Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Update Swagger specs to include login and registration #3

Closed
jsfan opened this issue Apr 16, 2020 · 0 comments
Closed

Update Swagger specs to include login and registration #3

jsfan opened this issue Apr 16, 2020 · 0 comments
Assignees
@Ashar67

Comments

@jsfan
Copy link
Owner

jsfan commented Apr 16, 2020
edited
Loading

The specs are currently written with the assumption that a third-party service takes care of authentication and session management while the API itself only verifies a JWT. As the app is now meant to take care of authentication itself, it needs to allow for a login using username and password (and possibly also a second factor for MFA) and issue a JWT on successful login.

As JWTs cannot be invalidated, we don't need to have a logout. The app will log the user out by deleting its copy of the JWT.
@jsfan jsfan mentioned this issue Apr 16, 2020
Closed
@jsfan jsfan changed the title Update Swagger specs to include login and logout Update Swagger specs to include login and registration Apr 18, 2020
@Ashar67 Ashar67 self-assigned this Apr 18, 2020
@Ashar67 Ashar67 closed this as completed May 16, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@Ashar67 Ashar67

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jsfan @Ashar67