Skip to content
This repository has been archived by the owner on Nov 7, 2020. It is now read-only.

Security issues with using EVE SSO tokens for authentication #96

Open
mentos1386 opened this issue Apr 16, 2018 · 0 comments · Fixed by #201
Open

Security issues with using EVE SSO tokens for authentication #96

mentos1386 opened this issue Apr 16, 2018 · 0 comments · Fixed by #201
Labels
priority: important type: enhancement
Projects
New Eden Social
Milestone
Alpha

Comments

@mentos1386
Copy link
Member

We should verify that provided token was issued by EVE Book and not some other 3th party. We should use something like JWT.

payload

{
    token: "eve sso token",
}

We could possibly implement verification to allow other 3th parties issued token to be used.
@mentos1386 mentos1386 added this to the Alpha milestone Apr 16, 2018
@mentos1386 mentos1386 added this to Ready for development in New Eden Social Jun 30, 2019
@mentos1386 mentos1386 moved this from Ready for development to Work in progress in New Eden Social Aug 27, 2019
@mentos1386 mentos1386 mentioned this issue Aug 27, 2019
Merged
8 tasks
New Eden Social automation moved this from Work in progress to Done Sep 8, 2019
@mentos1386 mentos1386 moved this from Done to Work in progress in New Eden Social Sep 9, 2019
@mentos1386 mentos1386 reopened this Sep 9, 2019
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
priority: important type: enhancement
Projects
New Eden Social
  
Work in progress
Milestone
Alpha
Development

Successfully merging a pull request may close this issue.

feat: moving api services to microservices pattern new-eden-social/new-eden-social
1 participant
@mentos1386