Join GitHub today
GitHub is home to over 31 million developers working together to host and review code, manage projects, and build software together.Sign up
Proposal: Single-click inspector authorization #290
This is a pretty significant redesign of the current model of trust and sign-in flow, but I think it will be worth it. Using this new design will completely remove the beta forums from the authorization process, which is currently the only thing we can't make event driven (have to poll every 5 mins), and causes the most confusion with account creation. (Plus, it might make WotC a little happier with us for not crawling their forums.)
The current model of trust revolves around proving that you own a username in MTGA. (This in itself might even be a flawed assumption, if usernames aren't guaranteed uniqueness in MTGA). In this proposed model of trust, we will instead associate all records with a unique key generated by each machine (or, tracker), then authorize inspector accounts to access records associated with that key.
Play by play:
Problems (and solutions):
Problem: what if a key is lost before a user can claim it?
added a commit
Sep 23, 2018
This work is done!