First of all, we should have cared about security from the very beginning. Two of us were taking CS3235 but yet we put security as our last concern. Not a good practice at all. Choosing a framework that implements more secure features can be a good start. Securing database access by avoiding raw query can be useful. We should have validated user input as well and we should did it when we still have enough time. I guess Quan Yang must feel quite boring hacking our website - "No challenge."
Second, when we split into two groups each focusing on a component of the website, it is important to know what the other group is doing and will the integration work in the end. In our case we implemented Student page and Company page separately but later we found that there was logic flow missing. It was not only the project manager's duty to see the big picture of the website.
Last but not least, since finishing the write-up is so much pain, it is better to answering each milestone once we finished it.
Good insights. Hope you have applied them well for your Assignment 3 (:
ReplyDeleteGood insights. Hope you have applied them well for your Assignment 3 (:
ReplyDelete