As of now, the ban feature relies on identifying a Person. Besides using API Key data, the IP addresses from logged in users through CORE are used.
This is very unreliable. As a first step, we should:
a) Remove hooking up users to a Person based on IP
b) Migrate all Person objects to only include matches based on non-IP criteria
c) Work on a long term strategy. E.g. Provide an admin dashboard indicating potential matches and a way to manual connect/disconnect users to Persons.
As of now, the ban feature relies on identifying a Person. Besides using API Key data, the IP addresses from logged in users through CORE are used.
This is very unreliable. As a first step, we should:
a) Remove hooking up users to a Person based on IP b) Migrate all Person objects to only include matches based on non-IP criteria c) Work on a long term strategy. E.g. Provide an admin dashboard indicating potential matches and a way to manual connect/disconnect users to Persons.