Comments (2)
daved
commented on July 28, 2024
2
Requesting a voucher will result in an email being sent out with a token that can be used within a certain window of time in order to do things like confirm an email address or update a password. This allows the auth portion of the code to focus on authentication and the user portion of the code to focus on user data. They then "interact" in the authorization layer (likely to be called "user access control(ler)".
For example:
- Request new User
- Receive valid User response with "hold" placed on sensitive field values
- Request Voucher using an email field
- Receive valid Voucher response (indicating the caller should check the provided email address inbox)
- Check for Token by email
- Request update to User with hold removed (limited by email address in Token) before expiration
- Receive valid User response with field values set correctly
I suspect that we'll be able to add an "input token" and "token" field to the Voucher request/response messages to enable programmatic third-party authentication (e.g. github, google). This would allow the user to do something like:
- Request Voucher using a "third-party token" field
- Receive valid Voucher response (with Token)
- Request new User without hold set (limited by email address in Token) before expiration
- Receive valid User response with field values set correctly
from openboard.
nqthqn
commented on July 28, 2024
What is a Voucher?
from openboard.
Related Issues (20)
- Update the AUTHORS document to include all contributors so far HOT 2
- Find posts by more than one keyword HOT 1
- Project automation info lacking context
- Code of Conduct links should live in CoC doc
- Bug: MariaDB setup problems
- Bug: Postsvc Tests
- Add script (or modify existing) to track/update proto dependencies (e.g. grpc third-party)
- Update AUTHORS doc to include myself
- Investigate possible race condition created by log/dbg packages
- The serve() and stop() functions should return accumulated errors
- Add "Kind" message enums
- Add "Kind" enum to FndPostsReq message HOT 1
- Add Categories message to posts.proto
- Add "Categories" message to other messages
- Expand FndPostsReq
- Add user id info to PostResp
- Add "search by user id" to FndUserReq
- Add "Settled" and "Expired" timestamps to Post messages
- XipXape should behave when work or a branch is added via github editor
- Feature: Clarify issue-to-PRs relationship in docs
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openboard.