Make a route that is a secret to everyone but the user who registered, e.g. it can be the base64-encoding of the user ID such as:

hack.gt/register/edit/124521141341aaffff

This will load the registration questions with the corresponding responses, and allow the user to submit again.

Would be cool. Also already implemented for HelpQ.

The registration page should be usable and aesthetic.
Improve or make the current/nonexistent handlebars template for the registration page to make it actually good.

Feel free to use any CSS framework you see fit.

Also be sure to include check marks, or whatever you think is right as initially hidden elements to provide UI feedback on if the input is correct or not. (if a phone number is in a valid form). The checking of this will be handled by #5

Implemented as part of the admin panel. Needs to send out emails and allow access to a second evaluation form.

Integrate InfluxDB to export time series metrics for visualization in other services such as Grafana.

Text:

Hi!

Thank you for registering to be a <insert applicant type> at HackGT's Catalyst! If you have any questions please don't hesitate to contact us at [email protected].

Sincerely,
The HackGTeam

Useful for when applicants can be attendees, mentors, or sponsors such as for the HackGT Catalyst event. See here for the type of application branching we need to support.

Whether by email or something else, or on the successful submission page, provide a link the user can visit to change his responses. The actual mechanics of editing responses is a separate issue described here: #7 .

This should be completed after #7

Differentiate pending applicants and rejected applicants so rejected applicants can be filtered out

This is the lowest possible priority.

Preferably make this a configurable setting etc.

To authenticate users, we should use OAuth authentication with providers such as Google and GitHub. This can easily be done with a library such as Passport. We should prefer this kind of authentication over username / password because:

• We won't have to worry about properly securing passwords (proper key derivation algorithm, salting, etc.)
• Easier registration process because the user won't have to create yet another username and password combination
• Email service (such as SendGrid) not required. When using a username / password combination, there has to be some sort of process in place for resetting forgotten passwords.

The only drawback that I can think of is that creating an initial admin user is a trickier problem to solve.

Alpaca.js does exactly what we want! I'm gonna use it.

soon we'll want to open source this and let other people use it, so we should think about how we want to generalize it to everyone, this is a bug to brainstorm, the individual tasks should be made into separate bugs & PRs, some ideas include:

• Custom CSS file to make it match other apps people are using this with
• i18n
• customize text #38
• Modularized auth methods #36
• Create admins in the admin screen #40
• File uploads #46

what else do we need?

We need a way to notify people who haven't been accepted. Possibly also add multiple states like accepted, no decision, and rejected instead of the accepted / not accepted options currently in place.

Accessed after being accepted to confirm attending the event

Blocked by #48

Make the text in the dashboard (somewhat) configurable by admins.

1. Will need different text for different stages (applied, accepted, confirmed).
2. Will need different text for different applicants (student, mentor, chaperone etc.)
   Note: depending on our architecture, this might be pretty hard?

Configurability:

1. Partially configurable. Default will just show a sentence about when applications are due. Any custom stuff will appear underneath the "due date"
2. Fully configurable with some kind of templating. Available vars include
   1. (Basic) user info (name, email, applicant type)
   2. Due date

Bonus points:

1. Markdown support
2. Emoji support (probably comes for free)

Signing in with Google redirects to localhost:3000 rather than the actual domain.

When there are multiple applications (aka our case with student, mentor, and chaperone), we should add in certain UI tweaks to make it friendlier.

1. [Beginner Friendly] Let users go back to the "Choose what you want to apply as" screen. Yes, they can just go back in their browser but that's not always intuitive (also what if you clicked a link...)

2. [Not as beginner friendly] Enable "deep linking" aka allow someone to be linked directly to a specific application.
   Use case:

   1. A mentor link would be https://registration.hack.gt/apply/mentor
   2. New user would be redirected to a login/signup screen
   3. When authenticated, they are navigated directly to the mentor application (rather than dashboard or generic application screen)

The current preliminary work merged in d15217a is only to support check in for the HackGT Catalyst event. Ideally we want to make the current export button a menu with checkboxes for the branches and options for applied/accepted/not complete and then maybe options for which fields to export from the application

Define all the types of questions you can ask, some ideas are:

1. text
2. phone-number
3. select or combo
4. date
5. url
6. file
7. unique-select or radio

along with these definitions make a JSON schema for the file and provide some code to load the configuration file, check it against a schema, and return a JSON object.

We want to log when the user does anything, then we can look back and see some trends and even do some AB testing! I'd like to use this issue to make sure everyone has a voice on what they want tracked.

cc @petschekr @bunsenmcdubbs

What I'm thinking so far:

• visiting
• creating an account
• starting registration
• completing registration

And what to log:

• any demographic information available
• a unique identification when available
• time
• location

Anyone else have any other ideas? Assigning @kexin-zhang on this since she's the master of metrics!

It would be very helpful for the team reviewing applicants to only see users who haven't been accepted, so their view isn't flooded by hundreds of accepted users

Don't do a DB dump every time these pages load and cache the results after calculating the pages.

Currently the (question, answer) pairs are a pretty good first-effort way of summarizing the responses but more could be done. I really do like the way its currently broken down but some more fancy reporting could be done.

Assume that you have a JSON configuration of the registration questions equivalent to the config used in #1 , like so:

questions:
  - type: text
    text: What's good?

  - type: select
    text: 'Dietary Restrictions:'
    options:
      - Vegan
      - Vegetarian
      - Kosher
      - Paleo

Use this configuration to make a schema for mongo at startup and connect to mongo.

Create a route that will accept the HTML form input, verify it against the schema, and store it in mongo.

Return a success page in the event the data is successfully recorded into mongo.
Return a failure if this procedure encounters a fatal error.

Since this is mostly a server-side app, it lends itself well to unit tests on the API. If you decide to tackle this, please structure them like in Ultimate-Checkin (i.e. using mocha, supertest, and chai). Also, make sure that the tests are integrated and automatically run by the Travis CI build.

As admin, viewing a list of all users, I see stars and checkmarks next to user emails. I assume:

• stars = admins
• checkmarks = confirmed user? submitted application?

There should be a small legend at the top/side so its more explicit.

The team link in the header nav menu doesn't currently go anywhere. We need a team management system for hackathons and other events post-Catalyst. The number of team members and whether team management is enabled or disabled to be configurable from the admin panel.

Soon we'll want to look up people's school name (like for the sponsor portal). We might want to tag each question with a well-known tag like 'school' or 'dietary'. Thoughts?

Comes out as a plain text MongooseError...user should be able to log in again

MongooseError: User validation failed
    at ValidationError (/usr/src/checkin/node_modules/mongoose/lib/error/validation.js:23:11)
    at model.Document.invalidate (/usr/src/checkin/node_modules/mongoose/lib/document.js:1535:32)
    at /usr/src/checkin/node_modules/mongoose/lib/document.js:1410:17
    at validate (/usr/src/checkin/node_modules/mongoose/lib/schematype.js:707:7)
    at /usr/src/checkin/node_modules/mongoose/lib/schematype.js:752:11
    at Array.forEach (native)
    at SchemaString.SchemaType.doValidate (/usr/src/checkin/node_modules/mongoose/lib/schematype.js:712:19)
    at /usr/src/checkin/node_modules/mongoose/lib/document.js:1408:9
    at _combinedTickCallback (internal/process/next_tick.js:67:7)
    at process._tickCallback (internal/process/next_tick.js:98:9)

Traditional username / password scheme for times when users might not have accounts on GitHub / Google / Facebook. Let's use this.

Should be able to filter by question names. e.g. diet = vegetarian & tshirt = Large

Submitting the registration form in a non-Chrome browser (tested with Microsoft Edge and Firefox) will successfully submit the form but the browser won't stop submitting the form to a non-existant endpoint and will send the user to a page that says something like Cannot POST /apply/mentor.

Also affects the admin settings form

Assume you have a JSON object with the configuration for the registration page is a format similar to:

questions:
  - type: text
    text: What's good?

  - type: select
    text: 'Dietary Restrictions:'
    options:
      - Vegan
      - Vegetarian
      - Kosher
      - Paleo

Use this configuration to render and cache a handlebars template that is the HTML of the registration page. Finally add a route that serves this cached page.

We need pages that represent:

1. a response being successfully recorded on the server
2. a server failure

these will be served after the user submits the registration.

We need to replace the current debugging questions.json configuration with the actual registration form to be used for the HackGT Catalyst high school hackathon.

Probably want to break this down into the following sections:

• Stats
  • Admitted / confirmed / denied
  • Demographics
• Users
  • Table of users
  • Accept / deny users
• Settings
  • Open / close registration
  • Registration and confirmation close date
  • Email content editing
  • Enable / disable teams
  • Configure max team size (if any)

We need some kind of dashboard page with information similar to what the HackMIT registration dashboard had.

Generate and show QR codes that can reference the user id across all apps.

Give the ability to set (and un-set) users as admins in the admin screen so config changes/app restarts aren't necessary.

This one is going to be tricky (not too bad, just harder than the other form fields)... We need to be able to support file uploads in the application form. Development for this can come in 2 stages.

First, support file uploads and save to disk.

• configure a location on disk to save files (absolute or relative path - absolute is encouraged for production, relative makes it easier for development)
• save user's file uploads in a directory structure inside the uploads directory that supports multiple file upload fields
  ex) uploads/<question1/question2/question3>/<user_id>.<file_ext>
• any API requests for getting application/user data should indicate that the user has a file uploaded for that field but not include the file itself. Create a separate endpoint for file uploads.
  ex) (and this is a totally wild guess, please change as appropriate) GET /api/files/<question_id>/<user_id>

There are several considerations for this approach:

• Questions now need id's (or some identification method to support multiple file upload fields in a form)
• how to support multiple files for a single field? zip all files when downloading on GET requests? consider changing directory structure to:
  uploads/<question_id>/<user_id>/<file_name>

The second stage will be considerably... fancier. Modularize/decouple the actual file upload handling process. ex) What if you don't want to upload to a local directory? Enable "pluginability" (upload to S3, Google Drive API etc.)?

Make it easier to enable/disable different methods for authentication (probably through the config file).

The configuration file for the questions could have some restrictions, or could require preprocessing (such as when uploading a resume maybe it gets sent to an S3 bucket or maybe its just converted to base64). This will be the same format as in #1 and #2 :

questions:
  - type: text
    pattern: [0-9]{10}
    text: Phone #

  - type: file
    text: Resume
    size-limit: 1kb

Since each type of question will likely have its own validation parameters, simply start with validating text with a regex and displaying UI feedback to the user, disallowing submission if the input is invalid.

I noticed this when the server's timezone was different from my computer's.

Steps to replicate:

1. Set your computer timezone to one different from the server (aka not EST).
2. Go to the admin page and change the application opening/closing time
3. Save.

You'll notice that the time that in the input box changes (probably by the timezone difference between server and client ... or UTC?). This hop will actually let you continually move the time forward/backwards if you just click "save" over and over.

Solutions:

1. Ensure that timezones are known in the client, server etc.
2. Always convert to/from local time OR
3. Display the timezone
   ex: ... 3pm EST

• Bonus points if the timezone is only displayed when it is different

Add option to export all the raw data, requested by @lsurasani .