Remarks After I Created a Community + Bug

avatar
(Edited)

Today I decided to create a community. It's not actually my own, it will be for the Romanian community, but I thought it is a good opportunity to test the creation of a new community and playing with roles, something I couldn't do from the outside.

The process of creation of a new community is very simple and I didn't find anything worth mentioning other than you really must backup the password (and later break it down into private keys to also store), and that you need 3 STEEM to do it. Without the password (or the private keys), you lose access to the community owner account. Just like on Steem with the regular accounts.

I'll keep my remarks short and to the point.

First Impact After Creating the Community

First of all, I liked that my account was added as admin by default. It is also great that after that the community page became active by default.

Next, I don't like so much how things went. I went to the "Explore Communities" page to see if the newly created community was listed. I didn't see it. Maybe there is a minimum activity or time elapsed needed to get on that page.

Then I logged out and logged in with my community owner account to add another admin. But then, I asked myself: how do I go to my community? I didn't see any way for the "regular guy" to go there. The easiest way I could think of, was to copy the username of the owner account, go to any community then replace their "hive-xxxxxx" part in the link with my owner account. Doesn't seem like something one would like to do. Maybe there's a better option, I didn't see it. The owner, admins, mods and why not regular members should have very easy ways to reach their communities.

I see two options here: either subscribe users with a role by default to a community where they have a role, or list separately the communities where a users has a role, like in the image below, perhaps filterable by role:
image.png

Bug: Logout / login maintains permissions until page is refreshed

Let's say you are logged in with an admin or mod account, then log out. If you (someone) log in with an account with less permissions, it will keep the permissions of the admin or mod account until you refresh the page. This image illustrates it:
image.png

I was able to pin the post with the account without any permissions. I could have muted the post. The issue is only big on shared computers I believe, where more people use Steem.

And the vice versa is also true (logging in with an account with more permissions after one with less), but that doesn't pose any security risk, only an inconvenience, at most.



0
0
0.000
15 comments
avatar

Thanks, haven’t found the time yet to test these but interesting to see how communities will coexist with Tribes. Nice troubleshooting btw, hopefully they get these kinks out prior to a full public release.

Posted using Partiko iOS

0
0
0.000
avatar

Well, it depends. Anything more they need to work on will postpone the date when communities will come to the main site. So they need to balance things well, even if the first version of communities won't be perfect.

0
0
0.000
avatar

I agree, needs balance and everything’s a work in progress. Personally, I’d wait a bit longer for a few less bugs— permission issues will get exploited for sure.

Posted using Partiko iOS

0
0
0.000
avatar

Normally that should be an easy fix.

0
0
0.000
avatar

Dear @gadrian

Thanks for sharing your experience with creating your own community. Is there many Romanian users on Steemit? I wish you guys all the best.

you really must backup the password (and later break it down into private keys to also store)

I was actually wondering what are those keys for? I tried to use them to sign-in to steemit and I failed.

What means: later break it down into private keys to also store ???
Would you mind sharing please?

Yours, Piotr

0
0
0.000
avatar

I was actually wondering what are those keys for? I tried to use them to sign-in to steemit and I failed.

That is the master password. Not sure if the beta interface lets you use it, the main steemit.com site doesn't anymore. If it detects that you are trying to use your master password, it won't allow you to log in and will give you the option to download (and print) a pdf with your private keys (based on your master password).

I haven't tried the master password. I always use the private keys. In this case the posting private key for your community owner account is enough.

0
0
0.000
avatar

Thanks for your prompt reply @gadrian

That is the master password. Not sure if the beta interface lets you use it, the main steemit.com site doesn't anymore.

Then ... do you have any idea how to sign up and add "admin rights" for some community members?

ps.
May I ask you for little favour? I'm not sure if I did ask you about it already or not (hope I'm not repeating myself).

Could you please check out also my recent post if you have few min and share your thoughts on questions related to concept of "introducing steem blockchain to businesses":
https://steemit.com/steemleo/@crypto.piotr/my-very-first-trip-to-switzerland-one-of-the-most-crypto-and-blockchain-friendly-place-on-the-planet-earth

Your feedback is always appreciated ;) And I will upvote most valuable comment with 100-200k SP coming from project.hope account.
Yours, Piotr

0
0
0.000
avatar

Then ... do you have any idea how to sign up and add "admin rights" for some community members?

To add admins you need to sign in with your community owner account, the one named "hive-xxxxxx". That's the only account with the ability to add admins.

Could you please check out also my recent post

I just gave it a try, pretty complicated to explain delegation to a non steemian, non blockchain-familiar person.

0
0
0.000
avatar

giphy.gif


Your post was featured in an entry into @pifc's Curation Contest:Week 88. Posts are selected because the entrant felt you are producing great content and deserve more attention (& rewards) on your post. As such your post has been upvoted and will be visited by other members of the PIFC Community.

We are always looking for new people to join our curation efforts. This is a great way to meet new people and become part of a community that focuses on helping one another.

Want to promote a post for free and have a chance to find some other great content? Check out this week's Pimp Your Post.

The Pay It Forward community also has a Discord Channel if you are interested in learning more about us.

0
0
0.000
avatar

Very interesting. I hope this feature gets seamlessly integrated with other sites and apps, like Busy and eSteem, so that people can keep using whatever apps they're most confortable with.

Congratulations on being featured by @justclickindiva in an entry for the Pay It Forward Contest

0
0
0.000
avatar

What I know for sure is that besides steemit.com, SteemPeak and eSteem will be in the first wave of interfaces which will support communities.

0
0
0.000
avatar

That's good to know. I hope Busy follows their lead. 😉

0
0
0.000
avatar

Soon we'll have a 'Communities' tab on the account page which will make it easy to find all your communities 👍

Bug: Logout / login maintains permissions until page is refreshed

Let's say you are logged in with an admin or mod account, then log out. If you (someone) log in with an account with less permissions, it will keep the permissions of the admin or mod account until you refresh the page.

Could you confirm this is not just a client-side glitch? Community permissions are based on blockchain auth, so this should not be possible at all. With community ops, the frontend uses optimistic updates, so on weird cases like this, it may be that condenser treats it as a success; but if you refresh, you will see the changes were not actually applied.

0
0
0.000
avatar

I tested it again. You are right, on the interface it looks as if the test post was muted with an account without privileges, but after I moved around the community a bit and checked again, it wasn't.

But still condenser displays the post as muted immediately after clicking "Mute" from the account without privileges, before the operation actually takes place.

However I understand optimistic updates generally will help improve user experience.

0
0
0.000