Since UWA studysmarter is a service for UWA students and the likes, it would be ideal to protect the system such that it is only accessible by the relevant people.
Other Information
There was a project created within UWA Makers and the UWA System Health Lab that abstracted the SAML-based implementation of Pheme into an API.
This information is public. However, not many people know, but it would be great if this stays under the covers. This is as per advice by the original creator of this module.
This is example code on how to login using the makers login endpoint. The actual way to login a user with pheme is complicated, annoying, and is a little open to exploitation. At the same time, giving people the ability to add pheme auth into applications allows people to create cool things and eventually innovate. As a result, Makers provides an open endpoint to validate pheme credentials that abstracts the actual process. However, we will not release the code for the endpoint itself.
lmbhov
commented
3 years ago
Basic Information
Since UWA studysmarter is a service for UWA students and the likes, it would be ideal to protect the system such that it is only accessible by the relevant people.
Other Information
There was a project created within UWA Makers and the UWA System Health Lab that abstracted the SAML-based implementation of Pheme into an API.
The documentation of the Pheme API can be seen here https://auth.systemhealthlab.com/docs/
This information is public. However, not many people know, but it would be great if this stays under the covers. This is as per advice by the original creator of this module.
See https://github.com/UWAMakers/pheme-login-example