TransforMap / data.transformap.co

Here you find a Node.js daemon to serve the public TransforMap web service.

https://data.transformap.co

GNU Affero General Public License v3.0

7 stars 2 forks source link

Auth #29

Closed maxlath closed 7 years ago

maxlath commented 8 years ago

[work in progress, don't merge yet]

setting up a basic authentification system using passport and a first authentification strategy: passport-http

can be tested like so

curl http://jon:wrongpassword@localhost:8726/hello?name=george
# => 401
curl http://jon:dubdubdub@localhost:8726/hello?name=george
# => 200

gandhiano commented 8 years ago

This looks promising. I would suggest using a similar UUID for users (instead of id), similar to other objects we store in our DB.

Also interested in understanding how to authenticate against other providers, e.g. OpenID Connect or OAuth. I found this module for OpenID Connect, but seems unmaintained.

gandhiano commented 8 years ago

Is any progress going on here? We have no user story for authentication (was originally not thought as important, but obviously is), but we should work on it, because it's implementation will be very much defining the workflow and interoperability with other platforms. For the record, I would very much appreciate that this is coordinate with other efforts being made here.

almereyda commented 7 years ago

Will we want to use https://github.com/colinskow/superlogin ?

Using a publicly accessible CouchDB could help syncing state with any PouchDB client, like https://github.com/pubkey/rxdb

almereyda commented 7 years ago

Deprecated by #48