Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add Authentication API (WIP) #38

Open
bonedaddy opened this issue Jan 13, 2020 · 0 comments
Open

Add Authentication API (WIP) #38

bonedaddy opened this issue Jan 13, 2020 · 0 comments
Labels
needs-discussion the outcome is not clear and needs to be discussed

Comments

@bonedaddy
Copy link
Collaborator

We should have an optional API that allows registering, and authenticating with TemporalX, to allow restricted access to the RPCs.

RPCs to add:

  • Account

Account has the following request types, denoted as enums:

  • REGISTER (allows registering an account within the system)
  • CHANGE_API_KEY
  • AUTH

To register you should provide:

  • username (required)
  • password (required)
  • email (optional)

To change API key you should provide:

  • username + password

To authenticate you should provide the API key, which the server will then validate. If valid a JWT is generated and added to the "context" of the RPC client connection. This JWT can then be used for quick validation within the RPCs that the auth process has completed.
@bonedaddy bonedaddy added the needs-discussion the outcome is not clear and needs to be discussed label Apr 14, 2020
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
needs-discussion the outcome is not clear and needs to be discussed
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@bonedaddy