You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 2 Next »

Guidelines

  • Reduce number of screens required for actions
  • Reduce number of clicks (e.g. feedback should be in a div which appears instead of a popup that requires an OK)
  • Have the UI be usable by keyboard without requiring the mouse

Security

  • All methods should be POST, though if GET is required, have a whitelist
  • Prevent CSRF by having a key (SESSIONID?) which is transmitted with each request in a form variable (will this work for dhtmlx GET requests?).  Have a switch that turns this off

Ideas

  • Overall search screen should allow search for all grouper objects
  • Comboboxes should have filters (e.g. for which source)

Help framework

  • No labels