[Design] [Scooby] Anonymous access to read-write tickets and
security concerns
Brian Moseley
bcm at osafoundation.org
Thu Jul 13 10:40:39 PDT 2006
On 7/12/06, Mimi Yin <mimi at osafoundation.org> wrote:
> True, it's not problematic if you assume that the user has created an
> account with a username that is separate from their email address.
>
> It is problematic if you auto-generate accounts based on email
> addresses (a la Jeremy's proposal).
so, don't do that.
> It's also problematic because one of the design requirements we're
> putting forward is that users don't feel like they're creating /
> maintaining an account.
this just boggles the mind. i feel like i'm on crazy pills. at what
point in the last ten years did people decide they absolutely
positively will not register for another web service? was i on
vacation?
feel free to use cosmo's existing ticket support for whatever sharing
workflows you want, but i will veto any commit or patch that attempts
to create yet another mechanism for anonymous access to private data.
More information about the Design
mailing list