beef up auth #27

New issue

Closed

opened 2022-10-14 03:15:46 +00:00 by heartles · 1 comment

heartles commented

2022-10-14 03:15:46 +00:00

Owner

The /auth/login endpoint should return a login cookie instead of a token

Cookies should be longer
You should be able to use cookies to obtain a token using... i think it's OIDC? *** look this up
Most endpoints should accept either a cookie or a token

The /auth/login endpoint should return a login cookie instead of a token - Cookies should be longer - You should be able to use cookies to obtain a token using... i think it's OIDC? *** look this up - Most endpoints should accept either a cookie or a token

heartles added the

http

endpoint

backend

labels 2022-10-14 03:15:46 +00:00

heartles added this to the v0.0.3 milestone 2022-11-17 03:03:57 +00:00

heartles removed this from the v0.0.3 milestone 2022-11-19 11:35:46 +00:00

heartles commented

2022-11-19 11:37:01 +00:00

Author

Owner

Part of this is done, by adding a /login web endpoint that sets the cookie in it. But the /auth/login endpoint is still around, and there's still a weird fusion of cookies and tokens sitting around. I'm closing this for now, but creating a new issue for better OIDC and Oauth support.

heartles closed this issue

2022-11-19 11:37:04 +00:00