-
-
Notifications
You must be signed in to change notification settings - Fork 25
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
[Discussion] New User Registration Confirmation emails & Associated Changes Needed #110
Comments
We'll also need the text of the confirmation email. Will we want to localize this, or are we sticking with English only for the MVP? |
Thank you for beating me in filing this ticket! Acceptance criteria (feel free to suggest edits):[ ] Create API endpoint to validate the signup
Notes: Possibly helpful blog post: https://medium.com/@blakeyang22/django-signup-with-activation-email-via-api-7384e6766710 Questions
We'll need a link to validate the email!
Tentatively, we can make the endpoint On the frontend, the user will see "Please check your email to validate your register" before they can see logged-in pages.
Can we do mailhog on dev but Sparkpost in production? Is that possible -- or should we have Sparkpost on both?
Let's stick with English only! |
Since we're now validating email addresses, we'll have to make changes to how we issue tokens. I suggest we separate this out into several issues, so that we can be clearer on the changes needed. |
Looks like we need to make a serializer change for this to work, but I will probably need to do some more digging. This SO Post on Email verification with JWT Has a starting point. |
Ooof. If we are doing a validation email, do we also need a "thank you for validating" landing page when they click the link?? |
Yep -- in the React app, right? I was thinking we could redirect the user to their profile page upon registration or login, and show a banner/alert at the top that says "Thank you for validating!" if they came from a validation link. (I'm still researching exactly how the validation process works) |
Yup. It's that validation link that I am trying to think through. So taking a crack at a flow:
OR
|
I wonder if we may need to use an additional package alongside 1/ https://github.com/sunscrapers/djoser/ or 2/ The second is documented here, has a demo example here, has this relevant thread: Tivix/django-rest-auth#292. Someone's implementation of the confirm email view with TBH, I think the first package ( Its API: https://djoser.readthedocs.io/en/latest/jwt_endpoints.html#jwt-create I'm not 100% certain on the responses we're supposed to get back from each API request still, but tentatively...
I think what you said about the DB flagging makes sense, but I haven't entirely wrapped my head around implementing that (e.g. does using the package take care of it?) Anyway, the tldr of my post is that https://github.com/sunscrapers/djoser/ looks promising. :) But also open to thoughts on not using |
Thank you for the links! I am going to have to dig into this a little more, especially around when/with what status newly registered users are created in the DB. I don't think we want to return a 200 for a created user unless their email is validated....but right now things feel funky to me - it's a little too late in the evening. 😄 I am also a little nervous about sending a token to the user via email...so I need to do some reading/thinking there. |
@lpatmo - just occurred to me that we are talking about a |
Ah right, this is one of the issues I'd talked about in the summary last weekend but didn't file an issue for 😂 I think we can keep it simple for now and add to it later, right? |
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. |
Can try to look at this in the next week. |
When a new user signs up send them an email.
Questions:
The text was updated successfully, but these errors were encountered: