if, by mistake, or due to network congestion, one double-clicks (or more) on the deposit button, the deposit is performed twice (or more) - this is perhaps true of withdrawals too.
Perhaps a bit of js magic to prevent double submission? 2 BTC
Topic: [ANN] Hey, BitMe! (#bitme) - page 4. (Read 9464 times)
Perhaps a bit of js magic to prevent double submission? 2 BTC
Why can't we deposit cents?
Deposit 0.25 USD:
Deposit 0.25 USD:
Quote
Amount must be at minimum 1.0
if, by mistake, or due to network congestion, one double-clicks (or more) on the deposit button, the deposit is performed twice (or more) - this is perhaps true of withdrawals too.
Ok what about the notice with USD saying:
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
boy, this is some real low-hanging fruit here - especially since this is a feature only specific to testnet. Ill send you 2 BTC for this.
Wow, thanks a lot!!
1/ layout/cosmetic:
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)
This is really just poor design
, someone already pointed this out to me, I'll put it under "known issues"2/ authentication
Login (either as Demo user or regular user) just fails for me in IE8. 'There was a problem logging you in, please try again'
Login (either as Demo user or regular user) just fails for me in IE8. 'There was a problem logging you in, please try again'
Confirmed, I'm classifying this as minor, 10BTC
Received already! Thanks.
1/ layout/cosmetic:
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)
This is really just poor design
, someone already pointed this out to me, I'll put it under "known issues"2/ authentication
Login (either as Demo user or regular user) just fails for me in IE8. 'There was a problem logging you in, please try again'
Login (either as Demo user or regular user) just fails for me in IE8. 'There was a problem logging you in, please try again'
Confirmed, I'm classifying this as minor, 10BTC
I tested using javascript turned off (No'Script addon in Firefox)
Demo button worked so far (great!) BUT clicking on the "new" order button on the dashboard of the test user (leads to https://test.bitme.com/buy) I just get a 404.
Clicking on the "X" buttons in the Dashboard has no effect with Javascript turned off.
Demo button worked so far (great!) BUT clicking on the "new" order button on the dashboard of the test user (leads to https://test.bitme.com/buy) I just get a 404.
Clicking on the "X" buttons in the Dashboard has no effect with Javascript turned off.
Don't worry, I greatly respect users of NoScript, plan to make the site fully functional without javascript soon!
Maybe more cosmetical/not implemented: The US flag in the lower right corner has no tooltip or any apparent function. Could indicate english language or the USD market...?!
Hmmm... I meant to put it in there just to mean that BitMe, LLC is a US-based and registered company. Good suggestion with the tooltip.
Open a session (Demo), middle click on a link (e.g. withdraw) to open it in a new tab, click logout there in the new tab, close the tab, click logout in the original tab (demo dashboard) --> you get a 403 forbidden page. Whats worse, you get no immediate chance to do anything there, if you don't guess/know that the header "[testnet]bitme" is a link to the main page.
This is expected behavior since once you kill your session you can't logout again, but point taken, this could be more user-friendly!
There is no check if the payout address is even a valid address, I could enter "1234567890123456789012345678901234" as address in the withdraw section. It only seems to expect a string of 34 characters. Also the limit seems to be at least 0.01 BTC which is mentioned only AFTER entering any amount there.
Yes, this page could use some directions as far as the minimum withdraw amount. Also, the address validation is oversimplified here. This will be improved at somepoint, but this is not really a problem because the address will eventually be validated for real and will not be sent if bitcoind finds it to be invalid. This can easily be resolved by an admin without any loss of the BTC withdraw amount.
Address for bounty (if accepted as bug): 1u774EAK5PSEhvMzKLURBFtjhJqQUpb6r
Thanks for all of the feedback! Most of this is expected behavior and I would call these "enhancements" rather than bugs. But I will send you 7 BTC!
I tested using javascript turned off (No'Script addon in Firefox)
Demo button worked so far (great!) BUT clicking on the "new" order button on the dashboard of the test user (leads to https://test.bitme.com/buy) I just get a 404.
Clicking on the "X" buttons in the Dashboard has no effect with Javascript turned off.
Maybe more cosmetical/not implemented: The US flag in the lower right corner has no tooltip or any apparent function. Could indicate english language or the USD market...?!
Open a session (Demo), middle click on a link (e.g. withdraw) to open it in a new tab, click logout there in the new tab, close the tab, click logout in the original tab (demo dashboard) --> you get a 403 forbidden page. Whats worse, you get no immediate chance to do anything there, if you don't guess/know that the header "[testnet]bitme" is a link to the main page.
There is no check if the payout address is even a valid address, I could enter "1234567890123456789012345678901234" as address in the withdraw section. It only seems to expect a string of 34 characters. Also the limit seems to be at least 0.01 BTC which is mentioned only AFTER entering any amount there.
Address for bounty (if accepted as bug): 1u774EAK5PSEhvMzKLURBFtjhJqQUpb6r
Demo button worked so far (great!) BUT clicking on the "new" order button on the dashboard of the test user (leads to https://test.bitme.com/buy) I just get a 404.
Clicking on the "X" buttons in the Dashboard has no effect with Javascript turned off.
Maybe more cosmetical/not implemented: The US flag in the lower right corner has no tooltip or any apparent function. Could indicate english language or the USD market...?!
Open a session (Demo), middle click on a link (e.g. withdraw) to open it in a new tab, click logout there in the new tab, close the tab, click logout in the original tab (demo dashboard) --> you get a 403 forbidden page. Whats worse, you get no immediate chance to do anything there, if you don't guess/know that the header "[testnet]bitme" is a link to the main page.
There is no check if the payout address is even a valid address, I could enter "1234567890123456789012345678901234" as address in the withdraw section. It only seems to expect a string of 34 characters. Also the limit seems to be at least 0.01 BTC which is mentioned only AFTER entering any amount there.
Address for bounty (if accepted as bug): 1u774EAK5PSEhvMzKLURBFtjhJqQUpb6r
in the Join page (https://test.bitme.com/join), the "confirm password" field allows clipboard pasting,
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.
I generally prefer to stay away from these type of annoying techniques which purposely break default functionality. This could quite easily interfere with something like a password manager.
Sure, I understand!
Here's a few other things by the way:
1/ layout/cosmetic:
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)
2/ authentication
Login (either as Demo user or regular user) just fails for me in IE8. 'There was a problem logging you in, please try again'
in the Join page (https://test.bitme.com/join), the "confirm password" field allows clipboard pasting,
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.
I generally prefer to stay away from these type of annoying techniques which purposely break default functionality. This could quite easily interfere with something like a password manager.
Privacy/security issue:
even after logging out, back button of browser still shows you previous HTTPS page.
even after logging out, back button of browser still shows you previous HTTPS page.
Thanks for pointing this out. This was already on my todo list, but I'll give you the 20BTC anyway.
Thanks, this is really generous!
I have found another thing, but I don't know if you'll consider that a real issue or not:
in the Join page (https://test.bitme.com/join), the "confirm password" field allows clipboard pasting,
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.
Privacy/security issue:
even after logging out, back button of browser still shows you previous HTTPS page.
even after logging out, back button of browser still shows you previous HTTPS page.
Thanks for pointing this out. This was already on my todo list, but I'll give you the 20BTC anyway.
Attack surface is pretty low. I can't find anything obvious through fudging with form parameters but I'll keep looking when I have time.
Couple of trivial/minor things:
You can click new multiple times and it makes many rows of the new order form. I thought this was so you could create multiple orders at the same time which I thought was a good feature - However, you can only select one of the radio buttons across the whole set so this looks like a bug. (pic: http://i50.tinypic.com/34so4du.png)
IMO, If you do make this feature there should be a button at the bottom so you can place all the orders at the same time rather than having to click the place order button on each individual row.
Very trivial thing, don't know if it's an actual issue or a conscious decision:
on Signup, the terms and condition link changes the page rather than opens in a popup so I lost the password I had entered when I hit back.
Normally I middle click those links to open them in a new tab but sometimes they are javascript links(to open the t&c in a pop-up) which means that doesn't work. If you do decide to make it a javascript pop-up, leave the link as it is, and use the onclick to open the popup and return false so it doesn't actually change the page. That makes middle click work to open the link as normal, and left click calls the onclick handler to open the popup and cancels the normal link action.
Bitcoin address, if accepted: 1GgQn4VGwv75x2bNweua4Ko34tGvZXjkNj
Couple of trivial/minor things:
You can click new multiple times and it makes many rows of the new order form. I thought this was so you could create multiple orders at the same time which I thought was a good feature - However, you can only select one of the radio buttons across the whole set so this looks like a bug. (pic: http://i50.tinypic.com/34so4du.png)
IMO, If you do make this feature there should be a button at the bottom so you can place all the orders at the same time rather than having to click the place order button on each individual row.
Very trivial thing, don't know if it's an actual issue or a conscious decision:
on Signup, the terms and condition link changes the page rather than opens in a popup so I lost the password I had entered when I hit back.
Normally I middle click those links to open them in a new tab but sometimes they are javascript links(to open the t&c in a pop-up) which means that doesn't work. If you do decide to make it a javascript pop-up, leave the link as it is, and use the onclick to open the popup and return false so it doesn't actually change the page. That makes middle click work to open the link as normal, and left click calls the onclick handler to open the popup and cancels the normal link action.
Bitcoin address, if accepted: 1GgQn4VGwv75x2bNweua4Ko34tGvZXjkNj
thanks, just sent 15 BTC
Privacy/security issue:
even after logging out, back button of browser still shows you previous HTTPS page.
even after logging out, back button of browser still shows you previous HTTPS page.
Attack surface is pretty low. I can't find anything obvious through fudging with form parameters but I'll keep looking when I have time.
Couple of trivial/minor things:
You can click new multiple times and it makes many rows of the new order form. I thought this was so you could create multiple orders at the same time which I thought was a good feature - However, you can only select one of the radio buttons across the whole set so this looks like a bug. (pic: http://i50.tinypic.com/34so4du.png)
IMO, If you do make this feature there should be a button at the bottom so you can place all the orders at the same time rather than having to click the place order button on each individual row.
Very trivial thing, don't know if it's an actual issue or a conscious decision:
on Signup, the terms and condition link changes the page rather than opens in a popup so I lost the password I had entered when I hit back.
Normally I middle click those links to open them in a new tab but sometimes they are javascript links(to open the t&c in a pop-up) which means that doesn't work. If you do decide to make it a javascript pop-up, leave the link as it is, and use the onclick to open the popup and return false so it doesn't actually change the page. That makes middle click work to open the link as normal, and left click calls the onclick handler to open the popup and cancels the normal link action.
Bitcoin address, if accepted: 1GgQn4VGwv75x2bNweua4Ko34tGvZXjkNj
Couple of trivial/minor things:
You can click new multiple times and it makes many rows of the new order form. I thought this was so you could create multiple orders at the same time which I thought was a good feature - However, you can only select one of the radio buttons across the whole set so this looks like a bug. (pic: http://i50.tinypic.com/34so4du.png)
IMO, If you do make this feature there should be a button at the bottom so you can place all the orders at the same time rather than having to click the place order button on each individual row.
Very trivial thing, don't know if it's an actual issue or a conscious decision:
on Signup, the terms and condition link changes the page rather than opens in a popup so I lost the password I had entered when I hit back.
Normally I middle click those links to open them in a new tab but sometimes they are javascript links(to open the t&c in a pop-up) which means that doesn't work. If you do decide to make it a javascript pop-up, leave the link as it is, and use the onclick to open the popup and return false so it doesn't actually change the page. That makes middle click work to open the link as normal, and left click calls the onclick handler to open the popup and cancels the normal link action.
Bitcoin address, if accepted: 1GgQn4VGwv75x2bNweua4Ko34tGvZXjkNj
Ok what about the notice with USD saying:
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
boy, this is some real low-hanging fruit here - especially since this is a feature only specific to testnet. Ill send you 2 BTC for this.
Ok what about the notice with USD saying:
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
Graphics get kinda screwy on an iPhone in portrait mode... with the BitMe logo getting cut off!
Also, the tables in Deposits and suchlike are not aligned right...
Here is a pic: http://db.tt/ixnDKx5T
If this earned me some BTC...
BTC address in the sig
Also, the tables in Deposits and suchlike are not aligned right...
Here is a pic: http://db.tt/ixnDKx5T
If this earned me some BTC...
BTC address in the sig
Sorry, I've already mentioned in the original post that mobile rendering is a known issue and is not currently of concern.
I've updated the original post to make this more clear (added to the top)
Graphics get kinda screwy on an iPhone in portrait mode... with the BitMe logo getting cut off!
Also, the tables in Deposits and suchlike are not aligned right...
Here is a pic: http://db.tt/ixnDKx5T
If this earned me some BTC...
BTC address in the sig
Also, the tables in Deposits and suchlike are not aligned right...
Here is a pic: http://db.tt/ixnDKx5T
If this earned me some BTC...
BTC address in the sig
The testnet version of the site is now available for testing: https://test.bitme.com
Jump to: