⇤ ← Revision 1 as of 2010-10-21 15:41:30
1261
Comment: fms is dead, long live gms
|
← Revision 2 as of 2013-03-16 10:54:53 ⇥
1297
|
Deletions are marked like this. | Additions are marked like this. |
Line 2: | Line 2: |
Read {{{/services/gms/README }}} |
The Gumby Management System (GMS)
Read /services/gms/README
With LDAP/UCCSchema in place, the road is open for a web-based member management system that doesn't suck too badly.
Goals
Stage 1
- Members can log in and view their information
- Committee can log in and view other people's information
Stage 2
- Members can edit the relevant parts of their information
- Committee can log in and edit other people's information
Stage 3
Members can renew online (perhaps with automatic confirmation if they pay via PayPal?)
- This will probably require some sort of staging, such as storing changes in ou=pending within the uid's DN until they are confirmed by a committee member.
In the future
- Creating new accounts?
- Other?
Security
- GMS should only run over SSL
- GMS should let users authenticate as themselves to LDAP, at least for viewing
- However, attributes like uccAccountRenewed should probably not be writeable by users - GMS will probably need a service-specific LDAP account
- The updates that GMS makes will be logged in the LDAP audit log, which might need to be archived for a longer period of time. Alternatively, GMS could make its own logs.
== Other thigns to remember