outline for auth #111
Open
outline for auth #111
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
|
@wparad looking real good! |
|
I had a tiny smattering of notes in a random file and I'm just gonna pop it here in case anything is vaguely interesting about it. OAuth is like a hotel key. You provide primary credentials (ID + credit card), get a token back that's generic, scoped, revocable, and tied to an expiration...and life's good. - @caseysoftware #jestphp Default to not letting anyone in, then specify the various authenticaton methods allowed per controller or endpoint. DO NOT implement a shitty auth strategy where all endpoints can only have ONE type of entry, or you find yourself duplicating endpoints just to get around that crap. Implementations
|
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Uh oh!
There was an error while loading. Please reload this page.