[unsubscribe component] Initialize

[atwellpub]

• [x] Create upgrade routine that creates 'Unsubscribe' page and unloads short code into page
• [x] Set page id into inbound-email settings option
• [x] Write handler for shortcode.
• [x] create unsibscribe backened processing handlers
• [x] test unsubscribe systems
• [x] Add unsubscribe event to lead profile with comments on why unsubscribe
• [x] Add stop sort flag for lead list to lead profile
• [ ] add unsubscribe envent to mandrill manually and into email's post meta.

Unsubscribe page should:

Offer to remove user from the list passed in the URL. Offer the user to be removed from all lists.

[atwellpub]

Hard questions not yet addressed

1. What do we show when no specific is passed as a url param?
2. If more than one list id is present do we show an unsubscribe checkbox for each list and then an unsubscribe from all email leads?
3. Should we really allow people to unsubscribe from all lists? As an administrator we might not want users to have the capability to unsubscribe themselves from all lists.

[DavidWells]

What do we show on the unsubscribe page when no specific id is passed as a url param?

the unsub link is (and should be) automatically added to the bottom of all sent emails and will always have a lead id and list id param

If more than one list id is present do we show an unsubscribe checkbox for each list and then an unsubscribe from all email leads? (This is for the unsubscribe UI page. Note that emails may be being sent to multiple lists.)

Just the current list and an option to unsub from all emails

Should we really allow people to unsubscribe from all lists? As an administrator we might not want users to have the capability to unsubscribe themselves from all lists.

Yes this is required by law and for good karma

[atwellpub]

Yes this is required by law and for good karma

There are situations where all users regardless of subscriptions have to be notified, such as a privacy policy update. Or a security breach. Just trying to account for these.

Just the current list and an option to unsub from all emails

What I mean is that if an email was sent to multiple lists then the 'current list' will represent two lists and should we give them the option to unsubscribe from one while remaining on the other or in other words let them selectively unsubscribe from both while still having the last option to unsubscribe from all emails.

Also how what can we do for security? We want to make sure a malicious bot can unsubscribe an entire lead database by programmatic calls.

[DavidWells]

There are situations where all users regardless of subscriptions have to be notified, such as a privacy policy update. Or a security breach. Just trying to account for these.

I hear that but if they are using the lead database as their primary userdata they are in the wrong. If they have security things, they should be managing users elsewhere. Same with privacy policy updates etc.

What I mean is that if an email was sent to multiple lists then the 'current list' will represent two lists and should we give them the option to unsubscribe from one while remaining on the other or in other words let them selectively unsubscribe from both while still having the last option to unsubscribe from all emails.

I suppose if they are on multiple lists from the same send, you can show the additional checkboxes. So whatever list ID that exists in the unsub link like site.com/unsub.php?list_id=12,14,11 would add those three lists as checkboxes and the 'unsub to all' checkbox at the bottom.

Also how what can we do for security? We want to make sure a malicious bot can unsubscribe an entire lead database by programmatic calls.

We could use a the WordPress instances security salt key to encode the lead IDs so they are specific to each instance. So lead id 123 becomes > encrypted with secret key > sent as 31931231931112whatever > then if click the param is decrypted back in wordpress back to 123