Pages:
Author

Topic: [ANN] Hey, BitMe! (#bitme) - page 4. (Read 9448 times)

member
Activity: 92
Merit: 10
May 15, 2012, 02:08:41 PM
#26
if, by mistake, or due to network congestion, one double-clicks (or more) on the deposit button, the deposit is performed twice (or more) - this is perhaps true of withdrawals too.

Perhaps a bit of js magic to prevent double submission? 2 BTC
hero member
Activity: 658
Merit: 502
Doesn't use these forums that often.
May 15, 2012, 12:18:20 PM
#25
Why can't we deposit cents?

Deposit 0.25 USD:
Quote
Amount must be at minimum 1.0
legendary
Activity: 1092
Merit: 1016
760930
May 15, 2012, 11:56:43 AM
#24
if, by mistake, or due to network congestion, one double-clicks (or more) on the deposit button, the deposit is performed twice (or more) - this is perhaps true of withdrawals too.
hero member
Activity: 658
Merit: 502
Doesn't use these forums that often.
May 15, 2012, 11:10:18 AM
#23
Ok what about the notice with USD saying:
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\

boy, this is some real low-hanging fruit here - especially since this is a feature only specific to testnet. Ill send you 2 BTC for this.

Wow, thanks a lot!!
Smiley
legendary
Activity: 1092
Merit: 1016
760930
May 15, 2012, 10:12:50 AM
#22
1/ layout/cosmetic:
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)

This is really just poor design  Roll Eyes, someone already pointed this out to me, I'll put it under "known issues"

2/ authentication
Login (either as Demo user or regular user) just fails for me in IE8.   'There was a problem logging you in, please try again'

Confirmed, I'm classifying this as minor, 10BTC

Received already! Thanks.
member
Activity: 92
Merit: 10
May 15, 2012, 09:56:35 AM
#21
1/ layout/cosmetic:
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)

This is really just poor design  Roll Eyes, someone already pointed this out to me, I'll put it under "known issues"

2/ authentication
Login (either as Demo user or regular user) just fails for me in IE8.   'There was a problem logging you in, please try again'

Confirmed, I'm classifying this as minor, 10BTC
member
Activity: 92
Merit: 10
May 15, 2012, 09:43:35 AM
#20
I tested using javascript turned off (No'Script addon in Firefox)

Demo button worked so far (great!) BUT clicking on the "new" order button on the dashboard of the test user (leads to https://test.bitme.com/buy) I just get a 404.

Clicking on the "X" buttons in the Dashboard has no effect with Javascript turned off.

Don't worry, I greatly respect users of NoScript, plan to make the site fully functional without javascript soon!

Maybe more cosmetical/not implemented: The US flag in the lower right corner has no tooltip or any apparent function. Could indicate english language or the USD market...?!

Hmmm... I meant to put it in there just to mean that BitMe, LLC is a US-based and registered company. Good suggestion with the tooltip.

Open a session (Demo), middle click on a link (e.g. withdraw) to open it in a new tab, click logout there in the new tab, close the tab, click logout in the original tab (demo dashboard) --> you get a 403 forbidden page. Whats worse, you get no immediate chance to do anything there, if you don't guess/know that the header "[testnet]bitme" is a link to the main page.

This is expected behavior since once you kill your session you can't logout again, but point taken, this could be more user-friendly!

There is no check if the payout address is even a valid address, I could enter "1234567890123456789012345678901234" as address in the withdraw section. It only seems to expect a string of 34 characters. Also the limit seems to be at least 0.01 BTC which is mentioned only AFTER entering any amount there.

Yes, this page could use some directions as far as the minimum withdraw amount. Also, the address validation is oversimplified here. This will be improved at somepoint, but this is not really a problem because the address will eventually be validated for real and will not be sent if bitcoind finds it to be invalid. This can easily be resolved by an admin without any loss of the BTC withdraw amount.

Address for bounty (if accepted as bug): 1u774EAK5PSEhvMzKLURBFtjhJqQUpb6r

Thanks for all of the feedback! Most of this is expected behavior and I would call these "enhancements" rather than bugs. But I will send you 7 BTC!
legendary
Activity: 2618
Merit: 1007
May 15, 2012, 08:43:41 AM
#19
I tested using javascript turned off (No'Script addon in Firefox)

Demo button worked so far (great!) BUT clicking on the "new" order button on the dashboard of the test user (leads to https://test.bitme.com/buy) I just get a 404.

Clicking on the "X" buttons in the Dashboard has no effect with Javascript turned off.

Maybe more cosmetical/not implemented: The US flag in the lower right corner has no tooltip or any apparent function. Could indicate english language or the USD market...?!

Open a session (Demo), middle click on a link (e.g. withdraw) to open it in a new tab, click logout there in the new tab, close the tab, click logout in the original tab (demo dashboard) --> you get a 403 forbidden page. Whats worse, you get no immediate chance to do anything there, if you don't guess/know that the header "[testnet]bitme" is a link to the main page.

There is no check if the payout address is even a valid address, I could enter "1234567890123456789012345678901234" as address in the withdraw section. It only seems to expect a string of 34 characters. Also the limit seems to be at least 0.01 BTC which is mentioned only AFTER entering any amount there.

Address for bounty (if accepted as bug): 1u774EAK5PSEhvMzKLURBFtjhJqQUpb6r
legendary
Activity: 1092
Merit: 1016
760930
May 15, 2012, 08:10:39 AM
#18
in the Join page (https://test.bitme.com/join), the "confirm password" field allows clipboard pasting,
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.

I generally prefer to stay away from these type of annoying techniques which purposely break default functionality. This could quite easily interfere with something like a password manager.

Sure, I understand!

Here's a few other things by the way: 

1/ layout/cosmetic:
The 'Place Order' blue button is overlapping on the next column (in Google Chrome, Win XP)

2/ authentication
Login (either as Demo user or regular user) just fails for me in IE8.   'There was a problem logging you in, please try again'

member
Activity: 92
Merit: 10
May 15, 2012, 07:07:25 AM
#17
in the Join page (https://test.bitme.com/join), the "confirm password" field allows clipboard pasting,
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.

I generally prefer to stay away from these type of annoying techniques which purposely break default functionality. This could quite easily interfere with something like a password manager.
legendary
Activity: 1092
Merit: 1016
760930
May 15, 2012, 06:16:28 AM
#16
Privacy/security issue:

even after logging out, back button of browser still shows you previous HTTPS page.

Thanks for pointing this out. This was already on my todo list, but I'll give you the 20BTC anyway.

Thanks, this is really generous!

I have found another thing, but I don't know if you'll consider that a real issue or not:

in the Join page (https://test.bitme.com/join), the "confirm password" field allows clipboard pasting,
which kinda defeats its purpose... The vast majority of financial sites I have dealt with do not allow that.
member
Activity: 92
Merit: 10
May 15, 2012, 06:02:23 AM
#15
Privacy/security issue:

even after logging out, back button of browser still shows you previous HTTPS page.

Thanks for pointing this out. This was already on my todo list, but I'll give you the 20BTC anyway.
member
Activity: 92
Merit: 10
May 15, 2012, 05:52:41 AM
#14
Attack surface is pretty low. I can't find anything obvious through fudging with form parameters but I'll keep looking when I have time.

Couple of trivial/minor things:

You can click new multiple times and it makes many rows of the new order form. I thought this was so you could create multiple orders at the same time which I thought was a good feature - However, you can only select one of the radio buttons across the whole set so this looks like a bug. (pic: http://i50.tinypic.com/34so4du.png)
IMO, If you do make this feature there should be a button at the bottom so you can place all the orders at the same time rather than having to click the place order button on each individual row.

Very trivial thing, don't know if it's an actual issue or a conscious decision:
on Signup, the terms and condition link changes the page rather than opens in a popup so I lost the password I had entered when I hit back.
Normally I middle click those links to open them in a new tab but sometimes they are javascript links(to open the t&c in a pop-up) which means that doesn't work. If you do decide to make it a javascript pop-up, leave the link as it is, and use the onclick to open the popup and return false so it doesn't actually change the page. That makes middle click work to open the link as normal, and left click calls the onclick handler to open the popup and cancels the normal link action.

Bitcoin address, if accepted: 1GgQn4VGwv75x2bNweua4Ko34tGvZXjkNj

thanks, just sent 15 BTC
legendary
Activity: 1092
Merit: 1016
760930
May 15, 2012, 04:48:59 AM
#13
Privacy/security issue:

even after logging out, back button of browser still shows you previous HTTPS page.
member
Activity: 90
Merit: 10
May 15, 2012, 04:21:28 AM
#12
Attack surface is pretty low. I can't find anything obvious through fudging with form parameters but I'll keep looking when I have time.

Couple of trivial/minor things:

You can click new multiple times and it makes many rows of the new order form. I thought this was so you could create multiple orders at the same time which I thought was a good feature - However, you can only select one of the radio buttons across the whole set so this looks like a bug. (pic: http://i50.tinypic.com/34so4du.png)
IMO, If you do make this feature there should be a button at the bottom so you can place all the orders at the same time rather than having to click the place order button on each individual row.

Very trivial thing, don't know if it's an actual issue or a conscious decision:
on Signup, the terms and condition link changes the page rather than opens in a popup so I lost the password I had entered when I hit back.
Normally I middle click those links to open them in a new tab but sometimes they are javascript links(to open the t&c in a pop-up) which means that doesn't work. If you do decide to make it a javascript pop-up, leave the link as it is, and use the onclick to open the popup and return false so it doesn't actually change the page. That makes middle click work to open the link as normal, and left click calls the onclick handler to open the popup and cancels the normal link action.

Bitcoin address, if accepted: 1GgQn4VGwv75x2bNweua4Ko34tGvZXjkNj
member
Activity: 92
Merit: 10
May 15, 2012, 01:24:34 AM
#11
Ok what about the notice with USD saying:
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\

boy, this is some real low-hanging fruit here - especially since this is a feature only specific to testnet. Ill send you 2 BTC for this.
hero member
Activity: 658
Merit: 502
Doesn't use these forums that often.
May 14, 2012, 03:54:21 PM
#10
Ok what about the notice with USD saying:
The maximum amount is 500.0
Shouldnt that be:
The maximum amount is 500.00USD?
One decimal place seems wierd :\
member
Activity: 92
Merit: 10
May 14, 2012, 03:49:45 PM
#9
Graphics get kinda screwy on an iPhone in portrait mode... with the BitMe logo getting cut off!
Also, the tables in Deposits and suchlike are not aligned right...

Here is a pic: http://db.tt/ixnDKx5T

If this earned me some BTC... Wink
BTC address in the sig Wink

Sorry, I've already mentioned in the original post that mobile rendering is a known issue and is not currently of concern.

I've updated the original post to make this more clear (added to the top)
hero member
Activity: 658
Merit: 502
Doesn't use these forums that often.
May 14, 2012, 02:57:42 PM
#8
Graphics get kinda screwy on an iPhone in portrait mode... with the BitMe logo getting cut off!
Also, the tables in Deposits and suchlike are not aligned right...

Here is a pic: http://db.tt/ixnDKx5T

If this earned me some BTC... Wink
BTC address in the sig Wink
member
Activity: 92
Merit: 10
May 14, 2012, 02:30:12 AM
#7
The testnet version of the site is now available for testing: https://test.bitme.com
Pages:
Jump to: