Make authenticated endpoints rely on the FSCS id that is in the JWT claim

IMLS / estimating-wifi

Estimating Wifi is a pilot project to automate the censusing of proximal wifi devices via low-cost and open source tools.

https://10x.gsa.gov/projects/shared-components-for-museums-and-libraries/

Other

10 stars 2 forks source link

Make authenticated endpoints rely on the FSCS id that is in the JWT claim #309

Closed jadudm closed 1 year ago

jadudm commented 1 year ago

Description

The claim portion of the JWT carries the FSCS id. Therefore, we know that the sensor has already authenticated, and therefore, we can trust this FSCS id.

We should use this in functions like beat_the_heart and update_presences instead of asking for/trusting the sensor to tell us who it is.

User Story

No response

Architectural Decision Records (ADRs)

No response

jadudm commented 1 year ago

This is closed as of work earlier this week; it's merged into main.