search

gorrion-io / danger-zone

Danger Zone App - "Wujek Guzy" project for Gorrions and KN Fullstack members #nestjs #react #typescript #javascript #graphql
MIT License
6 stars 13 forks source link

Claim account #20

Closed m4m3m2m1m0 closed 4 years ago

m4m3m2m1m0 commented 4 years ago

sorrki

Siemko commented 4 years ago

Ok, so we talked it through and came up with an idea to make it simpler and easier for users. The flow will be like that:

  1. On the first visit, user creates an account with "username". It is saved as their account as long as they have refresh token in LocalStorage. 1a. On revisit, if refresh token is no longer valid or doesn't exist, user can create an account with "username", same as on the first visit.

  2. User can "claim" an account by providing an email address. Account is validated by a link in the first email. 2a. Claimed account is valid, only when the user clicked the link in the first email message. 2b. If the user didn't click the link, they can still use their account as long as they have valid refresh token.

  3. When user has validated their account, they can use "send a magic link" button to send them a link to login to their personal account.

We will not use passwords at all, just magic links. We can always add "regular" registration later if needed.

For now we only want magic links.

@m4m3m2m1m0 if you need any advice on that, we can talk it through, also you can ask Kamil L. for help.

Siemko commented 4 years ago

PS. Sorrki.