Open only1chunts opened 2 years ago
Gigadb Authentication mechanism wasn't implemented following conventions and industry patterns. And as we rebuild the platform, we also need to move more to authentication service for our different future applications. In addition, we need to provide a deep integration of ORCID while providing some facilities for affiliate login when it make sense.
However this is epic size work, and cannot be done at once. We need to start with the basics and this story is very canditate as a first step.
It's difficult to implement that in the existing cocdebase given it idiosyncracies and legacy aspect. So it's opportunity to implemewnt a new authentication endpoint as a new Yii2 project, which has of the benfit of providing the functionalities of this stories out of the box.
We just need to adjust table names, and tests. We deploy that endpoint in parallel to existing mechanism and have all of us test us and when we (the all of us we) think it 's working smoothly, we can decommission the old mechanism.
background
There are a number of tickets related to affiliate login and single sign-on and user account administration, all of which need to be looked at and aligned. To add to these we also have a concern over the "username" field in the database USER table, it is immutable via the GigaDB admin pages which causes confusion when the "email-address" is updated, ie. it means the username and email-address no longer match in the database. Related tickets include:
64
826
560
561
553
407
User story
Acceptance criteria
Additional Info
There are several stages:
Product Backlog Item Ready Checklist
Product Backlog Item Done Checklist