Add user account system; make workspace dashboards more secure

[bobwhitelock]

Matt - theoretically anyone could get to that web link briefly checked through legal doc with Matt and seems like we're not near infraction, it's fine if they can. Need to review legal document in more detail

in terms of security the observations probably aren't that sensitive- any other party have access to the same data if they both to collect it. The Labour promise data probably is quite sensitive though- can we avoid storing it?

what do we want to do about security - is an access code enough?

[bobwhitelock]

From CL hack day, to do for this:

• Need user account system - may create account through sign ups or invites, not sure which is simpler/better yet

• Need an account to create a workspace

• Need to be invited to join a workspace

• Each account may be in multiple workspaces (many-many)

• Keep obscure URLs for polling agents, don't need any password protection for polling agents

  • No longer need obscure URLs for organisers as will be password protected

  • Do need for polling agents as they won't have accounts

  • But may not be worth changing things unless we're changing this stuff anyway