yogsototh/deft
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

notes/cisco_ft_securex_registration.org

Browse source
This commit is contained in:
Yann Esposito (Yogsototh) 2022-03-25 11:30:03 +01:00
parent 6bf7782ec3
commit a20bcc1033
Signed by untrusted user who does not match committer: yogsototh
GPG key ID: 7B19A4C650D59646
1 changed files with 9 additions and 6 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

15
notes/cisco_ft_securex_registration.org
View file

@ -298,14 +298,17 @@ because this web service already support access to non login users.
So have a new ~GET~ endpoint; ideally:
#+begin_src http
GET /iroh/iroh-auth/org-access-request-approval
?org-access-request-id=ORG_ACCESS_REQUEST_ID
&org-access-request-secret=ORG_ACCESS_REQUEST_SECRET
&action=APPROVAL_STATUS
&approver-id=ENCRYPTED_USER_ID
&role=ROLE
GET /iroh/iroh-auth/org-access-request-approval?code=ENCRYPTED_DATA
#+end_src
Where ~ENCRYPTED_DATA~ should contain the following:
- ~org-access-request-id~
- ~org-access-request-secret~
- ~action~ ; either accepted or rejected
- ~role~ ; optional and only if accepted
- ~approver-id~ ; user-id of the approver
- ~action~ could be ~accepted~ or ~rejected~
- So ~role~ should be optional and if none is provided should default to ~user~.
- ~approver-id~ must be an encrypted ~user-id~ (we need to encrypt that to