-
Notifications
You must be signed in to change notification settings - Fork 632
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Is PublicTicketForm exactly public? #602
Comments
Hello! I'll try to answer:
PRs for the above or anything else are welcome! Thanks for the feedback. |
1 The PublicTicketForm isn't exactly public. A logged in user also uses PublicTicketForm. Is there any important logic that I am missing or is it the choice developers made. → Not sure of what you mean here. 2 An authenticated user creating a ticket, who is not a staff should not be concerned about the Priority and Due date fields in the ticket. I think its the job of the staff members replying to the tickets as a response to provide due dates and priority to a particular ticket. → You can easily use a django template to change this. 3 The spam issue is valid we need to think about securing the public submission form better, I've opened a new ticket: #1141 4 Options to move the attachments to a cloud service should be provided. → This is in Django already |
I was implementing a helpdesk for my organization and I had few things to discuss with the developers about this project. I was thinking of contributing to the code with exactly some of the thought process that I feel should be an appropriate choice.
The PublicTicketForm isn't exactly public. A logged in user also uses PublicTicketForm. Is there any important logic that I am missing or is it the choice developers made.
An authenticated user creating a ticket, who is not a staff should not be concerned about the Priority and Due date fields in the ticket. I think its the job of the staff members replying to the tickets as a response to provide due dates and priority to a particular ticket.
An authenticated user logged in to the platform and creating ticket should not be able to edit the Email field. This might prevent spams from authenticated users and get a better understanding of our authenticated users. (I have actually done this, will submit a pull request shortly).
All the email tasks are currently run inside the view. Sending emails via an SMTP server takes time and should rather be made asynchronous (Celery and Redis).
Options to move the attachments to a cloud service should be provided.
All the above options seem to be a good fit for the product and I am currently working on some of these for my own organization.
Thanks!
The text was updated successfully, but these errors were encountered: