Talkyard Roadmap 2020
Here's what's next for Talkyard, in no specific order (except for "Sooner" and "Later").
Feedback is welcome; you can add comments below.
Old roadmap, from 2018: https://www.talkyard.io/-171/talkyard-roadmap-2018-11-26
Improvements for Schools and Teachers: https://www.talkyard.io/-338/improvements-for-teachers-and-students.
Includes: invite links with pre-defined group membership, user badges, anonymous questions, etcetera.
Improve the UX, fix bugs / annoyances: https://www.talkyard.io/-334/potential-ux-improvements
External links previews, e.g. Twitter tweets. Currently doing this (June 2020).
Basic theming. User friendly way to edit colors and make one's Talkyard site look like a part of one's website. Slightly started.
OpenID Connect (OIDC) login support — will work with Keycloak, Azure AD, Okta etc. Talkyard would be a Replying Party (RP); those others would be Identity Providers (IDP:s).
Currently doing this — testing with KeyCloak (May, June 2020)
- New topic type: Event. So you can add events to your community, with location, date-time. Maybe RSVP.
- StackOverflow style Reputation points and Up-Down-vote buttons.
- Sub categories.
- Rich text WYSIWYG editor. Non-tech people think Markdown+preview is confusing. Use ProseMirror — it can switch between Markdown and rich-text-WYSIWYG.
- 7 replies
- RJohannes Hass @rhywden2020-04-12 20:41:03.408Z
Eminently important for schools and teachers: A proper authentication scheme. OAuth (at least only for Facebook and the like) is strictly Verboten in the EU (and it's also not feasible to have our teachers and pupils sign up for completely unrelated services).
For my school, for example, everything that's incapable of authenticating against our single source of truth (an on-premise LDAP server) would be a very hard sell. Now, I can whip up a custom OAuth server, I can create custom APIs which provide auth against that server but currently I'm at a bit of a loss how to do that with Talkyard.
- KajMagnus @KajMagnus2020-04-16 04:48:47.730Z
Seems that's important yes — I updated the list above now, and mentioned OpenID Connect, OIDC.
OIDC is built on top of OAuth. You mentioned an on-premise LDAP server — is it OpenLDAP? Does it support OIDC?
You mean students are not allowed to login with Gmail or Facebook to their schools? I hadn't heard about that before
Hey, yes, it's OpenLDAP. It should support OIDC but I haven't got full control over its settings - that was done by a vendor we got our school management software from (we're a bit understrength when it comes to IT support so we have to take care what services we provide ourselves and what is done by external personell).
However, I can state that 3rd party services such as Moodle or Nextcloud have no problem authenticating against the server. But even if it weren't - I could setup an auth server which could act as a middleman.
And, yes, strictly speaking all European students (in principle, I can only speak for Germany, though) would be covered by that. The reason is the EU's GDPR - basically, you're required to do only minimal data collection, only as much as you need to. And requiring pupils to sign up for a 3rd party service which, let's face it, is about the absolute antithesis of data protection (Facebook/Google) would be blatantly illegal. That's why we're hosting as many services as we can on-premise.
- KajMagnus @KajMagnus2020-04-27 14:43:03.945Z
Hi Johannes, sorry for the late reply, ... I've starting reading about OIDC and ways to add it to Talkyard (there are some different OIDC client libs to choose among).
Ok, yes, requiring pupils to sign up for / with a 3rd party service, that'd be weird. Sounds good that you (and schools in general?) use your own :- )
- CIn reply toKajMagnus⬆:@crc322020-04-13 14:45:37.076Z
I've just started using Ty and it's great. The anonymous questions feature is something that would be incredibly useful.