Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Feature Proposal: Email verification #72

Open
winston-yallow opened this issue Feb 6, 2024 · 3 comments
Open

Feature Proposal: Email verification #72

winston-yallow opened this issue Feb 6, 2024 · 3 comments

Comments

@winston-yallow
Copy link

winston-yallow commented Feb 6, 2024
edited
Loading

It seems like there is no way to enforce email verification since OIDC_REQUIRE_VERIFIED_EMAIL was deprecated.

I propose to add a decorator require_verified_email() that only grants access if the mail is verified.
@winston-yallow
Copy link
Author

winston-yallow commented Feb 6, 2024
edited
Loading

To be clear, it is possible to manually check session['oidc_auth_profile']['email_verified'], but the proposal would integrate this better into a typical flask workflow.

@abompard
Copy link
Member

abompard commented Jul 4, 2024

Yeah, it sounds reasonable, could you write the PR? I'll review it.

@davidtavarez
Copy link

@winston-yallow can you explain the flow? what happens when the email is not verified? a redirect? a 403?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@abompard @davidtavarez @winston-yallow