You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
{{ message }}
This repository has been archived by the owner on Apr 26, 2019. It is now read-only.
As a user, I expect commiteth to respect my privacy and not store my github oauth token on the server.
Description
Type: Enhancement
Summary: There should be no need to store github oauth tokens on the server.
Solution
after successful redirect to commiteth.com, pass token to client-side and put it in localStorage on the client, avoiding the need to store the token on the server
each commiteth HTTP API call that uses functionality in the github API requiring the user's token should be passed the token (we use ssl, so no security issue here)
The text was updated successfully, but these errors were encountered:
* require only user:email oauth scope when signing up
* if user wants to set bounties on repos, request additional oauth
scopes
* do not store github access tokens on server side and use client-side
localStorage instead
Fixes: #35Fixes: #40
User Story
As a user, I expect commiteth to respect my privacy and not store my github oauth token on the server.
Description
Type: Enhancement
Summary: There should be no need to store github oauth tokens on the server.
Solution
The text was updated successfully, but these errors were encountered: