Consider suppressing door-hanger after user has verified subscription

[groovecoder]

From Slack discussion:

so my concern is that if we show it every time even if the user has already seen that they have a breach on that site and hopefully already remedied that situation that people will turn them off completely

the ideal flow might be:

1. notification
2. check site/sign up
3. change all stolen account info
4. only show doorhanger for NEW breaches if people turn it off because we’re repeating info they already know then we lose the opportunity to do new alerts only in the future

One potential solution is for the add-on to detect a 200 OK response at https://monitor.firefox.com/user/verify and set a flag to suppress the door-hanger after that?

[groovecoder]

Ping @MattGmoz

[MattGMoz]

Would that only work for sign ups? I think if you run a scan we could assume that you are then aware of all sites that may be problematic, at least in our MVP.

Another alternative could be that we still show it for every site, but we show the doorhanger collapsed with an icon ala CFR. That way the user still knows that this site was breached at some point, but doesn't get too many notifications.

[pdehaan]

What about the ability to mute the doorhanger per site?

Like, I've seent the doorhanger on linkedin.com, but I've changed my password (or deleted my account, etc). It'd give me a way to hide the doorhanger for specific breaches but not disable it completely.

Although, I guess not disabling it per SITE, but per BREACH. (considering Bell.ca and a few other sites have had multiple breaches). I want to hide THAT breach notification, but not all future breach notifications if the site is re-breached.

[MattGMoz]

@pdehaan I like that as well. Something that indicates you are aware of the current breach so we don't keep telling you, but not something permanent. I think it will mostly depend on what groovecoder and nihanth thinks is reasonable between now and launch.