(potential) Code of Practice for "systems" using Raven

From RavenWiki
Revision as of 10:58, 22 December 2005 by jw35 (talk | contribs) (Assorted re-wording suggestions)
Jump to navigationJump to search

Experience shows that it is easy for users to become confused when the Raven protection for a web site doesn't behave the way that they expect. It would be very useful for al lconcerned if administrators of any system that uses Raven for authentication follow a simple code of practice that means they voluntarily:

1) Include on the Raven-enabled services page a note the system and of the email/phone/webpage-URL/location of a relavent support contact point. This will allow users and Help Desks elsewhere in the university to contact the correct people if problems arrise.

2) Provide a customised webpage that gives the above to users who have sucessfully RAVEN authenicated but can't access the system (e.g. no account, access not allowed, etc.). (NOTE: Even CamSIS only gives: "CamSIS account details are invalid. Please contact the CamSIS Helpdesk to resolve or... Return to CamSIS Sign In". At least it says "CamSIS Helpdesk" but it doesn't say how!)

3) Have a clear "System Unavailable until XXX due to maintenance" message if authentication suceeds but access to the system is not possible, perhaps becasue a back-end system is not available.

Retrieved from "https://wiki.cam.ac.uk/wiki/raven/index.php?title=(potential)_Code_of_Practice_for_%22systems%22_using_Raven&oldid=1445"