Ok, so I should just redirect back to the new_proof_url endpoint, fair enough
yeah. redirecting is perfect. it doesn’t have to redirect to
new it could also go to the user’s profile page or settings page or something like that as long as the flash notice tells the user something actionable. whatever makes the most sense. i’m not really sure. no opinions.
the logged-in user is the discourse user that is making the proof
absolutely. yes. it looked like here we’re only checking if it’s the correct user on
create and i’d argue we should also do it on
new. there’s no sense in trying to save a proof that we know will fail.