Page MenuHomePhabricator

Include information about OAuth app review process and criteria into the interface
Open, HighPublic

Description

Information about review criteria and the process itself should be easily available to the user going through the process, and to the admin doing the review:

  • link to the policy on the app registration page
  • provide some kind of summary/checklist/best practices
  • provide in-context information when filling out the description
    • show warning when the URL us unsafe
    • warn about Labs policy if the URL points to Labs
    • warn when sensitive grants are included
  • make it clear that this does not apply to owner-only consumers (maybe separate owner-only consumer creation completely)
  • after the proposal was submitted, make it clear what's going to happen and whether the user is expected to do anything)
  • when an admin is reviewing the proposal, the policy should be linked and a summary information available on the special page