Skip to content

Select new authentication token mechanism #2130

New issue
New issue
Closed
Closed
Select new authentication token mechanism#2130
Labels
Complexity: MediumImpact: HighSpikeA small chunk of work with the objective of gathering information.
@mssalvatore

Description

@mssalvatore
mssalvatore
opened on Jul 27, 2022

Spike

Objective

JWTs cannot be revoked. Up until now, this hasn't been a problem, but it will be an issue when implementing #2049. Select a new authentication token (e.g. OAuth) to replace JWTs.

Requirements

  • Tokens must have an expiration time
  • Tokens must be revokable
  • Tokens must be renewable/refreshable
    • The UI shouldn't log you out while you're using it
    • Ideally, some third-party library handles refreshing the tokens so we don't have to.
  • It would be nice if the token can be configured/used as a One-Time Password (OTP)

Output

  • A comparison of different authentication tokens/mechanisms
  • A new mechanism to use and an explanation of why it was selected
  • A plan for how it will be implemented
    • How will it integrate with flask?
    • What changes need to be made? API? UI?

Time remaining: 0d - @VakarisZ

Metadata

Metadata

Assignees

No one assigned

    Labels

    Complexity: MediumImpact: HighSpikeA small chunk of work with the objective of gathering information.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions