[FEATURE] Use a third-party app for authentification #22

Juknum · 2023-11-08T15:27:13Z

Est-ce que votre suggestion est liée à un problème ? Décrivez-le

There is currently now way to safely log-in in the API, the password must be sent in clear text to the API (which is a very important issue).

This is due to:

The API not sharing it's salt key to the end-user system (the Sith 4 for e.g.)
Because of that, hashed received password cannot be compared to registered hashed password

Décrivez la feature que vous souhaiteriez voir

Use a third-party system that would manage user email + password authentification
- That third-party app would return a JWT Token that would be understood by the API
- Allow for third parties app (Google, GitHub...) to be used to login into the API

Capture(s) d'écran

No response

Notes

No response

Code de Conduite

J'accepte de suivre le code de conduite de ce projet

Juknum added status: triage The issue needs to be sorted in the right project type: feature The issue is a request for new functionality including changes, enhancements, refactors, etc labels Nov 8, 2023

Juknum added this to Sith v4 Nov 8, 2023

Juknum moved this to Todo in Sith v4 Nov 8, 2023

Juknum modified the milestones: v1.0.0, v1.1.0 Nov 8, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[FEATURE] Use a third-party app for authentification #22

[FEATURE] Use a third-party app for authentification #22

Juknum commented Nov 8, 2023

[FEATURE] Use a third-party app for authentification #22

[FEATURE] Use a third-party app for authentification #22

Comments

Juknum commented Nov 8, 2023

Est-ce que votre suggestion est liée à un problème ? Décrivez-le

Décrivez la feature que vous souhaiteriez voir

Capture(s) d'écran

Notes

Code de Conduite