0xFEEDC0DE64
commented
2 months ago We are working on including a new QR code with new products manufactured which can be used by third parties directly in their app to be scanned to setup a new go-e charger without even installing the go-e app at all
Dear Go-e Team,
We are a smart energy platform, which integrates various charging solutions. As part of our efforts to provide a seamless experience for end-users, we would like to request a change in the authorization process for accessing Go-e chargers as a third-party application.
As of now, the end-user needs to "manually" go into the Go-e App to create an API-key. Although works, it can be hard for the user to understand to which party he provides this API-Key.
As an alternative, we recommend implementing the OAuth 2.0 Authorization Framework, specifically the Authorization Code Grant as outlined in RFC 6749, Section 4.1. This approach allows third-party applications like ours to securely access user resources on the Go-e platform without compromising user credentials. Using this approach, the end-user would get redirected in to the Go-e Login screen and can enter his credentials like he is used to from his app Login.
Implementing OAuth 2.0, particularly the Authorization Code Grant, enhances security by ensuring users' credentials are not exposed to third-party applications, offers a familiar and streamlined user experience, and provides granular permission control. Additionally, adopting this widely recognized standard would make Go-e chargers more accessible to a broader ecosystem of third-party services.
Thank you for considering our request.