Skip to content
This repository was archived by the owner on Jul 17, 2020. It is now read-only.
This repository was archived by the owner on Jul 17, 2020. It is now read-only.

Reenable /v1/user DELETE request #1

Closed
Closed
Reenable /v1/user DELETE request#1
Labels
api: /v1/userIssues/PRs regarding the `/v1/user` API endpoint.archivedThis repository is archived.help wantedExtra attention is neededtype: api endpointIssues/PRs regarding an API endpoint.type: securityIssues/PRs regarding potential security vulnerabilities.
@EdricChan03

Description

@EdricChan03
EdricChan03
opened on Feb 25, 2019

Currently, support for the DELETE request has been disabled due to a potential security vulnerability where an attacker can delete a user from the list of authenticated users without explicit acknowledgement from the user.

TODO

  • Implement an authentication system
    • JWT?
    • API key?
    • OAuth token?
  • Reenable DELETE request
  • Link to this issue

Metadata

Metadata

Assignees

No one assigned

    Labels

    api: /v1/userIssues/PRs regarding the `/v1/user` API endpoint.archivedThis repository is archived.help wantedExtra attention is neededtype: api endpointIssues/PRs regarding an API endpoint.type: securityIssues/PRs regarding potential security vulnerabilities.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions