Since this issue is closed, all parts where paths are used should be checked and updated to make sure that everything works fine.

If a user opens our demo platform at https://o2r.uni-muenster.de/, she could be better guided what to do.

Here are my suggestions, feedback welcome!

• highlight "you have to login first", maybe add a popover to the login button that is always visible
• add a couple of links to example folders we already have on Sciebo so that a user can either copy and paste working public share URLs, or click on a link to put them in the form. May also be added as a popover or in a box underneath the two Create/Inspect boxes, with a short welcome text and some description of the respective examples.
• add welcome text pointing to o2r.info
• add a help pop-op to mentions of ERC directing to http://www.dlib.org/dlib/january17/nuest/01nuest.html
• [ ] after registration, tell users they must send us an Email so that we can increase their rights on the platform!

Since the last redesign of the ercView, the Ship to Zenodo-Button is missing. It should be added again to the ercView.

The server sends a concrete message if an upload fails, which should be displayed. E.g. if a user level does not allow upload, then it reponds with

401

{"error":"user level does not allow compendium creation"}

but the UI only tells the user "File upload failed!".

If you enter a not existing ID in the field Inspect ERC you will be forwarded to a crashing ercView. There should be some logic to prevent this behaviour. If an ERC is not found, we should redirect to the main page, maybe.

When using the backwards and forwards button of a browser and a modal is opened, it will not close and overlap other contents. Therefore the modal.close() function should be called when controller will be destroyed

This issue concerns two scenarios:

1. Inspecting remote ERC on the platform

The "Inspect" form should accept full Zenodo URLs as well as DOIs (as full links or resolved internally).

A user might manually enter these while reading a paper or copying a link from a document/website, which is not linked to an o2r platform instance.

2. Inspecting remote ERC coming from another platform

To inspect an ERC that is stored in a remote repository, we would like to be able to pre-fill the inspect form with a suitable value. This way, a button on a third party website can say "Inspect this ERC" and the user does not have to manually transfer an ID into the o2r platform start page.

URL examples, coming from third party sites could be

• http://.../#/?inspect=10.124/sg22sdfsa (DOI)
• http://.../#/?inspect=https://zenodo.org/record/1
• http://.../#/?inspect=https://doi.org/10.124/sg22sdfsa

API updates

The server currently only has an API for loading workspaces, not for inspection. See https://github.com/o2r-project/o2r-loader/issues/12

The server API must accept all allowed inputs, see above.

@LukasLohoff @jansule @MarkusKonk Comments/clarifications welcome!

After logging in (see right hand top corner) the "Create ERC" box still says "You have to login first". This is also the case after refreshing. What helps is clicking on my username, and then going back to the start page.

I'm on Firefox 52.0.2.

https://github.com/o2r-project/o2r-platform/blob/master/templates/author.html#L28-L47

When loading .pdf-files, there occurs an error: "offsetParent is not set -- cannot scroll". This error only occurs, if the object-tag is placed inside another element like div.
By default offsetParent is referring to the body-tag of a html.
OffsetParent is usually changed by adding a "position: relative" tag to an related html-element.

Somehow, the error doesn't disappear when adding the "position: relative" tag to a parent element.

see title

In checkMeta.controller.js there are some missing injectors such as $q and $log. If you want to use their functions, you have to add them to the dependency injection.

Seen here

When not in editing mode, the publication date is not visible - even if its existing.

See

Somewhere in the directive scope.meta will be changed to undefined. This results in an error when clicking on the Edit-Button. The code of o2rEditMetadata.directive.js needs to be revised and fixed.

At least version and build tag should be included, see https://github.com/o2r-project/o2r-muncher/tree/master/hooks (see comments in these files for documentation) and https://github.com/o2r-project/o2r-muncher/blob/master/Dockerfile

AngularJS has problems binding to primitives. Therefore arrays containing strings should be changed to objects to work properly on client side. I suggest following schema:

"key": [{"name": String}, {"name": String}]

Here an example for the keywords-attribute:

"keywords": [{"name": "reproducible"}, {"name": "research"}]

After the authentication microservice is implemented, see https://github.com/o2r-project/o2r-bouncer, add a "Login with ORCID" button to the page. Add a "?" button or some kind of link to a page with details about

• the information we store
• ORCID using Google Analytics and how to opt out (and enable login on our site)
  • http://support.orcid.org/forums/175591-orcid-ideas-forum/suggestions/5534995-allow-login-to-orcid-org-without-google-analytics
  • http://support.orcid.org/knowledgebase/articles/159728

When uploading large files via public share, it's not possible to see an indication that something is happening/loading.

I guess a "progress bar" similar to the zip upload won't be possible - there is no way to find out the progress.

What do you think?

When cancelling the upload, or an error occurs, the user will be redirected to the view for inserting metadata anyway. I think, if the upload is not successful (on cancel or error) the upload modal should just close, without redirecting.

.Rdata files will not be displayed correctly, since they are stored as binaries and not as text files (R is needed to read their content). It should be considered to convert .Rdata into a text file format, server side. Otherwise it will not be able to display them.

The content of the sessionId cookie is not accessible via javascript. This is due to the http-only-tag of the cookie, which is used to protect against session theft. More information here: https://stackoverflow.com/questions/27863208/get-http-cookie-from-browser
and here
https://en.wikipedia.org/wiki/HTTP_cookie#HttpOnly_cookie

Therefore, it is not possible to display the sessionId of the current user for testing purposes.

Right now the progress indicator jumps through manually set progress steps. But for the file upload, we could actually do better using https://www.npmjs.com/package/socketio-file-upload (requires server-side updates, too!).

Need (appropriately coloured) "Abort" and "Delete" buttons, see o2r-project/api#42

I recommend to implement this in the UI already now, even if the "Abort" button does not have any functionality (because there is no deposition resource yet).

we could avoid the worst mistakes by using a eslint configuration for AngularJS, see https://www.npmjs.com/package/eslint-plugin-angular

http://stackoverflow.com/a/13407227/261210

When the title of a result is too long, the info-button get pushed out of the card.
See here:

If users (or we...) want to experiment with the API, then it would be useful to be able to copy the current session cookie string from the user details page.

The information is the same as in the connect.sid cookie, so nothing that is not already with the client.

To track the currently deployed version on the server, it would be very helpful if the current version would be shown unobtrusively in the website footer.

The server deployment script sets a variable in the config file as follows:

app.constant('version', 'dc75853 @ 2016-08-20T10:37:25+02:00');

It would be great if the app would display it (if present)

https://medium.com/@fox/the-web-isn-t-uniform-fd67eb631501#.vseyrkts6

[as discussed during the workshop last month]

The UI should offer a minimal and simple solution for licenses first, and only on user interaction provide the full UI with four drop-downs etc. So, the o2r platform should have "open" defaults so that the creator might not have to change anything.

Similar to http://choosealicense.com/ we can abstract from the details and be opinionated.

@7048730 @MarkusKonk (just going through my workshop notes:) Do you have anything to add?

When I just tried and upload and it failed, I was still redirected to the metadata form, which is confusing.

To replicate, manually stop the loader container/service and then try to submit a workspace via zip file.

In our deployment, we currently copy the complete codebase from client to server. That is not feasible anymore (material-design-icons is over 60 MB !), it just takes to long. Therefore a Dockerfile should be created which can be run on the server.

If the upload via sciebo is successful, the user gets redirected to the entering of missing metadata. However, if the upload via sciebo fails, the user does not get any error message/information about what did go wrong, etc. Therefore, some popup, toast, etc. should be added to inform the user.

Add a display of the job status text. This is crucial for communicating the status of an ERC.

Maybe as hover texts to the icons?

Add UI for the new submission feature via a public share URL. The user must paste a URL into a form field, that's all.

API documentation: http://o2r.info/o2r-web-api/public-share/

Example share URL can be found in the integration tests of loader: https://github.com/o2r-project/o2r-loader/blob/master/test/api.js

See also #35 - loader should work with the known docker-compose configurations.

Hi,
I just tried to set up the o2r platform using docker-compose on Ubunto Xenial 16.04 LTS
It seems like my docker-compose installation is not supported, but the documentation is missing out information on the installation requirements.

This is what I did:

matthiashinz@xxx:~/o2r-platform$ docker-compose --version
docker-compose version 1.5.2, build unknown
matthiashinz@xxx:~/o2r-platform$ docker-compose --file test/docker-compose-db.yml up -d
ERROR: In file './test/docker-compose-db.yml' service 'version' doesn't have any configuration options. All top level keys in your docker-compose.yml must map to a dictionary of configuration options.

The ERC has four licenses for all of the components, but Zenodo only has one metadata for everything.

Therefore after clicking on "Ship to Zenodo", a modal should be shown where a user is told he has to choose one license for the whole shipment. This should be a dropdown.

The use must also be shown the already selected licenses for the parts of a compendium.

This is of course different for other recipients.

An administrative backend where admin users (high enough levels) can easily change other users's levels would be useful. No more directly going to the database.

It should contain the user information (link to ORCID profile, full name from ORCID, current level), and a nice UI for using some pre-defined user levels, or alternatively entering a specific user level manually.

Reducing a user's level or making her admin should require a confirmation before saving.

API endpoint already exists, see http://o2r.info/o2r-web-api/user/#edit-user

Should we integrate this in this app, or have an independent one?

For most users, the BagIt-specific files and metadata files are not relevant when they view the compendium in the browser. There should be a unobtrusive link to display them, but by default they should be either (a) hidden, or (b) shown in "grey" or somehow less prominent.

This could be done with a fixed whitelist in the UI, based on filenames/paths. If this "hiding" is limited to BagIt, we could even show the contents of the data folder by default, and only show the full folder tree when BagIt display is enabled.

The list of files would currently comprise

• .erc - everything within the directory data/.erc in a Bagit compendium
• manifest-<alg>.txt
• bagit.txt
• tagmanifest-<alg>.txt
• bag-info.txt
• fetch.txt

It must be easier to switch between different environments (localhost, deployment). Ideally, we could set the constant via a environment variable when calling npm start, e.g.

API_URL="http://localhost/api/v1" npm start

Don't really know if these help - seems hard to find a "best" practice for this.

• https://www.npmjs.com/package/gulp-ng-config (define different environments!)
• http://stackoverflow.com/a/33444405/261210
• http://www.jvandemo.com/how-to-configure-your-angularjs-application-using-environment-variables/

If an external link is shown in the copy path field in ercView, http://localhost will be prepended. There should be some logic to detect external links and prevents prepending them.
See here:

• https://github.com/mike-spainhower/angular-piwik
• https://github.com/angulartics/angulartics-piwik

User does not have the required user level for upload.

When I have checked the "Automatically start analysis" box at compendium upload, I get "File uploaded successfully 100%".

When I have not checked the box, I see the correct error message "File upload failed! user level does not allow compendium creation"

To be done after o2r-project/o2r-badger#2 is merged.

The proxy should redirect /api/v1/badge to :8089/api/1.0/badge.

The output logs are rather hard to read, especially if the run through quickly. There should be some highlighting of keywords, such as "done" or "step n of m". This comprises two aspects

• highlighting generic logs (e.g. Docker build output)
• highlighting "special ERC" output, e.g. validation results

TravisCI has great live updates of logs (including folding of completed sections for example), maybe their code can help us. https://github.com/travis-ci/travis-web/blob/master/app/components/log-content.js might be a starting point.

In the header, I think a simple, plain white version of the o2r logo might look much nicer. It works better with the rest of the menu and we don't need the light coloured borders, which make the logo look strange. It could also be a bit smaller then!

With the OAuth2-based login we start using cookies (about cookie law. Therefore we must add a cookie disclaimer to the user page.

I suggest to use https://silktide.com/tools/cookie-consent

@JanKoppe please clarify the current state of what cookies store. May be possible to reuse some phrases from other cookie info pages, e.g. https://soundcloud.com/pages/cookies

When downloading a container, it should be possible not to include the image file, because that might be quite large. The API already supports this.

https://github.com/o2r-project/o2r-platform/blob/master/templates/author.html#L8-L11

No offsetParent is defined for the object-tag. Therefore .pdfs are not scrollable.
Scrolling works if offestParent is definded, or parentTag is body-tag.

Create button 'send to zenodo' for compendia using api specs from
https://github.com/o2r-project/o2r-web-api/blob/master/docs/shipment.md