macielti / porteiro Goto Github PK
View Code? Open in Web Editor NEWA microservice for users and authentication management
License: Other
porteiro's People
Contributors
Stargazers
Watchers
porteiro's Issues
Add endoint to be able to add roles to user entity
Make `POST /api/users` return the `user-id`, `username`, `email` and `roles`
Add an implementation of `porteiro.db.datomic.user/insert-user-with-contact!` user Datomic function to Datalevin
We need to reimplement the porteiro.db.datomic.user/insert-user-with-contact! for Datalevin database.
Add Contact Entity
A Contact entity will be a general entity to deal with different methods of contacting a user.
- Telegram
Adapt service to be deployable via docker image
Add a Docker Image publish Github action step.
Test if we have the problem with multiple users with the same email
Add an implementation of `porteiro.db.datomic.password-reset/valid-password-reset-by-token` Datomic function to Datalevin
Add an implementation of `porteiro.db.datomic.user/insert!` user `Datomic` function to `Datalevin`
We need to reimplement the porteiro.db.datomic.user/insert! for Datalevin database.
This task also contemplates the lookup function.
Rename service to "Poteiro"
"clift cloft Still, a porta se abriu!" - Porteiro
Trust on the JWToken
Get the user info from the JWToken instead of making a query to the database to get the roles information.
Add username to token encoded info.
From the JWToken I want to be able to know what is the usernames of the user that the token represents.
Trust in the JWToken to do roles verification can be a problem
What about if we want to drop some roles from a user instantly? The user will remain in possession of the roles while the current JWToken is valid and not expired.
If we want the roles update operation to affect users instantly we should think in a way of having a service responsible for validating JWToken sessions, so the user-identity interceptor of every service should verify the JWToken using this service before letting it go.
This can have its cons and pros. One pro is that we will be able to expire JWToken sessions actively instead of having to wait for the expiration time passively. One con is that we would have to make an HTTP call to the JWToken session verification for every time that we need to use the info stored in JWTokens.
I think that one HTTP call is a fair price to pay for the guarantee and access-control benefits that it will enable us to have.
Add an implementation of `porteiro.db.datomic.user/by-username` user Datomic function to Datalevin
Add an implementation of `porteiro.db.datomic.password-reset/insert!` Datomic function to Datalevin
Add an implementation of `porteiro.db.datomic.user/add-role!` user Datomic function to Datalevin
Use latest version of net.clojars.macielti/common-clj
Add an implementation of `porteiro.db.datomic.contact/insert!` contact Datomic function to Datalevin
Ask customer to setup a Telegram contact
When a user account is created we need to send an email with information about how to set up a Telegram contact.
Add `api` segiment to endpoint url
Create `user` entity Datalevin schema definition
Based on:
porteiro/src/porteiro/wire/datomic/user.clj
Lines 4 to 26 in a0cfc75
User entity should have a role property to control privileges
The role information should be inside the JWToken login result.
Be able to authenticate using either email or username data
While authenticating the customer should be able to authenticate himself using the email or username.
Add a way of creating the service with a admin user setted by settings
Since we don't have an endpoint to create an admin user if we are not an admin first, we need to have a way of setting a default admin user in the settings file.
Healthy check endpoint security
The healthy check endpoint should require authentication?
I am thinking about requiring a JWT token to get the healthy status of the service.
Add authenticated token when creating a new user account (HTTP Response)
When a user creates an account, the service should already do an authentication process returning a valid auth token.
Make the available roles configurable via settings file
Add an implementation of `porteiro.db.datomic.user/by-email` user Datomic function to Datalevin
User EDN for config file
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.