slingamn
commented
3 years ago This is a neat idea, although it probably won't be prioritized in the near term.
My first thought about how to implement this is to add register/verify functionality to the auth-script protocol itself. So there would be additional keys, register and verify, in the auth-script input; if register is true, then it's a registration attempt, and if verify is true and an additional key verification-code is set, then it's a verification attempt. Then you'd have to enable registration and verification via auth-script in the Ergo config (not sure yet about what keys that would involve).
Specific use case is so I can check passwords against HIBP, Another aspect would be allowing someone to register against an external database (instead of needing to have the users go to the external site, register, then come back to irc, and authenticate, to instead use the
auth-scriptsetting)