Skip to content

Wishlist

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback

44 results found

  1. set password expiration periods for passwords (30 days, 45 days,etc)

    I would like to have the ability to set password expiration about a certain period (30 days, 45 days). We would force users to change their passwords after a certain period for tighter security.

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  2. Remove insecure TLS1.0 and TLS1.1 protocols so that websites rating is not downgraded

    TLS1.0 and TLS1.1 are vulnerable. Most browsers don't want them any longer and websites using these protocols will be downgraded beginning Nov 2019. The recommended minimum protocol as from March 2020 for good website rating is TLS1.2 When will WA disable use of the vulnerable protocols and implement only TLS1.2 and higher. The current rating of my website is an A but this will be downgraded to a B soon and by March 2020 even lower unless insecure protocols are removed. Since this is out of my hands I am hoping the removal of the less secure 1.0 and 1.1…

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  3. Using passkeys for authentication

    When will passkeys be an option for users to authenticate into the website without the need for a password? See the FIDO Alliance [https://fidoalliance.org/] and/or https://www.passkeys.com/

    Safer than passwords, No 2FA or Captcha needed. Easy to use.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  4. Allow Custom Domains to Force HTTPS:// Sitewide

    When using your own custom domain and an SSL Certificate (Let's Encrypt or 3rd Party), you should be able to update the Traffic encryption settings to "Always use https://" on that custom domain name. It defeats the purpose of even securing the site if a visitor has to manually type in "https://", when we're trying to gain the trust of a potential new member's information being safe when the browser they're using is telling them the site is "Not Secure". For this to be a paid hosting service and only allowing to use a "wildapricot" subdomain if you want https://…

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  5. Make the captcha optional for the store checkout process

    The "I'm not a robot" Option is embarrassing. I was unable to "choose the images" with cars or "choose the images with signs" since the photos were hard to figure out. I do not want this as part of my website. I received four unfulfilled orders in a row and I believe people escape when they get to this point. I'm quitting the service over this. Its embarrassing. Seeking another service over this minor yet big detail.

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  6. Add audio Captcha

    For the Captcha, we need an alternative to the only method you use. For people that are either color blind or have vision problems, I would like to have an audio captcha available as an option. Can this be instituted?

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  7. More level on privacy on calendars

    Add a module for Member to load documents. without giving them admin rights

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  8. Auto-login from e-mail links

    It would be great if a macro could be built that could be used in an e-mail where the recipient simply clicks on a link and they are automatically signed in and directed to their membership profile. Currently, there is a macro that will direct the recipient to their profile, but they still have to manually login to get to it.

    Anything we can do to simply the process for members who aren't super computer savy would be great. Having the macro automatically log them in would be a great enhancement. Thought I would post this to see if others…

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  9. New anti-spam features

    We are getting hammered by Russian spam bots. They are creating new contacts, several a day. We have the re-captcha activated but this isn't enough and the issue is urgent. The spam bots are also pledging huge donations, so if you can make them pay up, then no need to block them in the future!

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  10. Hide contact list information from admins who just have event creation capability.

    We need to be able to hide the contact information on the contact list from system admin who have just got event creation rights. Member information is hidden but not contact information and those with event creation access have the ability to extract a full contact list. This puts us potentially in breach of the Australian Privacy act as we need to ensure that contact information is restricted.

    Having the ability to extract a list of email addresses etc creates a significant exposure for our members and creates a liability that at the moment we can only manage by not…

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  11. restrict level viewing

    Is there any way to restrict access to certain membership levels? All of our staff have administrative full access, but we have some confidential information we'd like in our database that not all staff can see.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  12. Additional Security for Payment Data

    Can separate security be setup for admins that manage payments within Wild Apricot. Currently, all administrators can change the payment information.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  13. Transferring sign-in/authentication status to a third party website

    We would like to have our members link to outside web sites (for example to access journal article content), using the WA login. The easiest way to do this is using signed linking, which there is no support for in WA. This could also provide a simple mechanism to provide Single Sign-on support using the WA login.

    For example, WA should be able to create a link such as:

    <a href="pathInfo?originator=originator&identity=identity&timestamp=timestamp&token=signature">

    Where:

    • pathInfo - the destination of the link

    • originator - the name of the service generating the signed link. This would be specified in the link settings.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  14. security status of wild apricot

    I am thinking about having this platform independently tested for security before finalizing our transition to WC from our existing platform. Has anyone else done this previously, or can anyone point to some certifications that will give me the sense of security that my members demand?

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  15. 3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  16. Redirect HTTPS to HTTP for Payments Only SSL setting

    For sites that use the "Payments Only" setting for SSL and a custom domain, WA still allows users to access the non-payment pages using HTTPS. That seems convienient, but there are side effects to allowing HTTPS access to an HTTP page. First, if a user does try to access a non-payment page with HTTPS, they will get a browser certificate mis-match warning. As you know, the warning that modern browsers display can be quite scary to the average user. I think you will find this issue to be more common than you think, such as a new site where the…

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  17. Extend 2FA to all logins to website, not just administrators

    HELP!!! Wild Apricot has the ability to move to 2FA for all people accessing a website on a WA platform. Please, please make this security issue a high priority. It helps protect personal information for the individual, entity, club. WA has the ability to implement this as all admins have to use the 2FA. Please??

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  18. Privacy Policy confirmation needs to be enforceable

    In terms of accessing members-only information, I believe the Confirmation of having read the Privacy Policy, if one is enabled, should be enforced. My understanding is the member can leave this field at No, but it doesn't restrict any access to information. If that is the case, the field provides no tangible functionality, I think as long as the field is set to No, the member needs to be prompted to confirm that they have read the policy upon login attempt. If they are unwilling to confirm, they shouldn't be granted access, This is especially important for access to contact…

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  19. Password 'have i been pwned' breech check

    Add a feature to check passwords breached from Have I been Pwned before user can submit new password. https://techcrunch.com/2018/02/23/1password-bolts-on-a-pwned-password-check/ https://haveibeenpwned.com/

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  20. Public profile

    We would like to suggest a way to restrict the views of bundle admin under a bundle members profile page. So basically when you view a bundle members profile you do not see the bundle admin details.

    Thanks

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    How important is this to you?

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)
  • Don't see your idea?

Feedback and Knowledge Base