Right now we don't check the project ID that Simpla() was initialised with when the user logs in. There's no security concern here (they still can't do anything if they don't own the project), but there are UX ramifications:
You can login (again, inertly) to projects you do not own
Simpla doesn't know if the project key is valid until the user tries to save something and it blows up in their face (see #15)
There is no valid use case for logging in with the Simpla SDK that has an invalid project key.
Right now we don't check the project ID that
Simpla()
was initialised with when the user logs in. There's no security concern here (they still can't do anything if they don't own the project), but there are UX ramifications:There is no valid use case for logging in with the Simpla SDK that has an invalid project key.