Scoped API Access
When creating an API token, allow fine grained scoped control. An example use case is, when using LetsEncrypt to generate your certificates, you can perform a DNS challenge to authenticate control of the domain. This adds a TXT record to your domain, confirming you have access to that domain. You currently need to give your "god-mode" API token to do this using DigitalOcean. With scoped access, you could create an API token with "dns:modify" and that's all that API token would be allowed to do. This would reduce the attack surface if the API token gets leaked from your droplet.
Send Uptime Alerts Via Discord
You currently allow me to connect slack to get uptime alerts, but I do not use slack, I use discord, that's where my community is, and that's where I'd need to receive alerts. And the only other way is email? What is this 2005? Not even webhooks?
Digital ocean is super amazing but it would be more super if there is a seprate logging service in which user can see all the projects logs like there DB logs, cluster logs or netwroking logs.
Continuous Referral Program
Referral Program is great but you will only earn a max 10$ per users you bring to digitalocean. It will be great that this turns into a recurring incomes for the peoples willing to promote the services.
Allow entering recovery code in same box as SMS
Other websites will allow you to put in both the SMS code and recovery code in the same box, rather than having to click "enter recovery code" first. As someone without cell phone service at my house, this would make it much less painful to sign in every day.
Night mode for Dashboard.
Really easy, but simple. On the dashboard, enable a switch so the user can switch to a black or dark grey background for evening work so it's a bit easier on the eyes.
Ask for password before issuing a destroy or rebuild
When destroy a droplet, system should ask to enter password to confirm before delete it for more safety. Since this is the most important decision.
mark a droplet as protected, so deleting it require confirm from owners via email
I noticed that destroying a droplet is so easy on Digital Ocean. I have to double and triple check If I'm deleting a correct droplet or not. I think It's a good idea that I (as a customer) could mark some of my droplets as protected droplets, so destroying them require confirming on owner's email. I mean, DO does not delete the droplet unless the owner confirms via a link sent to his email. I'll be happy if I see this feature on Digital Ocean.
Create a mobile optimized control panel or iPhone/Android app
One thing i love about Linode and Rackspace is that i can always quickly check my server stats from my mobile phone. I would love to have an app that shows me (in descending order of importance): * List of Droplets with all meta info (name, image, size, IP address, Running or not ...) * Buttons for: * Reboot * Resize * Snapshot * Backup * Create from scratch/ from image * Bandwidth usage for the current month * Charges for current month / account balance * Digital Ocean stats (is everything in the network ok?)