Updated list of feature requests for the portal - in order of posts. I may have missed a few.
- Will this be available to suppliers too - marofrancia
- Manager IP Restrictions - Dalacor
- Client Edit Permissions - Approve quotes, upload PO’s - Dalacor
- Email Clients invoice overdue - Dalacor
- Email Clients approve/reject quote - Dalacor
- Filter Search to make it easy to find a specific invoice - Dalacor
- Authentication (User/Pass, MFA, password strength checker, expiration for unused accounts) - Various posters
- Branding Customer Portal with business company colours - Dalacor
- Customer Statements - AHM
- Status of quotes, Orders and Invoices, but allow business to choose to enable this or not - Dalacor
- Folders Tab with Ealfarden’s theme example - so customer contracts, SLA, terms and conditions, Schedule of services etc can be viewed by client - Dalacor
- Customer view account balances - hya
- Save invoices, delivery notes, credit notes, quotes and statements to pdf - Dalacor
- Order form so customers can place orders (perhaps using inventory price list - AMM
- Allow customer to only see unpaid invoices - Tut
- Granular permissions to control what customers can edit, view etc - Various Posters
- When clients make any changes - they are pending until approved by the business within Manager to prevent cyberhacks - Dalacor
- Remove Summary Tab or change it from address details to be an actual client summary. It exposes a lot of information that could be scraped by bots - various users
- Date filter to allow clients to view a specific time period - Sonicgroup
- Completion of quotes, orders and invoices status in main program as the sales order status really needs to fully implemented for customer portal to be of full value as at the moment there is no way for anyone to see the status of progress of the sales order - Dalacor
- Introduction of Serial numbers linkage with supplier order to client sale to track inventory at serial number level for warranty purposes - Dalacor
Question for @lubos - A number of people have raised concerns about the summary page as it exposes customer information which could be scraped by bots or other cybersecurity attacks as customer id and business identifiers are exposed, exposes more information such as the client email (which the client already knows), so thus reducing security.
It got me looking at say the sales invoices tab. In a way, the sales invoices show virtually all that information as well. My bank details, customer name and address. So I am not convinced that removing the summary tab would improve security appreciably as the hacker could just as easily get the information from the sales invoice. By hacking, I am more focused on how bots scrape information, rather than a hacker logging in with a compromised password?
Would it be more secure (or less secure) for the quotes, orders, invoices, delivery notes and credit notes tabs to link to pdf’s rather than the view form? I don’t know if it would make any difference cyber security wise whether hackers would find it harder to scrape information from pdf’s as opposed to html or whatever the view form is based on?