New to WIP?

We're a group of makers shipping together. We help each other stay accountable and reach our goals.

Join now
Around the web
X
dmassiani
Back
 Karlon Davis

Karlon Davis

@karlondavis

Founder & product builder, focused on building useful, durable products. davidmassiani.com
75
World/Earth
Joined August 2022
Done330 Projects5 Posts4 Comments4 Media Stats Following48 Followers18
Load previous page…
Karlon Davis
@karlondavis
Secured all public chat API endpoints (start, messages.get, messages.post) with Origin/Referer header validation against allowed domains. #lopodesk
Karlon Davis
@karlondavis
Built domain validation utility with wildcard support - *.example.com now matches all subdomains including base domain. #lopodesk
Karlon Davis
@karlondavis
Added chat_allowed_domains TEXT[] column to crm_workspaces table for storing allowed domain patterns per workspace. #lopodesk
Karlon Davis
@karlondavis
Identified security concern with chat widget - anyone with chat code could embed it on unauthorized domains. Planning domain whitelisting feature. #lopodesk
Karlon Davis
@karlondavis
Designed a new favicon for Lopodesk - geometric "LD" letters with cyan-to-purple gradient on dark background. SVG format for crisp rendering at any size. #lopodesk
Karlon Davis
@karlondavis
Added embeddable chat widget with security hardening (XSS, CSS injection, rate limiting, input validation) #lopodesk
Karlon Davis
@karlondavis
Fix visitor message color - changed gradient to solid gray for readability #lopodesk
Karlon Davis
@karlondavis
Add resizable chat window (drag top edge to expand height) #lopodesk
Karlon Davis
@karlondavis
Add chat archive functionality in CRM with archive button in chat list #lopodesk
Karlon Davis
@karlondavis
Auto-open chat windows when new visitor messages arrive in CRM #lopodesk
Karlon Davis
@karlondavis
Implement email domain configuration page (Resend API integration) #lopodesk
Karlon Davis
@karlondavis
Add close chat functionality for visitors and CRM agents #lopodesk
Karlon Davis
@karlondavis
Fix chat widget padding issues for visitor page #lopodesk
Karlon Davis
@karlondavis
Added invite cancellation via API endpoint #lopodesk
Karlon Davis
@karlondavis
Fixed invited users skipping onboarding correctly #lopodesk
Karlon Davis
@karlondavis
Configured Resend SMTP for Supabase auth emails #lopodesk
Karlon Davis
@karlondavis
Created SQL function to fetch workspace members #lopodesk
Karlon Davis
@karlondavis
Added RLS policy for deleting invitations #lopodesk
Karlon Davis
@karlondavis
Fixed user.id vs user.sub auth bug #lopodesk
Karlon Davis
@karlondavis
Added plan upgrade button Solo → Team #lopodesk
Home
Search
Messages
Notifications
More