Accidentally clicking this button after having already generated codes will cause a lot of wasted time. The same applies for "Start session" when creating a new voting session

TL;DR: I want a confirmation popup

Happens when server is shut down and then restarted. The clients will all reconnect when server goes up again and still be on votes.ejs, which means that they see all the questions.

For example, long codes should be formatted with dashes in between each group of n digits:

geaj-du3e-28eb-87ga-83vd

And the user input method should be customized for this:

____-____-____-____-____

A common problem with digital voting (especially if not done through dedicated hardware) is the vastly increased possibility for buying votes, if you can't identify that the physical person with authority to cast the vote is in fact the person casting the vote you also allow for vote buying with both ease and confirmation.

If a fraudulent party intend to buy ones vote in order to cast an illicit vote.

• What prevents one from selling ones access code for third party use?
  • Access codes could easily be distributed through various digital communication services.
  • A potential buyer would gain access to confirmation that vote is in fact cast to their intended precipitant.
• What prevents one from letting a third party buy access to the electors computer and cast the vote
  • The third party could use various remote control principles such as VNC, RDP, X11 forwarding, SSH, etc.

These are just some of many concerns surrounding electronic elections, especially online/network-based ones without dedicated hardware. If digital network based voting paves the path for increased feasibility in electoral fraud, then do we really want to adopt this technology?

I am not yet convinced that network or even digital voting at all is a good idea.

Example:

Votes available: 4

• Mr 1
• Mr 2
• Mr 3
• Vacant1
• Vacant2

You're voting for Mr 1, Mr 3.
Set 1 seat vacant.
And 1 blank vote

The input fields for submitting the three codes should have properties set to disable autocorrect, autocomplete and any other automatic manipulation of the input data.

In routes.js:

if(server.codeAnsweredQuestion()) {
res.end('anweredError');
} else if(server.validAnswers(answers)) {
server.register(code, answers);
res.end('success');
} else {
res.end('corruptError')
}

https://facundoolano.wordpress.com/2014/10/11/better-authentication-for-socket-io-no-query-strings/

Pressing the number keys does nothing! NOTHING I TELL YOU!

Tried Firefox and Chrome. Nothing logged in the js console.

Printing with number of codes per user being something other than 20 breaks formatting and causes code lists to be split by page breaks.

Furthermore, printing using Google Chromes printing interface causes the same thing to happen even with 20 codes per user.

A person who attends the beginning of a meeting and is issued a code card may leave the meeting and keep the card, still knowing the URL and agenda index.

Solution proposal:
Provide a second factor of auth - a common token which is replaced for each vote and only displayed in the meeting room. By revealing that token only when the vote takes place, each voter must be present or have a rogue accomplice present to transmit the code.

If the server crashes and all the accessCodes have already been handed out.

With a nice GUI. Could have some of the following features:

• A list of connected sockets
• A log over incoming answers, connections etc.
• GUI for handling questions, accessCodes, restart, etc.

When posting an answer via keypresses we want to be able to have more than 9 different answers at a time. Start using q,w,e,r,t,y etc. after 1-9 have been used.

https://en.wikipedia.org/wiki/Single_transferable_vote
To example flag voting.

If user sends a large body in the POST-request.

If a client modifies the frontend code, it can gain access to the questions and their answers. The client is not able to answer the question however. Is this a problem?

When trying to vote with a code that has already been used the error message is still "invalid code" . Could be useful if the error message could indicate if there's a spelling error or a already used code.

Maybe change font?

Allow admin to se summerized vote data. The amount of votes for each candidate.
To easier verify the result and allow draws (if not "personval") in a simple sense.

Probably to be done together with #43

In a hypothetical scenario where one option receives between 100 and 199 votes, the option is ordered in the results as having 1 vote. This issue could potentially be relevant to the results of a hypothetical election.

What is hidden votes? Why can't we use chalmers printers? etc

Vote counters/admin should be able to see raw vote data (not necessarily code and vote cast, but at least vote cast) to be able to do manual calculation of the result

When enter first entering the access code it is sent in plain text to server. This enables for malicious users to automatically grab access codes and vote before the intended user has the possibility to do so.

Also since votes are sent in plain text which allows for users to count votes and gather statistics on the result before presented.

This is especially true if any user is connected to nomad, since the network is unprotected.

We propose the use of public encryption scheme with padding to hide the answers of the users.

// @Edholm && @Rawa

When no web requests are made to heroku the instances "sleeps" and the state is lost and new code have to be generated.

In routes.js:

if(server.validate(code) >= 0) {
...
} else
res.render('index.ejs', { //Doesn't work
message : 'Invalid access code.'
});

can't close voting session.

At the moment we generate our own access codes using Math.random known to be predictable as shown in: http://franklinta.com/2014/08/31/predicting-the-next-math-random-in-java/

We should make use of some hashing method such as base64 to generate the accessCodes and include a secret part which should be unkown to others aswell as perhaps include the time of generation so:

hash64(accessCodePart1 ++ SECRET ++ accessCodePart2 ++ TimeRightNow)
-> YWNjZXNzQ29kZVBhcnQxU0VDUkVUYWNjZXNzQ29kZVBhcnQyMTQyODIzNzk2OA==

There needs to be scripts for keep-alive written för all major platforms, such as Windows, osx, linux

When generating new codes, the votesession should reset to not print unusable codes.

Show error message and prevent user from voting

If several people are trying to press 'vote' at the same time.

Please listen on all addresses (0.0.0.0)

In app.js the amount you can vote for i set on votesCount=Array.apply(null, Array(optionsarr.length)).map(function (x, i) { return 0; }); and should have vacoptions length too.

When a new flash message is displayed while another message is already being showed.

So when the meeting starts, most questions are already ready and waiting.

Need to test this.

Create the wiki page for showing the the probability for a attack to succeed.

As the UI is designed today it is (in my opinion) to easy to sneak a peak on other users (in front of you) screens during voting. Is there any plans of using forbidden color combinations (blue, black) to make it harder to see, or any similar solutions. Hopefully this is something we don't need, everyone is hopefully honest at IT.

All commands must have a list of expected parameter types, so that the server can convert all parameters to the correct type before sending them to the command-methods.

Must also check for basic things like commas where there aren't supposed to be any.

Automatic checks that makes sure that each command get's enough parameters.

Why don't we remove the characters I, L, 1 (both lower and uppercase) (Lima, India, One) from the generated voting codes. It is easily possible to get the mixed up. The reduced security is minimal in comparison to the increased usabillity.