Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

implement endpoint to signin/signup users that can be called from external services #547

Open
dbarrosop opened this issue Aug 13, 2024 · 1 comment
Open

implement endpoint to signin/signup users that can be called from external services #547

dbarrosop opened this issue Aug 13, 2024 · 1 comment
Assignees
@dbarrosop

Comments

@dbarrosop
Copy link
Member

dbarrosop commented Aug 13, 2024
edited
Loading

someting like:

/signup/webhook { userDetails...} -> { session... }
/signin/webhook { signinDetails... } -> { session... }

For security purposes that webhook would require some signature or similar to authenticate the caller rather than the user.

This would be useful for the users we have that want to implement their own custom signup/signin workflows.
@dbarrosop dbarrosop self-assigned this Aug 13, 2024
@iamdineshkumar
Copy link

Hai @dbarrosop Thanks for considering this pattern based on discussion in discord. This gives much more flexibility to create custom sign up flows.

But this endpoints going to be public so I have a thought instead of having signature kind of implementation we can do rate limit to avoid attack. Which is similar to authentication endpoint available in nhost.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@dbarrosop dbarrosop

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@dbarrosop @iamdineshkumar