GithubHelp home page GithubHelp logo

Comments (4)

crossan007 avatar crossan007 commented on August 31, 2024

@aharriscrowne I have some security concerns here. WordPress sites are generally available to the general public. A public-facing directory search should probably not be allowed.

Do you have anything in mind regarding this security aspect?

from wordpress-churchcrm-calendar.

aharriscrowne avatar aharriscrowne commented on August 31, 2024

I get your concerns. In my case I am looking for a happy medium. I want my community to have their own Wordpress logins which I consider relatively insecure, but I don’t want to compromise the database with similarly insecure login credentials for everyone (even if they have limited capabilities), nor do I want to burden them with two logins and two sites.

A search behind a login seems like a good compromise because it would be pretty cumbersome for someone to query the database enough times to get everyone’s data even if they compromised someone’s Wordpress credentials. And it would give the community tremendous value and reduce dependence on a paper directory.

Do you have additional concerns I am not thinking of? I certainly agree that a search on a public Wordpress site is a bad idea and I don’t know how to prevent someone from doing that

from wordpress-churchcrm-calendar.

crossan007 avatar crossan007 commented on August 31, 2024

@aharriscrowne what data points / person fields should be available in this view?

from wordpress-churchcrm-calendar.

aharriscrowne avatar aharriscrowne commented on August 31, 2024

@crossan007 Ideally, the full capabilities of the search are available for configuration just like in the main app, but I don't think that is necessary if it is too cumbersome or insecure. At a bare minimum a person's first and last name should be searchable and a household name should be searchable. Ideally the autocomplete would work like in the app, showing individuals and households. And selecting a person from the autocomplete would present the person's data points (phone numbers, emails); selecting a household would present the household datapoint and possibly the names of the individuals in the household.

Does that answer your question?

from wordpress-churchcrm-calendar.

Related Issues (2)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.