Better Search Feature, Ask client for security & Few ideas
There are some singlar ones but not one of our main requirements. So thought I'd start a new one aiming at all things we require as a Hosting business industry.
We need the Admin Search tool to work with:
- Order Numbers [They say if you have any questions tell us the order number, we can't search it on whmcs, we'd have to go to orders > list orders. I personally believe it would be nice for us to search it in once place on the whmcs.]
- Transaction IDs [A client says my transaction ID is: 0000000 we can just search it and pull up the account]
On sign-up, ask the client if they would like to setup Two Factor Authorization or if they wish to skip it.
Sometimes administrators can't log in, and or lost their backup code or removed it from their phone by mistake, this leads to being locked out completely. On clients we can turn if off for them, this I believe is a must for Administrators but can only be done by the Two-Factor Authentication of the user editing the account.
Customer Account Two Factor Auth Security:
Some WHMCS customers want to prevent authorization for all admins to see / edit the customer account, why don't we have this system where Full Admins can see the accounts / edit them, however they must use either their Two-Factor Authentication code.
If they aren't a Full Admin, they must get a code from the customer, they go to a page like: https://whmcs.com/members/verifyaccount.php. They then enter their Postcode and Security Answer with a code sent to the email address on record. If they have Two-Factor Authentication enabled they can just enter that code to get a Verfication code for the Administrator.
The administrator then enters that code with their Two-Factor Authentication. After confirmation they can edit the account.
This must be a on / off feature on the Two-Factor Authentication page.
I hope people like with my ideas :)