A second way to approve transactions
planned
mrq02
A couple of times now (weeks apart) the oauth initiate transfer request has failed to generate the approval e-mail. It would be nice if there was a place in rally.io that I could go and view my transactions that were waiting approval, and approve them.
mrq02
It would also be nice if the approval time was increased from 1 hour to 24 hours. That would allow users, for instance, to just log in daily and verify/approve all the transactions at once instead of just hoping they're awake...then we could use the existing APIs to manage subscriptions or "cash back on purchases".
Alex Phelps
Russell Spence ESCALATE! Please :)
mrq02
So far since launching products on the store, I've had 8 orders; 3 of them have had issues with the e-mail Rally sends: 2 people never received it, and for 1 person the link in the e-mail was non-functional (I believe it's failing because of a sentry call being rate-limited). So this second way to approve transactions is looking like it might be somewhat urgent.
Russell Spence
planned
Internal Ticket: https://starcard.atlassian.net/browse/MXR-399
Planned long term 3 - 12 months.
I don't like the way our transactions are currently handled in general. I think what we currently have is great in that we got something out fast - something is better than nothing. Overall, initiating a transaction by email is kind of sucky. There's a lot of options for how to handle something like this, but I'd be looking for something that's a little more PayPay like in terms of payment processing. Possibly done through OAuth with a very short lived token good for a single use transaction.
mrq02
@russell-spence: The more I think about it, the less I dislike the e-mail. It basically guarantees 2FA on every transaction! True, most of the time this is unnecessary, but I wouldn't hate it if the e-mail remained an option. Email is just unreliable sometimes, so it would be nice if we could get the Rally UI/website team to show transactions that were pending approval somewhere on the website (perhaps the Wallet tab under the respective coin?) where they could go in and click "Approve" if they don't receive the e-mail.
D
Dave Young2
Great idea!