filesafe/todo.md

# Todo

Normal priority:

* [x] Improve performance of album public pages, ~~and maybe paginate them~~.
* [x] Use [native lazy-load tag](https://web.dev/native-lazy-loading) on nojs album pages.
* [x] Use incremental version numbering instead of randomized strings.
* [ ] Use versioning in /api/check. To elaborate, make it so that when a version string reported by server is higher than expected, force user to reload the page (which should be all that is needed for users to be loading latest front-end assets). Possibly also use it in /api/tokens/verify, for dashboard page.
* [ ] Better `df` handling (system disk stats). To elaborate, either properly show disk usages of directories that have sub-directories, or only show disk usages of whitelisted directories (thumbs, chunks, etc).
* [x] Use loading spinners on dashboard's sidebar menus.
* [x] Disable all other sidebar menus when a menu is still loading.
* [ ] Collapsible dashboard's sidebar albums menus.
* [ ] Add "View uploads" button in "Manage your albums" page. Assuming the sidebar album menus are collapsed, users can optionally use this button as a shortcut, if they already happened to be in that page.
* [x] Change `title` attribute of disabled control buttons in uploads & users lists.
* [x] Use Gatsby logo for link to [blog.fiery.me](https://blog.fiery.me/) on the homepage.
* [ ] Automatically create missing columns in `database/db.js`. That way we will no longer need the migration script.
* [x] Better error message when server is down.
* [x] Show expiry date in thumbs view.
* [ ] Add Select all checkbox somewhere in thumbs view.
* [x] Display renders after API check.
* [x] Enforce pass min/max lengths in dashboard's change password form.
* [ ] Add a copy all links to clipboard when there are more than 2 uploads in homepage's uploads history.
* [x] Update fb_share.png.
* [x] I forsaked all `Promise.all()` in favor of `await-in-for-loop` a while back. I personally think it was fine, considering a lot of them were tasks that required serial processing (continuation be dependant on previous iterations), but maybe I should review the current codes to find any sections that would do just fine, or maybe even great, with `Promise.all()`.
* [x] Black-ish colorscheme.
* [ ] When registering a new account, check for existing account(s) with the same username case-insesitively (for people who forgets how exactly they wrote their username). But still forces case-sensitivity when trying to login (cause this is a considerable security layer).

Low priority:

* [ ] Parallel URL uploads.
* [x] Delete user feature.
* [ ] Bulk delete user feature.
* [ ] Bulk disable user feature.
* [ ] Strip EXIF from images. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)
* [ ] DMCA request logs (bare text file will do), and link it in FAQ.

Lower priority:

* [ ] Find a way to detect whether a user had disabled their browser's built-in smooth scrolling capability. We will then use that to decide whether we should use smooth scrolling when auto-scrolling during navigation (for now smooth scrolling is always enabled; and polified if applicable).
* [ ] Support [fragments](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/Identifying_resources_on_the_Web#Fragment) for dashboard sidebar menus.
* [ ] Perhaps consider switching from [Express](https://github.com/expressjs/express) to [Fastify](https://github.com/fastify/fastify)?
* [ ] Multi-level sub dirs for uploads. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)
* [ ] Mime type blacklist. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)
* [ ] Cluster mode (multi-core support). [#50](https://github.com/BobbyWibowo/lolisafe/issues/50)
* [ ] Tiered accounts. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)
Add todo file, cause otherwise I'll always forget 2019-09-12 11:34:04 +00:00			`# Todo`

			`Normal priority:`
Updated todo, I failed markdown class 2019-09-12 11:37:25 +00:00
Updated Updated some dev dependencies. --- Gulp will now build CSS/JS files during development into dist-dev directory, to prevent IDE's Git from unnecessarily building diff's. Added dist-dev to ignore files. --- The entire config fille will now be passed to Nunjuck templates for ease of access of config values. Root domain for use in Nunjuck templates will now be parsed from config. Better page titles. Updated help message for "Uploads history order" option in homepage's config tab. Added "Load images for preview" option to homepage's config tab. Setting this to false will now prevent image uploads from loading themselves for previews. Uploads' original names in homepage's uploads history are now selectable. Min/max length for user/pass are now enforced in auth's front-end. Improved performance of album public pages. Their generated HTML pages will now be cached into memory. Unfortunately, No-JS version of their pages will be cached separately, so each album may take up to double the memory space. File names in thumbnails no longer have their full URLs as tooltips. I saw no point in that behavior. Added video icons. Homepage's uploads history will now display video icons for videos. "View thumbnail" button in Dashboard is now renamed to "Show preview". Their icons will also be changed depending on their file types. Added max length for albums' title & description. These will be enforced both in front-end and back-end. Existing albums that have surpassed the limits will not be enforced. A few other small improvements. 2019-09-17 04:13:41 +00:00			`* [x] Improve performance of album public pages, ~~and maybe paginate them~~.`
Updated Updated axios to v0.18.1. Also added its source map. Updated lazyload to v12.0.0. Also added its source map. Added bulma's source map. --- Moved fontello.css from public/libs/fontello to src/libs/fontello, to make use of CSS builder. Updated thumbnails styling to properly make sure the thumbnails are displayed as 200x200 (their actual configured dimension). Added fixes to some flexbox's bugs that affect IE 10/11. The safe should display much better in those browsers now. Show files' expiry dates in thumbs view. Updated global error handlers in home.js. I will do similar setup with dashboard.js in the future. Just not now, I'm tired. Only load renders after API request to /api/check has been initiated. Used native lazyloading on album pages' nojs version. Removed unnecessary is-expanded class. Rephrased max upload size disclaimer in nojs uploader page. Bumped v1 and v3 version strings. 2019-09-15 18:18:22 +00:00			`* [x] Use [native lazy-load tag](https://web.dev/native-lazy-loading) on nojs album pages.`
Updated Removed version strings from _globals.njk, in favor of src/versions.json. That versions in that file can be bumped with "yarn bump-versions". v1 is automatically bumped when doing "yarn build" as well. Added README file in src directory, explaining versions.json file. Added README file in scripts directory, detailing usage of each scripts. Version strings will no longer be appended when cacheControl is disabled in config file. After all, version strings are only needed when the static assets are cached indefinitely in users' browsers. Initial Cloudflare's cache purging will no longer be executed when cloudflare -> purgeCache is disabled, even if cacheControl is enabled. Just in case someone wants to use version strings for other use cases. Actually use custom metaDesc variable on meta description tag. 2019-09-19 12:10:37 +00:00			`* [x] Use incremental version numbering instead of randomized strings.`
Elaborate some todo tasks and update priorities 2019-10-06 23:51:05 +00:00			`* [ ] Use versioning in /api/check. To elaborate, make it so that when a version string reported by server is higher than expected, force user to reload the page (which should be all that is needed for users to be loading latest front-end assets). Possibly also use it in /api/tokens/verify, for dashboard page.`
			* [ ] Better `df` handling (system disk stats). To elaborate, either properly show disk usages of directories that have sub-directories, or only show disk usages of whitelisted directories (thumbs, chunks, etc).
Fixed todo.md 2019-09-15 07:23:04 +00:00			`* [x] Use loading spinners on dashboard's sidebar menus.`
			`* [x] Disable all other sidebar menus when a menu is still loading.`
Updated todo, I failed markdown class 2019-09-12 11:37:25 +00:00			`* [ ] Collapsible dashboard's sidebar albums menus.`
Elaborate some todo tasks and update priorities 2019-10-06 23:51:05 +00:00			`* [ ] Add "View uploads" button in "Manage your albums" page. Assuming the sidebar album menus are collapsed, users can optionally use this button as a shortcut, if they already happened to be in that page.`
Fixed todo.md 2019-09-15 07:23:04 +00:00			* [x] Change `title` attribute of disabled control buttons in uploads & users lists.
			`* [x] Use Gatsby logo for link to [blog.fiery.me](https://blog.fiery.me/) on the homepage.`
Updated Updated controllers to use Promise.all (concurrent processing) wherever applicable. Added 2 new entries to todo.md. Don't check "Select all" checkbox in dashboard when there are no uploads. Bumped v1 version string. 2019-09-23 08:09:15 +00:00			* [ ] Automatically create missing columns in `database/db.js`. That way we will no longer need the migration script.
Fixed todo.md 2019-09-15 07:23:04 +00:00			`* [x] Better error message when server is down.`
Updated Updated axios to v0.18.1. Also added its source map. Updated lazyload to v12.0.0. Also added its source map. Added bulma's source map. --- Moved fontello.css from public/libs/fontello to src/libs/fontello, to make use of CSS builder. Updated thumbnails styling to properly make sure the thumbnails are displayed as 200x200 (their actual configured dimension). Added fixes to some flexbox's bugs that affect IE 10/11. The safe should display much better in those browsers now. Show files' expiry dates in thumbs view. Updated global error handlers in home.js. I will do similar setup with dashboard.js in the future. Just not now, I'm tired. Only load renders after API request to /api/check has been initiated. Used native lazyloading on album pages' nojs version. Removed unnecessary is-expanded class. Rephrased max upload size disclaimer in nojs uploader page. Bumped v1 and v3 version strings. 2019-09-15 18:18:22 +00:00			`* [x] Show expiry date in thumbs view.`
Updated Added new option "Uploads history order" into homepage's config tab. When set to "Newer files on top", this will use flex-direction CSS property to reverse sort the uploads history. Added new entires to todo.md. Bumped v1 version string. 2019-09-15 07:20:55 +00:00			`* [ ] Add Select all checkbox somewhere in thumbs view.`
Updated Updated axios to v0.18.1. Also added its source map. Updated lazyload to v12.0.0. Also added its source map. Added bulma's source map. --- Moved fontello.css from public/libs/fontello to src/libs/fontello, to make use of CSS builder. Updated thumbnails styling to properly make sure the thumbnails are displayed as 200x200 (their actual configured dimension). Added fixes to some flexbox's bugs that affect IE 10/11. The safe should display much better in those browsers now. Show files' expiry dates in thumbs view. Updated global error handlers in home.js. I will do similar setup with dashboard.js in the future. Just not now, I'm tired. Only load renders after API request to /api/check has been initiated. Used native lazyloading on album pages' nojs version. Removed unnecessary is-expanded class. Rephrased max upload size disclaimer in nojs uploader page. Bumped v1 and v3 version strings. 2019-09-15 18:18:22 +00:00			`* [x] Display renders after API check.`
Enforce pass min/max lengths in dashboard 2019-09-19 07:23:48 +00:00			`* [x] Enforce pass min/max lengths in dashboard's change password form.`
Elaborate some todo tasks and update priorities 2019-10-06 23:51:05 +00:00			`* [ ] Add a copy all links to clipboard when there are more than 2 uploads in homepage's uploads history.`
Enforce pass min/max lengths in dashboard 2019-09-19 07:23:48 +00:00			`* [x] Update fb_share.png.`
Updated Updated controllers to use Promise.all (concurrent processing) wherever applicable. Added 2 new entries to todo.md. Don't check "Select all" checkbox in dashboard when there are no uploads. Bumped v1 version string. 2019-09-23 08:09:15 +00:00			* [x] I forsaked all `Promise.all()` in favor of `await-in-for-loop` a while back. I personally think it was fine, considering a lot of them were tasks that required serial processing (continuation be dependant on previous iterations), but maybe I should review the current codes to find any sections that would do just fine, or maybe even great, with `Promise.all()`.
Updated * Changed colorscheme to black (experimental). * Fixed ClamAV failing to report names of dirty files. * Removed built-in support for Google site verification (globals.njk). Just use HTML verification with public directory, or manually edit home.njk. * Bumped v1 version string. 2019-10-05 22:20:59 +00:00			`* [x] Black-ish colorscheme.`
Added another entry to todo.md 2019-10-06 23:35:41 +00:00			`* [ ] When registering a new account, check for existing account(s) with the same username case-insesitively (for people who forgets how exactly they wrote their username). But still forces case-sensitivity when trying to login (cause this is a considerable security layer).`
Add todo file, cause otherwise I'll always forget 2019-09-12 11:34:04 +00:00
			`Low priority:`
Updated todo, I failed markdown class 2019-09-12 11:37:25 +00:00
Elaborate some todo tasks and update priorities 2019-10-06 23:51:05 +00:00			`* [ ] Parallel URL uploads.`
Updated Added delete user feature. API: /api/users/delete json: id<number>, purge[boolean] By default will not purge out files, but will still clear userid attribute from the files. All associated albums will also be marked, and have their ZIP archives be unliked, if applicable. Fixed purging albums not properly reporting amount of associated files that could not be removed, if any. Fixed moderators being able to disable users by manually sending API requests, if they at least know of the user IDs. They could only disable regular users however. 2019-10-06 23:11:07 +00:00			`* [x] Delete user feature.`
Updated todo, I failed markdown class 2019-09-12 11:37:25 +00:00			`* [ ] Bulk delete user feature.`
			`* [ ] Bulk disable user feature.`
Updated todo again, I failed patience management 2019-09-12 11:38:48 +00:00			`* [ ] Strip EXIF from images. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)`
Updated todo, I failed markdown class 2019-09-12 11:37:25 +00:00			`* [ ] DMCA request logs (bare text file will do), and link it in FAQ.`
Add todo file, cause otherwise I'll always forget 2019-09-12 11:34:04 +00:00
			`Lower priority:`
Updated todo, I failed markdown class 2019-09-12 11:37:25 +00:00
Elaborate some todo tasks and update priorities 2019-10-06 23:51:05 +00:00			`* [ ] Find a way to detect whether a user had disabled their browser's built-in smooth scrolling capability. We will then use that to decide whether we should use smooth scrolling when auto-scrolling during navigation (for now smooth scrolling is always enabled; and polified if applicable).`
			`* [ ] Support [fragments](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/Identifying_resources_on_the_Web#Fragment) for dashboard sidebar menus.`
Updated todo again, I failed patience management 2019-09-12 11:38:48 +00:00			`* [ ] Perhaps consider switching from [Express](https://github.com/expressjs/express) to [Fastify](https://github.com/fastify/fastify)?`
			`* [ ] Multi-level sub dirs for uploads. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)`
			`* [ ] Mime type blacklist. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)`
			`* [ ] Cluster mode (multi-core support). [#50](https://github.com/BobbyWibowo/lolisafe/issues/50)`
			`* [ ] Tiered accounts. [#51](https://github.com/BobbyWibowo/lolisafe/issues/51)`