Scrollspy control is present but it is not setting the active element in the nav panel on the left side of the dive log page.

It is currently impossible to write numbers with decimal places into textboxes where the input is run thru formUtils.tryReturnAsNumber(). The decimal gets trimmed off as soon as it is typed in! Need to fix this!

The glyph icons are suddenly looking messed up. Get to the bottom of that and get them looking normal again.

Want to license this so anyone can contribute but not everyone can host their own version... Look at projects like Habitica to see what kind of license they are using.

Users should be able to click on the map to set the dive site's GPS coordinates. That way the map isn't just a pretty thing to look at. Also, it would be nice if the map auto-centered on the user's current location (browser location services?)

This makes for some weirdness. When the text is long enough to wrap, the control labels will be right-aligned. When the text is not long enough, they will be left-aligned. It's gross. Please fix.

When users log out or their sessions expire we should be terminating the session in the UI:

• Redirect to home page if the user is on a page that requires auth.
• Purge potentially sensitive data from the Alt stores.

Make sure sensitive user information is stripped before it is returned from any APIs. APIs that return a user entity right now are:

• Login
• Sign up
• The "me" API.
• Possibly more...

Standardize this goodness. Never return the raw req.user object!!

Location auto-complete would be a sick feature in a few key spots:

• The Location field on the log entry page.
• The location field on the user's profile info page.

Validation state does not always match whether a required field has text in it or not.

There is something wrong with the test coverage - it is not being reported to Coveralls correctly. :( Need to address this.

Find a way to ensure that requests over HTTP are redirected to HTTPS (without breaking health checks or the ELB, etc.)

Find a new regex for validating passwords - the current one kind of sucks.

Modifications need to be made to divelog.yml. Deploying a production stack fails due to conflicting resource names. :(

Some resources (e.g. load balancers) etc. will need stack-specific names like the dynamo tables have.

This stupid regex is copy/pasted all over the app. Put it in one location and import it.

Using the "Connect your Xxxx account" option in the profile/OAuth page should redirect back to the profile/OAuth page when successful.

Discard Changes button on dive entries page. Not sure this works properly. Double-check it.

The colon of ControlLabel of the retype password field on the sign up page wraps to another line and looks dumb. Pls fix.

This gets rendered to the browser when I kill the database on my dev server:

Error: connect ECONNREFUSED 127.0.0.1:7777
    at Object.exports._errnoException (util.js:1026:11)
    at exports._exceptionWithHostPort (util.js:1049:20)
    at TCPConnectWrap.afterConnect [as oncomplete] (net.js:1085:14)

Definitely need to handle this more gracefully!!

Logging in with Chris vs chris is not handled the same. This could be frustrating and confusing for users. Please fix.

Make the Express session secret configurable so that it can be injected into the environments at run time. It's not safe to have it in source control - session hijacking, man!!

Add padding to top of body to accommodate fixed nav bar.

Figure out how to hook into some sort of onNavigate event to clear the AlertBox when leaving a page.