script, because simply checking out SVN is not enough anymore. The user needs to execute composer. But what is if the user don't have composer (or dont have shell access at all?) |
72 | * We need a new publishing script, because simply checking out SVN is not enough anymore. The user needs to execute composer. But what is if the user don't have composer (or dont have shell access at all?) |
| 67 | - implement sitemaps xml |
73 | - implement sitemaps xml |
| 68 | - admin should be able to change wellknown oids? |
74 | - admin should be able to change wellknown oids? |