Open aspino opened 8 years ago
Purpose is to enable users to have the LR server sign envelopes on their behalf.
We should maintain private keys for each provider+user identity.
Users should be authorized to publish by community
When users are authorized to publish, they should be given an API key that permits access to /publish
rather than making the API authn via OIDC itself. The approval process requires OIDC. The API will require an API key.
This feature was implemented by aspino for LR 1.0 community. We should borrow design and/or code from that.